Text Exploits

31,386 exploits tracked across all sources.

Sort: Activity Stars
CVE-2018-19374 EXPLOITDB HIGH text
Zoho ManageEngine ADManager Plus 6.6 Build 6657 - Privilege Escalation via Trojan Horse File in Bin Directory
Zoho ManageEngine ADManager Plus 6.6 Build 6657 allows local users to gain privileges (after a reboot) by placing a Trojan horse file into the permissive bin directory.
by Digital Interruption
CVSS 7.0
CVE-2019-0735 EXPLOITDB HIGH text VERIFIED
Windows Client Server Run-Time Subsystem - Privilege Escalation
An elevation of privilege vulnerability exists when the Windows Client Server Run-Time Subsystem (CSRSS) fails to properly handle objects in memory, aka 'Windows CSRSS Elevation of Privilege Vulnerability'.
by Google Security Research
CVSS 7.8
CVE-2019-0836 EXPLOITDB HIGH text VERIFIED
Windows - Elevation of Privilege via LUAFV Driver Race Condition
An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0730, CVE-2019-0731, CVE-2019-0796, CVE-2019-0805, CVE-2019-0841.
by Google Security Research
CVSS 7.8
CVE-2019-0732 EXPLOITDB HIGH text VERIFIED
Windows - Device Guard Bypass via LUAFV Driver Improper Call Handling
A security feature bypass vulnerability exists in Windows which could allow an attacker to bypass Device Guard when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Security Feature Bypass Vulnerability'.
by Google Security Research
CVSS 7.8
CVE-2019-0796 EXPLOITDB MEDIUM text VERIFIED
Windows - Privilege Escalation via LUAFV Driver Improper Call Handling
An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0730, CVE-2019-0731, CVE-2019-0805, CVE-2019-0836, CVE-2019-0841.
by Google Security Research
CVSS 5.5
CVE-2019-0730 EXPLOITDB HIGH text VERIFIED
Windows - Privilege Escalation via LUAFV Driver Improper Call Handling
An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0731, CVE-2019-0796, CVE-2019-0805, CVE-2019-0836, CVE-2019-0841.
by Google Security Research
CVSS 7.8
CVE-2019-0731 EXPLOITDB HIGH text VERIFIED
Windows - Privilege Escalation via LUAFV Driver Handle Duplication
An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0730, CVE-2019-0796, CVE-2019-0805, CVE-2019-0836, CVE-2019-0841.
by Google Security Research
CVSS 7.8
CVE-2019-0805 EXPLOITDB HIGH text VERIFIED
Windows - Elevation of Privilege via LUAFV Driver Calls
An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0730, CVE-2019-0731, CVE-2019-0796, CVE-2019-0836, CVE-2019-0841.
by Google Security Research
CVSS 7.8
CVE-2019-9955 EXPLOITDB MEDIUM text
Zyxel Firewall Devices - Reflected Cross-Site Scripting via Login Page mp_idx Parameter
On Zyxel ATP200, ATP500, ATP800, USG20-VPN, USG20W-VPN, USG40, USG40W, USG60, USG60W, USG110, USG210, USG310, USG1100, USG1900, USG2200-VPN, ZyWALL 110, ZyWALL 310, ZyWALL 1100 devices, the security firewall login page is vulnerable to Reflected XSS via the unsanitized 'mp_idx' parameter.
by Aaron Bishop
CVSS 6.1
CVE-2019-11193 EXPLOITDB MEDIUM text
DirectAdmin < 1.561 - Cross-Site Scripting via FileManager CMD_FILE_MANAGER Parameter
The FileManager in InfinitumIT DirectAdmin through v1.561 has XSS via CMD_FILE_MANAGER, CMD_SHOW_USER, and CMD_SHOW_RESELLER; an attacker can bypass the CSRF protection with this, and take over the administration panel.
by InfinitumIT
CVSS 6.1
EIP-2026-117500 EXPLOITDB text VERIFIED
Microsoft Internet Explorer 11 - XML External Entity Injection
by hyp3rlinx
CVE-2018-14894 EXPLOITDB HIGH text
CyberArk Endpoint Privilege Manager <10.2.1.603 - Privilege Escalation
CyberArk Endpoint Privilege Manager 10.2.1.603 and earlier allows an attacker (who is able to edit permissions of a file) to bypass intended access restrictions and execute blocked applications.
by Alpcan Onaran
CVSS 7.8
CVE-2019-11017 EXPLOITDB MEDIUM text
D-Link DI-524 2.06RU - Stored and Reflected Cross-Site Scripting via Web Configuration
On D-Link DI-524 V2.06RU devices, multiple Stored and Reflected XSS vulnerabilities were found in the Web Configuration: /spap.htm, /smap.htm, and /cgi-bin/smap, as demonstrated by the cgi-bin/smap RC parameter.
by Semen Alexandrovich Lyhin
CVSS 4.8
CVE-2019-25391 EXPLOITDB HIGH text
Ashop Shopping Cart - SQL Injection
Ashop Shopping Cart Software contains a time-based blind SQL injection vulnerability that allows attackers to manipulate database queries through the blacklistitemid parameter. Attackers can send POST requests to the admin/bannedcustomers.php endpoint with crafted SQL payloads using SLEEP functions to extract sensitive database information.
