Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars
CVE-2016-1755 EXPLOITDB HIGH c VERIFIED
Apple iOS <9.3 - Privilege Escalation
The kernel in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS before 2.2 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2016-1754.
by Google Security Research
CVSS 7.8
EIP-2026-104339 EXPLOITDB text
MiCollab 7.0 - SQL Injection
by Goran Tuzovic
CVE-2016-1757 EXPLOITDB HIGH text VERIFIED
Apple iOS <9.3 & OS X <10.11.4 - RCE
Race condition in the kernel in Apple iOS before 9.3 and OS X before 10.11.4 allows attackers to execute arbitrary code in a privileged context via a crafted app.
by Google Security Research
CVSS 7.0
EIP-2026-103735 EXPLOITDB text VERIFIED
Wireshark - dissect_ber_integer Static Out-of-Bounds Write
by Google Security Research
CVE-2016-20081 EXPLOITDB HIGH text VERIFIED
WordPress Plugin HB Audio Gallery Lite 1.0.0 Path Traversal File Download
WordPress Plugin HB Audio Gallery Lite 1.0.0 contains a path traversal vulnerability that allows unauthenticated attackers to download arbitrary files by manipulating the file_path parameter. Attackers can send requests to the audio-download.php endpoint with directory traversal sequences to access sensitive files like wp-config.php outside the intended gallery directory.
by CrashBandicot
CVSS 7.5
CVE-2016-20080 EXPLOITDB MEDIUM text
WordPress Brandfolder Plugin 3.0 Local File Inclusion via callback.php
WordPress Brandfolder plugin version 3.0 and earlier contains a local file inclusion vulnerability in callback.php that allows unauthenticated attackers to include arbitrary files by manipulating the wp_abspath parameter. Attackers can supply path traversal sequences or remote URLs through the wp_abspath parameter to read sensitive files like wp-config.php or execute remote code.
by AMAR^SHG
CVSS 6.2
CVE-2016-20079 EXPLOITDB MEDIUM text
WordPress Dharma Booking 2.28.3 Local File Inclusion via proccess.php
WordPress Dharma Booking 2.28.3 and earlier contains a local file inclusion vulnerability that allows unauthenticated attackers to include arbitrary files by manipulating the gateway parameter. Attackers can supply file paths with directory traversal sequences or null byte injection to the gateway parameter in proccess.php to read sensitive files like configuration and system files.
by AMAR^SHG
CVSS 6.2
EIP-2026-116992 EXPLOITDB perl VERIFIED
CoolPlayer (Standalone) build 2.19 - '.m3u' Local Stack Overflow
by Charley Celice
EIP-2026-113889 EXPLOITDB text VERIFIED
WordPress Plugin Memphis Document Library 3.1.5 - Arbitrary File Download
by Felipe Molina
EIP-2026-108631 EXPLOITDB text VERIFIED
Joomla! Component Easy Youtube Gallery 1.0.2 - SQL Injection
by Persian Hack Team
CVE-2016-20082 EXPLOITDB MEDIUM text
WordPress Plugin Abtest Local File Inclusion via abtest_admin.php
WordPress Plugin Abtest contains a local file inclusion vulnerability that allows unauthenticated attackers to include arbitrary files by manipulating the action parameter. Attackers can send GET requests to abtest_admin.php with malicious action values to include files from the admin directory and execute arbitrary code.
by CrashBandicot
CVSS 6.2
CVE-2016-0099 EXPLOITDB HIGH VERIFIED
MS16-032 Secondary Logon Handle Privilege Escalation
The Secondary Logon Service in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 does not properly process request handles, which allows local users to gain privileges via a crafted application, aka "Secondary Logon Elevation of Privilege Vulnerability."
by Google Security Research
CVSS 7.8
EIP-2026-119201 EXPLOITDB python
Sysax Multi Server 6.50 - HTTP File Share Overflow Remote Code Execution (SEH)
by Paul Purcell
EIP-2026-117335 EXPLOITDB python VERIFIED
Internet Download Manager 6.25 Build 14 - 'Find file' Unicode (SEH)
by Rakan Alotaibi
EIP-2026-114466 EXPLOITDB text
XOOPS 2.5.7.2 - Directory Traversal Bypass
by hyp3rlinx
EIP-2026-114465 EXPLOITDB text
Xoops 2.5.7.2 - Cross-Site Request Forgery (Arbitrary User Deletions)
by hyp3rlinx
EIP-2026-113827 EXPLOITDB text
WordPress Plugin Import CSV 1.0 - Directory Traversal
by Wadeek
EIP-2026-113822 EXPLOITDB text
WordPress Plugin Image Export 1.1.0 - Arbitrary File Disclosure
by AMAR^SHG
EIP-2026-113713 EXPLOITDB text VERIFIED
WordPress Plugin eBook Download 1.1 - Directory Traversal
by Wadeek
EIP-2026-111540 EXPLOITDB text
ProjectSend r582 - Multiple Cross-Site Scripting Vulnerabilities
by Michael Helwig
EIP-2026-108022 EXPLOITDB text VERIFIED
iTop 2.2.1 - Cross-Site Request Forgery
by High-Tech Bridge SA
EIP-2026-106464 EXPLOITDB text
Disc ORGanizer (DORG) - Multiple Vulnerabilities
by SECUPENT
EIP-2026-106366 EXPLOITDB text
Dating Pro Genie 2015.7 - Cross-Site Request Forgery
by High-Tech Bridge SA
EIP-2026-101652 EXPLOITDB text
D-Link DWR-932 Firmware 4.00 - Authentication Bypass
by Saeed reza Zamanian
CVE-2016-0793 EXPLOITDB HIGH text VERIFIED
WildFly <10.0.0.Final - Info Disclosure
Incomplete blacklist vulnerability in the servlet filter restriction mechanism in WildFly (formerly JBoss Application Server) before 10.0.0.Final on Windows allows remote attackers to read the sensitive files in the (1) WEB-INF or (2) META-INF directory via a request that contains (a) lowercase or (b) "meaningless" characters.
by Tal Solomon of Palantir Security
CVSS 7.5
By Source
All 50,076 Writeup 62,594 Exploitdb 50,076 Nomisec 22,498 Github 3,743 Metasploit 3,315 Vulncheck_xdb 930 Inthewild 514 Gitlab 480 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,633 ruby 6,006 c 3,635 perl 2,849 html 2,076 php 1,334 bash 462 java 371 c++ 261 javascript 231 shell 138 go 73 postscript 25 typescript 25