Exploitdb Exploits

49,996 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-107281 EXPLOITDB text VERIFIED
FS IMDB Clone - 'id' SQL Injection
by Dan°
EIP-2026-107277 EXPLOITDB text VERIFIED
FS Facebook Clone - 'token' SQL Injection
by Dan°
CVE-2017-17085 EXPLOITDB HIGH text VERIFIED
Wireshark <2.4.3 & <2.2.11 - DoS
In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the CIP Safety dissector could crash. This was addressed in epan/dissectors/packet-cipsafety.c by validating the packet length.
by Wireshark
CVSS 7.5
CVE-2017-13868 EXPLOITDB MEDIUM c
Apple <11.2, <10.13.2, <4.2, <11.2 - Info Disclosure
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "Kernel" component. It allows attackers to bypass intended memory-read restrictions via a crafted app.
by Brandon Azad
CVSS 5.5
CVE-2017-8824 EXPLOITDB HIGH c VERIFIED
Linux Kernel < 3.2.97 - Use After Free
The dccp_disconnect function in net/dccp/proto.c in the Linux kernel through 4.14.3 allows local users to gain privileges or cause a denial of service (use-after-free) via an AF_UNSPEC connect system call during the DCCP_LISTEN state.
by Mohamed Ghannam
CVSS 7.8
EIP-2026-100720 EXPLOITDB python
LaCie 5big Network 2.2.8 - Command Injection
by Timo Sablowski
EIP-2026-113443 EXPLOITDB python
WinduCMS 3.1 - Local File Disclosure
by Maciek Krupa
EIP-2026-107288 EXPLOITDB text VERIFIED
FS Shaadi Clone - 'token' SQL Injection
by Dan°
EIP-2026-107284 EXPLOITDB text VERIFIED
FS Makemytrip Clone - 'id' SQL Injection
by Dan°
CVE-2017-15918 EXPLOITDB HIGH bash
Ignitum Sera - Insufficiently Protected Credentials
Sera 1.2 stores the user's login password in plain text in their home directory. This makes privilege escalation trivial and also exposes the user and system keychains to local attacks.
by Mark Wadham
CVSS 7.8
CVE-2017-7690 EXPLOITDB HIGH bash
Proxifier for Mac <2.19.2 - Privilege Escalation
Proxifier for Mac before 2.19.2, when first run, allows local users to gain privileges by replacing the KLoader binary with a Trojan horse program.
by Mark Wadham
CVSS 7.8
EIP-2026-103378 EXPLOITDB bash
Murus 1.4.11 - Local Privilege Escalation
by Mark Wadham
CVE-2017-16777 EXPLOITDB HIGH bash VERIFIED
HashiCorp Vagrant VMware Fusion <5.0.3 - Privilege Escalation
If HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) 5.0.3 is installed but VMware Fusion is not, a local attacker can create a fake application directory and exploit the suid sudo helper in order to escalate to root.
by Mark Wadham
CVSS 7.8
CVE-2017-16001 EXPLOITDB HIGH bash VERIFIED
Hashicorp Vagrant - Race Condition
In HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) 5.0.1, a local attacker or malware can silently subvert the plugin update process in order to escalate to root privileges.
by Mark Wadham
CVSS 7.8
CVE-2017-15884 EXPLOITDB HIGH bash VERIFIED
Hashicorp Vagrant Vmware Fusion - Race Condition
In HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) 5.0.0, a local attacker or malware can silently subvert the plugin update process in order to escalate to root privileges.
by Mark Wadham
CVSS 7.0
CVE-2017-12579 EXPLOITDB HIGH bash VERIFIED
Hashicorp Vagrant Vmware Fusion < 4.0.24 - Uncontrolled Search Path
An insecure suid wrapper binary in the HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) 4.0.24 and earlier allows a non-root user to obtain a root shell.
by Mark Wadham
CVSS 7.8
CVE-2017-11741 EXPLOITDB HIGH bash VERIFIED
HashiCorp Vagrant VMware Fusion <4.0.24 - Privilege Escalation
HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) before 4.0.24 uses weak permissions for the sudo helper scripts, allows local users to execute arbitrary code with root privileges by overwriting one of the scripts.
by Mark Wadham
CVSS 8.8
CVE-2017-16895 EXPLOITDB HIGH ruby VERIFIED
Arq <5.10 - Privilege Escalation
The (1) arq_updater, (2) arqcommitter, (3) standardrestorer, (4) arqglacierrestorer, and (5) arqs3glacierrestorer helper apps in Arq 5.x before 5.10 for Mac allow local users to gain root privileges via a crafted data packet.
by Mark Wadham
CVSS 7.8
CVE-2017-15357 EXPLOITDB HIGH bash VERIFIED
Arq < 5.9.7 - Race Condition
The setpermissions function in the auto-updater in Arq before 5.9.7 for Mac allows local users to gain root privileges via a symlink attack on the updater binary itself.
by Mark Wadham
CVSS 7.4
EIP-2026-103369 EXPLOITDB
Apple macOS 10.13.1 (High Sierra) - Insecure Cron System Local Privilege Escalation
by Mark Wadham
EIP-2026-101658 EXPLOITDB
Dasan Networks GPON ONT WiFi Router H640X 12.02-01121 / 2.77p1-1124 / 3.03p2-1146 - Remote Code Execution
by SecuriTeam
CVE-2017-11319 EXPLOITDB HIGH text VERIFIED
Resolver Perspective - Improper Privilege Management
Perspective ICM Investigation & Case 5.1.1.16 allows remote authenticated users to modify access level permissions and consequently gain privileges by leveraging insufficient validation methods and missing cross server side checking mechanisms.
by Konstantinos Alexiou
CVSS 8.8
EIP-2026-119260 EXPLOITDB python
VX Search 10.2.14 - 'command_name' Buffer Overflow
by W01fier00t
CVE-2017-17110 EXPLOITDB CRITICAL text VERIFIED
Techno Portfolio Management Panel 1.0 - SQL Injection
Techno Portfolio Management Panel 1.0 allows an attacker to inject SQL commands via a single.php?id= request.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17111 EXPLOITDB CRITICAL text VERIFIED
Posty Readymade Classifieds Script 1.0 - SQL Injection
Posty Readymade Classifieds Script 1.0 allows an attacker to inject SQL commands via a listings.php?catid= or ads-details.php?ID= request.
by Ihsan Sencan
CVSS 9.8
By Source
All 49,996 Writeup 60,186 Exploitdb 49,996 Nomisec 21,730 Metasploit 3,219 Github 2,577 Vulncheck_xdb 905 Inthewild 514 Gitlab 441 Gitee 415 Patchapalooza 312
By Language
text 31,337 python 5,951 ruby 5,908 c 3,567 perl 2,849 html 2,053 php 1,326 bash 459 java 362 c++ 250 javascript 215 shell 91 go 55 postscript 25 xml 24