Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-101758 EXPLOITDB text
GeoVision GV-SNVR0811 - Directory Traversal
by Berk Dusunur
CVE-2018-14533 EXPLOITDB HIGH python
Inteno IOPSYS - Privilege Escalation
read_tmp and write_tmp in Inteno IOPSYS allow attackers to gain privileges after writing to /tmp/etc/smb.conf because /var is a symlink to /tmp.
by neonsea
CVSS 7.8
CVE-2018-14418 EXPLOITDB CRITICAL text
msvod_cms v10 - SQL Injection via images/lists cid Parameter
In Msvod Cms v10, SQL Injection exists via an images/lists?cid= URI.
by Hzllaga
CVSS 9.8
CVE-2018-13862 EXPLOITDB CRITICAL text
Touchpad / Trivum WebTouch Setup V9 V2.53 - Auth Bypass
Touchpad / Trivum WebTouch Setup V9 V2.53 build 13163 of Apr 6 2018 09:10:14 (FW 303) allow unauthorized remote attackers to reset the authentication via the "/xml/system/setAttribute.xml" URL, using the GET request "?id=0&attr=protectAccess&newValue=0" (a successful attack will allow attackers to login without authorization).
by vulnc0d3
CVSS 9.8
CVE-2018-14336 EXPLOITDB HIGH text
TP-Link WR840N - Denial of Service via Random MAC Address Packets
TP-Link WR840N devices allow remote attackers to cause a denial of service (connectivity loss) via a series of packets with random MAC addresses.
by Aniket Dinda
CVSS 7.5
CVE-2018-13832 EXPLOITDB MEDIUM text
all_in_one_favicon < 4.6 - Persistent Cross-Site Scripting via Favicon Text Fields
Multiple Persistent cross-site scripting (XSS) issues in the Techotronic all-in-one-favicon (aka All In One Favicon) plugin 4.6 for WordPress allow remote attackers to inject arbitrary web script or HTML via Apple-Text, GIF-Text, ICO-Text, PNG-Text, or JPG-Text.
by Javier Olmedo
CVSS 4.8
CVE-2018-14392 EXPLOITDB MEDIUM text
New Threads plugin < 1.2 for MyBB - Cross-Site Scripting
The New Threads plugin before 1.2 for MyBB has XSS.
by 0xB9
CVSS 6.1
EIP-2026-103486 EXPLOITDB text VERIFIED
Google Chrome - Swiftshader Texture Allocation Integer Overflow
by Google Security Research
EIP-2026-103485 EXPLOITDB html VERIFIED
Google Chrome - SwiftShader OpenGL Texture Bindings Reference Count Leak
by Google Security Research
EIP-2026-103484 EXPLOITDB html VERIFIED
Google Chrome - Swiftshader Blitting Floating-Point Precision Errors
by Google Security Research
CVE-2017-16995 EXPLOITDB HIGH ruby VERIFIED
Linux BPF Sign Extension Local Privilege Escalation
The check_alu_op function in kernel/bpf/verifier.c in the Linux kernel through 4.4 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging incorrect sign extension.
by Metasploit
CVSS 7.8
EIP-2026-112235 EXPLOITDB text
Smart SMS & Email Manager 3.3 - 'contact_type_id' SQL Injection
by AkkuS
EIP-2026-109547 EXPLOITDB python
Modx Revolution < 2.6.4 - Remote Code Execution
by Vitalii Rudnykh
EIP-2026-107295 EXPLOITDB text
FTP2FTP 1.0 - Arbitrary File Download
by AkkuS
CVE-2018-11124 EXPLOITDB MEDIUM text
Open-AudIT < 2.2.2 - Stored Cross-Site Scripting via Attribute Name
Cross-site scripting (XSS) vulnerability in Attributes functionality in Open-AudIT Community edition before 2.2.2 allows remote attackers to inject arbitrary web script or HTML via a crafted attribute name of an Attribute.
