Exploitdb Exploits
50,076 exploits tracked across all sources.
WordPress Plugin Mail Masta 1.0 - Local File Inclusion
by Guillermo Garcia Marcos
Phoenix Exploit Kit - Remote Code Execution (Metasploit)
by Metasploit
Phoenix Exploit Kit - Remote Code Execution (Metasploit)
by Metasploit
Fedora - Out-of-Bounds Write
Eye of GNOME (aka eog) 3.16.5, 3.17.x, 3.18.x before 3.18.3, 3.19.x, and 3.20.x before 3.20.4, when used with glib before 2.44.1, allow remote attackers to cause a denial of service (out-of-bounds write and crash) via vectors involving passing invalid UTF-8 to GMarkup.
by Kaslov Dmitri
CVSS 7.5
JVC IP-Camera VN-T216VPRU < 2016-08-22 - Unauthenticated Path Traversal via checkcgi Endpoint
JVC VN-T IP-camera models firmware versions up to 2016-08-22 (confirmed on the VN-T216VPRU model) contain a directory traversal vulnerability in the checkcgi endpoint that accepts a user-controlled file parameter. An unauthenticated remote attacker can leverage this vulnerability to read arbitrary files on the device.
by Yakir Wizman
WordPress Traversal Directory DoS
Directory traversal vulnerability in the wp_ajax_update_plugin function in wp-admin/includes/ajax-actions.php in WordPress 4.5.3 allows remote authenticated users to cause a denial of service or read certain text files via a .. (dot dot) in the plugin parameter to wp-admin/admin-ajax.php, as demonstrated by /dev/random read operations that deplete the entropy pool.
by Yorick Koster
CVSS 7.1
WordPress < 4.5.5 - Cross-Site Request Forgery via Late check_ajax_referer Call
Cross-site request forgery (CSRF) vulnerability in the wp_ajax_update_plugin function in wp-admin/includes/ajax-actions.php in WordPress before 4.6 allows remote attackers to hijack the authentication of subscribers for /dev/random read operations by leveraging a late call to the check_ajax_referer function, a related issue to CVE-2016-6896.
by Yorick Koster
CVSS 6.5
OcoMon 1.21 - SQL Injection via Logon Page
SQL injection vulnerability in OcoMon 1.21, and possibly other versions, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the logon page, a different vulnerability than CVE-2005-4662.
by Jonatas Fil
ObiHai ObiPhone 1032/1062 < 5-0-0-3497 - Multiple Vulnerabilities
by David Tomaschik
Vanderbilt IP-Camera CCPW3025-IR / CVMW3025-IR - Local File Disclosure
by Yakir Wizman
Honeywell IP-Camera HICC-1100PT - Local File Disclosure
by Yakir Wizman
Microsoft Windows - Fileless UAC Protection Bypass Privilege Escalation (Metasploit)
by Pablo González
WatchGuard RapidStream - Privilege Escalation via Crafted ifconfig Command
WatchGuard RapidStream appliances allow local users to gain privileges and execute arbitrary commands via a crafted ifconfig command, aka ESCALATEPLOWMAN.
by Shadow Brokers
CVSS 7.8
FortiOS 4.1.0-4.1.10, 4.2.0-4.2.12, 4.3.0-4.3.8 & FortiSwitch <3.4.2 - RCE via Cookie Parser Buffer Overflow
Buffer overflow in the Cookie parser in Fortinet FortiOS 4.x before 4.1.11, 4.2.x before 4.2.13, and 4.3.x before 4.3.9 and FortiSwitch before 3.4.3 allows remote attackers to execute arbitrary code via a crafted HTTP request, aka EGREGIOUSBLUNDER.
by Shadow Brokers
CVSS 9.8
TOPSEC Firewalls - 'ELIGIBLEBACHELOR' Remote Command Execution
by Shadow Brokers
Cisco ASA <8.4(1) - Privilege Escalation
Cisco Adaptive Security Appliance (ASA) Software before 8.4(1) on ASA 5500, ASA 5500-X, PIX, and FWSM devices allows local users to gain privileges via invalid CLI commands, aka Bug ID CSCtu74257 or EPICBANANA.
by Shadow Brokers
CVSS 7.8
Vanderbilt IP-Camera CCPW3025-IR / CVMW3025-IR - Credentials Disclosure
by Yakir Wizman
TOSHIBA IP-Camera IK-WP41A - Authentication Bypass / Configuration Download
by Todor Donev
TOPSEC Firewalls - 'ELIGIBLECONTESTANT' Remote Code Execution
by Shadow Brokers
By Source