Exploitdb Exploits

49,983 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-115120 EXPLOITDB python
Cyberoam SSLVPN Client 1.3.1.30 - 'HTTP Proxy' Denial of Service (PoC)
by Victor Mondragón
EIP-2026-115119 EXPLOITDB python
Cyberoam SSLVPN Client 1.3.1.30 - 'HTTP Proxy' Denial of Service (PoC)
by Victor Mondragón
EIP-2026-115118 EXPLOITDB python
Cyberoam SSLVPN Client 1.3.1.30 - 'Connect To Server' Denial of Service (PoC)
by Victor Mondragón
EIP-2026-115117 EXPLOITDB python
Cyberoam SSLVPN Client 1.3.1.30 - 'Connect To Server' Denial of Service (PoC)
by Victor Mondragón
EIP-2026-115116 EXPLOITDB python
Cyberoam General Authentication Client 2.1.2.7 - 'Server Address' Denial of Service (PoC)
by Victor Mondragón
EIP-2026-115115 EXPLOITDB python
Cyberoam General Authentication Client 2.1.2.7 - 'Server Address' Denial of Service (PoC)
by Victor Mondragón
EIP-2026-104639 EXPLOITDB bash
Opencart 3.0.3.2 - 'extension/feed/google_base' Denial of Service (PoC)
by Todor Donev
CVE-2019-25547 EXPLOITDB MEDIUM python
NetAware 1.20 Denial of Service via Add Block Buffer Overflow
NetAware 1.20 contains a buffer overflow vulnerability in the User Blocking feature that allows local attackers to crash the application by supplying oversized input. Attackers can paste a malicious buffer of 512 bytes into the 'Add a website or keyword to be filtered' field and trigger a crash when removing the created block.
by Alejandra Sánchez
CVSS 6.2
CVE-2019-25546 EXPLOITDB MEDIUM python
NetAware 1.20 Share Name Denial of Service
NetAware 1.20 contains a buffer overflow vulnerability in the Share Name field that allows local attackers to crash the application by supplying an excessively long string. Attackers can trigger a denial of service by pasting a 1000-byte buffer into the Share Name parameter when adding a new share through the Manage Shares interface.
by Alejandra Sánchez
CVSS 6.2
CVE-2019-25545 EXPLOITDB MEDIUM python
Terminal Services Manager 3.2.1 Local Buffer Overflow Denial of Service
Terminal Services Manager 3.2.1 contains a local buffer overflow vulnerability that allows attackers to crash the application by supplying an excessively long string in the computer name field. Attackers can input a 5000-byte buffer of data into the 'Computer name or IP address' field during computer addition, causing a denial of service when the server entry is accessed.
by Alejandra Sánchez
CVSS 6.2
CVE-2019-0881 EXPLOITDB HIGH text VERIFIED
Windows Kernel - Privilege Escalation
An elevation of privilege vulnerability exists when the Windows Kernel improperly handles key enumeration, aka 'Windows Kernel Elevation of Privilege Vulnerability'.
by Google Security Research
CVSS 7.8
EIP-2026-117547 EXPLOITDB text
Microsoft Windows 10 (17763.379) - Install DLL
by SandboxEscaper
CVE-2019-0841 EXPLOITDB HIGH text
Windows AppX Deployment Service - Privilege Escalation
An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0730, CVE-2019-0731, CVE-2019-0796, CVE-2019-0805, CVE-2019-0836.
by SandboxEscaper
CVSS 7.8
CVE-2019-12279 EXPLOITDB CRITICAL text
Nagios XI 5.6.1 - SQL Injection
Nagios XI 5.6.1 allows SQL injection via the username parameter to login.php?forgotpass (aka the reset password form). NOTE: The vendor disputes this issues as not being a vulnerability because the issue does not seem to be a legitimate SQL Injection. The POC does not show any valid injection that can be done with the variable provided, and while the username value being passed does get used in a SQL query, it is passed through SQL escaping functions when creating the call. The vendor tried re-creating the issue with no luck
by JameelNabbo
CVSS 9.8
CVE-2017-18357 EXPLOITDB MEDIUM ruby VERIFIED
Shopware < 5.3.4 - XXE
Shopware before 5.3.4 has a PHP Object Instantiation issue via the sort parameter to the loadPreviewAction() method of the Shopware_Controllers_Backend_ProductStream controller, with resultant XXE via instantiation of a SimpleXMLElement object.
