Text Exploits

31,386 exploits tracked across all sources.

Sort: Activity Stars
CVE-2019-25254 EXPLOITDB HIGH text
KYOCERA Net Admin 3.4.0906 - Cross-Site Request Forgery via Administrative User Creation
KYOCERA Net Admin 3.4.0906 contains a cross-site request forgery vulnerability that allows attackers to create administrative users without proper request validation. Attackers can craft malicious web pages that automatically submit forms to add new admin accounts with predefined credentials when a logged-in user visits the page.
by LiquidWorm
CVSS 8.8
CVE-2019-25253 EXPLOITDB HIGH text
KYOCERA Net Admin 3.4.0906 - XXE Injection
KYOCERA Net Admin 3.4.0906 contains an XML External Entity (XXE) injection vulnerability in the Multi-Set Template Editor that allows unauthenticated attackers to read arbitrary system files. Attackers can craft a malicious XML file with external entity references to retrieve sensitive configuration data like database credentials through an out-of-band channel attack.
by LiquidWorm
CVSS 7.5
CVE-2018-9238 EXPLOITDB MEDIUM text
Yahei-PHP Proberv 0.4.7 - Cross-Site Scripting via funName Parameter
proberv.php in Yahei-PHP Proberv 0.4.7 has XSS via the funName parameter.
by ManhNho
CVSS 6.1
CVE-2018-9118 EXPLOITDB HIGH text
99 Robots WP Background Takeover Advertisements < 4.1.5 - Path Traversal via Filename Parameter
exports/download.php in the 99 Robots WP Background Takeover Advertisements plugin before 4.1.5 for WordPress has Directory Traversal via a .. in the filename parameter.
by Colette Chamberland
CVSS 7.5
CVE-2018-8813 EXPLOITDB MEDIUM text
WolfCMS 0.8.3.1 - Open Redirect via Login Redirect Parameter
Open redirect vulnerability in the login[redirect] parameter login functionality in WolfCMS 0.8.3.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a malformed URL.
by Sureshbabu Narvaneni
CVSS 4.8
CVE-2018-8814 EXPLOITDB MEDIUM text
WolfCMS 0.8.3.1 - Cross-Site Request Forgery in Plugin Settings
Cross-site request forgery (CSRF) vulnerability in WolfCMS 0.8.3.1 allows remote attackers to hijack the authentication of users for requests that modify plugin/[pluginname]/settings by crafting a malicious request.
by Sureshbabu Narvaneni
CVSS 6.5
CVE-2018-9235 EXPLOITDB MEDIUM text
iScripts SonicBB 1.0 - Reflected Cross-Site Scripting via Search Query Parameter
iScripts SonicBB 1.0 has Reflected Cross-Site Scripting via the query parameter to search.php.
by ManhNho
CVSS 6.1
CVE-2018-7745 EXPLOITDB HIGH text
Western Bridge Cobub Razor 0.7.2 - Info Disclosure
An issue was discovered in Western Bridge Cobub Razor 0.7.2. Authentication is not required for /index.php?/install/installation/createuserinfo requests, resulting in account creation.
by ppb
CVSS 7.5
CVE-2018-4121 EXPLOITDB HIGH text VERIFIED
Safari < 11.1 - Remote Code Execution via WebKit Memory Corruption
An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.
by Google Security Research
CVSS 8.8
CVE-2018-9842 EXPLOITDB MEDIUM text
CyberArk Password Vault < 9.7 - Exposure of Sensitive Information via Logon Message Replay
CyberArk Password Vault before 9.7 allows remote attackers to obtain sensitive information from process memory by replaying a logon message.
by RedTeam Pentesting
CVSS 5.3
CVE-2018-9843 EXPLOITDB CRITICAL text
CyberArk Password Vault < 9.9.5 and 10.x < 10.1 - Remote Code Execution via REST API Authorization Header
The REST API in CyberArk Password Vault Web Access before 9.9.5 and 10.x before 10.1 allows remote attackers to execute arbitrary code via a serialized .NET object in an Authorization HTTP header.
by RedTeam Pentesting
CVSS 9.8
CVE-2018-9126 EXPLOITDB CRITICAL text
DNNArticle 11 for DNN - Unauthenticated Sensitive Information Exposure via GetCSS.ashx URI
The DNNArticle module 11 for DNN (formerly DotNetNuke) allows remote attackers to read the web.config file, and consequently discover database credentials, via the /GetCSS.ashx/?CP=%2fweb.config URI.
by Esmaeil Rahimian
CVSS 9.8
CVE-2018-9233 EXPLOITDB HIGH text
Sophos Endpoint Protection 10.7 - Info Disclosure
Sophos Endpoint Protection 10.7 uses an unsalted SHA-1 hash for password storage in %PROGRAMDATA%\Sophos\Sophos Anti-Virus\Config\machine.xml, which makes it easier for attackers to determine a cleartext password, and subsequently choose unsafe malware settings, via rainbow tables or other approaches.
