Exploitdb Exploits

49,996 exploits tracked across all sources.

Sort: Activity Stars
CVE-2017-17635 EXPLOITDB CRITICAL text
Mlm Forex Market Plan Script - SQL Injection
MLM Forex Market Plan Script 2.0.4 has SQL Injection via the news_detail.php newid parameter or the event_detail.php eventid parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17636 EXPLOITDB CRITICAL text VERIFIED
Mlm Forced Matrix - SQL Injection
MLM Forced Matrix 2.0.9 has SQL Injection via the news-detail.php newid parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17620 EXPLOITDB CRITICAL text VERIFIED
Lawyer Search Script - SQL Injection
Lawyer Search Script 1.1 has SQL Injection via the /lawyer-list city parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17619 EXPLOITDB CRITICAL text VERIFIED
Laundry Booking Script - SQL Injection
Laundry Booking Script 1.0 has SQL Injection via the /list city parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17618 EXPLOITDB CRITICAL text VERIFIED
Kickstarter Clone Script - SQL Injection
Kickstarter Clone Script 2.0 has SQL Injection via the investcalc.php projid parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17612 EXPLOITDB CRITICAL text VERIFIED
Hot Scripts Clone - SQL Injection
Hot Scripts Clone 3.1 has SQL Injection via the /categories subctid or mctid parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17638 EXPLOITDB CRITICAL text VERIFIED
Groupon Clone Script - SQL Injection
Groupon Clone Script 3.01 has SQL Injection via the city_ajax.php state_id parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17613 EXPLOITDB CRITICAL text VERIFIED
Freelance Website Script - SQL Injection
Freelance Website Script 2.0.6 has SQL Injection via the jobdetails.php pr_id parameter or the searchbycat_list.php catid parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17617 EXPLOITDB CRITICAL text VERIFIED
Foodspotting Clone Script - SQL Injection
Foodspotting Clone Script 1.0 has SQL Injection via the quicksearch.php q parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17614 EXPLOITDB CRITICAL text VERIFIED
Hotel Restaurant Reviews And Feedback Script - SQL Injection
Food Order Script 1.0 has SQL Injection via the /list city parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17615 EXPLOITDB HIGH text VERIFIED
Facebook Clone Script - SQL Injection
Facebook Clone Script 1.0 has SQL Injection via the friend-profile.php id parameter.
by Ihsan Sencan
CVSS 8.8
CVE-2017-17604 EXPLOITDB CRITICAL text
Entrepreneur Bus Booking Script - SQL Injection
Entrepreneur Bus Booking Script 3.0.4 has SQL Injection via the booker_details.php sourcebus parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17637 EXPLOITDB CRITICAL text VERIFIED
Car Rental Script - SQL Injection
Car Rental Script 2.0.4 has SQL Injection via the countrycode1.php val parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17642 EXPLOITDB CRITICAL html
Basic Job Site Script - SQL Injection
Basic Job Site Script 2.0.5 has SQL Injection via the keyword parameter to /job.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17640 EXPLOITDB CRITICAL text
Advanced World Database - SQL Injection
Advanced World Database 2.0.5 has SQL Injection via the city.php country or state parameter, or the state.php country parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17603 EXPLOITDB CRITICAL text VERIFIED
Advanced Real Estate Script - SQL Injection
Advanced Real Estate Script 4.0.7 has SQL Injection via the search-results.php Projectmain, proj_type, searchtext, sell_price, or maxprice parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-13861 EXPLOITDB HIGH text VERIFIED
Safari Webkit Proxy Object Type Confusion
An issue was discovered in certain Apple products. iOS before 11.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "IOSurface" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
by Google Security Research
CVSS 7.8
CVE-2017-13865 EXPLOITDB MEDIUM c VERIFIED
Apple <11.2, <10.13.2, <4.2, <11.2 - Info Disclosure
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "Kernel" component. It allows attackers to bypass intended memory-read restrictions via a crafted app.
by Google Security Research
CVSS 5.5
CVE-2017-13855 EXPLOITDB MEDIUM c VERIFIED
Apple <11.2, <10.13.2, <4.2, <11.2 - Info Disclosure
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "Kernel" component. It allows attackers to bypass intended memory-read restrictions via a crafted app that triggers type confusion.
by Google Security Research
CVSS 5.5
CVE-2017-13869 EXPLOITDB MEDIUM c VERIFIED
Apple <11.2, <10.13.2, <4.2, <11.2 - Info Disclosure
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "Kernel" component. It allows attackers to bypass intended memory-read restrictions via a crafted app.
by Google Security Research
CVSS 5.5
CVE-2017-16994 EXPLOITDB MEDIUM c
Linux Kernel <4.14.2 - Info Disclosure
The walk_hugetlb_range function in mm/pagewalk.c in the Linux kernel before 4.14.2 mishandles holes in hugetlb ranges, which allows local users to obtain sensitive information from uninitialized kernel memory via crafted use of the mincore() system call.
by anonymous
CVSS 5.5
CVE-2017-1000405 EXPLOITDB HIGH c
Linux Kernel <4.14 - Privilege Escalation
The Linux Kernel versions 2.6.38 through 4.14 have a problematic use of pmd_mkdirty() in the touch_pmd() function inside the THP implementation. touch_pmd() can be reached by get_user_pages(). In such case, the pmd will become dirty. This scenario breaks the new can_follow_write_pmd()'s logic - pmd can become dirty without going through a COW cycle. This bug is not as severe as the original "Dirty cow" because an ext4 file (or any other regular file) cannot be mapped using THP. Nevertheless, it does allow us to overwrite read-only huge pages. For example, the zero huge page and sealed shmem files can be overwritten (since their mapping can be populated using THP). Note that after the first write page-fault to the zero page, it will be replaced with a new fresh (and zeroed) thp.
by anonymous
CVSS 7.0
CVE-2017-16994 EXPLOITDB MEDIUM c
Linux Kernel <4.14.2 - Info Disclosure
The walk_hugetlb_range function in mm/pagewalk.c in the Linux kernel before 4.14.2 mishandles holes in hugetlb ranges, which allows local users to obtain sensitive information from uninitialized kernel memory via crafted use of the mincore() system call.
by anonymous
CVSS 5.5
CVE-2017-17095 EXPLOITDB HIGH text
LibTIFF 4.0.9 - Buffer Overflow
tools/pal2rgb.c in pal2rgb in LibTIFF 4.0.9 allows remote attackers to cause a denial of service (TIFFSetupStrips heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted TIFF file.
by Jungun Baek
CVSS 8.8
CVE-2017-17538 EXPLOITDB HIGH c
Mikrotik Router Firmware - Denial of Service
MikroTik v6.40.5 devices allow remote attackers to cause a denial of service via a flood of ICMP packets.
by FarazPajohan
CVSS 7.5
By Source
All 49,996 Writeup 60,173 Exploitdb 49,996 Nomisec 21,717 Metasploit 3,219 Github 2,564 Vulncheck_xdb 905 Inthewild 514 Gitlab 441 Gitee 415 Patchapalooza 312
By Language
text 31,337 python 5,940 ruby 5,908 c 3,565 perl 2,849 html 2,053 php 1,326 bash 459 java 362 c++ 250 javascript 215 shell 91 go 55 postscript 25 xml 24