Exploitdb Exploits

49,992 exploits tracked across all sources.

Sort: Activity Stars
CVE-2018-19374 EXPLOITDB HIGH text
Zohocorp Manageengine Admanager Plus - Incorrect Permission Assignment
Zoho ManageEngine ADManager Plus 6.6 Build 6657 allows local users to gain privileges (after a reboot) by placing a Trojan horse file into the permissive bin directory.
by Digital Interruption
CVSS 7.0
CVE-2019-0735 EXPLOITDB HIGH text VERIFIED
Windows Client Server Run-Time Subsystem - Privilege Escalation
An elevation of privilege vulnerability exists when the Windows Client Server Run-Time Subsystem (CSRSS) fails to properly handle objects in memory, aka 'Windows CSRSS Elevation of Privilege Vulnerability'.
by Google Security Research
CVSS 7.8
CVE-2019-0836 EXPLOITDB HIGH text VERIFIED
Windows - Privilege Escalation
An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0730, CVE-2019-0731, CVE-2019-0796, CVE-2019-0805, CVE-2019-0841.
by Google Security Research
CVSS 7.8
CVE-2019-0732 EXPLOITDB HIGH text VERIFIED
Windows - Auth Bypass
A security feature bypass vulnerability exists in Windows which could allow an attacker to bypass Device Guard when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Security Feature Bypass Vulnerability'.
by Google Security Research
CVSS 7.8
CVE-2019-0796 EXPLOITDB MEDIUM text VERIFIED
Windows - Privilege Escalation
An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0730, CVE-2019-0731, CVE-2019-0805, CVE-2019-0836, CVE-2019-0841.
by Google Security Research
CVSS 5.5
CVE-2019-0730 EXPLOITDB HIGH text VERIFIED
Windows - Privilege Escalation
An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0731, CVE-2019-0796, CVE-2019-0805, CVE-2019-0836, CVE-2019-0841.
by Google Security Research
CVSS 7.8
CVE-2019-0731 EXPLOITDB HIGH text VERIFIED
Windows - Privilege Escalation
An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0730, CVE-2019-0796, CVE-2019-0805, CVE-2019-0836, CVE-2019-0841.
by Google Security Research
CVSS 7.8
CVE-2019-0805 EXPLOITDB HIGH text VERIFIED
Windows - Privilege Escalation
An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0730, CVE-2019-0731, CVE-2019-0796, CVE-2019-0836, CVE-2019-0841.
by Google Security Research
CVSS 7.8
CVE-2019-10945 EXPLOITDB CRITICAL python
Joomla! < 3.9.4 - Path Traversal
An issue was discovered in Joomla! before 3.9.5. The Media Manager component does not properly sanitize the folder parameter, allowing attackers to act outside the media manager root directory.
by Haboob Team
CVSS 9.8
CVE-2019-9955 EXPLOITDB MEDIUM text
Zyxel - ZyWALL < Various - XSS
On Zyxel ATP200, ATP500, ATP800, USG20-VPN, USG20W-VPN, USG40, USG40W, USG60, USG60W, USG110, USG210, USG310, USG1100, USG1900, USG2200-VPN, ZyWALL 110, ZyWALL 310, ZyWALL 1100 devices, the security firewall login page is vulnerable to Reflected XSS via the unsanitized 'mp_idx' parameter.
by Aaron Bishop
CVSS 6.1
CVE-2019-25601 EXPLOITDB MEDIUM python
UltraVNC Launcher 1.2.2.4 Denial of Service Buffer Overflow
UltraVNC Launcher 1.2.2.4 contains a buffer overflow vulnerability in the Path vncviewer.exe property field that allows local attackers to crash the application by supplying an excessively long string. Attackers can input a 300-byte payload of repeated characters through the Properties dialog to trigger a denial of service condition.
by Victor Mondragón
CVSS 6.2
CVE-2019-25600 EXPLOITDB MEDIUM python
UltraVNC Viewer 1.2.2.4 Denial of Service via Buffer Overflow
UltraVNC Viewer 1.2.2.4 contains a denial of service vulnerability that allows attackers to crash the application by supplying an oversized string to the VNC Server input field. Attackers can paste a malicious string containing 256 repeated characters into the VNC Server field and click Connect to trigger a buffer overflow that crashes the viewer.
