Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-102140 EXPLOITDB html
ZTE ZXHN H108N Router - Configuration Disclosure
by Todor Donev
CVE-2015-7358 EXPLOITDB HIGH text VERIFIED
CipherShed < 0.7.5.0 and VeraCrypt < 1.15 - Privilege Escalation via Drive Letter Symbolic Link
The IsDriveLetterAvailable method in Driver/Ntdriver.c in TrueCrypt 7.0, VeraCrypt before 1.15, and CipherShed, when running on Windows, does not properly validate drive letter symbolic links, which allows local users to mount an encrypted volume over an existing drive letter and gain privileges via an entry in the /GLOBAL?? directory.
by Google Security Research
CVSS 7.8
CVE-2015-6922 EXPLOITDB CRITICAL ruby VERIFIED
Kaseya VSA <7.0.0.33, <8.0.0.23, <9.0.0.19, <9.1.0.9 - Unauthenticated RCE via File Write
Kaseya Virtual System Administrator (VSA) 7.x before 7.0.0.33, 8.x before 8.0.0.23, 9.0 before 9.0.0.19, and 9.1 before 9.1.0.9 does not properly require authentication, which allows remote attackers to bypass authentication and (1) add an administrative account via crafted request to LocalAuth/setAccount.aspx or (2) write to and execute arbitrary files via a full pathname in the PathData parameter to ConfigTab/uploader.aspx.
by Metasploit
CVSS 9.8
EIP-2026-115538 EXPLOITDB python
LanSpy 2.0.0.155 - Buffer Overflow (PoC)
by hyp3rlinx
EIP-2026-105094 EXPLOITDB text
Alienvault Open Source SIEM (OSSIM) 4.3 - Cross-Site Request Forgery
by MohamadReza Mohajerani
EIP-2026-104139 EXPLOITDB ruby VERIFIED
Zemra Botnet (C2 Web Panel) - Remote Code Execution (Metasploit)
by Metasploit
EIP-2026-104138 EXPLOITDB ruby VERIFIED
Zemra Botnet (C2 Web Panel) - Remote Code Execution (Metasploit)
by Metasploit
EIP-2026-102502 EXPLOITDB text
ManageEngine ServiceDesk Plus 9.1 build 9110 - Directory Traversal
by xistence
EIP-2026-119371 EXPLOITDB text
FTGate 7 - Cross-Site Request Forgery
by hyp3rlinx
EIP-2026-119370 EXPLOITDB text
FTGate 2009 Build 6.4.00 - Multiple Vulnerabilities
by hyp3rlinx
EIP-2026-118291 EXPLOITDB text VERIFIED
Avast! AntiVirus - X.509 Error Rendering Command Execution
by Google Security Research
EIP-2026-118134 EXPLOITDB python
WinRar < 5.30 Beta 4 - Settings Import Command Execution
by R-73eN
EIP-2026-116824 EXPLOITDB python VERIFIED
ASX to MP3 Converter 1.82.50 (Windows XP SP3) - '.asx' Local Stack Overflow
by ex_ptr
CVE-2015-5531 EXPLOITDB python
Elasticsearch <1.6.1 - Path Traversal
Directory traversal vulnerability in Elasticsearch before 1.6.1 allows remote attackers to read arbitrary files via unspecified vectors related to snapshot API calls.
by Pedro Andujar
CVE-2015-5889 EXPLOITDB python VERIFIED
Apple OS X <10.11 - Privilege Escalation
rsh in the remote_cmds component in Apple OS X before 10.11 allows local users to obtain root privileges via vectors involving environment variables.
by rebel
CVE-2015-6970 EXPLOITDB CRITICAL text
Bosch Security Systems NBN-498 Dinion2X - XML Injection
The web interface in Bosch Security Systems NBN-498 Dinion2X Day/Night IP Cameras with H.264 Firmware 4.54.0026 allows remote attackers to conduct XML injection attacks via the idstring parameter to rcp.xml.
by neom22
CVSS 9.8
EIP-2026-101408 EXPLOITDB text
PIXORD Vehicle 3G Wi-Fi Router 3GR-431P - Multiple Vulnerabilities
by Karn Ganeshen
EIP-2026-117439 EXPLOITDB python
MakeSFX.exe 1.44 - Local Stack Buffer Overflow
by hyp3rlinx
EIP-2026-104596 EXPLOITDB bash
Dropbox < 3.3.x - OSX FinderLoadBundle Privilege Escalation
by cenobyte
CVE-2015-6589 EXPLOITDB HIGH text VERIFIED
Kaseya VSA <=9.1.0.8 Authenticated Path Traversal & Arbitrary File Write via json.ashx
Directory traversal vulnerability in Kaseya Virtual System Administrator (VSA) 7.0.0.0 before 7.0.0.33, 8..0.0.0 before 8.0.0.23, 9.0.0.0 before 9.0.0.19, and 9.1.0.0 before 9.1.0.9 allows remote authenticated users to write to and execute arbitrary files due to insufficient restrictions in file paths to json.ashx.
by Pedro Ribeiro
CVSS 8.8
CVE-2015-7387 EXPLOITDB ruby VERIFIED
ManageEngine EventLog Analyzer < 10.6 - SQL Injection via event/runQuery.do Query Parameter
ZOHO ManageEngine EventLog Analyzer 10.6 build 10060 and earlier allows remote attackers to bypass intended restrictions and execute arbitrary SQL commands via an allowed query followed by a disallowed one in the query parameter to event/runQuery.do, as demonstrated by "SELECT 1;INSERT INTO." Fixed in Build 11200.
by Metasploit
EIP-2026-117304 EXPLOITDB python
IconLover 5.42 - Local Buffer Overflow
by cor3sm4sh3r
CVE-2015-1338 EXPLOITDB text
Apport < 2.19 - Denial of Service and Privilege Escalation via Symlink Attack on vmcore.log
kernel_crashdump in Apport before 2.19 allows local users to cause a denial of service (disk consumption) or possibly gain privileges via a (1) symlink or (2) hard link attack on /var/crash/vmcore.log.
by halfdog
EIP-2026-102116 EXPLOITDB text
Western Digital My Cloud 04.01.03-421/04.01.04-422 - Command Injection
by absane
CVE-2015-6922 EXPLOITDB CRITICAL text VERIFIED
Kaseya VSA <7.0.0.33, <8.0.0.23, <9.0.0.19, <9.1.0.9 - Unauthenticated RCE via File Write
Kaseya Virtual System Administrator (VSA) 7.x before 7.0.0.33, 8.x before 8.0.0.23, 9.0 before 9.0.0.19, and 9.1 before 9.1.0.9 does not properly require authentication, which allows remote attackers to bypass authentication and (1) add an administrative account via crafted request to LocalAuth/setAccount.aspx or (2) write to and execute arbitrary files via a full pathname in the PathData parameter to ConfigTab/uploader.aspx.
by Pedro Ribeiro
CVSS 9.8