Exploitdb Exploits
50,076 exploits tracked across all sources.
ECommerce-Multi-Vendor Software - Arbitrary File Upload
by Ihsan Sencan
Adobe Flash Player < 24.0.0.186 - Memory Corruption via Display List Concurrency Error
Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable memory corruption vulnerability due to a concurrency error when manipulating a display list. Successful exploitation could lead to arbitrary code execution.
by COSIG
CVSS 8.8
Adobe Flash Player < 24.0.0.186 - Memory Corruption via Display List Concurrency Error
Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable memory corruption vulnerability due to a concurrency error when manipulating a display list. Successful exploitation could lead to arbitrary code execution.
by COSIG
CVSS 8.8
DiskBoss Enterprise 7.5.12 - 'POST' Remote Buffer Overflow (SEH)
by Wyndell Bibera
WordPress Plugin WP Support Plus Responsive Ticket System 7.1.3 - Privilege Escalation
by Kacper Szurek
FMyLife Clone Script (Pro Edition) 1.1 - Cross-Site Request Forgery (Add Admin)
by Ihsan Sencan
Apple iOS <9.3.2 - Privilege Escalation
The kernel in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2016-1828, CVE-2016-1829, and CVE-2016-1830.
by Brandon Azad
CVSS 7.8
Huawei Flybox B660 - Cross-Site Request Forgery (1)
by Vulnerability-Lab
D-Link DIR-615 - Multiple Vulnerabilities
by Osanda Malith Jayathissa
Friends in War Make or Break 1.7 - 'imgid' SQL Injection
by v3n0m
EIP-2026-103767
EXPLOITDB
Cemu 1.6.4b - Information Leak / Buffer Overflow (Emulator Breakout)
by Wack0
Ansible < 2.1.4 and < 2.2.1 - Remote Code Execution via Client Fact Data
Ansible before versions 2.1.4, 2.2.1 is vulnerable to an improper input validation in Ansible's handling of data sent from client systems. An attacker with control over a client system being managed by Ansible and the ability to send facts back to the Ansible server could use this flaw to execute arbitrary code on the Ansible server using the Ansible server privileges.
by Computest
CVSS 8.1
Microsoft Windows - Privilege Escalation
The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allow local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vulnerability."
by Rick Larabee
CVSS 7.8
Advanced Desktop Locker 6.0.0 - Lock Screen Bypass
by Squnity
Brave Browser 1.2.16/1.9.56 - Address Bar URL Spoofing
by Aaditya Purani
By Source