Text Exploits

31,386 exploits tracked across all sources.

Sort: Activity Stars
CVE-2017-15048 EXPLOITDB HIGH text VERIFIED
Zoom < 2.0.115900.1201 - Remote Code Execution via zoommtg:// Scheme Handler
Stack-based buffer overflow in the ZoomLauncher binary in the Zoom client for Linux before 2.0.115900.1201 allows remote attackers to execute arbitrary code by leveraging the zoommtg:// scheme handler.
by Conviso
CVSS 8.8
CVE-2017-15049 EXPLOITDB HIGH text VERIFIED
Zoom < 2.0.115900.1201 - Remote Code Execution via zoommtg:// Scheme Handler
The ZoomLauncher binary in the Zoom client for Linux before 2.0.115900.1201 does not properly sanitize user input when constructing a shell command, which allows remote attackers to execute arbitrary code by leveraging the zoommtg:// scheme handler.
by Conviso
CVSS 8.8
EIP-2026-109594 EXPLOITDB text VERIFIED
Movie Guide 2.0 - SQL Injection
by Ihsan Sencan
CVE-2017-17649 EXPLOITDB MEDIUM text
Readymade Video Sharing Script 3.2 - HTML Injection via Comment Parameter
Readymade Video Sharing Script 3.2 has HTML Injection via the single-video-detail.php comment parameter.
by Ihsan Sencan
CVSS 6.1
CVE-2017-10682 EXPLOITDB CRITICAL text
Piwigo < 2.9.1 - SQL Injection via cat_false or cat_true Parameter
SQL injection vulnerability in the administrative backend in Piwigo through 2.9.1 allows remote users to execute arbitrary SQL commands via the cat_false or cat_true parameter in the comments or status page to cat_options.php.
by Akityo
CVSS 9.8
CVE-2017-17651 EXPLOITDB CRITICAL text VERIFIED
Paid To Read Script 2.0.5 - SQL Injection via Admin Panel Parameters
Paid To Read Script 2.0.5 has SQL Injection via the admin/userview.php uid parameter, the admin/viewemcamp.php fnum parameter, or the admin/viewvisitcamp.php fn parameter.
by Ihsan Sencan
CVSS 9.8
EIP-2026-103587 EXPLOITDB text
Multiple OEM - 'nsd' Remote Stack Format String (PoC)
by bashis
CVE-2017-15944 EXPLOITDB CRITICAL text VERIFIED
Palo Alto Network PAN-OS - Remote Code Execution
Palo Alto Networks PAN-OS before 6.1.19, 7.0.x before 7.0.19, 7.1.x before 7.1.14, and 8.0.x before 8.0.6 allows remote attackers to execute arbitrary code via vectors involving the management interface.
by Philip Pettersson
CVSS 9.8
CVE-2017-1000408 EXPLOITDB HIGH text VERIFIED
glibc 2.1.1 - Memory Leak via LD_HWCAP_MASK Environment Variable
A memory leak in glibc 2.1.1 (released on May 24, 1999) can be reached and amplified through the LD_HWCAP_MASK environment variable. Please note that many versions of glibc are not vulnerable to this issue if patched for CVE-2017-1000366.
by Qualys Corporation
CVSS 7.8
CVE-2017-17872 EXPLOITDB CRITICAL text VERIFIED
JEXTN Video Gallery 3.0.5 - SQL Injection via id Parameter
The JEXTN Video Gallery extension 3.0.5 for Joomla! has SQL Injection via the id parameter in a view=category action.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17871 EXPLOITDB CRITICAL text VERIFIED
JEXTN Question And Answer 3.1.0 - SQL Injection via an or ques-srch Parameter
The "JEXTN Question And Answer" extension 3.1.0 for Joomla! has SQL Injection via the an parameter in a view=tags action, or the ques-srch parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-1000409 EXPLOITDB HIGH text VERIFIED
glibc 2.5 - Buffer Overflow via LD_LIBRARY_PATH Environment Variable
A buffer overflow in glibc 2.5 (released on September 29, 2006) and can be triggered through the LD_LIBRARY_PATH environment variable. Please note that many versions of glibc are not vulnerable to this issue if patched for CVE-2017-1000366.
