Text Exploits

31,364 exploits tracked across all sources.

Sort: Activity Stars
CVE-2018-14418 EXPLOITDB CRITICAL text
Msvod Cms v10 - SQL Injection
In Msvod Cms v10, SQL Injection exists via an images/lists?cid= URI.
by Hzllaga
CVSS 9.8
CVE-2018-13862 EXPLOITDB CRITICAL text
Touchpad / Trivum WebTouch Setup V9 V2.53 - Auth Bypass
Touchpad / Trivum WebTouch Setup V9 V2.53 build 13163 of Apr 6 2018 09:10:14 (FW 303) allow unauthorized remote attackers to reset the authentication via the "/xml/system/setAttribute.xml" URL, using the GET request "?id=0&attr=protectAccess&newValue=0" (a successful attack will allow attackers to login without authorization).
by vulnc0d3
CVSS 9.8
CVE-2018-14336 EXPLOITDB HIGH text
TP-Link WR840N - DoS
TP-Link WR840N devices allow remote attackers to cause a denial of service (connectivity loss) via a series of packets with random MAC addresses.
by Aniket Dinda
CVSS 7.5
CVE-2018-13832 EXPLOITDB MEDIUM text
Techotronic All IN One Favicon < 4.6 - XSS
Multiple Persistent cross-site scripting (XSS) issues in the Techotronic all-in-one-favicon (aka All In One Favicon) plugin 4.6 for WordPress allow remote attackers to inject arbitrary web script or HTML via Apple-Text, GIF-Text, ICO-Text, PNG-Text, or JPG-Text.
by Javier Olmedo
CVSS 4.8
CVE-2018-14392 EXPLOITDB MEDIUM text
MyBB <1.2 - XSS
The New Threads plugin before 1.2 for MyBB has XSS.
by 0xB9
CVSS 6.1
EIP-2026-103486 EXPLOITDB text VERIFIED
Google Chrome - Swiftshader Texture Allocation Integer Overflow
by Google Security Research
EIP-2026-112235 EXPLOITDB text
Smart SMS & Email Manager 3.3 - 'contact_type_id' SQL Injection
by AkkuS
EIP-2026-107295 EXPLOITDB text
FTP2FTP 1.0 - Arbitrary File Download
by AkkuS
CVE-2018-11124 EXPLOITDB MEDIUM text
Opmantek Open-audit < 2.2.2 - XSS
Cross-site scripting (XSS) vulnerability in Attributes functionality in Open-AudIT Community edition before 2.2.2 allows remote attackers to inject arbitrary web script or HTML via a crafted attribute name of an Attribute.
by Ranjeet Jaiswal
CVSS 5.4
CVE-2018-25148 EXPLOITDB HIGH text
Microhard Systems IPn4G 1.1.0 - Authenticated RCE
Microhard Systems IPn4G 1.1.0 contains multiple authenticated remote code execution vulnerabilities in the admin interface that allow attackers to create crontab jobs and modify system startup scripts. Attackers can exploit hidden admin features to execute arbitrary commands with root privileges, including starting services, disabling firewalls, and writing files to the system.
by LiquidWorm
CVSS 8.8
CVE-2018-25147 EXPLOITDB HIGH text
Microhard Systems IPn4G 1.1.0 - Privilege Escalation
Microhard Systems IPn4G 1.1.0 contains hardcoded default credentials that cannot be changed through normal gateway operations. Attackers can exploit these default credentials to gain unauthorized root-level access to the device by logging in with predefined username and password combinations.
by LiquidWorm
CVSS 7.5
CVE-2018-25146 EXPLOITDB HIGH text
Microhard Systems IPn4G 1.1.0 - Privilege Escalation
Microhard Systems IPn4G 1.1.0 contains an undocumented vulnerability that allows authenticated attackers to list and manipulate running system processes. Attackers can send arbitrary signals to kill background processes and system services through a hidden feature, potentially causing service disruption and requiring device restart.
by LiquidWorm
CVSS 8.1
CVE-2018-25145 EXPLOITDB MEDIUM text
Microhard Systems IPn4G 1.1.0 - Info Disclosure
Microhard Systems IPn4G 1.1.0 contains a configuration file disclosure vulnerability that allows authenticated attackers to download sensitive system configuration files. Attackers can retrieve configuration files from multiple directories including '/www', '/etc/m_cli/', and '/tmp' to access system passwords and network settings.
