Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
CVE-2017-17618 EXPLOITDB CRITICAL text VERIFIED
Kickstarter Clone Script 2.0 - SQL Injection via investcalc.php projid Parameter
Kickstarter Clone Script 2.0 has SQL Injection via the investcalc.php projid parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17612 EXPLOITDB CRITICAL text VERIFIED
Hot Scripts Clone 3.1 - SQL Injection via Categories Subctid or Mctid Parameter
Hot Scripts Clone 3.1 has SQL Injection via the /categories subctid or mctid parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17638 EXPLOITDB CRITICAL text VERIFIED
Groupon Clone Script 3.01 - SQL Injection via city_ajax.php state_id Parameter
Groupon Clone Script 3.01 has SQL Injection via the city_ajax.php state_id parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17613 EXPLOITDB CRITICAL text VERIFIED
Freelance Website Script 2.0.6 - SQL Injection via jobdetails.php pr_id or searchbycat_list.php catid Parameter
Freelance Website Script 2.0.6 has SQL Injection via the jobdetails.php pr_id parameter or the searchbycat_list.php catid parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17617 EXPLOITDB CRITICAL text VERIFIED
Foodspotting Clone Script 1.0 - SQL Injection via Quicksearch q Parameter
Foodspotting Clone Script 1.0 has SQL Injection via the quicksearch.php q parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17614 EXPLOITDB CRITICAL text VERIFIED
Food Order Script 1.0 - SQL Injection via City Parameter
Food Order Script 1.0 has SQL Injection via the /list city parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17615 EXPLOITDB HIGH text VERIFIED
Facebook Clone Script 1.0 - SQL Injection via Friend-Profile ID Parameter
Facebook Clone Script 1.0 has SQL Injection via the friend-profile.php id parameter.
by Ihsan Sencan
CVSS 8.8
CVE-2017-17604 EXPLOITDB CRITICAL text
Entrepreneur Bus Booking Script 3.0.4 - SQL Injection via Booker Details Sourcebus Parameter
Entrepreneur Bus Booking Script 3.0.4 has SQL Injection via the booker_details.php sourcebus parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17637 EXPLOITDB CRITICAL text VERIFIED
Car Rental Script 2.0.4 - SQL Injection via countrycode1.php val Parameter
Car Rental Script 2.0.4 has SQL Injection via the countrycode1.php val parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17642 EXPLOITDB CRITICAL html
Basic Job Site Script 2.0.5 - SQL Injection via Keyword Parameter
Basic Job Site Script 2.0.5 has SQL Injection via the keyword parameter to /job.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17640 EXPLOITDB CRITICAL text
Advanced World Database 2.0.5 - SQL Injection via city.php or state.php Parameter
Advanced World Database 2.0.5 has SQL Injection via the city.php country or state parameter, or the state.php country parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17603 EXPLOITDB CRITICAL text VERIFIED
Advanced Real Estate Script 4.0.7 - SQL Injection via Search Parameters
Advanced Real Estate Script 4.0.7 has SQL Injection via the search-results.php Projectmain, proj_type, searchtext, sell_price, or maxprice parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-13861 EXPLOITDB HIGH text VERIFIED
Safari Webkit Proxy Object Type Confusion
An issue was discovered in certain Apple products. iOS before 11.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "IOSurface" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
by Google Security Research
CVSS 7.8
CVE-2017-13865 EXPLOITDB MEDIUM c VERIFIED
Apple <11.2, <10.13.2, <4.2, <11.2 - Info Disclosure
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "Kernel" component. It allows attackers to bypass intended memory-read restrictions via a crafted app.
by Google Security Research
CVSS 5.5
CVE-2017-13855 EXPLOITDB MEDIUM c VERIFIED
Apple <11.2, <10.13.2, <4.2, <11.2 - Info Disclosure
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "Kernel" component. It allows attackers to bypass intended memory-read restrictions via a crafted app that triggers type confusion.
