root

8 exploits Active since Nov 2016
CVE-2017-10952 NOMISEC HIGH WRITEUP
Foxit Reader 8.2.0.2051 - Arbitrary File Write via saveAs JavaScript Function
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.2.0.2051. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the saveAs JavaScript function. The issue results from the lack of proper validation of user-supplied data, which can lead to writing arbitrary files into attacker controlled locations. An attacker can leverage this vulnerability to execute code under the context of the current process. Was ZDI-CAN-4518.
1 stars
CVSS 8.8
CVE-2017-15032 WRITEUP CRITICAL WRITEUP
ImageMagick 7.0.7-2 - Memory Leak in ReadYCBCRImage
ImageMagick version 7.0.7-2 contains a memory leak in ReadYCBCRImage in coders/ycbcr.c.
CVSS 9.8
CVE-2017-15033 WRITEUP HIGH WRITEUP
ImageMagick 7.0.7-2 - Memory Leak in ReadYUVImage
ImageMagick version 7.0.7-2 contains a memory leak in ReadYUVImage in coders/yuv.c.
CVSS 7.5
CVE-2020-10789 WRITEUP CRITICAL WRITEUP
openITCOCKPIT <3.7.3 - Command Injection
openITCOCKPIT before 3.7.3 has a web-based terminal that allows attackers to execute arbitrary OS commands via shell metacharacters that are mishandled on an su command line in app/Lib/SudoMessageInterface.php.
CVSS 9.8
CVE-2020-24390 WRITEUP MEDIUM WRITEUP
eyesofnetwork < 5.3 - Stored Cross-Site Scripting via Admin Logs Username Field
eonweb in EyesOfNetwork before 5.3-7 does not properly escape the username on the /module/admin_logs page, which might allow pre-authentication stored XSS during login/logout logs recording.
CVSS 6.1
CVE-2024-21663 WRITEUP CRITICAL WRITEUP
demon1a discord-recon < 0.0.8 - Unauthenticated Remote Code Execution
Discord-Recon is a Discord bot created to automate bug bounty recon, automated scans and information gathering via a discord server. Discord-Recon is vulnerable to remote code execution. An attacker is able to execute shell commands in the server without having an admin role. This vulnerability has been fixed in version 0.0.8.
CVSS 9.9
CVE-2026-24040 WRITEUP MEDIUM WRITEUP
jsPDF < 4.1.0 - Cross-User Data Leakage via Shared Module Variable
jsPDF is a library to generate PDFs in JavaScript. Prior to 4.1.0, the addJS method in the jspdf Node.js build utilizes a shared module-scoped variable (text) to store JavaScript content. When used in a concurrent environment (e.g., a Node.js web server), this variable is shared across all requests. If multiple requests generate PDFs simultaneously, the JavaScript content intended for one user may be overwritten by a subsequent request before the document is generated. This results in Cross-User Data Leakage, where the PDF generated for User A contains the JavaScript payload (and any embedded sensitive data) intended for User B. Typically, this only affects server-side environments, although the same race conditions might occur if jsPDF runs client-side. The vulnerability has been fixed in [email protected].
CVSS 4.8
CVE-2016-7255 EXPLOITDB HIGH c WORKING POC
Microsoft Windows - Privilege Escalation
The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allow local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vulnerability."
CVSS 7.8