Exploit Database

137,169 exploits tracked across all sources.

Sort: Activity Stars
CVE-2024-48425 WRITEUP MEDIUM
Assimp - Buffer Overflow
A segmentation fault (SEGV) was detected in the Assimp::SplitLargeMeshesProcess_Triangle::UpdateNode function within the Assimp library during fuzz testing using AddressSanitizer. The crash occurs due to a read access violation at address 0x000000000460, which points to the zero page, indicating a null or invalid pointer dereference.
CVSS 5.5
CVE-2024-48424 WRITEUP MEDIUM
Assimp - Buffer Overflow
A heap-buffer-overflow vulnerability has been identified in the OpenDDLParser::parseStructure function within the Assimp library, specifically during the processing of OpenGEX files.
CVSS 5.5
CVE-2024-48423 WRITEUP HIGH
Assimp - Use After Free
An issue in assimp v.5.4.3 allows a local attacker to execute arbitrary code via the CallbackToLogRedirector function within the Assimp library.
CVSS 7.8
CVE-2024-46632 WRITEUP MEDIUM
Assimp - Heap Buffer Overflow
Assimp v5.4.3 is vulnerable to Buffer Overflow via the MD5Importer::LoadMD5MeshFile function.
CVSS 4.3
CVE-2024-45679 WRITEUP HIGH
Assimp < 5.4.3 - Heap Buffer Overflow
Heap-based buffer overflow vulnerability in Assimp versions prior to 5.4.3 allows a local attacker to execute arbitrary code by importing a specially crafted file into the product.
CVSS 8.4
CVE-2024-40724 WRITEUP HIGH
Assimp <5.4.2 - Buffer Overflow
Heap-based buffer overflow vulnerability in Assimp versions prior to 5.4.2 allows a local attacker to execute arbitrary code by inputting a specially crafted file into the product.
CVSS 7.8
CVE-2024-40724 WRITEUP HIGH
Assimp <5.4.2 - Buffer Overflow
Heap-based buffer overflow vulnerability in Assimp versions prior to 5.4.2 allows a local attacker to execute arbitrary code by inputting a specially crafted file into the product.
CVSS 7.8
CVE-2022-45748 WRITEUP HIGH
Assimp - Use After Free
An issue was discovered with assimp 5.1.4, a use after free occurred in function ColladaParser::ExtractDataObjectFromChannel in file /code/AssetLib/Collada/ColladaParser.cpp.
CVSS 8.8
CVE-2022-38528 WRITEUP MEDIUM
Open Asset Import Library - Memory Corruption
Open Asset Import Library (assimp) commit 3c253ca was discovered to contain a segmentation violation via the component Assimp::XFileImporter::CreateMeshes.
CVSS 6.5
CVE-2025-70069 WRITEUP HIGH
Assimp 6.0.2 - DoS
An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXConverter.cpp and ConvertMeshMultiMaterial() method
CVSS 7.5
CVE-2025-70070 WRITEUP MEDIUM
Assimp 6.0.2 - DoS
An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXMeshGeometry.cpp, MeshGeometry::MeshGeometry()
CVSS 6.5
CVE-2025-70071 WRITEUP MEDIUM
Assimp 6.0.2 - DoS
An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXParser.cpp, ParseVectorDataArray()
CVSS 5.9
CVE-2025-70072 WRITEUP MEDIUM
Assimp 6.0.2 - DoS
An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXConverter.cpp, FBXConverter::ConvertMeshMultiMaterial() components
CVSS 6.5
CVE-2026-24118 WRITEUP CRITICAL
VM2 Sandbox Breakout Through __lookupGetter__
vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.0, VM2 suffers from a sandbox breakout vulnerability. This allows attackers to write code which can escape from the VM2 sandbox and execute arbitrary commands on the host system. This issue has been patched in version 3.11.0.
CVSS 9.8
CVE-2026-24781 WRITEUP CRITICAL
vm2: Sandbox Breakout Through Inspect
vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.0, VM2 suffers from a sandbox breakout vulnerability through the inspect function. This allows attackers to write code which can escape from the VM2 sandbox and execute arbitrary commands on the host system. This issue has been patched in version 3.11.0.
