Exploitdb Exploits
31,346 exploits tracked across all sources.
Live Call Support Widget 1.5 - Remote Code Execution / SQL Injection
by Ihsan Sencan
Find a Place CMS Directory 1.5 - SQL Injection
by Ihsan Sencan
Craigs Classified Ads CMS Theme 1.0.2 - SQL Injection
by Ihsan Sencan
Bigcart - Ecommerce Multivendor System 1.0 - SQL Injection
by Ihsan Sencan
AudioCodes IP phone 420HD <2.2.12.126 - RCE
AudioCodes IP phone 420HD devices using firmware version 2.2.12.126 allow Remote Code Execution.
by Sysdream
CVSS 8.8
Joomla! Component JoomProject 1.1.3.2 - Information Disclosure
by Ihsan Sencan
Joomla! Component JoomCRM 1.1.1 - SQL Injection
by Ihsan Sencan
Adapt Inventory Management System 1.0 - SQL Injection
by Ihsan Sencan
eBrigade ERP 4.5 SQL Injection via pdf.php
eBrigade ERP 4.5 contains an SQL injection vulnerability that allows authenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'id' parameter. Attackers can send GET requests to pdf.php with crafted SQL payloads in the 'id' parameter to extract sensitive database information including table names and schema details.
by Ihsan Sencan
CVSS 7.1
PEAR Archive_Tar <1.4.3 - Code Injection
PEAR Archive_Tar version 1.4.3 and earlier contains a CWE-502, CWE-915 vulnerability in the Archive_Tar class. There are several file operations with `$v_header['filename']` as parameter (such as file_exists, is_file, is_dir, etc). When extract is called without a specific prefix path, we can trigger unserialization by crafting a tar file with `phar://[path_to_malicious_phar_file]` as path. Object injection can be used to trigger destruct in the loaded PHP classes, e.g. the Archive_Tar class itself. With Archive_Tar object injection, arbitrary file deletion can occur because `@unlink($this->_temp_tarname)` is called. If another class with useful gadget is loaded, it may possible to cause remote code execution that can result in files being deleted or possibly modified. This vulnerability appears to have been fixed in 1.4.4.
by Fariskhi Vidyan
CVSS 8.8
Matrix MLM Script 1.0 - Information Disclosure
by Ihsan Sencan
Nelson-it Open Source Erp - SQL Injection
Nelson Open Source ERP v6.3.1 allows SQL Injection via the db/utils/query/data.xml query parameter.
by Emre ÖVÜNÇ
CVSS 9.8
Heatmiser Wifi Thermostat 1.7 Cross-Site Request Forgery
Heatmiser Wifi Thermostat 1.7 contains a cross-site request forgery vulnerability that allows attackers to change administrator credentials by tricking authenticated users into submitting malicious requests. Attackers can craft HTML forms targeting the networkSetup.htm endpoint with parameters usnm, usps, and cfps to modify the admin username and password without user consent.
by SajjadBnd
CVSS 4.3
BlogEngine.NET 3.3 - XML External Entity (XXE)
BlogEngine.NET 3.3 allows XXE attacks via the POST body to metaweblog.axd.
by Netsparker
CVSS 9.8
Windows - Privilege Escalation
An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC), aka "Windows ALPC Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windows 10, Windows Server 2019, Windows 10 Servers.
by Google Security Research
CVSS 7.8
ZTE Mf65 Firmware < 1.0.0b05 - XSS
All versions up to V1.0.0B05 of ZTE MF65 and all versions up to V1.0.0B02 of ZTE MF65M1 are impacted by cross-site scripting vulnerability. Due to improper neutralization of input during web page generation, an attacker could exploit this vulnerability to conduct reflected XSS or HTML injection attacks on the devices.
by Nathu Nandwani
CVSS 6.1
By Source