Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars
CVE-2017-0063 EXPLOITDB MEDIUM text VERIFIED
Windows Color Management Module - Information Disclosure via ICM32.dll Memory Handling
The Color Management Module (ICM32.dll) memory handling functionality in Windows Vista SP2; Windows Server 2008 SP2 and R2; and Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to bypass ASLR and execute code in combination with another vulnerability through a crafted website, aka "Microsoft Color Management Information Disclosure Vulnerability." This vulnerability is different from that described in CVE-2017-0061.
by Google Security Research
CVSS 6.5
CVE-2017-0061 EXPLOITDB MEDIUM text VERIFIED
Windows Vista SP2, Windows Server 2008 SP2/R2, Windows 7 SP1 - ASLR Bypass via ICM32.dll Memory Handling
The Color Management Module (ICM32.dll) memory handling functionality in Windows Vista SP2, Windows Server 2008 SP2 and R2, and Windows 7 SP1 allows remote attackers to bypass ASLR and execute code in combination with another vulnerability through a crafted website, aka "Microsoft Color Management Information Disclosure Vulnerability." This vulnerability is different from that described in CVE-2017-0063.
by Google Security Research
CVSS 5.3
CVE-2017-7183 EXPLOITDB HIGH text
ExtraPuTTY < 0.29 - Denial of Service via Large TFTP Message
The TFTP server in ExtraPuTTY 0.30 and earlier allows remote attackers to cause a denial of service (crash) via a large (1) read or (2) write TFTP protocol message.
by hyp3rlinx
CVSS 7.5
EIP-2026-111119 EXPLOITDB text
phplist 3.2.6 - SQL Injection
by Curesec Research Team
EIP-2026-108735 EXPLOITDB text
Joomla! Component JooCart 2.x - 'product_id' SQL Injection
by Ihsan Sencan
CVE-2017-5404 EXPLOITDB CRITICAL html VERIFIED
Debian Linux < 45.8.0 - Use After Free
A use-after-free error can occur when manipulating ranges in selections with one node inside a native anonymous tree and one node outside of it. This results in a potentially exploitable crash. This vulnerability affects Firefox < 52, Firefox ESR < 45.8, Thunderbird < 52, and Thunderbird < 45.8.
by Google Security Research
CVSS 9.8
CVE-2017-6206 EXPLOITDB HIGH python VERIFIED
D-Link Websmart DGS-1510 Series Firmware < 1.31.b001 - Unauthenticated Information Disclosure
D-Link DGS-1510-28XMP, DGS-1510-28X, DGS-1510-52X, DGS-1510-52, DGS-1510-28P, DGS-1510-28, and DGS-1510-20 Websmart devices with firmware before 1.31.B003 allow attackers to conduct Unauthenticated Information Disclosure attacks via unspecified vectors.
by Varang Amin
CVSS 7.5
EIP-2026-101019 EXPLOITDB text
Google Nest Cam 5.2.1
 - Buffer Overflow Conditions Over Bluetooth LE
by Jason Doyle
EIP-2026-118659 EXPLOITDB text VERIFIED
HttpServer 1.0 - Directory Traversal
by malwrforensics
EIP-2026-115313 EXPLOITDB python VERIFIED
FTPShell Server 6.56 - 'ChangePassword' Buffer Overflow
by ScrR1pTK1dd13
EIP-2026-111965 EXPLOITDB text
Secure Download Links - 'dc' SQL Injection
by Ihsan Sencan
EIP-2026-110027 EXPLOITDB text
Omegle Clone - SQL Injection
by Ihsan Sencan
EIP-2026-107762 EXPLOITDB text
iFdate Social Dating Script 2.0 - SQL Injection
by Ihsan Sencan
CVE-2017-6896 EXPLOITDB HIGH text
DIGISOL DG-HR1400 1.00.02 - Privilege Escalation
Privilege escalation vulnerability on the DIGISOL DG-HR1400 1.00.02 wireless router enables an attacker to escalate from user privilege to admin privilege just by modifying the Base64-encoded session cookie value.
