Exploitdb Exploits

50,091 exploits tracked across all sources.

Sort: Activity Stars
CVE-2018-8474 EXPLOITDB HIGH powershell VERIFIED
Lync for Mac 2011 - Security Feature Bypass via Crafted Message
A security feature bypass vulnerability exists when Lync for Mac 2011 fails to properly sanitize specially crafted messages, aka "Lync for Mac 2011 Security Feature Bypass Vulnerability." This affects Microsoft Lync.
by nyxgeek
CVSS 7.5
EIP-2026-114766 EXPLOITDB ruby VERIFIED
Emacs - movemail Privilege Escalation (Metasploit)
by Metasploit
EIP-2026-114765 EXPLOITDB ruby VERIFIED
Emacs - movemail Privilege Escalation (Metasploit)
by Metasploit
CVE-2018-15716 EXPLOITDB HIGH python
NUUO NVRMini2 3.9.1 - Authenticated Remote Command Injection via upgrade_handle.php
NUUO NVRMini2 version 3.9.1 is vulnerable to authenticated remote command injection. An attacker can send crafted requests to upgrade_handle.php to execute OS commands as root.
by Artem Metla
CVSS 8.8
EIP-2026-108995 EXPLOITDB text
KeyBase Botnet 1.5 - SQL Injection
by n4pst3r
CVE-2018-19782 EXPLOITDB MEDIUM text
FreshRSS 1.11.1 - Cross-Site Scripting via GET Parameters
Multiple cross-site scripting (XSS) vulnerabilities in GET requests in FreshRSS 1.11.1 allow remote attackers to inject arbitrary web script or HTML via the (1) c parameter or (2) a parameter.
by Netsparker
CVSS 6.1
CVE-2018-19752 EXPLOITDB MEDIUM text
DomainMOD 4.09.03-4.11.01 - Stored Cross-Site Scripting via Registrar Notes Field
DomainMOD through 4.11.01 has XSS via the assets/add/registrar.php notes field for the Registrar.
by Mohammed Abdul Raheem
CVSS 4.8
CVE-2018-19749 EXPLOITDB MEDIUM text
DomainMOD < 4.11.01 - Stored Cross-Site Scripting via Account Owner Name Field
DomainMOD through 4.11.01 has XSS via the assets/add/account-owner.php Owner name field.
by Mohammed Abdul Raheem
CVSS 4.8
CVE-2018-19751 EXPLOITDB MEDIUM text
DomainMOD 4.09.03-4.11.01 - Stored Cross-Site Scripting via Custom SSL Fields Notes Parameter
DomainMOD through 4.11.01 has XSS via the admin/ssl-fields/add.php notes field for Custom SSL Fields.
by Mohammed Abdul Raheem
CVSS 4.8
CVE-2018-19750 EXPLOITDB MEDIUM text
DomainMOD < 4.11.01 - Stored Cross-Site Scripting via Custom Domain Field Notes
DomainMOD through 4.11.01 has XSS via the admin/domain-fields/ notes field in an Add Custom Field action for Custom Domain Fields.
by Mohammed Abdul Raheem
CVSS 5.4
CVE-2018-19799 EXPLOITDB MEDIUM text
Dolibarr ERP/CRM <= 8.0.3 - Cross-Site Scripting via Export Datatoexport Parameter
Dolibarr ERP/CRM through 8.0.3 has /exports/export.php?datatoexport= XSS.
by AkkuS
CVSS 6.1
CVE-2018-19627 EXPLOITDB HIGH text VERIFIED
Wireshark <2.6.5-2.4.11 - Buffer Overflow
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the IxVeriWave file parser could crash. This was addressed in wiretap/vwr.c by adjusting a buffer boundary.
