Exploitdb Exploits

50,135 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-117445 EXPLOITDB text
McAfee(R) Safe Connect VPN - Unquoted Service Path Elevation Of Privilege
by Saud Alenazi
EIP-2026-114569 EXPLOITDB python
Zabbix 5.0.17 - Remote Code Execution (RCE) (Authenticated)
by Hussien Misbah
CVE-2022-50923 EXPLOITDB HIGH text
Cobian Backup 0.9 - Privilege Escalation
Cobian Backup 0.9 contains an unquoted service path vulnerability that allows local users to execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted binary path in the CobianReflectorService to inject malicious code that will execute with LocalSystem permissions during service startup.
by Hejap Zairy Al-Sharif
CVSS 7.8
CVE-2022-50922 EXPLOITDB CRITICAL python
Audio Conversion Wizard v2.01 - Buffer Overflow
Audio Conversion Wizard v2.01 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting memory with a specially crafted registration code. Attackers can generate a payload that overwrites the application's memory stack, potentially enabling remote code execution through a carefully constructed input buffer.
by Hejap Zairy Al-Sharif
CVSS 9.8
CVE-2022-50900 EXPLOITDB HIGH text
Wondershare Dr.Fone 12.0.18 - Code Injection
Wondershare Dr.Fone 12.0.18 contains an unquoted service path vulnerability that allows local users to execute arbitrary code with elevated system privileges. Attackers can exploit the misconfigured service path to insert malicious code that will be executed with LocalSystem permissions during service startup.
by Mohamed Alzhrani
CVSS 8.4
CVE-2022-25090 EXPLOITDB HIGH
Kofax Printix < 1.3.1106.0 - Race Condition
Printix Secure Cloud Print Management through 1.3.1106.0 creates a temporary temp.ini file in a directory with insecure permissions, leading to privilege escalation because of a race condition.
by Logan Latvala
CVSS 8.1
CVE-2022-0824 EXPLOITDB HIGH python
Webmin < 1.990 - Incorrect Authorization
Improper Access Control to Remote Code Execution in GitHub repository webmin/webmin prior to 1.990.
by faisalfs10x
CVSS 8.8
CVE-2022-0847 EXPLOITDB HIGH c
Dirty Pipe Local Privilege Escalation via CVE-2022-0847
A flaw was found in the way the "flags" member of the new pipe buffer structure was lacking proper initialization in copy_page_to_iter_pipe and push_pipe functions in the Linux kernel and could thus contain stale values. An unprivileged local user could use this flaw to write to pages in the page cache backed by read only files and as such escalate their privileges on the system.
by Lance Biggerstaff
CVSS 7.8
CVE-2022-50924 EXPLOITDB HIGH text
Private Internet Access <3.3 - Code Injection
Private Internet Access 3.3 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted path in the service configuration to inject malicious code that would execute with LocalSystem permissions during service startup.
by Saud Alenazi
CVSS 8.4
CVE-2021-44088 EXPLOITDB CRITICAL python
Attendance And Payroll System - SQL Injection
An SQL Injection vulnerability exists in Sourcecodester Attendance and Payroll System v1.0 which allows a remote attacker to bypass authentication via unsanitized login parameters.
by pr0z
CVSS 9.8
CVE-2021-44087 EXPLOITDB CRITICAL python
Attendance And Payroll System - Remote Code Execution
A Remote Code Execution (RCE) vulnerability exists in Sourcecodester Attendance and Payroll System v1.0 which allows an unauthenticated remote attacker to upload a maliciously crafted PHP via photo upload.
by pr0z
CVSS 9.8
EIP-2026-117440 EXPLOITDB text
Malwarebytes 4.5 - Unquoted Service Path
by Hejap Zairy Al-Sharif
EIP-2026-117179 EXPLOITDB text
Foxit PDF Reader 11.0 - Unquoted Service Path
by Hejap Zairy Al-Sharif
EIP-2026-116965 EXPLOITDB text
Cloudflare WARP 1.4 - Unquoted Service Path
by Hejap Zairy Al-Sharif
CVE-2022-0848 EXPLOITDB CRITICAL bash
Part-db < 0.5.11 - OS Command Injection
OS Command Injection in GitHub repository part-db/part-db prior to 0.5.11.
