Html Exploits

2,075 exploits tracked across all sources.

Sort: Activity Stars
CVE-2018-25156 EXPLOITDB MEDIUM html
Teradek Cube 7.3.6 - Cross-Site Request Forgery via Password Change Request
Teradek Cube 7.3.6 contains a cross-site request forgery vulnerability that allows attackers to change administrative passwords without proper request validation. Attackers can craft a malicious web page with a hidden form to submit password change requests to the device's system configuration interface.
by LiquidWorm
CVSS 4.3
CVE-2018-25155 EXPLOITDB MEDIUM html
Teradek Slice 7.3.15 - Cross-Site Request Forgery
Teradek Slice 7.3.15 contains a cross-site request forgery vulnerability that allows attackers to change administrative passwords without proper request validation. Attackers can craft a malicious web page that automatically submits password change requests to the device when a logged-in user visits the page.
by LiquidWorm
CVSS 4.3
CVE-2018-8174 EXPLOITDB HIGH html
Windows VBScript Engine - Remote Code Execution via Memory Object Handling
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka "Windows VBScript Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers.
by smgorelik
CVSS 7.5
EIP-2026-113891 EXPLOITDB html
WordPress Plugin Metronet Tag Manager 1.2.7 - Cross-Site Request Forgery
by dxw
CVE-2018-6563 EXPLOITDB HIGH html
totemo encryption_gateway < 6.0.0 - Cross-Site Request Forgery
Multiple cross-site request forgery (CSRF) vulnerabilities in totemomail Encryption Gateway before 6.0.0_Build_371 allow remote attackers to hijack the authentication of users for requests that (1) change user settings, (2) send emails, or (3) change contact information by leveraging lack of an anti-CSRF token.
by Compass Security
CVSS 8.8
CVE-2018-6023 EXPLOITDB HIGH html
Fastweb FASTgate 0.00.47 - Cross-Site Request Forgery
Fastweb FASTgate 0.00.47 devices are vulnerable to CSRF, with impacts including Wi-Fi password changing, Guest Wi-Fi activating, etc.
by Raffaele Sabato
CVSS 8.8
CVE-2018-4200 EXPLOITDB HIGH html VERIFIED
Safari < 11.1 - Remote Code Execution via WebCore::jsElementScrollHeightGetter Use-After-Free
An issue was discovered in certain Apple products. iOS before 11.3.1 is affected. Safari before 11.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site that triggers a WebCore::jsElementScrollHeightGetter use-after-free.
by Google Security Research
CVSS 8.8
EIP-2026-114191 EXPLOITDB html
WordPress Plugin Woo Import Export 1.0 - Arbitrary File Deletion
by Lenon Leite
CVE-2018-10188 EXPLOITDB HIGH html
phpMyAdmin 4.8.0 - Cross-Site Request Forgery
phpMyAdmin 4.8.0 before 4.8.0-1 has CSRF, allowing an attacker to execute arbitrary SQL statements, related to js/db_operations.js, js/tbl_operations.js, libraries/classes/Operations.php, and sql.php.
by revengsh
CVSS 8.8
CVE-2018-0935 EXPLOITDB HIGH html VERIFIED
Internet Explorer - Remote Code Execution via Scripting Engine Memory Corruption
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0876, CVE-2018-0889, CVE-2018-0893, and CVE-2018-0925.
by Google Security Research
CVSS 7.5
CVE-2018-8817 EXPLOITDB HIGH html VERIFIED
Wampserver < 3.1.3 - Cross-Site Request Forgery via add_vhost.php
Wampserver before 3.1.3 has CSRF in add_vhost.php.
by Vipin Chaudhary
CVSS 8.8
CVE-2018-8811 EXPLOITDB HIGH html
OpenCMS 10.5.3 - Cross-Site Request Forgery in User Role Management
Cross-site request forgery (CSRF) vulnerability in system/workplace/admin/accounts/user_role.jsp in OpenCMS 10.5.3 allows remote attackers to hijack the authentication of administrative users for requests that perform privilege escalation. Note: It is argued that OpenCMS allows only registered users to upload different kind of content artifacts (SVG, .doc, .docx). The uploaded content is stored in the CMS content repository "as is". In case of scripts inside an SVG, this may or may not be "malicious", there is no way of knowing if the uploaded SVG contains the script for a reason. To exploit the "issue", a user must have an account in the CMS as a content manager
by Sureshbabu Narvaneni
CVSS 8.8
CVE-2018-8908 EXPLOITDB HIGH html
Frog CMS 0.9.5 - Cross-Site Request Forgery in User Addition
An issue was discovered in /admin/?/user/add in Frog CMS 0.9.5. The application's add user functionality suffers from CSRF. A malicious user can craft an HTML page and use it to trick a victim into clicking on it; once executed, a malicious user will be created with admin privileges. This happens due to lack of an anti-CSRF token in state modification requests.
