LiquidWorm

790 exploits Active since Jun 2006
EIP-2026-101085 EXPLOITDB text WORKING POC
SoX 14.4.2 - Denial Of Service
CVE-2014-9350 EXPLOITDB text WORKING POC
TP-Link TL-WR740N Firmware <=3.17.0 DoS via PingIframeRpm.htm isNew Parameter
TP-Link TL-WR740N 4 with firmware 3.17.0 Build 140520, 3.16.6 Build 130529, and 3.16.4 Build 130205 allows remote attackers to cause a denial of service (httpd crash) via vectors involving a "new" value in the isNew parameter to PingIframeRpm.htm.
EIP-2026-101102 EXPLOITDB text WORKING POC
TP-Link TL-WR740N Wireless Router - Denial of Service
EIP-2026-101108 EXPLOITDB text WORKING POC
VIMESA VHF/FM Transmitter Blue Plus 9.7.1 (doreboot) - Remote Denial Of Service
EIP-2026-101156 EXPLOITDB text WORKING POC
Anevia Flamingo XL 3.6.20 - Authenticated Root Remote Code Execution
EIP-2026-101157 EXPLOITDB text WORKING POC
Anevia Flamingo XS 3.6.5 - Authenticated Root Remote Code Execution
CVE-2019-10849 EXPLOITDB HIGH text WORKING POC
Computrols CBAS < 19.0.0 - Unauthenticated Source Code Disclosure via SVN Directory
Computrols CBAS 18.0.0 allows unprotected Subversion (SVN) directory / source code disclosure.
CVSS 7.5
EIP-2026-101187 EXPLOITDB text WORKING POC
CERIO DT-100G-N/DT-300N/CW-300N - Multiple Vulnerabilities
EIP-2026-100832 EXPLOITDB text WORKING POC
Iris ID IrisAccess ICU 7000-2 - Multiple Vulnerabilities
EIP-2026-100833 EXPLOITDB text WORKING POC
Iris ID IrisAccess ICU 7000-2 - Remote Command Execution
EIP-2026-100946 EXPLOITDB text WORKING POC
Zend Server 5.6.0 - Multiple Remote Script Insertion Vulnerabilities
EIP-2026-100868 EXPLOITDB text WORKING POC
NUUO NVRmini 2 3.0.8 - Remote Command Injection (Shellshock)
EIP-2026-100386 EXPLOITDB text WORKING POC
Kentico CMS 5.5R2.23 - 'userContextMenu_Parameter' Cross-Site Scripting
EIP-2026-100077 EXPLOITDB text WRITEUP
Infor CRM 8.2.0.1136 - Multiple HTML Script Injection Vulnerabilities
CVE-2019-7671 EXPLOITDB CRITICAL text WORKING POC
Prima Systems FlexAir <2.3.38 - RCE
Prima Systems FlexAir, Versions 2.3.38 and prior. Parameters sent to scripts are not properly sanitized before being returned to the user, which may allow an attacker to execute arbitrary code in a user’s browser session in context of an affected site.
CVSS 9.0