Exploitdb Exploits
50,076 exploits tracked across all sources.
Pega Platform < 7.2_ml0 - Cross-Site Scripting via PATH_INFO, beanReference, or pyTableName
Multiple cross-site scripting (XSS) vulnerabilities in PEGA Platform 7.2 ML0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) PATH_INFO to the main page; the (2) beanReference parameter to the JavaBean viewer page; or the (3) pyTableName to the System database schema modification page.
by Daniel Correa
CVSS 6.1
Windows Kernel - Information Disclosure via Uninitialized Memory
Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an information disclosure vulnerability when it fails to properly initialize a memory address, aka "Windows Kernel Information Disclosure Vulnerability".
by Google Security Research
CVSS 5.5
Internet Explorer - Memory Corruption in Scripting Engine
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 Internet Explorer in the way affected Microsoft scripting engines render when handling objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This CVE ID is unique from CVE-2017-8596, CVE-2017-8610, CVE-2017-8601, CVE-2017-8603, CVE-2017-8604, CVE-2017-8605, CVE-2017-8606, CVE-2017-8607, CVE-2017-8608, CVE-2017-8619, CVE-2017-9598 and CVE-2017-8609.
by Google Security Research
CVSS 7.5
Internet Explorer on Windows 8.1/RT 8.1/Server 2012 R2 - Remote Code Execution via Memory Corruption
Internet Explorer on Microsoft Windows 8.1 and Windows RT 8.1, and Windows Server 2012 R2 allows an attacker to execute arbitrary code in the context of the current user when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer Memory Corruption Vulnerability".
by Google Security Research
CVSS 7.5
Pega Platform < 7.2_ml0 - Sensitive Configuration Exposure via Export
The application distribution export functionality in PEGA Platform 7.2 ML0 and earlier allows remote authenticated users with certain privileges to obtain sensitive configuration information by leveraging a missing access control.
by Daniel Correa
CVSS 6.5
HashiCorp Vagrant VMware Fusion <4.0.21 - Privilege Escalation
The sudo helper in the HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) before 4.0.21 allows local users to gain root privileges by leveraging failure to verify the path to the encoded ruby script or scrub the PATH variable.
by Mark Wadham
CVSS 7.8
Sophos Web Appliance < 4.3.1.2 - Remote Command Injection via Report Generation Functions
In Sophos Web Appliance (SWA) before 4.3.1.2, a section of the machine's interface responsible for generating reports was vulnerable to remote command injection via functions, aka NSWA-1304.
by xort
CVSS 9.8
Barracuda Load Balancer ADC < 6.0.1.006 - Authenticated OS Command Injection via delete_assessment Command
A remote command injection vulnerability exists in the Barracuda Load Balancer product line (confirmed on v5.4.0.004 (2015-11-26) and v6.0.1.006 (2016-08-19); fixed in 6.1.0.003 (2017-01-17)) in which an authenticated user can execute arbitrary shell commands and gain root privileges. The vulnerability stems from unsanitized data being processed in a system call when the delete_assessment command is issued.
by xort
CVSS 8.8
Geneko GWR Router Firmware - Unauthenticated Path Traversal via /../ Substring
Geneko GWR routers allow directory traversal sequences starting with a /../ substring, as demonstrated by unauthenticated read access to the configuration file.
by SecuriTeam
CVSS 7.5
Apple Mac OS X + Safari - Local Javascript Quarantine Bypass
by Filippo Cavallarin
SVG Animation - Use After Free
A use-after-free vulnerability in SVG Animation has been discovered. An exploit built on this vulnerability has been discovered in the wild targeting Firefox and Tor Browser users on Windows. This vulnerability affects Firefox < 50.0.2, Firefox ESR < 45.5.1, and Thunderbird < 45.5.1.
by Rh0
CVSS 7.5
Thunderbird <45.7, Firefox ESR <45.7, Firefox <51 - Memory Corruption
JIT code allocation can allow for a bypass of ASLR and DEP protections leading to potential memory corruption attacks. This vulnerability affects Thunderbird < 45.7, Firefox ESR < 45.7, and Firefox < 51.
by Rh0
CVSS 9.8
OrientDB < 2.2.22 - Remote Code Execution via Unprivileged Query Operations
OrientDB through 2.2.22 does not enforce privilege requirements during "where" or "fetchplan" or "order by" use, which allows remote attackers to execute arbitrary OS commands via a crafted request.
by SecuriTeam
CVSS 9.8
CyberArk Viewfinity <6.1.1.220 - Privilege Escalation
In CyberArk Viewfinity 5.5.10.95 and 6.x before 6.1.1.220, a low privilege user can escalate to an administrative user via a bug within the "add printer" option.
by geoda
CVSS 7.8
Dasan Networks GPON ONT WiFi Router H64X Series - Privilege Escalation
by LiquidWorm
Dasan Networks GPON ONT WiFi Router H64X Series - Cross-Site Request Forgery
by LiquidWorm
Dasan Networks GPON ONT WiFi Router H64X Series - Configuration Download
by LiquidWorm
Dasan Networks GPON ONT WiFi Router H64X Series - Authentication Bypass
by LiquidWorm
Skype for Business >= Microsoft Office 2016 Click-to-Run (C2R) - Remote Code Execution
A remote code execution vulnerability exists in Skype for Business when the software fails to sanitize specially crafted content, aka "Skype for Business Remote Code Execution Vulnerability".
by nyxgeek
CVSS 5.4
360 Total Security < 9.0.0.1202 - Privilege Escalation via Shcore.dll Path Hijacking
360 Total Security 9.0.0.1202 before 2017-07-07 allows Privilege Escalation via a Trojan horse Shcore.dll file in any directory in the PATH, as demonstrated by the C:\Python27 directory.
by SecuriTeam
CVSS 7.8
WordPress Plugin Sabai Discuss - Cross-Site Scripting
by Hesam Bazvand
By Source