Exploitdb Exploits
50,076 exploits tracked across all sources.
Joomla! Component JO Facebook Gallery 4.5 - SQL Injection
by Ihsan Sencan
Joomla! Component Community Surveys 4.3 - SQL Injection
by Ihsan Sencan
Joomla! Component Community Quiz 4.3.5 - SQL Injection
by Ihsan Sencan
Joomla! Component Community Polls 4.5.0 - SQL Injection
by Ihsan Sencan
Joomla! Component AJAX Search for K2 2.2 - SQL Injection
by Ihsan Sencan
iPhone OS < 10.2.1 - Remote Popup Launch via WebKit
An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. The issue involves the "WebKit" component, which allows remote attackers to launch popups via a crafted web site.
by Google Security Research
CVSS 6.5
Apple <10.2.1, <10.0.3, <10.1.1 - SSRF
An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. tvOS before 10.1.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site.
by Google Security Research
CVSS 6.5
Apple <10.2.1, <10.0.3, <10.1.1, <3.1.3 - CSRF
An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. tvOS before 10.1.1 is affected. watchOS before 3.1.3 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site.
by Google Security Research
CVSS 6.5
macOS < 10.12.3 - Cross-Site Scripting in Help Viewer
An issue was discovered in certain Apple products. macOS before 10.12.3 is affected. The issue involves the "Help Viewer" component, which allows XSS attacks via a crafted web site.
by Google Security Research
CVSS 6.1
NetGain Enterprise Manager 7.2.562 - 'Ping' Command Injection
by MrChaZ
DiskSavvy Enterprise 9.4.18 - Remote Code Execution via Long URI in GET Request
Buffer overflow in the built-in web server in DiskSavvy Enterprise 9.4.18 allows remote attackers to execute arbitrary code via a long URI in a GET request.
by Peter Baris
CVSS 9.8
EasyCom SQL iPlug - Denial of Service via D$EVAL Parameter
EasyCom SQL iPlug allows remote attackers to cause a denial of service via the D$EVAL parameter to the default URI.
by hyp3rlinx
CVSS 7.5
EasyCom for PHP 4.0.0.29 - Buffer Overflow
Stack-based buffer overflows in php_Easycom5_3_0.dll in EasyCom for PHP 4.0.0.29 allows remote attackers to execute arbitrary code via the server argument to the (1) i5_connect, (2) i5_pconnect, or (3) i5_private_connect API function.
by hyp3rlinx
CVSS 9.8
Joomla! Component RealEstateManager 3.9 - SQL Injection
by Ihsan Sencan
Joomla! Component MediaLibrary Basic 3.5 - SQL Injection
by Ihsan Sencan
Joomla! Component ContentMap 1.3.8 - 'contentid' SQL Injection
by Ihsan Sencan
Fibaro Home Center 2 - Remote Command Execution / Privilege Escalation
by forsec
By Source