Exploitdb Exploits
50,076 exploits tracked across all sources.
Apple iOS <9.3 & OS X <10.11.4 - RCE
Race condition in the kernel in Apple iOS before 9.3 and OS X before 10.11.4 allows attackers to execute arbitrary code in a privileged context via a crafted app.
by fG!
CVSS 7.0
EMC ViPR SRM < 3.6.4 - Cross-Site Request Forgery
Multiple cross-site request forgery (CSRF) vulnerabilities in administrative pages in EMC ViPR SRM before 3.7 allow remote attackers to hijack the authentication of administrators.
by Han Sahin
CVSS 8.8
Qualcomm Snapdragon Mobile and Wear Firmware - Denial of Service via Erroneous Bitstream Processing
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 650/52, SD 800, SD 808, SD 810, SD 820, SD 835, SD 845, SDM630, SDM636, SDM660, and Snapdragon_High_Med_2016, processing erroneous bitstreams may result in a HW freeze. FW should detect the HW freeze based on watchdog timer, but because the watchdog timer is not enabled, an infinite loop occurs, resulting in a device freeze.
by Milad Doorbash
CVSS 7.5
Sony Playstation 4 (PS4) 1.76 - 'dlclose' Linux Kernel Loader
by Carlos Pizarro
Yasr 0.6.9-5 Buffer Overflow via Command-line Parameter
Yasr 0.6.9-5 contains a buffer overflow vulnerability that allows local attackers to crash the application or execute arbitrary code by supplying an oversized argument to the -p parameter. Attackers can invoke yasr with a crafted payload containing junk data, shellcode, and a return address to overwrite the stack and trigger code execution.
by Juan Sacco
CVSS 8.4
Advantech WebAccess <8.1 - File Upload
Unrestricted file upload vulnerability in the uploadImageCommon function in the UploadAjaxAction script in the WebAccess Dashboard Viewer in Advantech WebAccess before 8.1 allows remote attackers to write to files of arbitrary types via unspecified vectors.
by Metasploit
CVSS 9.8
libgd 2.1.1 - Denial of Service and Potential Remote Code Execution via Crafted Compressed GD2 Data
Integer signedness error in GD Graphics Library 2.1.1 (aka libgd or libgd2) allows remote attackers to cause a denial of service (crash) or potentially execute arbitrary code via crafted compressed gd2 data, which triggers a heap-based buffer overflow.
by Hans Jerry Illikainen
CVSS 9.8
PCMan FTP Server 2.0.7 - 'RENAME' Remote Buffer Overflow (Metasploit)
by Jonathan Smith
MS16-032 Secondary Logon Handle Privilege Escalation
The Secondary Logon Service in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 does not properly process request handles, which allows local users to gain privileges via a crafted application, aka "Secondary Logon Elevation of Privilege Vulnerability."
by fdiskyou
CVSS 7.8
CompuSource Systems Real Time Home Banking - Local Privilege Escalation
by Information Paradox
NationBuilder - Multiple Persistent Cross-Site Scripting Vulnerabilities
by LiquidWorm
Rough Auditing Tool for Security (RATS) 2.3 - Crash (PoC)
by David Silveiro
Totemomail 4.x/5.x - Persistent Cross-Site Scripting
by Vulnerability-Lab
C/C++ Offline Compiler and C For OS - Persistent Cross-Site Scripting
by Vulnerability-Lab
Gemtek CPE7000 - WLTCS-106 Administrator SID Retriever (Metasploit)
by Federico Scalco
Gemtek CPE7000 - WLTCS-106 'sysconf.cgi' Remote Command Execution (Metasploit)
by Federico Scalco
MS16-032 Secondary Logon Handle Privilege Escalation
The Secondary Logon Service in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 does not properly process request handles, which allows local users to gain privileges via a crafted application, aka "Secondary Logon Elevation of Privilege Vulnerability."
by b33f
CVSS 7.8
Symantec Messaging Gateway < 10.6.1 - Local Encrypted AD Password Exposure
The management console on Symantec Messaging Gateway (SMG) Appliance devices before 10.6.1 allows local users to discover an encrypted AD password by leveraging certain read privileges.
by Fakhir Karim Reda
CVSS 7.8
Gemtek CPE7000 / WLTCS-106 - Multiple Vulnerabilities
by Federico Ramondino
CVE-2014-1303
EXPLOITDB
Apple Safari 7.0.2 - Remote Code Execution via Heap-Based Buffer Overflow
Heap-based buffer overflow in Apple Safari 7.0.2 allows remote attackers to execute arbitrary code and bypass a sandbox protection mechanism via unspecified vectors, as demonstrated by Liang Chen during a Pwn2Own competition at CanSecWest 2014.
by TJ Corley
Microsoft Windows - Local Privilege Escalation via Kernel-Mode Driver
The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vulnerability," a different vulnerability than CVE-2016-0165 and CVE-2016-0167.
by Nils Sommer
CVSS 7.8
Hyper-V - 'vmswitch.sys' VmsMpCommonPvtHandleMulticastOids Guest to Host Kernel-Pool Overflow
by Google Security Research
By Source