Text Exploits
31,346 exploits tracked across all sources.
Linux kernel <4.20.8 - Use After Free
In the Linux kernel before 4.20.8, kvm_ioctl_create_device in virt/kvm/kvm_main.c mishandles reference counting because of a race condition, leading to a use-after-free.
by Google Security Research
CVSS 8.1
Booking Calendar - SQL Injection
SQL injection vulnerability in Booking Calendar plugin 8.4.3 for WordPress allows remote attackers to execute arbitrary SQL commands via the booking_id parameter.
by B0UG
CVSS 8.8
Layerbb - CSRF
LayerBB before 1.1.3 allows CSRF for adding a user via admin/new_user.php, deleting a user via admin/members.php/delete_user/, and deleting content via mod/delete.php/.
by 0xB9
CVSS 6.5
DomainMOD 4.11.01 - XSS
DomainMOD 4.11.01 has XSS via the assets/add/ssl-provider.php SSL Provider Name or SSL Provider URL field.
by Mohammed Abdul Raheem
CVSS 4.8
DomainMOD 4.11.01 - XSS
DomainMOD 4.11.01 has XSS via the assets/add/ssl-provider-account.php username field.
by Mohammed Abdul Raheem
CVSS 4.8
DomainMOD 4.11.01 - XSS
DomainMOD 4.11.01 has XSS via the assets/add/category.php Category Name or Stakeholder field.
by Mohammed Abdul Raheem
CVSS 4.8
DomainMOD <4.11.01 - XSS
DomainMOD through 4.11.01 has XSS via the assets/edit/host.php Web Host Name or Web Host URL field.
by Mohammed Abdul Kareem
CVSS 4.8
DomainMOD <4.11.01 - XSS
DomainMOD through 4.11.01 has XSS via the assets/add/dns.php Profile Name or notes field.
by Mohammed Abdul Kareem
CVSS 4.8
PilusCart 1.4.1 SQL Injection via send Parameter
PilusCart 1.4.1 contains a SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'send' parameter. Attackers can submit POST requests to the comment submission endpoint with RLIKE-based boolean SQL injection payloads to extract sensitive database information.
by Mehmet EMIROGLU
CVSS 8.2
Rukovoditel <2.4.1 - XSS
Rukovoditel through 2.4.1 allows XSS via a URL that lacks a module=users%2flogin substring.
by Mehmet EMIROGLU
CVSS 6.1
OPNsense 19.1 - XSS
OPNsense 19.1 contains a reflected cross-site scripting vulnerability in the system_advanced_sysctl.php endpoint that allows attackers to inject malicious scripts via the value parameter. Attackers can craft POST requests with script payloads in the value parameter to execute JavaScript in the context of authenticated user sessions.
by Ozer Goker
CVSS 5.4
OPNsense 19.1 - XSS
OPNsense 19.1 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by submitting crafted payloads through the ignoreLogACL parameter. Attackers can send POST requests to the proxy endpoint with JavaScript code in the ignoreLogACL parameter to execute arbitrary scripts in users' browsers.
by Ozer Goker
CVSS 6.1
OPNsense 19.1 - XSS
OPNsense 19.1 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by submitting crafted input to the mailserver parameter. Attackers can send POST requests to the monit interface with JavaScript payloads in the mailserver parameter to execute arbitrary code in users' browsers.
by Ozer Goker
CVSS 6.1
OPNsense 19.1 - XSS
OPNsense 19.1 contains a reflected cross-site scripting vulnerability that allows attackers to inject malicious scripts by exploiting the passthrough_networks parameter in vpn_ipsec_settings.php. Attackers can craft POST requests with JavaScript payloads in the passthrough_networks parameter to execute arbitrary code in users' browsers.
by Ozer Goker
CVSS 6.1
OPNsense 19.1 - XSS
OPNsense 19.1 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by submitting crafted input to the category parameter. Attackers can send POST requests to firewall_rules_edit.php with script payloads in the category field to execute arbitrary JavaScript in the browsers of other users accessing firewall rule pages.
by Ozer Goker
CVSS 6.4
OPNsense 19.1 - XSS
OPNsense 19.1 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by exploiting insufficient input validation in the host parameter. Attackers can submit crafted payloads through POST requests to diag_traceroute.php to execute arbitrary JavaScript in the context of a user's browser session.
by Ozer Goker
CVSS 6.1
OPNsense 19.1 - XSS
OPNsense 19.1 contains a reflected cross-site scripting vulnerability that allows attackers to inject malicious scripts by submitting crafted input through multiple parameters. Attackers can send POST requests to interfaces_vlan_edit.php with script payloads in the tag, descr, or vlanif parameters to execute arbitrary JavaScript in users' browsers.
by Ozer Goker
CVSS 6.1
OPNsense 19.1 - XSS
OPNsense 19.1 contains a stored cross-site scripting vulnerability in the system_advanced_sysctl.php endpoint that allows attackers to inject persistent malicious scripts via the tunable parameter. Attackers can submit POST requests with script payloads that are stored and executed in the context of authenticated user sessions when the page is viewed.
by Ozer Goker
CVSS 6.4
OPNsense 19.1 - XSS
OPNsense 19.1 contains multiple cross-site scripting vulnerabilities in the diag_backup.php endpoint that allow attackers to inject malicious scripts through multiple parameters including GDrive_GDriveEmail, GDrive_GDriveFolderID, GDrive_GDriveBackupCount, Nextcloud_url, Nextcloud_user, Nextcloud_password, Nextcloud_password_encryption, and Nextcloud_backupdir. Attackers can submit POST requests with script payloads in these parameters to execute arbitrary JavaScript in the context of authenticated administrator sessions.
by Ozer Goker
CVSS 5.4
OPNsense 19.1 - XSS
OPNsense 19.1 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by exploiting insufficient input validation in the host parameter. Attackers can submit crafted POST requests to the diag_ping.php endpoint with script payloads in the host parameter to execute arbitrary JavaScript in users' browsers.
by Ozer Goker
CVSS 6.1
Android - Memory Corruption
In several functions of binder.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID: A-120025789.
by Google Security Research
CVSS 7.8
Google Android - Double Free
In binder_alloc_free_page of binder_alloc.c, there is a possible double free due to improper locking. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID: A-120025196.
by Google Security Research
CVSS 7.8
IPFire 2.21 Core Update 127 - XSS
IPFire 2.21 Core Update 127 contains a reflected cross-site scripting vulnerability in the updatexlrator.cgi script that allows attackers to inject malicious scripts through POST parameters. Attackers can submit crafted requests with script payloads in the MAX_DISK_USAGE or MAX_DOWNLOAD_RATE parameters to execute arbitrary JavaScript in users' browsers.
by Ozer Goker
CVSS 6.1
By Source