Exploitdb Exploits

49,983 exploits tracked across all sources.

Sort: Activity Stars
CVE-2019-10098 EXPLOITDB MEDIUM
Apache HTTP Server <2.4.40 - SSRF
In Apache HTTP server 2.4.0 to 2.4.39, Redirects configured with mod_rewrite that were intended to be self-referential might be fooled by encoded newlines and redirect instead to an unexpected URL within the request URL.
by Sebastian Neef
CVSS 6.1
CVE-2019-10092 EXPLOITDB MEDIUM
Apache HTTP Server <2.4.40 - XSS
In Apache HTTP Server 2.4.0-2.4.39, a limited cross-site scripting issue was reported affecting the mod_proxy error page. An attacker could cause the link on the error page to be malformed and instead point to a page of their choice. This would only be exploitable where a server was set up with proxying enabled but was misconfigured in such a way that the Proxy Error page was displayed.
by Sebastian Neef
CVSS 6.1
EIP-2026-117667 EXPLOITDB text
National Instruments Circuit Design Suite 14.0 - Local Privilege Escalation
by Ivan Marmolejo
EIP-2026-113569 EXPLOITDB ruby
WordPress Plugin Arforms 3.7.1 - Directory Traversal
by Ahmad Almorabea
EIP-2026-101809 EXPLOITDB text
Intelbras Router WRN150 1.0.18 - Persistent Cross-Site Scripting
by Prof. Joas Antonio
CVE-2019-1364 EXPLOITDB HIGH text VERIFIED
Windows - Privilege Escalation
An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1362.
by Google Security Research
CVSS 7.8
CVE-2019-1347 EXPLOITDB MEDIUM text VERIFIED
Windows - DoS
A denial of service vulnerability exists when Windows improperly handles objects in memory, aka 'Windows Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-1343, CVE-2019-1346.
by Google Security Research
CVSS 6.5
CVE-2019-1345 EXPLOITDB MEDIUM text VERIFIED
Windows Kernel - Info Disclosure
An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1334.
by Google Security Research
CVSS 5.5
CVE-2019-1346 EXPLOITDB MEDIUM text VERIFIED
Windows - DoS
A denial of service vulnerability exists when Windows improperly handles objects in memory, aka 'Windows Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-1343, CVE-2019-1347.
by Google Security Research
CVSS 6.5
CVE-2019-1344 EXPLOITDB MEDIUM text VERIFIED
Windows Code Integrity Module - Info Disclosure
An information disclosure vulnerability exists in the way that the Windows Code Integrity Module handles objects in memory, aka 'Windows Code Integrity Module Information Disclosure Vulnerability'.
by Google Security Research
CVSS 5.5
CVE-2019-1343 EXPLOITDB MEDIUM text VERIFIED
Windows - DoS
A denial of service vulnerability exists when Windows improperly handles objects in memory, aka 'Windows Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-1346, CVE-2019-1347.
by Google Security Research
CVSS 6.5
EIP-2026-102782 EXPLOITDB ruby
ASX to MP3 converter 3.1.3.7 - '.asx' Local Stack Overflow (DEP Bypass) (Metasploit)
by max7253
EIP-2026-102781 EXPLOITDB ruby
ASX to MP3 converter 3.1.3.7 - '.asx' Local Stack Overflow (DEP Bypass) (Metasploit)
by max7253
CVE-2019-6971 EXPLOITDB CRITICAL python
TP-Link TL-WR1043ND V2 - Auth Bypass
An issue was discovered on TP-Link TL-WR1043ND V2 devices. An attacker can send a cookie in an HTTP authentication packet to the router management web interface, and fully control the router without knowledge of the credentials.
by Uriel Kosayev
CVSS 9.8
CVE-2019-13529 EXPLOITDB HIGH text
SMA Sunny Webbox Firmware < 1.6 - CSRF
An attacker could send a malicious link to an authenticated operator, which may allow remote attackers to perform actions with the permissions of the user on the Sunny WebBox Firmware Version 1.6 and prior. This device uses IP addresses to maintain communication after a successful login, which would increase the ease of exploitation.
