Text Exploits
31,346 exploits tracked across all sources.
Care2x 2.7 (HIS) Hospital Information System - Multiple SQL Injection
by Carlos Avila
Logonbox Nervepoint Access Manager - IDOR
An unauthenticated Insecure Direct Object Reference (IDOR) in Wicket Core in LogonBox Nervepoint Access Manager 2013 through 2017 allows a remote attacker to enumerate internal Active Directory usernames and group names, and alter back-end server jobs (backup and synchronization jobs), which could allow for the possibility of a Denial of Service attack via a modified jobId parameter in a runJob.html GET request.
by 0v3rride
CVSS 9.4
Pagerduty Rundeck < 3.0.13 - XSS
An XSS issue was discovered on the Job Edit page in Rundeck Community Edition before 3.0.13, related to assets/javascripts/workflowStepEditorKO.js and views/execution/_wfitemEdit.gsp.
by Ishaq Mohammed
CVSS 6.1
Cisco Secure Firewall Management Center - XSS
A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of the affected software. The vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of the affected software. An attacker could exploit this vulnerability by persuading a user of the interface to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information.
by Bhushan B. Patil
CVSS 6.1
Green CMS 2.x Path Traversal Arbitrary File Download
Green CMS 2.x contains a path traversal vulnerability that allows authenticated attackers to download arbitrary files and directories by injecting directory traversal sequences. Attackers can manipulate the theme_name parameter in the themeexporthandle action or supply base64-encoded file paths to the downfile action to retrieve sensitive files outside intended directories.
by Ihsan Sencan
CVSS 6.5
Green CMS 2.x SQL Injection via cat Parameter
Green CMS 2.x contains an SQL injection vulnerability that allows authenticated attackers to execute arbitrary SQL queries by injecting malicious code through the cat parameter. Attackers can send GET requests to index.php with m=admin, c=posts, a=index parameters and inject SQL code in the cat parameter to manipulate database queries and extract sensitive information.
by Ihsan Sencan
CVSS 7.1
Kaine Wise Chat < 2.7 - Open Redirect
The Wise Chat plugin before 2.7 for WordPress mishandles external links because rendering/filters/post/WiseChatLinksPostFilter.php omits noopener and noreferrer.
by MTK
CVSS 6.1
Lua - Use After Free
Lua 5.3.5 has a use-after-free in lua_upvaluejoin in lapi.c. For example, a crash outcome might be achieved by an attacker who is able to trigger a debug.upvaluejoin call in which the arguments have certain relationships.
by Fady Mohammed Osman
CVSS 7.5
Cisco Rv320 Firmware < 1.4.2.22 - OS Command Injection
A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an authenticated, remote attacker with administrative privileges on an affected device to execute arbitrary commands. The vulnerability is due to improper validation of user-supplied input. An attacker could exploit this vulnerability by sending malicious HTTP POST requests to the web-based management interface of an affected device. A successful exploit could allow the attacker to execute arbitrary commands on the underlying Linux shell as root. Cisco has released firmware updates that address this vulnerability.
by RedTeam Pentesting
CVSS 7.2
ImpressCMS 1.3.11 SQL Injection via bid Parameter
ImpressCMS 1.3.11 contains a time-based blind SQL injection vulnerability that allows authenticated attackers to manipulate database queries by injecting SQL code through the 'bid' parameter. Attackers can send POST requests to the admin.php endpoint with malicious 'bid' values containing SQL commands to extract sensitive database information.
by Mehmet Onder
CVSS 7.1
SimplePress CMS 1.0.7 SQL Injection via p and s Parameters
SimplePress CMS 1.0.7 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'p' and 's' parameters. Attackers can send GET requests with crafted SQL payloads to extract sensitive database information including usernames, database names, and version details.
by Ihsan Sencan
CVSS 8.2
Joomla! Component JHotelReservation 6.0.7 - SQL Injection
by Ihsan Sencan
Joomla! Component J-CruisePortal 6.0.4 - SQL Injection
by Ihsan Sencan
Artifex Ghostscript < 9.26 - Remote Code Execution
In Artifex Ghostscript through 9.26, ephemeral or transient procedures can allow access to system operators, leading to remote code execution.
by Google Security Research
CVSS 7.8
Alliedtelesis 8100l/8 Firmware - XSS
Allied Telesis 8100L/8 devices allow XSS via the edit-ipv4_interface.php vlanid or subnet_mask parameter.
by AkkuS
CVSS 6.1
Microsoft Windows CONTACT - HTML Injection / Remote Code Execution
by hyp3rlinx
Joomla! Component vBizz 1.0.7 - Remote Code Execution
by Ihsan Sencan
Joomla! Component vAccount 2.0.2 - 'vid' SQL Injection
by Ihsan Sencan
Joomla! Component JMultipleHotelReservation 6.0.7 - SQL Injection
by Ihsan Sencan
Joomla! Component J-ClassifiedsManager 3.0.5 - SQL Injection
by Ihsan Sencan
By Source