by Google Security Research
CVSS 7.5
EIP-2026-103726 EXPLOITDB text VERIFIED
Wireshark - 'cdma2k_message_ACTIVE_SET_RECORD_FIELDS' Stack Corruption
by Google Security Research
CVE-2018-15473 EXPLOITDB MEDIUM python
OpenSSH < 7.7 - User Enumeration via Authentication Request Timing
OpenSSH through 7.7 is prone to a user enumeration vulnerability due to not delaying bailout for an invalid authenticating user until after the packet containing the request has been fully parsed, related to auth2-gss.c, auth2-hostbased.c, and auth2-pubkey.c.
by Leap Security
CVSS 5.3
CVE-2018-19616 EXPLOITDB HIGH text
Rockwell Automation Allen-Bradley PowerMonitor 1000 - Client-Side Access Control Bypass to Administrator Manipulation
An issue was discovered in Rockwell Automation Allen-Bradley PowerMonitor 1000. An unauthenticated user can add/edit/remove administrators because access control is implemented on the client side via a disabled attribute for a BUTTON element.
by Luca.Chiou
CVSS 8.1
CVE-2018-11742 EXPLOITDB CRITICAL python
NEC Univerge SV9100 WebPro 6.00.00 - Insufficiently Protected Credentials
NEC Univerge Sv9100 WebPro 6.00.00 devices have Cleartext Password Storage in the Web UI.
by hyp3rlinx
CVSS 9.8
CVE-2018-14665 EXPLOITDB MEDIUM perl
xorg-x11-server <1.20.3 - Privilege Escalation
A flaw was found in xorg-x11-server before 1.20.3. An incorrect permission check for -modulepath and -logfile options when starting Xorg. X server allows unprivileged users with the ability to log in to the system via physical console to escalate their privileges and run arbitrary code under root privileges.
by 0xdono
CVSS 6.6
CVE-2018-25433 EXPLOITDB HIGH perl
Joomla Component JE Photo Gallery 1.1 - Unauthenticated SQL Injection via categoryid Parameter
Joomla Component JE Photo Gallery 1.1 contains an SQL injection vulnerability that allows unauthenticated attackers to extract database information by injecting malicious SQL code through the categoryid parameter. Attackers can send GET requests to index.php with crafted categoryid values in the com_jephotogallery component to execute arbitrary SQL queries and retrieve sensitive data like usernames and password hashes.
by Ihsan Sencan
CVSS 8.2
CVE-2018-19615 EXPLOITDB MEDIUM text
Rockwell Automation Allen-Bradley PowerMonitor 1000 - Code Injection
Rockwell Automation Allen-Bradley PowerMonitor 1000 all versions. A remote attacker could inject arbitrary code into a targeted user’s web browser to gain access to the affected device.
by Luca.Chiou
CVSS 6.1
CVE-2018-19798 EXPLOITDB HIGH python
Fleetco Fleet Maintenance Management < 1.2 - Authenticated Remote Code Execution via PHP File Upload
Fleetco Fleet Maintenance Management (FMM) 1.2 and earlier allows uploading an arbitrary ".php" file with the application/x-php Content-Type to the accidents_add.php?submit=1 URI, as demonstrated by the value_Images_1 field, which leads to remote command execution on the remote server. Any authenticated user can exploit this.
by AkkuS
CVSS 8.8
CVE-2018-9842 EXPLOITDB MEDIUM python
CyberArk Password Vault < 9.7 - Exposure of Sensitive Information via Logon Message Replay
CyberArk Password Vault before 9.7 allows remote attackers to obtain sensitive information from process memory by replaying a logon message.
by Thomas Zuk
CVSS 5.3
EIP-2026-115866 EXPLOITDB text
Mozilla Firefox 63.0.1 - Denial of Service (PoC)
by SAIKUMAR CHEBROLU
EIP-2026-113544 EXPLOITDB text
WordPress Plugin Advanced-Custom-Fields 5.7.7 - Cross-Site Scripting
by Loading Kura Kura
EIP-2026-110761 EXPLOITDB text
PHP Server Monitor 3.3.1 - Cross-Site Request Forgery
by Javier Olmedo
EIP-2026-103308 EXPLOITDB python
PaloAlto Networks Expedition Migration Tool 1.0.106 - Information Disclosure
by ParagonSec