Exploitdb Exploits
31,394 exploits tracked across all sources.
eClinicalWorks Population Health - Unauthenticated Stored Cross-Site Scripting via strMessage Parameter
eClinicalWorks Population Health (CCMR) suffers from a cross site scripting vulnerability in login.jsp which allows remote unauthenticated users to inject arbitrary javascript via the strMessage parameter.
by Jerold Hoong
CVSS 6.1
Manage Engine Network Configuration Manager Build 11000 - Cross-Site Request Forgery
by Kaustubh G. Padwad
pdfium - opj_t2_read_packet_header 'libopenjpeg' Heap Use-After-Free
by Google Security Research
eClinicalWorks Population Health - Cross-Site Request Forgery in portalUserService.jsp
eClinicalWorks Population Health (CCMR) suffers from a cross-site request forgery (CSRF) vulnerability in portalUserService.jsp which allows remote attackers to hijack the authentication of content administrators for requests that could lead to the creation, modification and deletion of users, appointments and employees.
by Jerold Hoong
CVSS 8.8
WPS Office < 2016 - '.xls' Heap Memory Corruption
by Francis Provencher
WPS Office < 2016 - '.ppt' Heap Memory Corruption
by Francis Provencher
WPS Office < 2016 - '.ppt' drawingContainer Memory Corruption
by Francis Provencher
WPS Office < 2016 - '.doc' OneTableDocumentStream Memory Corruption
by Francis Provencher
Autonics DAQMaster 1.7.3 - DQP Parsing Buffer Overflow Code Execution (PoC)
by LiquidWorm
iScripts EasyCreate 3.0 - Multiple Vulnerabilities
by Bikramaditya Guha
ManageEngine EventLog Analyzer 4.0 < 10 - Privilege Escalation
by GraphX
WordPress Plugin Simple Add Pages or Posts 1.6 - Cross-Site Request Forgery
by ALIREZA_PROMIS
VideoLAN VLC Media Player 2.2.1 - '.mp4' Heap Memory Corruption
by Francis Provencher
Ramui Web Hosting Directory Script 4.0 - Remote File Inclusion
by bd0rk
Apple iOS <9.2, macOS <10.11.2, tvOS <9.1, watchOS <2.1 - Memory Corruption in Kernel
The kernel in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-7083.
by Google Security Research
SAP HANA <1.00.095 - Memory Corruption
The index server (hdbindexserver) in SAP HANA 1.00.095 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via an HTTP request, aka SAP Security Note 2197428.
by ERPScan
Apple iOS <9.2.1, OS X <10.11.3, tvOS <9.1.1 - Memory Corruption
The kernel in Apple iOS before 9.2.1, OS X before 10.11.3, and tvOS before 9.1.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors.
by Google Security Research
CVSS 7.8
Apple iOS <9.2, macOS <10.11.2, tvOS <9.1, watchOS <2.1 - Memory Corruption in IOHIDFamily API
The IOHIDFamily API in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2015-7111.
by Google Security Research
Apple iOS <9.2.1-OS X <10.11.3-tvOS <9.1.1 - Privilege Escalation/DoS
The IOHIDFamily API in Apple iOS before 9.2.1, OS X before 10.11.3, and tvOS before 9.1.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors.
by Google Security Research
CVSS 7.8
Apple iOS <9.2.1-OS X <10.11.3-tvOS <9.1.1 - Privilege Escalation/DoS
The IOHIDFamily API in Apple iOS before 9.2.1, OS X before 10.11.3, and tvOS before 9.1.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors.
by Google Security Research
CVSS 7.8
Apple iOS <9.2.1-OS X <10.11.3-tvOS <9.1.1 - Privilege Escalation/DoS
The IOHIDFamily API in Apple iOS before 9.2.1, OS X before 10.11.3, and tvOS before 9.1.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors.
by Google Security Research
CVSS 7.8
Apple iOS <9.2.1-OS X <10.11.3-tvOS <9.1.1 - Privilege Escalation/DoS
The IOHIDFamily API in Apple iOS before 9.2.1, OS X before 10.11.3, and tvOS before 9.1.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors.
by Google Security Research
CVSS 7.8
Apple iOS <9.2.1-OS X <10.11.3-tvOS <9.1.1 - Privilege Escalation/DoS
The IOHIDFamily API in Apple iOS before 9.2.1, OS X before 10.11.3, and tvOS before 9.1.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors.
by Google Security Research
CVSS 7.8
By Source