by Ranjeet Jaiswal
CVSS 5.4
EIP-2026-101301 EXPLOITDB python
HomeMatic Zentrale CCU2 - Remote Code Execution
by Kacper Szurek
CVE-2018-25149 EXPLOITDB MEDIUM html
Microhard Systems IPn4G 1.1.0 - CSRF
Microhard Systems IPn4G 1.1.0 contains a cross-site request forgery vulnerability that allows attackers to perform administrative actions without user consent. Attackers can craft malicious web pages to change admin passwords, add new users, and modify system settings by tricking authenticated users into loading a specially crafted page.
by LiquidWorm
CVSS 6.5
CVE-2018-0706 EXPLOITDB HIGH ruby VERIFIED
QNAP Q'center Virtual Appliance <1.7.1063 - Info Disclosure
Exposure of Private Information in QNAP Q'center Virtual Appliance version 1.7.1063 and earlier could allow authenticated users to access sensitive information.
by Metasploit
CVSS 8.8
CVE-2018-25148 EXPLOITDB HIGH text
Microhard Systems IPn4G 1.1.0 - Authenticated RCE
Microhard Systems IPn4G 1.1.0 contains multiple authenticated remote code execution vulnerabilities in the admin interface that allow attackers to create crontab jobs and modify system startup scripts. Attackers can exploit hidden admin features to execute arbitrary commands with root privileges, including starting services, disabling firewalls, and writing files to the system.
by LiquidWorm
CVSS 8.8
CVE-2018-25147 EXPLOITDB HIGH text
Microhard Systems IPn4G 1.1.0 - Privilege Escalation
Microhard Systems IPn4G 1.1.0 contains hardcoded default credentials that cannot be changed through normal gateway operations. Attackers can exploit these default credentials to gain unauthorized root-level access to the device by logging in with predefined username and password combinations.
by LiquidWorm
CVSS 7.5
CVE-2018-25146 EXPLOITDB HIGH text
Microhard Systems IPn4G 1.1.0 - Privilege Escalation
Microhard Systems IPn4G 1.1.0 contains an undocumented vulnerability that allows authenticated attackers to list and manipulate running system processes. Attackers can send arbitrary signals to kill background processes and system services through a hidden feature, potentially causing service disruption and requiring device restart.
by LiquidWorm
CVSS 8.1
CVE-2018-25145 EXPLOITDB MEDIUM text
Microhard Systems IPn4G 1.1.0 - Info Disclosure
Microhard Systems IPn4G 1.1.0 contains a configuration file disclosure vulnerability that allows authenticated attackers to download sensitive system configuration files. Attackers can retrieve configuration files from multiple directories including '/www', '/etc/m_cli/', and '/tmp' to access system passwords and network settings.
by LiquidWorm
CVSS 6.5
CVE-2018-25144 EXPLOITDB HIGH text
Microhard Systems IPn4G 1.1.0 - Auth Bypass
Microhard Systems IPn4G 1.1.0 contains an authentication bypass vulnerability in the hidden system-editor.sh script that allows authenticated attackers to read, modify, or delete arbitrary files. Attackers can exploit unsanitized 'path', 'savefile', 'edit', and 'delfile' parameters to perform unauthorized file system modifications through GET and POST requests.
by LiquidWorm
CVSS 8.4
CVE-2018-25143 EXPLOITDB HIGH text
Microhard Systems IPn4G 1.1.0 - Privilege Escalation
Microhard Systems IPn4G 1.1.0 contains a service vulnerability that allows authenticated users to enable a restricted SSH shell with a default 'msshc' user. Attackers can exploit a custom 'ping' command in the NcFTP environment to escape the restricted shell and execute commands with root privileges.
by LiquidWorm
CVSS 8.8
CVE-2018-1000049 EXPLOITDB HIGH ruby VERIFIED
Nanopool Claymore Dual Miner <7.3 - RCE
Nanopool Claymore Dual Miner version 7.3 and earlier contains a remote code execution vulnerability by abusing the miner API. The flaw can be exploited only if the software is executed with read/write mode enabled.
by Metasploit
CVSS 7.5