by Metasploit
CVSS 6.5
CVE-2019-8565 EXPLOITDB HIGH ruby VERIFIED
Mac OS X Feedback Assistant Race Condition
A race condition was addressed with additional validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4. A malicious application may be able to gain root privileges.
by Metasploit
CVSS 7.0
CVE-2019-8613 EXPLOITDB CRITICAL text VERIFIED
Apple Iphone OS < 12.3 - Use After Free
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.3, tvOS 12.3, watchOS 5.2.1. A remote attacker may be able to cause arbitrary code execution.
by Google Security Research
CVSS 9.8
CVE-2019-25584 EXPLOITDB MEDIUM text
RarmaRadio 2.72.3 Server Field Buffer Overflow Denial of Service
RarmaRadio 2.72.3 contains a buffer overflow vulnerability in the Server field of the Network settings that allows local attackers to crash the application by supplying an excessively long string. Attackers can paste a malicious payload exceeding 4000 bytes into the Server field via the Settings menu to trigger an application crash.
by Victor Mondragón
CVSS 6.2
CVE-2019-25583 EXPLOITDB MEDIUM text
RarmaRadio 2.72.3 Username Field Denial of Service
RarmaRadio 2.72.3 contains a denial of service vulnerability in the Username field that allows local attackers to crash the application by submitting excessively long input. Attackers can paste a buffer of 5000 bytes into the Username field via Settings > Network to trigger an application crash.
by Victor Mondragón
CVSS 6.2
CVE-2019-25548 EXPLOITDB MEDIUM python
BlueStacks 4.80.0.1060 Denial of Service via Search Field
BlueStacks 4.80.0.1060 contains a denial of service vulnerability that allows local attackers to crash the application by submitting oversized input to the search field. Attackers can paste a buffer of 100,000 'A' characters into the search field and trigger a search operation to cause the application to crash.
by Alejandra Sánchez
CVSS 6.2
CVE-2019-12095 EXPLOITDB HIGH text
Horde Trean <5.2.22 - CSRF
Horde Trean, as used in Horde Groupware Webmail Edition through 5.2.22 and other products, allows CSRF, as demonstrated by the treanBookmarkTags parameter to the trean/ URI on a webmail server. NOTE: treanBookmarkTags could, for example, be a stored XSS payload.
by InfinitumIT
CVSS 8.8
CVE-2019-12094 EXPLOITDB MEDIUM text
Horde Groupware Webmail Edition <5.2.22 - XSS
Horde Groupware Webmail Edition through 5.2.22 allows XSS via an admin/user.php?form=update_f&user_name= or admin/user.php?form=remove_f&user_name= or admin/config/diff.php?app= URI.
by InfinitumIT
CVSS 6.1
EIP-2026-119540 EXPLOITDB text
Microsoft Windows (x86) - Task Scheduler' .job' Import Arbitrary Discretionary Access Control List Write / Local Privilege Escalation
by SandboxEscaper
CVE-2019-0863 EXPLOITDB HIGH text
Windows Error Reporting - Privilege Escalation
An elevation of privilege vulnerability exists in the way Windows Error Reporting (WER) handles files, aka 'Windows Error Reporting Elevation of Privilege Vulnerability'.
by SandboxEscaper
CVSS 7.8
EIP-2026-117499 EXPLOITDB text
Microsoft Internet Explorer 11 - Sandbox Escape
by SandboxEscaper
By Source
All 49,983 Writeup 59,698 Exploitdb 49,983 Nomisec 21,473 Metasploit 3,218 Github 2,525 Vulncheck_xdb 903 Inthewild 514 Gitlab 440 Gitee 415 Patchapalooza 312
By Language
text 31,329 python 5,912 ruby 5,907 c 3,563 perl 2,849 html 2,053 php 1,326 bash 459 java 362 c++ 250 javascript 215 shell 88 go 53 postscript 25 xml 24