by Samrat Das
CVSS 8.8
CVE-2018-9092 EXPLOITDB HIGH html
MiniCMS 1.10 - Cross-Site Request Forgery in Admin Configuration
There is a CSRF vulnerability in mc-admin/conf.php in MiniCMS 1.10 that can change the administrator account password.
by zixian
CVSS 8.8
CVE-2016-2819 EXPLOITDB HIGH html VERIFIED
Opensuse Leap < 46.0.1 - Memory Corruption
Heap-based buffer overflow in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allows remote attackers to execute arbitrary code via foreign-context HTML5 fragments, as demonstrated by fragments within an SVG element.
by Rh0
CVSS 8.8
CVE-2016-1960 EXPLOITDB HIGH html VERIFIED
Mozilla Firefox <45.0 - Firefox ESR 38.x <38.7 - RCE
Integer underflow in the nsHtml5TreeBuilder class in the HTML5 string parser in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) by leveraging mishandling of end tags, as demonstrated by incorrect SVG processing, aka ZDI-CAN-3545.
by Rh0
CVSS 8.8
CVE-2017-5375 EXPLOITDB CRITICAL html VERIFIED
Thunderbird <45.7, Firefox ESR <45.7, Firefox <51 - Memory Corruption
JIT code allocation can allow for a bypass of ASLR and DEP protections leading to potential memory corruption attacks. This vulnerability affects Thunderbird < 45.7, Firefox ESR < 45.7, and Firefox < 51.
by Rh0
CVSS 9.8
CVE-2017-5375 EXPLOITDB CRITICAL html VERIFIED
Thunderbird <45.7, Firefox ESR <45.7, Firefox <51 - Memory Corruption
JIT code allocation can allow for a bypass of ASLR and DEP protections leading to potential memory corruption attacks. This vulnerability affects Thunderbird < 45.7, Firefox ESR < 45.7, and Firefox < 51.
by Rh0
CVSS 9.8
CVE-2018-7216 EXPLOITDB HIGH html
Bravo Tejari Procurement Portal - Authenticated Cross-Site Request Forgery in Profile Data Update
Cross-site request forgery (CSRF) vulnerability in esop/toolkit/profile/regData.do in Bravo Tejari Procurement Portal allows remote authenticated users to hijack the authentication of application users for requests that modify their personal data by leveraging lack of anti-CSRF tokens.
by Arvind V
CVSS 8.0
CVE-2018-0866 EXPLOITDB HIGH html VERIFIED
Internet Explorer - Remote Code Execution via Scripting Engine Memory Corruption
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0834, CVE-2018-0835, CVE-2018-0836, CVE-2018-0837, CVE-2018-0838, CVE-2018-0840, CVE-2018-0856, CVE-2018-0857, CVE-2018-0858, CVE-2018-0859, CVE-2018-0860, and CVE-2018-0861.
by Google Security Research
CVSS 7.5
CVE-2018-7176 EXPLOITDB HIGH html
FrontAccounting 2.4.3 - Cross-Site Request Forgery via User Permissions Page
FrontAccounting 2.4.3 suffers from a CSRF flaw, which leads to adding a user account via admin/users.php (aka the "add user" feature of the User Permissions page).
by Samrat Das
CVSS 8.8
CVE-2018-6911 EXPLOITDB CRITICAL html
Advantech WebAccess 8.3.0 - Remote Code Execution via VBWinExec Command Parameter
The VBWinExec function in Node\AspVBObj.dll in Advantech WebAccess 8.3.0 allows remote attackers to execute arbitrary OS commands via a single argument (aka the command parameter).
by Nassim Asrir
CVSS 9.8
CVE-2018-6888 EXPLOITDB HIGH html
Typesetter - Cross-Site Request Forgery
An issue was discovered in Typesetter 5.1. The User Permissions page (aka Admin/Users) suffers from critical flaw of Cross Site Request forgery: using a forged HTTP request, a malicious user can lead a user to unknowingly create / delete or modify a user account due to the lack of an anti-CSRF token.
by Navina Asrani
CVSS 8.0
EIP-2026-103782 EXPLOITDB html
Marked2 - Local File Disclosure
by Corben Leo
CVE-2018-6604 EXPLOITDB CRITICAL html
Zh YandexMap 6.2.1.0 - SQL Injection via id Parameter
SQL Injection exists in the Zh YandexMap 6.2.1.0 component for Joomla! via the id parameter in a task=getPlacemarkDetails request.
by Ihsan Sencan
CVSS 9.8
By Source
All 2,075 Writeup 62,194 Exploitdb 50,076 Nomisec 22,389 Github 3,603 Metasploit 3,311 Vulncheck_xdb 927 Inthewild 514 Gitlab 479 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,561 ruby 6,002 c 3,626 perl 2,849 html 2,075 php 1,333 bash 462 java 370 c++ 260 javascript 229 shell 131 go 73 postscript 25 typescript 25