Exploitdb Exploits

49,983 exploits tracked across all sources.

Sort: Activity Stars
CVE-2019-0708 EXPLOITDB CRITICAL ruby VERIFIED
CVE-2019-0708 BlueKeep RDP Remote Windows Kernel Use After Free
A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.
by Metasploit
CVSS 9.8
CVE-2019-16724 EXPLOITDB CRITICAL python
File Sharing Wizard 1.5.0 - Buffer Overflow
File Sharing Wizard 1.5.0 allows a remote attacker to obtain arbitrary code execution by exploiting a Structured Exception Handler (SEH) based buffer overflow in an HTTP POST parameter, a similar issue to CVE-2010-2330 and CVE-2010-2331.
by x00pwn
CVSS 9.8
EIP-2026-115790 EXPLOITDB text VERIFIED
Microsoft Windows cryptoapi - SymCrypt Modular Inverse Algorithm Denial of Service
by Google Security Research
EIP-2026-115139 EXPLOITDB python
DeviceViewer 3.12.0.1 - 'creating user' Denial of Service
by x00pwn
CVE-2019-16701 EXPLOITDB HIGH python
pfSense <2.4.4-p3 - RCE
pfSense through 2.3.4 through 2.4.4-p3 allows Remote Code Injection via a methodCall XML document with a pfsense.exec_php call containing shell metacharacters in a parameter value.
by Nassim Asrir
CVSS 8.8
CVE-2019-8641 EXPLOITDB CRITICAL text VERIFIED
Apple Iphone OS < 12.4 - Out-of-Bounds Read
An out-of-bounds read was addressed with improved input validation.
by Google Security Research
CVSS 9.8
CVE-2019-25465 EXPLOITDB HIGH perl
Hisilicon HiIpcam V100R003 - Path Traversal
Hisilicon HiIpcam V100R003 contains a directory traversal vulnerability that allows unauthenticated attackers to access sensitive configuration files by exploiting directory listing in the cgi-bin directory. Attackers can request the getadslattr.cgi endpoint to retrieve ADSL credentials and network configuration parameters including usernames, passwords, and DNS settings.
by Todor Donev
CVSS 7.5
CVE-2019-25464 EXPLOITDB MEDIUM python
InputMapper 1.6.10 - Buffer Overflow
InputMapper 1.6.10 contains a buffer overflow vulnerability in the username field that allows local attackers to crash the application by entering an excessively long string. Attackers can trigger a denial of service by copying a large payload into the username field and double-clicking to process it, causing the application to crash.
by elkoyote07
CVSS 5.5
CVE-2019-5392 EXPLOITDB MEDIUM python
HPE IMC <7.3 - Info Disclosure
A disclosure of information vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09.
by Lazy Hacker
CVSS 5.3
CVE-2019-16759 EXPLOITDB CRITICAL python
vBulletin 5.x /ajax/render/widget_tabbedcontainer_tab_panel PHP remote code execution.
vBulletin 5.x through 5.5.4 allows remote command execution via the widgetConfig[code] parameter in an ajax/render/widget_php routestring request.
by anonymous
CVSS 9.8
CVE-2019-16679 EXPLOITDB MEDIUM text
Gila CMS <1.11.1 - Path Traversal
Gila CMS before 1.11.1 allows admin/fm/?f=../ directory traversal, leading to Local File Inclusion.
by Sainadh Jamalpur
CVSS 4.9
CVE-2019-8605 EXPLOITDB HIGH text
Apple Iphone OS < 12.3 - Use After Free
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1. A malicious application may be able to execute arbitrary code with system privileges.
by Umang Raghuvanshi
CVSS 7.8
CVE-2019-25463 EXPLOITDB MEDIUM perl
SpotIE Internet Explorer Password Recovery 2.9.5 - DoS
SpotIE Internet Explorer Password Recovery 2.9.5 contains a denial of service vulnerability in the registration key input field that allows local attackers to crash the application by supplying an excessively long string. Attackers can paste a 256-character payload into the Key field during registration to trigger a buffer overflow and crash the application.
by Emilio Revelo
CVSS 6.2
EIP-2026-117550 EXPLOITDB c
Microsoft Windows 10 - 'WSReset' UAC Protection Bypass (propsys.dll)
by valen
CVE-2019-16531 EXPLOITDB HIGH html
LayerBB <1.1.4 - CSRF
LayerBB before 1.1.4 has multiple CSRF issues, as demonstrated by changing the System Settings via admin/general.php.
