Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-100075 EXPLOITDB text VERIFIED
Linux Kernel (ARM/ARM64) - 'perf_event_open()' Arbitrary Memory Read
by Google Security Research
EIP-2026-114665 EXPLOITDB ruby VERIFIED
Centreon 2.5.3 - Web Useralias Command Execution (Metasploit)
by Metasploit
EIP-2026-110699 EXPLOITDB text
PHP File Vault 0.9 - Directory Traversal
by N_A
EIP-2026-103149 EXPLOITDB text
Iris ID IrisAccess iCAM4000/iCAM7000 - Hard-Coded Credentials Remote Shell Access
by LiquidWorm
EIP-2026-103076 EXPLOITDB ruby
Barracuda Web App Firewall 8.0.1.007/Load Balancer 5.4.0.004 - (Authenticated) Remote Command Execution (Metasploit)
by xort
EIP-2026-100833 EXPLOITDB text
Iris ID IrisAccess ICU 7000-2 - Remote Command Execution
by LiquidWorm
EIP-2026-100832 EXPLOITDB text
Iris ID IrisAccess ICU 7000-2 - Multiple Vulnerabilities
by LiquidWorm
CVE-2016-15056 EXPLOITDB HIGH python
Ubee EVW3226 <1.0.20 - Info Disclosure
Ubee EVW3226 cable modem/routers firmware versions up to and including 1.0.20 store configuration backup files in the web root after they are generated for download. These backup files remain accessible without authentication until the next reboot. A remote attacker on the local network can request 'Configuration_file.cfg' directly to obtain the backup archive. Because backup files are not encrypted, they expose sensitive information including the plaintext admin password, allowing full compromise of the device.
by Gergely Eberhardt
CVE-2016-1611 EXPLOITDB HIGH text VERIFIED
Novell Filr <1.2-2.0 - Privilege Escalation
Novell Filr 1.2 before Hot Patch 6 and 2.0 before Hot Patch 2 uses world-writable permissions for /etc/profile.d/vainit.sh, which allows local users to gain privileges by replacing this file's content with arbitrary shell commands.
by SEC Consult
CVSS 7.8
CVE-2016-1609 EXPLOITDB MEDIUM text VERIFIED
Novell Filr <1.2 SU3 & <2.0 SU2 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in Novell Filr before 1.2 Security Update 3 and 2.0 before Security Update 2 allow remote authenticated users to inject arbitrary web script or HTML via crafted input, as demonstrated by a crafted attribute of an IMG element in the phone field of a user profile.
by SEC Consult
CVSS 5.4
CVE-2016-1608 EXPLOITDB HIGH text VERIFIED
Novell Filr <2.0 - Authenticated RCE
vaconfig/time in Novell Filr before 1.2 Security Update 3 and 2.0 before Security Update 2 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the ntpServer parameter.
by SEC Consult
CVSS 8.8
CVE-2016-1607 EXPLOITDB HIGH text VERIFIED
Novell Filr < 2.0 - Cross-Site Request Forgery via Administrative Interface
Multiple cross-site request forgery (CSRF) vulnerabilities in the administrative interface in Novell Filr before 2.0 Security Update 2 allow remote attackers to hijack the authentication of administrators, as demonstrated by reconfiguring time settings via a vaconfig/time request.
by SEC Consult
CVSS 7.2
EIP-2026-117830 EXPLOITDB text VERIFIED
Rapid7 AppSpider 6.12 - Local Privilege Escalation
by LiquidWorm
EIP-2026-117468 EXPLOITDB python
Mediacoder 0.8.43.5852 - '.m3u' (SEH)
by Karn Ganeshen
EIP-2026-116999 EXPLOITDB python
CoolPlayer+ Portable 2.19.6 - '.m3u' File Stack Overflow (Egghunter + ASLR Bypass)
by Karn Ganeshen
CVE-2016-6175 EXPLOITDB CRITICAL text VERIFIED
php-gettext <1.0.12 - Code Injection
Eval injection vulnerability in php-gettext 1.0.12 and earlier allows remote attackers to execute arbitrary PHP code via a crafted plural forms header.
by kmkz
CVSS 9.8
EIP-2026-107512 EXPLOITDB text
GRR Système de Gestion et de Réservations de Ressources 3.0.0-RC1 - Arbitrary File Upload
by kmkz
EIP-2026-106592 EXPLOITDB ruby
Drupal Module CODER 2.5 - Remote Command Execution (Metasploit)
by Mehmet Ince
EIP-2026-106049 EXPLOITDB text
CodoForum 3.2.1 - SQL Injection
by Yakir Wizman
CVE-2016-5399 EXPLOITDB HIGH python VERIFIED
PHP < 5.5.37 - Out-of-bounds Write via bzread Function
The bzread function in ext/bz2/bz2.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 allows remote attackers to cause a denial of service (out-of-bounds write) or execute arbitrary code via a crafted bz2 archive.
by Hans Jerry Illikainen
CVSS 7.8
EIP-2026-103077 EXPLOITDB ruby
Barracuda Web App Firewall 8.0.1.007/Load Balancer 5.4.0.004 - Remote Command Execution (Metasploit)
by xort
EIP-2026-103075 EXPLOITDB ruby
Barracuda Spam & Virus Firewall 5.1.3.007 - Remote Command Execution (Metasploit)
by xort
CVE-2016-1610 EXPLOITDB HIGH text VERIFIED
Novell Filr <1.2 SU3, 2.0 SU2 - Path Traversal
Directory traversal vulnerability in the email-template feature in Novell Filr before 1.2 Security Update 3 and 2.0 before Security Update 2 allows remote attackers to bypass intended access restrictions and write to arbitrary files via a .. (dot dot) in a blob name.
by SEC Consult
CVSS 7.5
EIP-2026-101774 EXPLOITDB text
Hitron CGNV4 Modem/Router 4.3.9.9-SIP-UPC - Multiple Vulnerabilities
by Gergely Eberhardt
EIP-2026-101603 EXPLOITDB text
Compal CH7465LG-LC Modem/Router CH7465LG-NCIP-4.50.18.13-NOSH - Multiple Vulnerabilities
by Gergely Eberhardt
By Source
All 50,076 Writeup 62,527 Exploitdb 50,076 Nomisec 22,481 Github 3,717 Metasploit 3,315 Vulncheck_xdb 930 Inthewild 514 Gitlab 480 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,615 ruby 6,006 c 3,635 perl 2,849 html 2,076 php 1,334 bash 462 java 371 c++ 261 javascript 231 shell 137 go 73 postscript 25 typescript 25