by Doğukan Karaciğer
CVSS 8.2
CVE-2019-0841 EXPLOITDB HIGH text
Windows AppX Deployment Service - Privilege Escalation
An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0730, CVE-2019-0731, CVE-2019-0796, CVE-2019-0805, CVE-2019-0836.
by Nabeel Ahmed
CVSS 7.8
CVE-2019-25505 EXPLOITDB HIGH text
Tradebox 5.4 - Authenticated SQL Injection via Symbol Parameter
Tradebox 5.4 contains an SQL injection vulnerability that allows authenticated attackers to manipulate database queries by injecting SQL code through the symbol parameter. Attackers can send POST requests to the monthly_deposit endpoint with malicious symbol values using boolean-based blind, time-based blind, error-based, or union-based SQL injection techniques to extract sensitive database information.
by Abdullah Çelebi
CVSS 7.1
CVE-2019-25504 EXPLOITDB HIGH text
NCrypted Jobgator - Unauthenticated SQL Injection via Experience Parameter
NCrypted Jobgator contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the experience parameter. Attackers can send POST requests to the agents Find-Jobs endpoint with malicious experience values to extract sensitive database information.
by Ahmet Ümit BAYRAM
CVSS 8.2
CVE-2019-9592 EXPLOITDB MEDIUM text
ShoreTel Connect ONSITE <19.45.1602.0 - XSS
A reflected Cross-site scripting (XSS) vulnerability in ShoreTel Connect ONSITE 19.45.1602.0 allows remote attackers to inject arbitrary web script or HTML via the url parameter.
by Ramikan
CVSS 6.1
CVE-2019-9591 EXPLOITDB MEDIUM text
ShoreTel Connect ONSITE <19.49.1500.0 - XSS
A reflected Cross-site scripting (XSS) vulnerability in ShoreTel Connect ONSITE before 19.49.1500.0 allows remote attackers to inject arbitrary web script or HTML via the brandUrl parameter.
by Ramikan
CVSS 6.1
CVE-2019-9593 EXPLOITDB MEDIUM text
ShoreTel Connect ONSITE <18.82.2000.0 - XSS
A reflected Cross-site scripting (XSS) vulnerability in ShoreTel Connect ONSITE 18.82.2000.0 allows remote attackers to inject arbitrary web script or HTML via the page parameter.
by Ramikan
CVSS 6.1
CVE-2019-10893 EXPLOITDB MEDIUM text
CentOS Web Panel 0.9.8.793 Free and 0.9.8.753 Pro - Stored Cross-Site Scripting in Admin Email Field
CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.793 (Free/Open Source Version) and 0.9.8.753 (Pro) is vulnerable to Stored/Persistent XSS for Admin Email fields on the "CWP Settings > "Edit Settings" screen. By changing the email ID to any XSS Payload and clicking on Save Changes, the XSS Payload will execute.
by DKM
CVSS 4.8
CVE-2019-10273 EXPLOITDB MEDIUM text
ManageEngine ServiceDesk Plus 9.3 - Authenticated User Enumeration via Login Page
Information leakage vulnerability in the /mc login page in ManageEngine ServiceDesk Plus 9.3 software allows authenticated users to enumerate active users. Due to a flaw within the way the authentication is handled, an attacker is able to login and verify any active account.
by Operat0r
CVSS 4.3
CVE-2019-10887 EXPLOITDB MEDIUM text
Salicru SLC-20-cube3(5) - Reflected Cross-Site Scripting via DataLog.csv log Parameter
A reflected HTML injection vulnerability on Salicru SLC-20-cube3(5) devices running firmware version cs121-SNMP v4.54.82.130611 allows remote attackers to inject arbitrary HTML elements via a /DataLog.csv?log= or /AlarmLog.csv?log= or /waitlog.cgi?name= or /chart.shtml?data= or /createlog.cgi?name= request.
by Ramikan
CVSS 6.1
CVE-2019-25630 EXPLOITDB HIGH text
PhreeBooks ERP 5.2.3 Arbitrary File Upload via Image Manager
PhreeBooks ERP 5.2.3 contains an arbitrary file upload vulnerability in the Image Manager component that allows authenticated attackers to upload malicious files by submitting requests to the image upload endpoint. Attackers can upload PHP files through the imgFile parameter to the bizuno/image/manager endpoint and execute them via the bizunoFS.php script for remote code execution.
by Abdullah Çelebi
CVSS 8.8
CVE-2019-25481 EXPLOITDB HIGH text
iScripts ReserveLogic - SQL Injection
iScripts ReserveLogic contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the jqSearchDestination parameter. Attackers can send POST requests to the search endpoint with crafted SQL payloads to extract sensitive database information.
by Ahmet Ümit BAYRAM
CVSS 8.2
By Source
All 31,386 Writeup 62,526 Exploitdb 50,076 Nomisec 22,480 Github 3,713 Metasploit 3,315 Vulncheck_xdb 930 Inthewild 514 Gitlab 480 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,614 ruby 6,006 c 3,635 perl 2,849 html 2,076 php 1,333 bash 462 java 371 c++ 261 javascript 231 shell 137 go 73 postscript 25 typescript 25