Text Exploits

31,386 exploits tracked across all sources.

Sort: Activity Stars
CVE-2018-25311 EXPLOITDB MEDIUM text
VideoFlow Digital Video Protection DVP 10 Authenticated Directory Traversal 2.10 (X-Prototype-Version: 1.6.0.2)
VideoFlow Digital Video Protection DVP 2.10 contains an authenticated directory traversal vulnerability that allows attackers with valid credentials to disclose arbitrary files by injecting path traversal sequences in the ID parameter. Attackers can submit requests to downloadsys.pl, download_xml.pl, download.pl, downloadmib.pl, or downloadFile.pl with directory traversal payloads to read sensitive system files like /etc/passwd.
by LiquidWorm
CVSS 6.5
CVE-2018-25310 EXPLOITDB MEDIUM text
VideoFlow Digital Video Protection DVP 10 Authenticated Remote Code Execution
VideoFlow Digital Video Protection DVP 2.10 contains an authenticated remote code execution vulnerability that allows authenticated attackers to execute arbitrary system commands by exploiting a cross-site request forgery flaw in the web management interface. Attackers with valid credentials can leverage the CSRF vulnerability to inject and execute system commands through the Tools > System > Shell interface, gaining root-level access to the device.
by LiquidWorm
CVSS 4.3
CVE-2019-25256 EXPLOITDB MEDIUM text
VideoFlow Digital Video Protection DVP 2.10 - Path Traversal
VideoFlow Digital Video Protection DVP 2.10 contains an authenticated directory traversal vulnerability that allows attackers to access arbitrary system files through unvalidated 'ID' parameters. Attackers can exploit multiple Perl scripts like downloadsys.pl to read sensitive files by manipulating directory path traversal in download requests.
by LiquidWorm
CVSS 6.5
CVE-2019-25255 EXPLOITDB MEDIUM text
VideoFlow DVP 2.10 - Authenticated RCE
VideoFlow Digital Video Protection DVP 2.10 contains an authenticated remote code execution vulnerability that allows attackers to execute system commands with root privileges. Attackers can exploit the vulnerability through a cross-site request forgery (CSRF) mechanism to gain unauthorized system access.
by LiquidWorm
CVSS 4.3
EIP-2026-118095 EXPLOITDB text
WebLog Expert Enterprise 9.4 - Privilege Escalation
by bzyo
CVE-2018-8732 EXPLOITDB MEDIUM text VERIFIED
WampServer 3.1.1 - Cross-Site Scripting via Virtual Del Parameter
Cross-site scripting (XSS) vulnerability in WampServer 3.1.1 allows remote attackers to inject arbitrary web script or HTML via the virtual_del parameter.
by Vipin Chaudhary
CVSS 5.4
CVE-2018-8815 EXPLOITDB MEDIUM text
Alkacon OpenCMS 10.5.3 - Cross-Site Scripting via SVG Image in Gallery Function
Cross-site scripting (XSS) vulnerability in the gallery function in Alkacon OpenCMS 10.5.3 allows remote attackers to inject arbitrary web script or HTML via a malicious SVG image.
by Sureshbabu Narvaneni
CVSS 4.6
CVE-2018-5708 EXPLOITDB HIGH text
D-Link DIR-601 B1 2.02NA - Info Disclosure
An issue was discovered on D-Link DIR-601 B1 2.02NA devices. Being on the same local network as, but being unauthenticated to, the administrator's panel, a user can obtain the admin username and cleartext password in the response (specifically, the configuration file restore_default), which is displayed in XML.
by Kevin Randall
CVSS 8.0
CVE-2018-25318 EXPLOITDB CRITICAL text
Tenda FH303/A300 V5.07.68_EN Cookie Session Weakness DNS Change
Tenda FH303/A300 firmware V5.07.68_EN contains a session weakness vulnerability that allows unauthenticated attackers to modify DNS settings by exploiting insufficient cookie validation. Attackers can send GET requests to the /goform/AdvSetDns endpoint with a crafted admin cookie to change DNS servers and redirect user traffic to malicious sites.
by Todor Donev
CVSS 9.8
CVE-2018-25317 EXPLOITDB CRITICAL text
Tenda W3002R/A302/W309R V5.07.64_en Cookie Session Weakness DNS Change
Tenda W3002R/A302/W309R wireless routers version V5.07.64_en contain a cookie session weakness vulnerability that allows unauthenticated attackers to modify DNS settings by exploiting insufficient session validation. Attackers can send GET requests to the /goform/AdvSetDns endpoint with a crafted admin language cookie to change primary and secondary DNS servers, redirecting user traffic to malicious DNS servers.
by Todor Donev
CVSS 9.8
CVE-2018-25316 EXPLOITDB CRITICAL text
Tenda W308R v2 V5.07.48 Cookie Session Weakness DNS Change
Tenda W308R v2 V5.07.48 contains a cookie session weakness vulnerability that allows unauthenticated attackers to modify DNS settings by exploiting insufficient session validation. Attackers can send GET requests to the goform/AdvSetDns endpoint with a crafted admin language cookie to change DNS servers and redirect user traffic to malicious sites.