by 0xB9
CVSS 8.8
CVE-2019-25446 EXPLOITDB HIGH text
DIGIT CENTRIS ERP - SQL Injection
DIGIT CENTRIS ERP contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the datum1, datum2, KID, and PID parameters. Attackers can send POST requests to /korisnikinfo.php with malicious SQL syntax in these parameters to extract or modify sensitive database information.
by n1x_
CVSS 8.2
CVE-2019-25316 EXPLOITDB MEDIUM text VERIFIED
GOautodial 4.0 - XSS
GOautodial 4.0 contains a persistent cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts through the event title parameter. Attackers can exploit the CreateEvent.php endpoint by sending crafted POST requests with XSS payloads to execute arbitrary JavaScript in victim browsers.
by cakes
CVSS 6.4
EIP-2026-103376 EXPLOITDB
macOS 18.7.0 Kernel - Local Privilege Escalation
by A2nkF
CVE-2019-16399 EXPLOITDB CRITICAL text
Western Digital WD My Book World - Auth Bypass
Western Digital WD My Book World through II 1.02.12 suffers from Broken Authentication, which allows an attacker to access the /admin/ directory without credentials. An attacker can easily enable SSH from /admin/system_advanced.php?lang=en and login with the default root password welc0me.
by Noman Riffat
CVSS 9.8
CVE-2019-15943 EXPLOITDB HIGH
Counter-Strike: Global Offensive <1.37.1.1 - RCE/DoS
vphysics.dll in Counter-Strike: Global Offensive before 1.37.1.1 allows remote attackers to achieve code execution or denial of service by creating a gaming server and inviting a victim to this server, because a crafted map is mishandled during a memset call.
by bi7s
CVSS 8.8
EIP-2026-107623 EXPLOITDB text VERIFIED
Hospital-Management 1.26 - 'fname' SQL Injection
by cakes
CVE-2019-25468 EXPLOITDB CRITICAL go
NetGain EM Plus 10.1.68 - RCE
NetGain EM Plus 10.1.68 contains a remote code execution vulnerability that allows unauthenticated attackers to execute arbitrary system commands by submitting malicious parameters to the script_test.jsp endpoint. Attackers can send POST requests with shell commands embedded in the 'content' parameter to execute code and retrieve command output.
by azams
CVSS 9.8
CVE-2019-25467 EXPLOITDB HIGH python
Verypdf docPrint Pro 8.0 - Buffer Overflow
Verypdf docPrint Pro 8.0 contains a structured exception handling buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying an oversized alphanumeric encoded payload in the User Password or Master Password fields. Attackers can craft a malicious payload with encoded shellcode and SEH chain manipulation to bypass protections and execute a MessageBox proof-of-concept when the password fields are processed during PDF encryption.
by Connor McGarr
CVSS 8.4
CVE-2019-13140 EXPLOITDB MEDIUM text
Inteno EG200 - Info Disclosure
Inteno EG200 EG200-WU7P1U_ADAMO3.16.4-190226_1650 routers have a JUCI ACL misconfiguration that allows the "user" account to extract the 3DES key via JSON commands to ubus. The 3DES key is used to decrypt the provisioning file provided by Adamo Telecom on a public URL via cleartext HTTP.
by Gerard Fuguet
CVSS 6.5
CVE-2019-16294 EXPLOITDB HIGH text
Notepad++ <7.7 - RCE/DoS
SciLexer.dll in Scintilla in Notepad++ (x64) before 7.7 allows remote code execution or denial of service via Unicode characters in a crafted .ml file.
by Bogdan Kurinnoy
CVSS 7.8
By Source
All 49,983 Writeup 59,016 Exploitdb 49,983 Nomisec 21,452 Metasploit 3,217 Github 2,523 Vulncheck_xdb 901 Inthewild 514 Gitlab 440 Gitee 415 Patchapalooza 312
By Language
text 31,329 python 5,912 ruby 5,906 c 3,561 perl 2,849 html 2,053 php 1,326 bash 459 java 362 c++ 250 javascript 215 shell 88 go 53 postscript 25 xml 24