Exploitdb Exploits
4,751 exploits tracked across all sources.
NIMax 5.3.1 - 'Remote VISA System' Denial of Service (PoC)
by LinxzSec
Online Motorcycle (bike) Rental System - SQL Injection
Online Motorcycle (Bike) Rental System 1.0 is vulnerable to a Blind Time-Based SQL Injection attack within the login portal. This can lead attackers to remotely dump MySQL database credentials.
by Chase Comardelle
CVSS 9.8
Awesomemotive Duplicator < 1.3.28 - Path Traversal
The Snap Creek Duplicator plugin before 1.3.28 for WordPress (and Duplicator Pro before 3.8.7.1) allows Directory Traversal via ../ in the file parameter to duplicator_download or duplicator_init.
by nam3lum
CVSS 7.5
Cypress Solutions CTM-200/CTM-ONE <1.3.6 - Code Injection
Cypress Solutions CTM-200/CTM-ONE 1.3.6 contains hard-coded credentials vulnerability in Linux distribution that exposes root access. Attackers can exploit the static 'Chameleon' password to gain remote root access via Telnet or SSH on affected devices.
by LiquidWorm
CVSS 7.5
Keycloak <13.0.0 - SSRF
A flaw was found in Keycloak before 13.0.0, where it is possible to force the server to call out an unverified URL using the OIDC parameter request_uri. This flaw allows an attacker to use this parameter to execute a Server-side request forgery (SSRF) attack.
by Mayank Deshmukh
CVSS 5.3
Maianscriptworld Maian Cart - Missing Authorization
Maian Cart v3.8 contains a preauthorization remote code execution (RCE) exploit via a broken access control issue in the Elfinder plugin.
by DreyAnd
CVSS 9.8
Wordpress BulletProof Security Backup Disclosure
The BulletProof Security WordPress plugin is vulnerable to sensitive information disclosure due to a file path disclosure in the publicly accessible ~/db_backup_log.txt file which grants attackers the full path of the site, in addition to the path of database backup files. This affects versions up to, and including, 5.1.
by Ron Jost
CVSS 5.3
Wordpress Plugin TheCartPress 1.5.3.6 - Privilege Escalation (Unauthenticated)
by spacehen
Wordpress Plugin MStore API 2.0.6 - Arbitrary File Upload
by spacehen
Opengamepanel < 2021-08-14 - OS Command Injection
An issue was discovered in OpenGamePanel OGP-Agent-Linux through 2021-08-14. An authenticated attacker could inject OS commands by starting a Counter-Strike server and using the map field to enter a Bash command.
by prey
CVSS 8.8
Opengamepanel < 2021-08-14 - Cleartext Storage
An issue was discovered in OpenGamePanel OGP-Agent-Linux through 2021-08-14. $HOME/OGP/Cfg/Config.pm has the root password in cleartext.
by prey
CVSS 8.8
Cmsimple-xh Cmsimple XH - Code Injection
CMSimple_XH 1.7.4 contains an authenticated remote code execution vulnerability in the content editing functionality that allows administrative users to upload malicious PHP files. Attackers with valid credentials can exploit the CSRF token mechanism to create a PHP shell file that enables arbitrary command execution on the server.
by Halit AKAYDIN
CVSS 7.2
Vehicle Service Management System 1.0 - Remote Code Execution (RCE) (Unauthenticated)
by Ghuliev
Cmsimple - Code Injection
CMSimple 5.4 contains an authenticated remote code execution vulnerability that allows logged-in attackers to inject malicious PHP code into template files. Attackers can exploit the template editing functionality by crafting a reverse shell payload and saving it through the template editing endpoint with a valid CSRF token.
by pussycat0x
CVSS 8.8
Storage Unit Rental Management System 1.0 - Remote Code Execution (RCE) (Unauthenticated)
by Ghuliev
Apache James Server 2.3.2 - Remote Command Execution (RCE) (Authenticated) (2)
by shinris3n
FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 - Remote Privilege Escalation
by LiquidWorm
Ethersoftware Ether Mp3 CD Burner - Out-of-Bounds Write
Ether MP3 CD Burner 1.3.8 contains a buffer overflow vulnerability in the registration name field that allows remote code execution. Attackers can craft a malicious payload to overwrite SEH handlers and execute a bind shell on port 3110 by exploiting improper input validation.
by stresser
CVSS 9.8
Cyberfox Web Browser 52.9.1 - DoS
Cyberfox Web Browser 52.9.1 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the search bar with excessive data. Attackers can generate a 9,000,000 byte payload and paste it into the search bar to trigger an application crash.
by Aryan Chehreghani
CVSS 7.5
Cisco small business RV130W 1.0.3.44 - Inject Counterfeit Routers
by Michael Alamoot
Redragon M725-lit Firmware - Out-of-Bounds Write
Redragon Gaming Mouse driver contains a kernel-level vulnerability that allows attackers to trigger a denial of service by sending malformed IOCTL requests. Attackers can send a crafted 2000-byte buffer with specific byte patterns to the REDRAGON_MOUSE device to crash the kernel driver.
by Quadron Research Lab
CVSS 7.5
Wordpress Plugin 3DPrint Lite 1.9.1.4 - Arbitrary File Upload
by spacehen
Online Reviewer System - Unrestricted File Upload
Remote Code Execution (RCE) vulnerability exists in Sourcecodester Online Reviewer System 1.0 by uploading a maliciously crafted PHP file that bypasses the image upload filters..
by Abdullah Khawaja
CVSS 9.8
Sentry 8.2.0 - Remote Code Execution (RCE) (Authenticated)
by Mohin Paramasivam
By Source