Exploitdb Exploits
50,076 exploits tracked across all sources.
Apache Continuum - Arbitrary Command Execution (Metasploit)
by Metasploit
Easy RM to MP3 Converter - Stack-based Buffer Overflow via Long Filename in Playlist File
Stack-based buffer overflow in Easy RM to MP3 Converter allows remote attackers to execute arbitrary code via a long filename in a playlist (.pls) file.
by Fitzl Csaba
Zabbix 2.2 < 3.0.3 - API JSON-RPC Remote Code Execution
by Alexander Gurin
Viart Shopping Cart 5.0 - Cross-Site Request Forgery / Arbitrary File Upload
by Ali Ghanbari
Joomla! Component com_payplans 3.3.6 - SQL Injection
by Persian Hack Team
Grid Gallery 1.0 - Admin Panel Authentication Bypass
by Ali BawazeEer
FRticket Ticket System - Persistent Cross-Site Scripting
by Hamit Abis
Dream Gallery 2.0 - Admin Panel Authentication Bypass
by Ali BawazeEer
Foxit PDF Reader 1.0.1.0925 - kdu_core::kdu_codestream::get_subsampling Memory Corruption
by Google Security Research
Foxit PDF Reader 1.0.1.0925 - CPDF_StreamContentParser::~CPDF_StreamContentParser Heap Memory Corruption
by Google Security Research
Foxit PDF Reader 1.0.1.0925 - CPDF_DIBSource::TranslateScanline24bpp Out-of-Bounds Read
by Google Security Research
Foxit PDF Reader 1.0.1.0925 - CFX_WideString::operator= Invalid Read
by Google Security Research
Foxit PDF Reader 1.0.1.0925 - CFX_BaseSegmentedArray::IterateIndex Memory Corruption
by Google Security Research
Matrix42 Remote Control Host 3.20.0031 Unquoted Path Privilege Escalation
Matrix42 Remote Control Host 3.20.0031 contains an unquoted service path vulnerability in the FastViewerRemoteService and FastViewerRemoteProxy services that allows local users to execute arbitrary code with SYSTEM privileges. Attackers can place a malicious executable in the Program Files directory with a crafted name to be executed by the service during startup, gaining elevated privileges.
by Roland C. Redl
CVSS 7.8
Dell OpenManage Server Administrator 8.3 - XML External Entity
by hantwister
Poison Ivy 2.1.x (C2 Server) - Remote Buffer Overflow (Metasploit)
by Jos Wetzels
Poison Ivy 2.1.x (C2 Server) - Remote Buffer Overflow (Metasploit)
by Jos Wetzels
Riot Games League of Legends - Insecure File Permissions Privilege Escalation
by Cyril Vallicari
Mobiketa 1.0 - Cross-Site Request Forgery (Add Admin)
by Murat Yilmazlar
miniMySQLAdmin 1.1.3 - Cross-Site Request Forgery (SQL Execution)
by HaHwul
Apple tvOS < 9.2.1 - Use-After-Free in IOAccelContext2::clientMemoryForType
Use-after-free vulnerability in the IOAccelContext2::clientMemoryForType method in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2016-1817 and CVE-2016-1818.
by Google Security Research
CVSS 7.8
By Source