by hyp3rlinx
CVSS 7.8
CVE-2018-4863 EXPLOITDB MEDIUM text
Sophos Endpoint Protection 10.7 - Tamper Protection Bypass via Registry Key Deletion
Sophos Endpoint Protection 10.7 allows local users to bypass an intended tamper protection mechanism by deleting the HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Sophos Endpoint Defense\ registry key.
by hyp3rlinx
CVSS 5.5
CVE-2018-7746 EXPLOITDB HIGH text VERIFIED
Western Bridge Cobub Razor 0.7.2 - Stored XSS
An issue was discovered in Western Bridge Cobub Razor 0.7.2. Authentication is not required for /index.php?/manage/channel/modifychannel. For example, with a crafted channel name, stored XSS is triggered during a later /index.php?/manage/channel request by an admin.
by ppb
CVSS 8.8
CVE-2018-9248 EXPLOITDB CRITICAL text
FiberHome VDSL2 Modem HG 150-UB Firmware - Authentication Bypass via Cookie Header
FiberHome VDSL2 Modem HG 150-UB devices allow authentication bypass via a "Cookie: Name=0admin" header.
by Noman Riffat
CVSS 9.8
CVE-2017-0781 EXPLOITDB HIGH text
Android 4.4.4 5.0.2 5.1.1 6.0 6.0.1 7.0 7.1.1 7.1.2 8.0 - Remote Code Execution in Bluetooth
A remote code execution vulnerability in the Android system (bluetooth). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63146105.
by Marcin Kozlowski
CVSS 8.8
CVE-2018-25248 EXPLOITDB HIGH text
MyBB Downloads Plugin 2.0.3 Persistent XSS via downloads.php
MyBB Downloads Plugin 2.0.3 contains a persistent cross-site scripting vulnerability that allows regular members to inject malicious scripts through the download title field. Attackers can submit a new download with HTML/JavaScript code in the title parameter, which executes when administrators validate the download in downloads.php.
by 0xB9
CVSS 7.2
CVE-2018-0986 EXPLOITDB HIGH text VERIFIED
Microsoft Malware Protection Engine - Remote Code Execution via Crafted File Scan
A remote code execution vulnerability exists when the Microsoft Malware Protection Engine does not properly scan a specially crafted file, leading to memory corruption, aka "Microsoft Malware Protection Engine Remote Code Execution Vulnerability." This affects Windows Defender, Windows Intune Endpoint Protection, Microsoft Security Essentials, Microsoft System Center Endpoint Protection, Microsoft Exchange Server, Microsoft System Center, Microsoft Forefront Endpoint Protection.
by Google Security Research
CVSS 8.8
CVE-2018-7737 EXPLOITDB MEDIUM text
Z-BlogPHP <1.5.1.1740 - Info Disclosure
In Z-BlogPHP 1.5.1.1740, there is Web Site physical path leakage, as demonstrated by admin_footer.php or admin_footer.php. NOTE: the software maintainer disputes that this is a vulnerability
by zzw
CVSS 5.3
CVE-2018-7736 EXPLOITDB MEDIUM text
Z-BlogPHP 1.5.1.1740 - Cross-Site Scripting via cmd.php Parameters
In Z-BlogPHP 1.5.1.1740, cmd.php has XSS via the ZC_BLOG_SUBNAME parameter or ZC_UPLOAD_FILETYPE parameter. NOTE: the software maintainer disputes that this is a vulnerability
by zzw
CVSS 6.1
CVE-2018-7653 EXPLOITDB MEDIUM text
YzmCMS 3.6 - Cross-Site Scripting via Index.php Parameters
In YzmCMS 3.6, index.php has XSS via the a, c, or m parameter.
by zzw
CVSS 6.1
CVE-2018-8729 EXPLOITDB MEDIUM text
WordPress Activity Log <2.4.1 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in the Activity Log plugin before 2.4.1 for WordPress allow remote attackers to inject arbitrary JavaScript or HTML via a title that is not escaped.
by Stefan Broeder
CVSS 6.1
CVE-2018-9183 EXPLOITDB MEDIUM text
Joom Sky JS Jobs < 1.2.1 - Cross-Site Scripting
The Joom Sky JS Jobs extension before 1.2.1 for Joomla! has XSS.
by Sureshbabu Narvaneni
CVSS 5.4
CVE-2018-9173 EXPLOITDB MEDIUM text
GetSimple CMS 3.3.13 - Cross-Site Scripting via uploadify.swf movieName Parameter
Cross-site scripting (XSS) vulnerability in admin/template/js/uploadify/uploadify.swf in GetSimple CMS 3.3.13 allows remote attackers to inject arbitrary web script or HTML, as demonstrated by the movieName parameter.
by Sureshbabu Narvaneni
CVSS 6.1