Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars
CVE-2015-6104 EXPLOITDB text VERIFIED
Microsoft Windows - Remote Code Execution via Crafted Embedded Font
The Adobe Type Manager Library in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 Gold and 1511 allows remote attackers to execute arbitrary code via a crafted embedded font, aka "Windows Graphics Memory Remote Code Execution Vulnerability," a different vulnerability than CVE-2015-6103.
by Google Security Research
CVE-2015-6103 EXPLOITDB text VERIFIED
Microsoft Windows - Remote Code Execution via Crafted Embedded Font
The Adobe Type Manager Library in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 Gold and 1511 allows remote attackers to execute arbitrary code via a crafted embedded font, aka "Windows Graphics Memory Remote Code Execution Vulnerability," a different vulnerability than CVE-2015-6104.
by Google Security Research
EIP-2026-115505 EXPLOITDB text VERIFIED
Kaspersky AntiVirus - Certificate Handling Directory Traversal
by Google Security Research
EIP-2026-115504 EXPLOITDB text VERIFIED
Kaspersky AntiVirus - '.ZIP' File Format Use-After-Free
by Google Security Research
EIP-2026-115502 EXPLOITDB text VERIFIED
Kaspersky AntiVirus - '.DEX' File Format Memory Corruption
by Google Security Research
EIP-2026-115269 EXPLOITDB python VERIFIED
foobar2000 1.3.9 - '.pls' / '.m3u' / '.m3u8' Local Crash (PoC)
by Antonio Z.
EIP-2026-115268 EXPLOITDB python VERIFIED
foobar2000 1.3.9 - '.asx' Local Crash (PoC)
by Antonio Z.
EIP-2026-105941 EXPLOITDB text
ClipperCMS 1.3.0 - Multiple SQL Injections
by Curesec Research Team
EIP-2026-105794 EXPLOITDB text
CF Image Host 1.65 - PHP Command Injection
by hyp3rlinx
EIP-2026-105793 EXPLOITDB html
CF Image Host 1.65 - Cross-Site Request Forgery
by hyp3rlinx
EIP-2026-104795 EXPLOITDB python
XCart 5.2.6 - Code Execution
by Curesec Research Team
EIP-2026-104733 EXPLOITDB ruby VERIFIED
Idera Up.Time Monitoring Station 7.4 - 'post2file.php' Arbitrary File Upload (Metasploit)
by Metasploit
EIP-2026-104718 EXPLOITDB python
ClipperCMS 1.3.0 - Code Execution
by Curesec Research Team
EIP-2026-104482 EXPLOITDB text
VideoLAN VLC Media Player Web Interface 2.2.1 - Metadata Title Cross-Site Scripting
by Andrea Sindoni
CVE-2015-5999 EXPLOITDB text
D-Link DIR-816L <2.06.B09_BETA - CSRF
Multiple cross-site request forgery (CSRF) vulnerabilities in the D-Link DIR-816L Wireless Router with firmware before 2.06.B09_BETA allow remote attackers to hijack the authentication of administrators for requests that (1) change the admin password, (2) change the network policy, or (3) possibly have other unspecified impact via crafted requests to hedwig.cgi and pigwidgeon.cgi.
by Bhadresh Patel
EIP-2026-101239 EXPLOITDB text
D-Link DIR-890L/R - Multiple Buffer Overflow Vulnerabilities
by Samuel Huntley
EIP-2026-101238 EXPLOITDB text
D-Link DIR-880L - Multiple Buffer Overflow Vulnerabilities
by Samuel Huntley
EIP-2026-101237 EXPLOITDB text
D-Link DIR-866L - Multiple Buffer Overflow Vulnerabilities
by Samuel Huntley
EIP-2026-101236 EXPLOITDB text
D-Link DIR-825 (vC) - Multiple Vulnerabilities
by Samuel Huntley
EIP-2026-101235 EXPLOITDB text
D-Link DIR-818W - Multiple Vulnerabilities
by Samuel Huntley
EIP-2026-101234 EXPLOITDB text
D-Link DIR-817LW - Multiple Vulnerabilities
by Samuel Huntley
EIP-2026-101233 EXPLOITDB text
D-Link DIR-815 / DIR-850L - SSDP Command Injection
by Samuel Huntley
EIP-2026-101232 EXPLOITDB text
D-Link DIR-815 - Multiple Vulnerabilities
by Samuel Huntley
EIP-2026-101230 EXPLOITDB text
D-Link DIR-645 - Multiple UPNP Vulnerabilities
by Samuel Huntley
EIP-2026-101228 EXPLOITDB text
D-Link DIR-615 - Multiple Buffer Overflow Vulnerabilities
by Samuel Huntley