by Qualys Corporation
CVSS 7.0
CVE-2017-16787 EXPLOITDB MEDIUM text
Meinberg LANTIME <6.24.004 - Info Disclosure
The Web Configuration Utility in Meinberg LANTIME devices with firmware before 6.24.004 allows remote attackers to read arbitrary files by leveraging failure to restrict URL access.
by Jakub Palaczynski
CVSS 6.5
CVE-2017-17870 EXPLOITDB CRITICAL text VERIFIED
JBuildozer 1.4.1 - SQL Injection via appid Parameter
The JBuildozer extension 1.4.1 for Joomla! has SQL Injection via the appid parameter in an entriessearch action.
by Ihsan Sencan
CVSS 9.8
CVE-2017-16949 EXPLOITDB CRITICAL text
AccessKeys AccessPress Anonymous Post Pro <3.1.9 - Code Injection
An issue was discovered in the AccessKeys AccessPress Anonymous Post Pro plugin through 3.1.9 for WordPress. Improper input sanitization allows the attacker to override the settings for allowed file extensions and upload file size, related to inc/cores/file-uploader.php and file-uploader/file-uploader-class.php. This allows the attacker to upload anything they want to the server, as demonstrated by an action=ap_file_upload_action&allowedExtensions[]=php request to /wp-admin/admin-ajax.php that results in a .php file upload and resultant PHP code execution.
by Colette Chamberland
CVSS 9.8
EIP-2026-104118 EXPLOITDB text
Vivotek IP Cameras - Remote Stack Overflow (PoC)
by bashis
CVE-2017-13876 EXPLOITDB HIGH text VERIFIED
Apple <11.2, <10.13.2, <4.2, <11.2 - RCE/DoS
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "Kernel" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
by Google Security Research
CVSS 7.8
CVE-2017-17630 EXPLOITDB CRITICAL text VERIFIED
Yoga Class Script 1.0 - SQL Injection via City Parameter
Yoga Class Script 1.0 has SQL Injection via the /list city parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17873 EXPLOITDB CRITICAL text VERIFIED
Vanguard Marketplace Digital Products PHP 1.4 - SQL Injection via PATH_INFO to /p URI
Vanguard Marketplace Digital Products PHP 1.4 has SQL Injection via the PATH_INFO to the /p URI.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17874 EXPLOITDB HIGH text
Vanguard Marketplace Digital Products PHP 1.4 - Unauthenticated Arbitrary File Upload via Product Addition
Vanguard Marketplace Digital Products PHP 1.4 allows arbitrary file upload via an "Add a new product" or "Add a product preview" action, which can make a .php file accessible under a uploads/ URI.
by Ihsan Sencan
CVSS 8.8
CVE-2017-17634 EXPLOITDB CRITICAL text VERIFIED
Single Theater Booking Script 3.2.1 - SQL Injection via findcity.php q Parameter
Single Theater Booking Script 3.2.1 has SQL Injection via the findcity.php q parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17629 EXPLOITDB CRITICAL text VERIFIED
Secure E-commerce Script 2.0.1 - SQL Injection via Category Search or Product Detail Parameters
Secure E-commerce Script 2.0.1 has SQL Injection via the category.php searchmain or searchcat parameter, or the single_detail.php sid parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17641 EXPLOITDB CRITICAL text VERIFIED
resume_clone_script 2.0.5 - SQL Injection via preview.php id Parameter
Resume Clone Script 2.0.5 has SQL Injection via the preview.php id parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17628 EXPLOITDB CRITICAL text VERIFIED
Responsive Realestate Script 3.2 - SQL Injection via Property-List tbud Parameter
Responsive Realestate Script 3.2 has SQL Injection via the property-list tbud parameter.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17632 EXPLOITDB CRITICAL text VERIFIED
Responsive Events And Movie Ticket Booking Script 3.2.1 - SQL Injection via findcity.php q Parameter
Responsive Events And Movie Ticket Booking Script 3.2.1 has SQL Injection via the findcity.php q parameter.
by Ihsan Sencan
CVSS 9.8