by Todor Donev
CVSS 9.8
CVE-2018-8719 EXPLOITDB MEDIUM text
WP Security Audit Log <3.1.1 - Info Disclosure
An issue was discovered in the WP Security Audit Log plugin 3.1.1 for WordPress. Access to wp-content/uploads/wp-security-audit-log/* files is not restricted. For example, these files are indexed by Google and allows for attackers to possibly find sensitive information.
by Colette Chamberland
CVSS 5.3
CVE-2018-9034 EXPLOITDB MEDIUM text
Relevanssi < 4.0.4 - Cross-Site Scripting via Tab GET Parameter
Cross-site scripting (XSS) vulnerability in lib/interface.php of the Relevanssi plugin 4.0.4 for WordPress allows remote attackers to inject arbitrary JavaScript or HTML via the tab GET parameter.
by Stefan Broeder
CVSS 5.4
CVE-2018-9035 EXPLOITDB CRITICAL text
Contact Form 7 to Database Ext <2.10.32 - Code Injection
CSV Injection vulnerability in ExportToCsvUtf8.php of the Contact Form 7 to Database Extension plugin 2.10.32 for WordPress allows remote attackers to inject spreadsheet formulas into CSV files via the contact form.
by Stefan Broeder
CVSS 9.6
CVE-2018-9106 EXPLOITDB HIGH text VERIFIED
Acyba AcySMS < 3.5.0 - CSV Injection via Export Feature
CSV Injection (aka Excel Macro Injection or Formula Injection) exists in the export feature in the Acyba AcySMS extension before 3.5.1 for Joomla! via a value that is mishandled in a CSV export.
by Sureshbabu Narvaneni
CVSS 8.8
CVE-2018-9107 EXPLOITDB HIGH text VERIFIED
Acyba AcyMailing <5.9.6 - CSV Injection
CSV Injection (aka Excel Macro Injection or Formula Injection) exists in the export feature in the Acyba AcyMailing extension before 5.9.6 for Joomla! via a value that is mishandled in a CSV export.
by Sureshbabu Narvaneni
CVSS 8.8
CVE-2018-9032 EXPLOITDB CRITICAL text
D-Link DIR-850L Firmware 1.02-2.06 - Authentication Bypass via SharePort Web Access Portal
An authentication bypass vulnerability on D-Link DIR-850L Wireless AC1200 Dual Band Gigabit Cloud Router (Hardware Version : A1, B1; Firmware Version : 1.02-2.06) devices potentially allows attackers to bypass SharePort Web Access Portal by directly visiting /category_view.php or /folder_view.php.
by Gem George
CVSS 9.8
CVE-2018-8979 EXPLOITDB HIGH text
Open-audit - Cross-Site Request Forgery
Open-AudIT Professional 2.1 has CSRF, as demonstrated by modifying a user account or inserting XSS sequences via the credentials URI.
by Nilesh Sapariya
CVSS 8.8
EIP-2026-100586 EXPLOITDB text
Tenda W316R Wireless Router 5.07.50 - Remote DNS Change
by Todor Donev
CVE-2018-0878 EXPLOITDB LOW text VERIFIED
Windows Remote Assistance - Information Disclosure via XML External Entity Processing
Windows Remote Assistance in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to how XML External Entities (XXE) are processed, aka "Windows Remote Assistance Information Disclosure Vulnerability".
by Nabeel Ahmed
CVSS 3.1
CVE-2018-8903 EXPLOITDB MEDIUM text
Open-AudIT Professional 2.1 - Stored Cross-Site Scripting via Credentials Name or Description Field
Open-AudIT Professional 2.1 allows XSS via the Name or Description field on the Credentials screen.
by Nilesh Sapariya
CVSS 5.4
CVE-2018-7203 EXPLOITDB MEDIUM text
Twonky Server 7.0.11-8.5 - Cross-Site Scripting via Friendlyname Parameter
Cross-site scripting (XSS) vulnerability in Twonky Server 7.0.11 through 8.5 allows remote attackers to inject arbitrary web script or HTML via the friendlyname parameter to rpc/set_all.
by Sven Fassbender
CVSS 6.1
CVE-2017-17020 EXPLOITDB HIGH text
D-Link DCS-5009 <1.08.11, DCS-5010 <1.14.09, DCS-5020L <1.15.01 Authenticated OS Command Injection
On D-Link DCS-5009 devices with firmware 1.08.11 and earlier, DCS-5010 devices with firmware 1.14.09 and earlier, and DCS-5020L devices with firmware before 1.15.01, command injection in alphapd (binary responsible for running the camera's web server) allows remote authenticated attackers to execute code through sanitized /setSystemAdmin user input in the AdminID field being passed directly to a call to system.
by Fidus InfoSecurity
CVSS 8.8
CVE-2018-7719 EXPLOITDB HIGH text
Acrolinx Server <5.2.5 - Path Traversal
Acrolinx Server before 5.2.5 on Windows allows Directory Traversal.
by Berk Dusunur
CVSS 7.5
EIP-2026-117393 EXPLOITDB text
LabF nfsAxe 3.7 - Privilege Escalation
by bzyo