by Indrajith.A.N
CVSS 8.8
EIP-2026-115311 EXPLOITDB python VERIFIED
FTPShell Client 6.53 - 'Session name' Local Buffer Overflow
by ScrR1pTK1dd13
EIP-2026-106423 EXPLOITDB text
Departmental Store Management System 1.2 - SQL Injection
by Ihsan Sencan
CVE-2016-3542 EXPLOITDB MEDIUM text
Oracle E- Business Suite <12.2.5 - Info Disclosure
Unspecified vulnerability in the Oracle Knowledge Management component in Oracle E-Business Suite 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote administrators to affect confidentiality and integrity via unknown vectors.
by SecuriTeam
CVSS 6.5
EIP-2026-103223 EXPLOITDB ruby
SolarWinds LEM 6.3.1 - Remote Code Execution (Metasploit)
by Mehmet Ince
CVE-2015-8258 EXPLOITDB HIGH text
AXIS Communications <5.80.x - Code Injection
AXIS Communications products with firmware through 5.80.x allow remote attackers to modify arbitrary files as root via vectors involving Open Script Editor, aka a "resource injection vulnerability."
by Orwelllabs
CVSS 7.5
CVE-2015-8255 EXPLOITDB HIGH text
AXIS Communications Firmware - Cross-Site Request Forgery via admin/pwdgrp.cgi vaconfig.cgi and admin/local_del.cgi
AXIS Communications products allow CSRF, as demonstrated by admin/pwdgrp.cgi, vaconfig.cgi, and admin/local_del.cgi.
by Orwelllabs
CVSS 8.8
CVE-2016-6415 EXPLOITDB HIGH python
Cisco IKE Information Disclosure
The server IKEv1 implementation in Cisco IOS 12.2 through 12.4 and 15.0 through 15.6, IOS XE through 3.18S, IOS XR 4.3.x and 5.0.x through 5.2.x, and PIX before 7.0 allows remote attackers to obtain sensitive information from device memory via a Security Association (SA) negotiation request, aka Bug IDs CSCvb29204 and CSCvb36055 or BENIGNCERTAIN.
by nixawk
CVSS 7.5
CVE-2017-0045 EXPLOITDB MEDIUM text
Windows DVD Maker - Information Disclosure via Crafted .msdvd File Parsing
Windows DVD Maker in Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, and Windows Vista SP2 does not properly parse crafted .msdvd files, which allows attackers to obtain information to compromise a target system, aka "Windows DVD Maker Cross-Site Request Forgery Vulnerability."
by hyp3rlinx
CVSS 5.5
CVE-2017-0070 EXPLOITDB HIGH html VERIFIED
Microsoft Edge - Remote Code Execution via Use-After-Free in Scripting Engine
A remote code execution vulnerability exists in the way affected Microsoft scripting engines render when handling objects in memory in Microsoft browsers. These vulnerabilities could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. This vulnerability is different from those described in CVE-2017-0010, CVE-2017-0015, CVE-2017-0032, CVE-2017-0035, CVE-2017-0067, CVE-2017-0071, CVE-2017-0094, CVE-2017-0131, CVE-2017-0132, CVE-2017-0133, CVE-2017-0134, CVE-2017-0136, CVE-2017-0137, CVE-2017-0138, CVE-2017-0141, CVE-2017-0150, and CVE-2017-0151.
by Google Security Research
CVSS 7.5
CVE-2017-3195 EXPLOITDB CRITICAL python
Commvault Edge < 11 SP7 or 11 SP6 < Hotfix 590 - Stack-Based Buffer Overflow
Commvault Edge Communication Service (cvd) prior to version 11 SP7 or version 11 SP6 with hotfix 590 is prone to a stack-based buffer overflow vulnerability that could lead to arbitrary code execution with administrative privileges.
by redr2e
CVSS 9.8
CVE-2017-6880 EXPLOITDB CRITICAL text
Cerberus FTP Server <8.0.10.3 - Buffer Overflow
Buffer overflow in Cerberus FTP Server 8.0.10.3 allows remote attackers to cause a denial of service (daemon crash) or possibly have unspecified other impact via a long MLST command.
by Nassim Asrir
CVSS 9.8
By Source
All 50,076 Writeup 62,466 Exploitdb 50,076 Nomisec 22,446 Github 3,667 Metasploit 3,315 Vulncheck_xdb 930 Inthewild 514 Gitlab 479 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,592 ruby 6,006 c 3,631 perl 2,849 html 2,076 php 1,333 bash 462 java 371 c++ 261 javascript 231 shell 133 go 73 postscript 25 typescript 25