Exploitdb Exploits
50,076 exploits tracked across all sources.
Proxmox VE 3/4 - Insecure Hostname Checking Remote Command Execution
by Sysdream
Linux Kernel - io_submit L2TP sendmsg Integer Overflow
by Google Security Research
Infor CRM 8.2.0.1136 - Multiple HTML Script Injection Vulnerabilities
by LiquidWorm
Qualcomm Adreno GPU MSM Driver - perfcounter Query Heap Overflow
by Google Security Research
Lotus Domino R5-R6 WebMail - Info Disclosure
Lotus Domino R5 and R6 WebMail, with "Generate HTML for all fields" enabled, stores sensitive data from names.nsf in hidden form fields, which allows remote attackers to read the HTML source to obtain sensitive information such as (1) the password hash in the HTTPPassword field, (2) the password change date in the HTTPPasswordChangeDate field, (3) the client platform in the ClntPltfrm field, (4) the client machine name in the ClntMachine field, and (5) the client Lotus Domino release in the ClntBld field, a different vulnerability than CVE-2005-2696.
by Jonathan Broche
WordPress Plugin Extra User Details 0.4.2 - Privilege Escalation
by Panagiotis Vagenas
Mambo 4.5.3, 4.5.3h - Path Traversal via mos_change_template Parameter
Directory traversal vulnerability in the _setTemplate function in Mambo 4.5.3, 4.5.3h, and possibly earlier versions allows remote attackers to read and include arbitrary files via the mos_change_template parameter. NOTE: CVE-2006-1794 has been assigned to the SQL injection vector.
by GulfTech Security
Wireshark - vwr_read_s2_s3_W_rec Heap Buffer Overflow
by Google Security Research
libxml2 <2.9.4 - DoS
The xmlPArserPrintFileContextInternal function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.
by Google Security Research
CVSS 5.5
libxml2 - xmlParseEndTag2 Heap Buffer Overread
by Google Security Research
Apple iPhone OS < 9.3.2 - Out-of-bounds Read in xmlDictAddString
The xmlDictAddString function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.
by Google Security Research
CVSS 5.5
libxml2 - htmlCurrentChar Heap Buffer Overread
by Google Security Research
Dell OpenManage Server Administrator 8.2 - Authenticated Path Traversal via ViewFile File Parameter
Directory traversal vulnerability in Dell OpenManage Server Administrator (OMSA) 8.2 allows remote authenticated administrators to read arbitrary files via a ..\ (dot dot backslash) in the file parameter to ViewFile.
by hantwister
CVSS 4.9
libquicktime < 1.2.4 - Integer Overflow in quicktime_read_pascal Function
Integer overflow in the quicktime_read_pascal function in libquicktime 1.2.4 and earlier allows remote attackers to cause a denial of service or possibly have other unspecified impact via a crafted hdlr MP4 atom.
by Marco Romano
CVSS 7.8
Ubiquiti Networks UniFi 3.2.10 - Cross-Site Request Forgery
by Julien Ahrens
BlackBerry Enterprise Server 12 - SQL Injection
Multiple SQL injection vulnerabilities in the com.rim.mdm.ui.server.ImageServlet servlet in BlackBerry Enterprise Server 12 (BES12) Self-Service before 12.4 allow remote attackers to execute arbitrary SQL commands via the imageName parameter to (1) mydevice/client/image, (2) admin/client/image, (3) myapps/client/image, (4) ssam/client/image, or (5) all/client/image.
by Security-Assessment.com
CVSS 8.8
Wireshark - dissect_oml_attrs Static Out-of-Bounds Read
by Google Security Research
Wireshark - dissect_ber_set Static Out-of-Bounds Read
by Google Security Research
Wireshark - add_ff_vht_compressed_beamforming_report Static Out-of-Bounds Read
by Google Security Research
Ubuntu Linux - Local Privilege Escalation via pt_chown Namespace Check Bypass
pt_chown in the glibc package before 2.19-18+deb8u4 on Debian jessie; the elibc package before 2.15-0ubuntu10.14 on Ubuntu 12.04 LTS and before 2.19-0ubuntu6.8 on Ubuntu 14.04 LTS; and the glibc package before 2.21-0ubuntu4.2 on Ubuntu 15.10 and before 2.23-0ubuntu1 on Ubuntu 16.04 LTS and 16.10 lacks a namespace check associated with file-descriptor passing, which allows local users to capture keystrokes and spoof data, and possibly gain privileges, via pts read and write operations, related to debian/sysdeps/linux.mk. NOTE: this is not considered a vulnerability in the upstream GNU C Library because the upstream documentation has a clear security recommendation against the --enable-pt_chown option.
by halfdog
CVSS 8.4
Linux Kernel < 4.4.8 - Use-After-Free in USB MIDI Descriptor Handling
Double free vulnerability in the snd_usbmidi_create function in sound/usb/midi.c in the Linux kernel before 4.5 allows physically proximate attackers to cause a denial of service (panic) or possibly have unspecified other impact via vectors involving an invalid USB descriptor.
by Andrey Konovalov
CVSS 4.6
BlackBerry Enterprise Server 12 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in BlackBerry Enterprise Server 12 (BES12) Self-Service before 12.4 allow remote attackers to inject arbitrary web script or HTML via the locale parameter to (1) mydevice/index.jsp or (2) mydevice/loggedOut.jsp.
by Security-Assessment.com
CVSS 6.1
By Source