by Google Security Research
CVSS 5.5
CVE-2017-13869 EXPLOITDB MEDIUM c VERIFIED
Apple <11.2, <10.13.2, <4.2, <11.2 - Info Disclosure
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "Kernel" component. It allows attackers to bypass intended memory-read restrictions via a crafted app.
by Google Security Research
CVSS 5.5
CVE-2017-16994 EXPLOITDB MEDIUM c
Linux Kernel <4.14.2 - Info Disclosure
The walk_hugetlb_range function in mm/pagewalk.c in the Linux kernel before 4.14.2 mishandles holes in hugetlb ranges, which allows local users to obtain sensitive information from uninitialized kernel memory via crafted use of the mincore() system call.
by anonymous
CVSS 5.5
CVE-2017-1000405 EXPLOITDB HIGH c
Linux Kernel <4.14 - Privilege Escalation
The Linux Kernel versions 2.6.38 through 4.14 have a problematic use of pmd_mkdirty() in the touch_pmd() function inside the THP implementation. touch_pmd() can be reached by get_user_pages(). In such case, the pmd will become dirty. This scenario breaks the new can_follow_write_pmd()'s logic - pmd can become dirty without going through a COW cycle. This bug is not as severe as the original "Dirty cow" because an ext4 file (or any other regular file) cannot be mapped using THP. Nevertheless, it does allow us to overwrite read-only huge pages. For example, the zero huge page and sealed shmem files can be overwritten (since their mapping can be populated using THP). Note that after the first write page-fault to the zero page, it will be replaced with a new fresh (and zeroed) thp.
by anonymous
CVSS 7.0
CVE-2017-16994 EXPLOITDB MEDIUM c
Linux Kernel <4.14.2 - Info Disclosure
The walk_hugetlb_range function in mm/pagewalk.c in the Linux kernel before 4.14.2 mishandles holes in hugetlb ranges, which allows local users to obtain sensitive information from uninitialized kernel memory via crafted use of the mincore() system call.
by anonymous
CVSS 5.5
CVE-2017-17095 EXPLOITDB HIGH text
LibTIFF 4.0.9 - Heap-Based Buffer Overflow in pal2rgb
tools/pal2rgb.c in pal2rgb in LibTIFF 4.0.9 allows remote attackers to cause a denial of service (TIFFSetupStrips heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted TIFF file.
by Jungun Baek
CVSS 8.8
CVE-2017-17538 EXPLOITDB HIGH c
MikroTik Router Firmware - Denial of Service via ICMP Flood
MikroTik v6.40.5 devices allow remote attackers to cause a denial of service via a flood of ICMP packets.
by FarazPajohan
CVSS 7.5
CVE-2017-17577 EXPLOITDB CRITICAL text VERIFIED
FS Trademe Clone 1.0 - SQL Injection via Search Parameter
FS Trademe Clone 1.0 has SQL Injection via the search_item.php search parameter or the general_item_details.php id parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17580 EXPLOITDB CRITICAL text VERIFIED
FS Linkedin Clone 1.0 - SQL Injection via group.php grid parameter
FS Linkedin Clone 1.0 has SQL Injection via the group.php grid parameter, profile.php fid parameter, or company_details.php id parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17587 EXPLOITDB CRITICAL text VERIFIED
FS Indiamart Clone 1.0 - SQL Injection via catcompany.php token Parameter
FS Indiamart Clone 1.0 has SQL Injection via the catcompany.php token parameter, buyleads-details.php id parameter, or company/index.php c parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17588 EXPLOITDB CRITICAL text VERIFIED
FS IMDB Clone 1.0 - SQL Injection via movie.php f Parameter
FS IMDB Clone 1.0 has SQL Injection via the movie.php f parameter, tvshow.php s parameter, or show_misc_video.php id parameter.
by Ihsan Sencan
CVSS 9.8