Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
CVE-2016-10718 EXPLOITDB HIGH text
Brave Browser < 0.13.0 - Denial of Service via Tab Closure
Brave Browser before 0.13.0 allows a tab to close itself even if the tab was not opened by a script, resulting in denial of service.
by Sahil Tikoo
CVSS 7.5
CVE-2017-18256 EXPLOITDB MEDIUM text
Brave Browser < 0.13.0 - Denial of Service via Long JavaScript Alert Argument
Brave Browser before 0.13.0 allows remote attackers to cause a denial of service (resource consumption) via a long alert() argument in JavaScript code, because window dialogs are mishandled.
by Sahil Tikoo
CVSS 6.5
CVE-2018-10068 EXPLOITDB MEDIUM text
jdownloads < 3.2.59 - Cross-Site Scripting
The jDownloads extension before 3.2.59 for Joomla! has XSS.
by Sureshbabu Narvaneni
CVSS 6.1
CVE-2018-7600 EXPLOITDB CRITICAL ruby VERIFIED
Drupal Drupalgeddon 2 Forms API Property Injection
Drupal before 7.58, 8.x before 8.3.9, 8.4.x before 8.4.6, and 8.5.x before 8.5.1 allows remote attackers to execute arbitrary code because of an issue affecting multiple subsystems with default or common module configurations.
by José Ignacio Rojo
CVSS 9.8
CVE-2018-10110 EXPLOITDB MEDIUM text
D-Link DIR-615 T1 Firmware - Stored Cross-Site Scripting via Add User Feature
D-Link DIR-615 T1 devices allow XSS via the Add User feature.
by Sayan Chatterjee
CVSS 4.8
CVE-2018-25307 EXPLOITDB HIGH python
SysGauge Pro 4.6.12 Local Buffer Overflow SEH
SysGauge Pro 4.6.12 contains a local buffer overflow vulnerability in the Register function that allows local attackers to overwrite the structured exception handler by supplying a crafted unlock key. Attackers can inject shellcode through the Unlock Key field during registration to execute arbitrary code with application privileges.
by Hashim Jawad
CVSS 8.4
CVE-2018-7886 EXPLOITDB HIGH python
CloudMe Sync 1.11.0 - Unauthenticated Buffer Overflow via Local Port 8888
An issue was discovered in CloudMe 1.11.0. An unauthenticated local attacker that can connect to the "CloudMe Sync" client application listening on 127.0.0.1 port 8888 can send a malicious payload causing a buffer overflow condition. This will result in code execution, as demonstrated by a TCP reverse shell, or a crash. NOTE: this vulnerability exists because of an incomplete fix for CVE-2018-6892.
by Prasenjit Kanti Paul
CVSS 7.8
EIP-2026-116667 EXPLOITDB python
Zortam MP3 Media Studio 23.45 - Local Buffer Overflow (SEH)
by Kevin McGuigan
CVE-2018-0970 EXPLOITDB MEDIUM c++ VERIFIED
Windows Kernel - Information Disclosure via ASLR Bypass
An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-0887, CVE-2018-0960, CVE-2018-0968, CVE-2018-0969, CVE-2018-0971, CVE-2018-0972, CVE-2018-0973, CVE-2018-0974, CVE-2018-0975.
by Google Security Research
CVSS 5.5
CVE-2018-0968 EXPLOITDB MEDIUM c++ VERIFIED
Windows Kernel - Information Disclosure via ASLR Bypass
An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2016, Windows 8.1, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-0887, CVE-2018-0960, CVE-2018-0969, CVE-2018-0970, CVE-2018-0971, CVE-2018-0972, CVE-2018-0973, CVE-2018-0974, CVE-2018-0975.
by Google Security Research
CVSS 5.5
CVE-2018-0974 EXPLOITDB MEDIUM c++ VERIFIED
Windows Kernel - Information Disclosure via ASLR Bypass
An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-0887, CVE-2018-0960, CVE-2018-0968, CVE-2018-0969, CVE-2018-0970, CVE-2018-0971, CVE-2018-0972, CVE-2018-0973, CVE-2018-0975.
by Google Security Research
CVSS 5.5
CVE-2018-0971 EXPLOITDB MEDIUM c++ VERIFIED
Windows Kernel - Information Disclosure via ASLR Bypass
An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-0887, CVE-2018-0960, CVE-2018-0968, CVE-2018-0969, CVE-2018-0970, CVE-2018-0972, CVE-2018-0973, CVE-2018-0974, CVE-2018-0975.
by Google Security Research
CVSS 5.5
CVE-2018-0972 EXPLOITDB MEDIUM c++ VERIFIED
Windows Kernel - Information Disclosure via ASLR Bypass
An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-0887, CVE-2018-0960, CVE-2018-0968, CVE-2018-0969, CVE-2018-0970, CVE-2018-0971, CVE-2018-0973, CVE-2018-0974, CVE-2018-0975.