by Chetanya Sharma
CVSS 9.8
EIP-2026-104274 EXPLOITDB python
Hasura GraphQL 2.2.0 - Information Disclosure
by Dolev Farhi
CVE-2022-22947 EXPLOITDB CRITICAL python
Spring Cloud Gateway Remote Code Execution
In spring cloud gateway versions prior to 3.1.1+ and 3.0.7+ , applications are vulnerable to a code injection attack when the Gateway Actuator endpoint is enabled, exposed and unsecured. A remote attacker could make a maliciously crafted request that could allow arbitrary remote execution on the remote host.
by Carlos E. Vieira
CVSS 10.0
CVE-2022-50925 EXPLOITDB CRITICAL html
Prowise Reflect <1.0.9 - Code Injection
Prowise Reflect version 1.0.9 contains a remote keystroke injection vulnerability that allows attackers to send keyboard events through an exposed WebSocket on port 8082. Attackers can craft malicious web pages to inject keystrokes, opening applications and typing arbitrary text by sending specific WebSocket messages.
by Rik Lutz
CVSS 9.8
CVE-2022-25089 EXPLOITDB CRITICAL
Kofax Printix < 1.3.1106.0 - Improper Privilege Management
Printix Secure Cloud Print Management through 1.3.1106.0 incorrectly uses Privileged APIs to modify values in HKEY_LOCAL_MACHINE via UITasks.PersistentRegistryData.
by Logan Latvala
CVSS 9.8
CVE-2021-44664 EXPLOITDB HIGH python
Xerte < 3.9 - Path Traversal
An Authenticated Remote Code Exection (RCE) vulnerability exists in Xerte through 3.9 in website_code/php/import/fileupload.php by uploading a maliciously crafted PHP file though the project interface disguised as a language file to bypasses the upload filters. Attackers can manipulate the files destination by abusing path traversal in the 'mediapath' variable.
by Rik Lutz
CVSS 8.8
CVE-2021-44665 EXPLOITDB MEDIUM python
Xerte < 3.10.3 - Path Traversal
A Directory Traversal vulnerability exists in the Xerte Project Xerte through 3.10.3 when downloading a project file via download.php.
by Rik Lutz
CVSS 6.5
CVE-2021-46387 EXPLOITDB MEDIUM text
ZyXEL ZyWALL 2 Plus - XSS
ZyXEL ZyWALL 2 Plus Internet Security Appliance is affected by Cross Site Scripting (XSS). Insecure URI handling leads to bypass security restriction to achieve Cross Site Scripting, which allows an attacker able to execute arbitrary JavaScript codes to perform multiple attacks such as clipboard hijacking and session hijacking.
by Momen Eldawakhly
CVSS 6.1
CVE-2022-50926 EXPLOITDB CRITICAL text
WAGO 750-8212 PFC200 G2 2ETH RS - Privilege Escalation
WAGO 750-8212 PFC200 G2 2ETH RS firmware contains a privilege escalation vulnerability that allows attackers to manipulate user session cookies. Attackers can modify the cookie's 'name' and 'roles' parameters to elevate from ordinary user to administrative privileges without authentication.
by Momen Eldawakhly
CVSS 9.8
CVE-2022-50689 EXPLOITDB MEDIUM python
Cobian Reflector 0.9.93 RC1 - DoS
Cobian Reflector 0.9.93 RC1 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the password input field. Attackers can paste a large 8000-byte buffer into the password field to trigger an application crash during SFTP task configuration.
by Luis Martínez
CVSS 6.2
CVE-2022-50688 EXPLOITDB HIGH text
Cobian Backup Gravity 11.2.0.582 - Code Injection
Cobian Backup Gravity 11.2.0.582 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted service path in the CobianBackup11 service to inject malicious code that would execute with LocalSystem privileges during service startup.
by Luis Martínez
CVSS 8.4
By Source
All 50,135 Exploitdb 50,135 Writeup 46,968 Nomisec 21,259 Metasploit 3,228 Github 2,444 Vulncheck_xdb 900 Inthewild 518 Gitlab 439 Gitee 415 Patchapalooza 312
By Language
text 31,346 ruby 5,959 python 5,832 c 3,570 perl 2,854 html 2,055 php 1,334 bash 459 java 360 javascript 260 c++ 247 shell 87 go 47 postscript 25 xml 24