Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars

EIP-2026-112214 EXPLOITDB text

SlimarUSER Management 1.0 - 'id' SQL Injection

by Kaan KAMIS

View

EIP-2026-108006 EXPLOITDB text

Itech Multi Vendor Script 6.49 - SQL Injection

by Th3GundY

View

EIP-2026-104767 EXPLOITDB php

Posnic Stock Management System - SQL Injection

by Manish Tanwar

View

CVE-2015-1158 EXPLOITDB python

CUPS < 2.0.3 - Remote Code Execution via IPP Job Request

The add_job function in scheduler/ipp.c in cupsd in CUPS before 2.0.3 performs incorrect free operations for multiple-value job-originating-host-name attributes, which allows remote attackers to trigger data corruption for reference-counted strings via a crafted (1) IPP_CREATE_JOB or (2) IPP_PRINT_JOB request, as demonstrated by replacing the configuration file and consequently executing arbitrary code.

by @0x00string

View

CVE-2017-0358 EXPLOITDB HIGH bash

Debian/Ubuntu ntfs-3g Local Privilege Escalation

Jann Horn of Google Project Zero discovered that NTFS-3G, a read-write NTFS driver for FUSE, does not scrub the environment before executing modprobe with elevated privileges. A local user can take advantage of this flaw for local root privilege escalation.

by Kristian Erik Hermansen

CVSS 7.8

View

EIP-2026-101386 EXPLOITDB python

Netwave IP Camera - Password Disclosure

by spiritnull

View

EIP-2026-117239 EXPLOITDB text

Ghostscript 9.20 - 'Filename' Command Execution

by hyp3rlinx

View

EIP-2026-111550 EXPLOITDB text

Property Listing Script - 'propid' Blind SQL Injection

by Kaan KAMIS

View

EIP-2026-108015 EXPLOITDB text

Itech Travel Portal Script 9.35 - SQL Injection

by Ihsan Sencan

View

EIP-2026-108009 EXPLOITDB text

Itech News Portal Script 6.28 - 'sc' SQL Injection

by Ihsan Sencan

View

EIP-2026-108003 EXPLOITDB text

Itech Movie Portal Script 7.37 - SQL Injection

by Ihsan Sencan

View

EIP-2026-107998 EXPLOITDB text

Itech Inventory Management Software 3.77 - SQL Injection

by Ihsan Sencan

View

EIP-2026-107981 EXPLOITDB text

Itech Auction Script 6.49 - 'pid' SQL Injection

by Ihsan Sencan

View

EIP-2026-103341 EXPLOITDB ruby

WordPress Core 4.7.0/4.7.1 - Content Injection (Ruby)

by Harsh Jaiswal

View

EIP-2026-103340 EXPLOITDB python

WordPress Core 4.7.0/4.7.1 - Content Injection

by leonjza

View

EIP-2026-100027 EXPLOITDB text VERIFIED

Google Android - 'rkp_set_init_page_ro' RKP Memory Corruption

by Google Security Research

View

EIP-2026-115786 EXPLOITDB python VERIFIED

Microsoft Windows 10 - SMBv3 Tree Connect (PoC)

by laurent gaffie

View

EIP-2026-109205 EXPLOITDB text

LogoStore - 'query' SQL Injection

by Kaan KAMIS

View

CVE-2017-2362 EXPLOITDB HIGH html VERIFIED

Apple <10.2.1, <10.0.3, <10.1.1 - RCE

An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. tvOS before 10.1.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.

by Google Security Research

CVSS 8.8

View

EIP-2026-103479 EXPLOITDB html VERIFIED

Google Chrome - 'HTMLKeygenElement::shadowSelect()' Type Confusion

by Google Security Research

View

CVE-2017-2373 EXPLOITDB HIGH html VERIFIED

Apple <10.2.1, <10.0.3, <10.1.1 - RCE

by Google Security Research

CVSS 8.8

View

CVE-2017-2369 EXPLOITDB HIGH html VERIFIED

Apple <10.2.1, <10.0.3, <10.1.1 - RCE

by Google Security Research

CVSS 8.8

View

EIP-2026-101068 EXPLOITDB text

QNAP NVR/NAS Devices - Buffer Overflow (PoC)

by bashis

View

EIP-2026-100056 EXPLOITDB text VERIFIED

Google Android - RKP EL1 Code Loading Bypass

by Google Security Research

View

EIP-2026-100031 EXPLOITDB text VERIFIED

Google Android - Unprotected MSRs in EL1 RKP Privilege Escalation

by Google Security Research

View

By Source

Exploitdb 50,076

By Language