CVSS 9.8
CVE-2026-31205 WRITEUP MEDIUM
Pluck CMS <4.7.21dev - XSS
Cross Site Scripting vulnerability in Pluck CMS before v.4.7.21dev allows a remote attacker to escalate privileges via the editpage.php and the sanitizePageContent function
CVSS 5.7
CVE-2026-32834 WRITEUP HIGH
Easy PayPal Events & Tickets 1.3 Authentication Bypass via QR Code Scanning
Easy PayPal Events & Tickets plugin for WordPress version 1.3 and earlier contain a hardcoded authentication bypass vulnerability in the QR code scanning functionality that allows unauthenticated remote attackers to bypass hash verification by supplying 'test' as the hash parameter. Attackers can access the vulnerable endpoint via the add_wpeevent_button_qr action to retrieve sensitive order details including PayPal transaction IDs, customer email addresses, purchase amounts, and ticket information for any order with a known or guessed post ID. This plugin was officially closed as of 2026-03-18.
CVSS 7.5
CVE-2026-36365 WRITEUP HIGH
Lymphatus caesium-image-compressor - Code Injection
An issue in Lymphatus caesium-image-compressor All versions up to and including commit 02da2c6 allows a local attacker to execute arbitrary code via the shutdownMachine and putMachineToSleep functions in PostCompressionActions.cpp
CVSS 7.8
CVE-2026-36365 WRITEUP HIGH
Lymphatus caesium-image-compressor - Code Injection
An issue in Lymphatus caesium-image-compressor All versions up to and including commit 02da2c6 allows a local attacker to execute arbitrary code via the shutdownMachine and putMachineToSleep functions in PostCompressionActions.cpp
CVSS 7.8
CVE-2026-37458 WRITEUP MEDIUM
FRRouting 10.0-10.6 - DoS
Missing input validation in the MP_REACH_NLRI component of FRRouting (FRR) stable/10.0 to stable/10.6 allows authenticated attackers to cause a Denial of Service (DoS) via supplying a crafted UPDATE message.
CVSS 6.5
CVE-2026-37458 WRITEUP MEDIUM
FRRouting 10.0-10.6 - DoS
Missing input validation in the MP_REACH_NLRI component of FRRouting (FRR) stable/10.0 to stable/10.6 allows authenticated attackers to cause a Denial of Service (DoS) via supplying a crafted UPDATE message.
CVSS 6.5
CVE-2026-37459 WRITEUP HIGH
FRRouting 10.0-10.6 - DoS
An integer underflow in FRRouting (FRR) stable/10.0 to stable/10.6 allows attackers to cause a Denial of Service (DoS) via supplying a crafted BGP UPDATE message.
CVSS 7.5
CVE-2026-37461 WRITEUP HIGH
gobgp v4.3.0 - DoS
An out-of-bounds read in the ParseIP6Extended function (/bgp/bgp.go) of gobgp v4.3.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted BGP UPDATE message.
CVSS 7.5
CVE-2026-38669 WRITEUP MEDIUM
wCMS 1.4 - XSS
wCMS v.1.4 is vulnerable to Cross Site Scripting (XSS) when creating a new blog.
CVSS 6.1
CVE-2026-41471 WRITEUP HIGH
Easy PayPal Events & Tickets 1.3 Information Disclosure via QR Code Endpoint
Easy PayPal Events & Tickets plugin for WordPress versions 1.3 and earlier contain an information disclosure vulnerability in the QR code scanning endpoint that allows unauthenticated attackers to enumerate and retrieve all customer order records. Attackers can iterate over sequential WordPress post IDs through the scan_qr.php endpoint to harvest the complete set of orders stored in the database without requiring authentication or prior knowledge of specific order identifiers. This plugin was officially closed as of 2026-03-18.
CVSS 7.5
By Source
All 137,169 Writeup 57,446 Exploitdb 49,983 Nomisec 21,423 Metasploit 3,217 Github 2,519 Vulncheck_xdb 901 Inthewild 514 Gitlab 439 Gitee 415 Patchapalooza 312
By Language
text 31,329 python 5,908 ruby 5,906 c 3,561 perl 2,849 html 2,053 php 1,326 bash 459 java 362 c++ 250 javascript 215 shell 88 go 53 postscript 25 xml 24