by Borja Merino
CVSS 8.8
CVE-2019-25437 EXPLOITDB MEDIUM python
Foscam VMS 1.1.6.6 - Buffer Overflow
Foscam Video Management System 1.1.6.6 contains a buffer overflow vulnerability in the UID field that allows local attackers to crash the application by supplying an excessively long string. Attackers can input a 5000-character buffer into the UID parameter during device addition to trigger an application crash when the Login Check function is invoked.
by Alessandro Magnosi
CVSS 6.2
CVE-2019-25436 EXPLOITDB MEDIUM python
Sricam DeviceViewer 3.12.0.1 - Auth Bypass
Sricam DeviceViewer 3.12.0.1 contains a password change security bypass vulnerability that allows authenticated users to change passwords without proper validation of the old password field. Attackers can inject a large payload into the old password parameter during the change password process to bypass validation and set an arbitrary new password.
by Alessandro Magnosi
CVSS 6.5
CVE-2019-25435 EXPLOITDB HIGH python
Sricam DeviceViewer 3.12.0.1 - Buffer Overflow
Sricam DeviceViewer 3.12.0.1 contains a local buffer overflow vulnerability in the user management add user function that allows authenticated attackers to execute arbitrary code by bypassing data execution prevention. Attackers can inject a malicious payload through the Username field in User Management to trigger a stack-based buffer overflow and execute commands via ROP chain gadgets.
by Alessandro Magnosi
CVSS 7.8
CVE-2019-25062 EXPLOITDB MEDIUM python
Sricam IP CCTV Camera - Memory Corruption
A vulnerability was found in Sricam IP CCTV Camera and classified as critical. This issue affects some unknown processing of the component Device Viewer. The manipulation leads to memory corruption. An attack has to be approached locally. The exploit has been disclosed to the public and may be used.
by Alessandro Magnosi
CVSS 5.3
CVE-2019-8717 EXPLOITDB HIGH text VERIFIED
Apple Mac OS X < 10.15 - Out-of-Bounds Write
A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Catalina 10.15, tvOS 13. An application may be able to execute arbitrary code with kernel privileges.
by Google Security Research
CVSS 7.8
EIP-2026-114567 EXPLOITDB perl
Zabbix 4.4 - Authentication Bypass
by Todor Donev
CVE-2019-17382 EXPLOITDB CRITICAL text
Zabbix < 4.4 - IDOR
An issue was discovered in zabbix.php?action=dashboard.view&dashboardid=1 in Zabbix through 4.4. An attacker can bypass the login page and access the dashboard page, and then create a Dashboard, Report, Screen, or Map without any Username/Password (i.e., anonymously). All created elements (Dashboard/Report/Screen/Map) are accessible by other users and by an admin.
by Milad Khoshdel
CVSS 9.1
EIP-2026-119628 EXPLOITDB python
ASX to MP3 converter 3.1.3.7 - '.asx' Local Stack Overflow (DEP)
by max7253
EIP-2026-118583 EXPLOITDB python VERIFIED
freeFTP 1.0.8 - 'PASS' Remote Buffer Overflow
by Chet Manly
CVE-2019-8452 EXPLOITDB HIGH text
Checkpoint Endpoint Security < e80.96 - Symlink Following
A hard-link created from log file archive of Check Point ZoneAlarm up to 15.4.062 or Check Point Endpoint Security client for Windows before E80.96 to any file on the system will get its permission changed so that all users can access that linked file. Doing this on files with limited access gains the local attacker higher privileges to the file.
by Jakub Palaczynski
CVSS 7.8
By Source
All 49,983 Writeup 57,947 Exploitdb 49,983 Nomisec 21,442 Metasploit 3,217 Github 2,520 Vulncheck_xdb 901 Inthewild 514 Gitlab 439 Gitee 415 Patchapalooza 312
By Language
text 31,329 python 5,909 ruby 5,906 c 3,561 perl 2,849 html 2,053 php 1,326 bash 459 java 362 c++ 250 javascript 215 shell 88 go 53 postscript 25 xml 24