by Google Security Research
CVSS 5.5
CVE-2018-0973 EXPLOITDB MEDIUM c++ VERIFIED
Windows Kernel - Information Disclosure via ASLR Bypass
An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-0887, CVE-2018-0960, CVE-2018-0968, CVE-2018-0969, CVE-2018-0970, CVE-2018-0971, CVE-2018-0972, CVE-2018-0974, CVE-2018-0975.
by Google Security Research
CVSS 5.5
CVE-2018-0975 EXPLOITDB MEDIUM c++ VERIFIED
Windows Kernel - Information Disclosure leading to ASLR Bypass
An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-0887, CVE-2018-0960, CVE-2018-0968, CVE-2018-0969, CVE-2018-0970, CVE-2018-0971, CVE-2018-0972, CVE-2018-0973, CVE-2018-0974.
by Google Security Research
CVSS 5.5
CVE-2018-0969 EXPLOITDB MEDIUM c++ VERIFIED
Windows Kernel - Information Disclosure leading to ASLR Bypass
An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-0887, CVE-2018-0960, CVE-2018-0968, CVE-2018-0970, CVE-2018-0971, CVE-2018-0972, CVE-2018-0973, CVE-2018-0974, CVE-2018-0975.
by Google Security Research
CVSS 5.5
CVE-2018-0966 EXPLOITDB LOW text VERIFIED
Windows 10 and Windows Server 2016 - Device Guard Security Feature Bypass via TOCTOU Race Condition
A security feature bypass exists when Device Guard incorrectly validates an untrusted file, aka "Device Guard Security Feature Bypass Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers.
by Google Security Research
CVSS 3.3
EIP-2026-115641 EXPLOITDB text VERIFIED
Microsoft Edge - 'OpenProcess()' ACG Bypass
by Google Security Research
CVE-2018-8057 EXPLOITDB CRITICAL text
Western Bridge Cobub Razor 0.8.0 - SQL Injection
A SQL Injection vulnerability exists in Western Bridge Cobub Razor 0.8.0 via the channel_name or platform parameter in a /index.php?/manage/channel/addchannel request, related to /application/controllers/manage/channel.php.
by Kyhvedn
CVSS 9.8
CVE-2016-7786 EXPLOITDB HIGH text
Sophos Cyberoam UTM CR25iNG 10.6.3 MR-5 - Authenticated Direct Object Reference
Sophos Cyberoam UTM CR25iNG 10.6.3 MR-5 allows remote authenticated users to bypass intended access restrictions via direct object reference, as demonstrated by a request for Licenseinformation.jsp. This is fixed in 10.6.5.
by Frogy
CVSS 8.8
EIP-2026-100989 EXPLOITDB python
Barco ClickShare CSE-200 - Remote Denial of Service
by Florian Hauser
CVE-2018-6546 EXPLOITDB CRITICAL python
plays.tv < 1.27.7.0 - Unauthenticated Remote Code Execution via execute_installer Parameter
plays_service.exe in the plays.tv service before 1.27.7.0, as distributed in AMD driver-installation packages and Gaming Evolved products, executes code at a user-defined (local or SMB) path as SYSTEM when the execute_installer parameter is used in an HTTP message. This occurs without properly authenticating the user.
by Securifera
CVSS 9.8
CVE-2018-0886 EXPLOITDB HIGH
Microsoft Windows - Remote Code Execution via CredSSP Authentication
The Credential Security Support Provider protocol (CredSSP) in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709 Windows Server 2016 and Windows Server, version 1709 allows a remote code execution vulnerability due to how CredSSP validates request during the authentication process, aka "CredSSP Remote Code Execution Vulnerability".
by Preempt
CVSS 7.0
CVE-2018-7600 EXPLOITDB CRITICAL python VERIFIED
Drupal Drupalgeddon 2 Forms API Property Injection
Drupal before 7.58, 8.x before 8.3.9, 8.4.x before 8.4.6, and 8.5.x before 8.5.1 allows remote attackers to execute arbitrary code because of an issue affecting multiple subsystems with default or common module configurations.
by Vitalii Rudnykh
CVSS 9.8
CVE-2018-7600 EXPLOITDB CRITICAL ruby VERIFIED
Drupal Drupalgeddon 2 Forms API Property Injection
Drupal before 7.58, 8.x before 8.3.9, 8.4.x before 8.4.6, and 8.5.x before 8.5.1 allows remote attackers to execute arbitrary code because of an issue affecting multiple subsystems with default or common module configurations.
by Hans Topo & g0tmi1k
CVSS 9.8