by Victor Mondragón
CVSS 6.5
EIP-2026-119090 EXPLOITDB python VERIFIED
RemoteMouse 3.008 - Arbitrary Remote Command Execution
by 0rphon
EIP-2026-118752 EXPLOITDB python
MailCarrier 2.51 - POP3 'USER' Buffer Overflow
by Dino Covotsos
EIP-2026-118751 EXPLOITDB python
MailCarrier 2.51 - POP3 'USER' Buffer Overflow
by Dino Covotsos
EIP-2026-118750 EXPLOITDB python
MailCarrier 2.51 - POP3 'TOP' SEH Buffer Overflow
by Dino Covotsos
EIP-2026-118749 EXPLOITDB python
MailCarrier 2.51 - POP3 'TOP' SEH Buffer Overflow
by Dino Covotsos
EIP-2026-118746 EXPLOITDB python
MailCarrier 2.51 - POP3 'LIST' SEH Buffer Overflow
by Dino Covotsos
EIP-2026-118745 EXPLOITDB python
MailCarrier 2.51 - POP3 'LIST' SEH Buffer Overflow
by Dino Covotsos
EIP-2026-118744 EXPLOITDB python
MailCarrier 2.51 - 'RCPT TO' Buffer Overflow
by Dino Covotsos
EIP-2026-118743 EXPLOITDB python
MailCarrier 2.51 - 'RCPT TO' Buffer Overflow
by Dino Covotsos
CVE-2019-11193 EXPLOITDB MEDIUM text
Directadmin < 1.561 - CSRF
The FileManager in InfinitumIT DirectAdmin through v1.561 has XSS via CMD_FILE_MANAGER, CMD_SHOW_USER, and CMD_SHOW_RESELLER; an attacker can bypass the CSRF protection with this, and take over the administration panel.
by InfinitumIT
CVSS 6.1
CVE-2019-11447 EXPLOITDB HIGH ruby VERIFIED
CutePHP CuteNews 2.1.2 - Code Injection
An issue was discovered in CutePHP CuteNews 2.1.2. An attacker can infiltrate the server through the avatar upload process in the profile area via the avatar_file field to index.php?mod=main&opt=personal. There is no effective control of $imgsize in /core/modules/dashboard.php. The header content of a file can be changed and the control can be bypassed for code execution. (An attacker can use the GIF header for this.)
by AkkuS
CVSS 8.8
CVE-2019-1663 EXPLOITDB CRITICAL ruby VERIFIED
Cisco Rv110w Firmware < 1.2.2.1 - Out-of-Bounds Write
A vulnerability in the web-based management interface of the Cisco RV110W Wireless-N VPN Firewall, Cisco RV130W Wireless-N Multifunction VPN Router, and Cisco RV215W Wireless-N VPN Router could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device. The vulnerability is due to improper validation of user-supplied data in the web-based management interface. An attacker could exploit this vulnerability by sending malicious HTTP requests to a targeted device. A successful exploit could allow the attacker to execute arbitrary code on the underlying operating system of the affected device as a high-privilege user. RV110W Wireless-N VPN Firewall versions prior to 1.2.2.1 are affected. RV130W Wireless-N Multifunction VPN Router versions prior to 1.0.3.45 are affected. RV215W Wireless-N VPN Router versions prior to 1.3.1.1 are affected.
by Metasploit
CVSS 9.8
CVE-2019-9621 EXPLOITDB HIGH ruby VERIFIED
Zimbra Collaboration Suite <8.6-8.8 - SSRF
Zimbra Collaboration Suite before 8.6 patch 13, 8.7.x before 8.7.11 patch 10, and 8.8.x before 8.8.10 patch 7 or 8.8.x before 8.8.11 patch 3 allows SSRF via the ProxyServlet component.
by Metasploit
CVSS 7.5
By Source
All 49,992 Writeup 59,805 Exploitdb 49,992 Nomisec 21,494 Metasploit 3,218 Github 2,537 Vulncheck_xdb 904 Inthewild 514 Gitlab 441 Gitee 415 Patchapalooza 312
By Language
text 31,332 python 5,922 ruby 5,907 c 3,563 perl 2,849 html 2,053 php 1,326 bash 459 java 362 c++ 250 javascript 215 shell 90 go 53 postscript 25 xml 24