by LiquidWorm
CVSS 6.5
CVE-2018-25144 EXPLOITDB HIGH text
Microhard Systems IPn4G 1.1.0 - Auth Bypass
Microhard Systems IPn4G 1.1.0 contains an authentication bypass vulnerability in the hidden system-editor.sh script that allows authenticated attackers to read, modify, or delete arbitrary files. Attackers can exploit unsanitized 'path', 'savefile', 'edit', and 'delfile' parameters to perform unauthorized file system modifications through GET and POST requests.
by LiquidWorm
CVSS 8.4
CVE-2018-25143 EXPLOITDB HIGH text
Microhard Systems IPn4G 1.1.0 - Privilege Escalation
Microhard Systems IPn4G 1.1.0 contains a service vulnerability that allows authenticated users to enable a restricted SSH shell with a default 'msshc' user. Attackers can exploit a custom 'ping' command in the NcFTP environment to escape the restricted shell and execute commands with root privileges.
by LiquidWorm
CVSS 8.8
EIP-2026-117480 EXPLOITDB text
Microsoft Enterprise Mode Site List Manager - XML External Entity Injection
by hyp3rlinx
EIP-2026-113846 EXPLOITDB text
WordPress Plugin Job Manager 4.1.0 - Cross-Site Scripting
by Berk Dusunur
CVE-2018-13784 EXPLOITDB CRITICAL text
PrestaShop <1.6.1.20 & <1.7.3.4 - Info Disclosure
PrestaShop before 1.6.1.20 and 1.7.x before 1.7.3.4 mishandles cookie encryption in Cookie.php, Rinjdael.php, and Blowfish.php.
by Charles Fol
CVSS 9.1
EIP-2026-103540 EXPLOITDB text VERIFIED
macOS/iOS - JavaScript Injection Bug in OfficeImporter
by Google Security Research
CVE-2018-12463 EXPLOITDB CRITICAL text VERIFIED
Fortify SSC <18.1 - SSRF
An XML external entity (XXE) vulnerability in Fortify Software Security Center (SSC), version 17.1, 17.2, 18.1 allows remote unauthenticated users to read arbitrary files or conduct server-side request forgery (SSRF) attacks via a crafted DTD in an XML request.
by alt3kx
CVSS 9.8
CVE-2018-14064 EXPLOITDB CRITICAL text
VelotiSmart WiFi B-380 - Path Traversal
The uc-http service 1.0.0 on VelotiSmart WiFi B-380 camera devices allows Directory Traversal, as demonstrated by /../../etc/passwd on TCP port 80.
by Miguel Mendez Z
CVSS 9.8
CVE-2018-13980 EXPLOITDB MEDIUM text
Zeta-producer Zeta Producer < 14.2.1 - Path Traversal
The websites that were built from Zeta Producer Desktop CMS before 14.2.1 are vulnerable to unauthenticated file disclosure if the plugin "filebrowser" is installed, because of assets/php/filebrowser/filebrowser.main.php?file=../ directory traversal.
by SEC Consult
CVSS 5.5
CVE-2018-12980 EXPLOITDB HIGH text VERIFIED
Wago 762-3000 Firmware < 02 - Unrestricted File Upload
An issue was discovered on WAGO e!DISPLAY 762-3000 through 762-3003 devices with firmware before FW 02. The vulnerability allows an authenticated user to upload arbitrary files to the file system with the permissions of the web server.
by SEC Consult
CVSS 8.8
CVE-2018-12979 EXPLOITDB MEDIUM text VERIFIED
Wago 762-3000 Firmware < 02 - Incorrect Permission Assignment
An issue was discovered on WAGO e!DISPLAY 762-3000 through 762-3003 devices with firmware before FW 02. Weak permissions allow an authenticated user to overwrite critical files by abusing the unrestricted file upload in the WBM.
by SEC Consult
CVSS 6.5
CVE-2018-0709 EXPLOITDB HIGH text VERIFIED
Qnap Q'center < 1.7.1063 - OS Command Injection
Command injection vulnerability in date of QNAP Q'center Virtual Appliance version 1.7.1063 and earlier could allow authenticated users to run arbitrary commands.
by Core Security
CVSS 8.8
By Source
All 31,364 Writeup 53,536 Exploitdb 50,186 Nomisec 21,428 Metasploit 3,228 Github 2,586 Vulncheck_xdb 904 Inthewild 518 Gitlab 441 Gitee 415 Patchapalooza 312
By Language
text 31,364 ruby 5,960 python 5,948 c 3,580 perl 2,854 html 2,056 php 1,334 bash 459 java 362 javascript 260 c++ 250 shell 95 go 55 postscript 25 xml 24