Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
CVE-2018-16709 EXPLOITDB CRITICAL python
Fuji Xerox Devices - Info Disclosure
Fuji Xerox DocuCentre-V 3065, ApeosPort-VI C3371, ApeosPort-V C4475, ApeosPort-V C3375, DocuCentre-VI C2271, ApeosPort-V C5576, DocuCentre-IV C2263, DocuCentre-V C2263, and ApeosPort-V 5070 devices allow remote attackers to read or write to files via crafted PJL commands.
by vr_system
CVSS 9.8
EIP-2026-119594 EXPLOITDB text
Microsoft People 10.1807.2131.0 - Denial of service (PoC)
by L0RD
CVE-2018-14497 EXPLOITDB MEDIUM text
Tenda D152 ADSL Router - Stored Cross-Site Scripting via SSID
Tenda D152 ADSL routers allow XSS via a crafted SSID.
by Sandip Dey
CVSS 5.4
CVE-2018-25371 EXPLOITDB HIGH text
mooSocial Store Plugin 2.6 SQL Injection via product parameter
mooSocial Store Plugin 2.6 contains a blind SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries through the product parameter in URL rewrite functionality. Attackers can inject SQL code using boolean-based blind, time-based blind, or stacked query techniques in the product URI parameter to extract sensitive database information.
by Andrea Bocchetti
CVSS 8.2
CVE-2018-19457 EXPLOITDB HIGH text
Logicspice FAQ Script <2.9.7 - Command Injection
Logicspice FAQ Script 2.9.7 allows uploading arbitrary files, which leads to remote command execution via admin/faqs/faqimages with a .php file.
by AkkuS
CVSS 7.2
CVE-2018-17110 EXPLOITDB CRITICAL text
Simple POS 4.0.24 - SQL Injection via Management Panel Search Parameter
Simple POS 4.0.24 allows SQL Injection via a products/get_products/ columns[0][search][value] parameter in the management panel, as demonstrated by products/get_products/1.
by Renos Nikolaou
CVSS 9.8
EIP-2026-119534 EXPLOITDB python
iSmartViewPro 1.5 - 'DDNS' Buffer Overflow
by Luis Martínez
EIP-2026-119533 EXPLOITDB python
iSmartViewPro 1.5 - 'DDNS' Buffer Overflow
by Luis Martínez
EIP-2026-110696 EXPLOITDB text
PHP File Browser Script 1 - Directory Traversal
by AkkuS
EIP-2026-103318 EXPLOITDB python
RPi Cam Control < 6.4.25 - 'preview.php' Remote Command Execution
by Reigning Shells
CVE-2018-25370 EXPLOITDB MEDIUM text
Admidio 3.3.5 Cross-Site Request Forgery via roles_function.php
Admidio 3.3.5 contains a cross-site request forgery vulnerability that allows low-privilege users to increase their permissions by exploiting improper origin checking. Attackers can craft malicious HTML forms targeting roles_function.php with parameters like rol_assign_roles, rol_approve_users, and rol_edit_user set to 1 to escalate privileges without authentication.
by Nawaf Alkeraithe
CVSS 5.3
CVE-2018-25369 EXPLOITDB MEDIUM python VERIFIED
Visual Ping 0.8.0.0 Buffer Overflow Denial of Service
Visual Ping 0.8.0.0 contains a buffer overflow vulnerability in input field handling that allows local attackers to crash the application by supplying oversized data. Attackers can inject malicious payloads exceeding 4108 bytes into the Host, Time Out, Packet Size, Pause, or Loops fields to trigger a denial of service condition.
by Uriel Corral Salinas
CVSS 6.2
CVE-2018-25246 EXPLOITDB HIGH python VERIFIED
Wikipedia 12.0 Denial of Service via Search
Wikipedia 12.0 contains a denial of service vulnerability that allows unauthenticated attackers to crash the application by submitting oversized input through the search functionality. Attackers can paste a large buffer of repeated characters into the search bar to trigger an application crash.
by 0xB9
CVSS 7.5
CVE-2018-25207 EXPLOITDB HIGH text
Online Quiz Maker 1.0 SQL Injection via catid Parameter
Online Quiz Maker 1.0 contains SQL injection vulnerabilities in the catid and usern parameters that allow authenticated attackers to execute arbitrary SQL commands. Attackers can submit malicious POST requests to quiz-system.php or add-category.php with crafted SQL payloads in POST parameters to extract sensitive database information or bypass authentication.
by AkkuS
CVSS 7.1
CVE-2018-16252 EXPLOITDB LOW text
FsPro Labs Event Log Explorer 4.6.1.2115 - XML External Entity Injection via .elx File
FsPro Labs Event Log Explorer 4.6.1.2115 has ".elx" FileType XML External Entity Injection.
by hyp3rlinx
CVSS 3.3
EIP-2026-116513 EXPLOITDB python VERIFIED
VSAXESS V2.6.2.70 build 20171226_053 - 'Nickname' Denial of Service (PoC)
by Diego Santamaria
EIP-2026-115797 EXPLOITDB python VERIFIED
Microsoft Windows Explorer Out-of-Bound Read - Denial of Service (PoC)
by Ghaaf
EIP-2026-115796 EXPLOITDB python VERIFIED
Microsoft Windows Explorer Out-of-Bound Read - Denial of Service (PoC)
by Ghaaf
EIP-2026-102189 EXPLOITDB python
Trend Micro Virtual Mobile Infrastructure 5.5.1336 - 'Server address' Denial of Service (PoC)
by Luis Martínez
EIP-2026-102186 EXPLOITDB python
Symantec Mobile Encryption for iPhone 2.1.0 - 'Server' Denial of Service (PoC)
by Luis Martínez
CVE-2018-15839 EXPLOITDB CRITICAL text
D-Link DIR-615 Firmware - Buffer Overflow via Authorization HTTP Header
D-Link DIR-615 devices have a buffer overflow via a long Authorization HTTP header.
by Aniket Dinda
CVSS 9.8
EIP-2026-119572 EXPLOITDB python
Acunetix WVS Reporter 10.0 - Denial of Service (PoC)
by Ali Alipour
EIP-2026-119513 EXPLOITDB c
Argus Surveillance DVR 4.0.0.0 - Privilege Escalation
by hyp3rlinx
CVE-2018-15844 EXPLOITDB HIGH text
DamiCMS 6.0.0 - Cross-Site Request Forgery via Admin Password Change
An issue was discovered in DamiCMS 6.0.0. There is an CSRF vulnerability that can revise the administrator account's password via /admin.php?s=/Admin/doedit.
by Autism_JH
CVSS 8.8
CVE-2018-10900 EXPLOITDB HIGH ruby VERIFIED
Network Manager VPNC Username Privilege Escalation
Network Manager VPNC plugin (aka networkmanager-vpnc) before version 1.2.6 is vulnerable to a privilege escalation attack. A new line character can be used to inject a Password helper parameter into the configuration data passed to VPNC, allowing an attacker to execute arbitrary commands as root.
by Metasploit
CVSS 7.8