Text Exploits
31,364 exploits tracked across all sources.
TeamWork TicketPlus - Code Injection
TeamWork TicketPlus allows Arbitrary File Upload in updateProfile.
by Ihsan Sencan
CVSS 8.8
Mojoomla SMSmaster - SQL Injection
Mojoomla SMSmaster Multipurpose SMS Gateway for WordPress allows SQL Injection via the id parameter.
by Ihsan Sencan
CVSS 8.8
TeamWork Photo Fusion - Arbitrary File Upload
TeamWork Photo Fusion allows Arbitrary File Upload in changeAvatar and changeCover.
by Ihsan Sencan
CVSS 8.8
TeamWork Job Links - Path Traversal
TeamWork Job Links allows Arbitrary File Upload in profileChange and coverChange.
by Ihsan Sencan
CVSS 8.8
Mojoomla AMC - Arbitrary File Upload
Mojoomla Annual Maintenance Contract (AMC) Management System allows Arbitrary File Upload in profilesetting image handling.
by Ihsan Sencan
CVSS 6.5
FLIR Thermal Camera FC-S/PT <8.0.0.64 - Command Injection
FLIR Thermal Camera FC-S/PT firmware version 8.0.0.64 contains an authenticated OS command injection vulnerability that allows attackers to execute shell commands with root privileges. Authenticated attackers can inject arbitrary shell commands through unvalidated input parameters to gain complete control of the thermal camera system.
by LiquidWorm
CVSS 8.8
FLIR Thermal Camera - Auth Bypass
FLIR Thermal Camera F/FC/PT/D firmware version 8.0.0.64 contains hard-coded SSH credentials that cannot be changed through normal camera operations. Attackers can leverage these persistent, unmodifiable credentials to gain unauthorized remote access to the thermal camera system.
by LiquidWorm
CVSS 7.5
FLIR Thermal Camera F/FC/PT/D Stream <8.0.0.64 - Info Disclosure
FLIR Thermal Camera F/FC/PT/D Stream firmware version 8.0.0.64 contains an unauthenticated vulnerability that allows remote attackers to access live camera streams without credentials. Attackers can exploit the vulnerability to view unauthorized thermal camera video feeds across multiple camera series without requiring any authentication.
by LiquidWorm
CVSS 7.5
FLIR Thermal Camera F/FC/PT/D <8.0.0.64 - Info Disclosure
FLIR Thermal Camera F/FC/PT/D firmware version 8.0.0.64 contains an information disclosure vulnerability that allows unauthenticated attackers to read arbitrary files through unverified input parameters. Attackers can exploit the /var/www/data/controllers/api/xml.php readFile() function to access local system files without authentication.
by LiquidWorm
CVSS 6.2
Adobe Flash Player < 26.0.0.151 - Memory Corruption
Adobe Flash Player has an exploitable memory corruption vulnerability in the text handling function. Successful exploitation could lead to arbitrary code execution. This affects 26.0.0.151 and earlier.
by Google Security Research
CVSS 9.8
Adobe Flash Player < 26.0.0.151 - Memory Corruption
Adobe Flash Player has an exploitable memory corruption vulnerability in the MP4 atom parser. Successful exploitation could lead to arbitrary code execution. This affects 26.0.0.151 and earlier.
by Google Security Research
CVSS 9.8
Adobe Flash Player < 26.0.0.151 - Memory Corruption
Adobe Flash Player has an exploitable memory corruption vulnerability in the text handling function. Successful exploitation could lead to arbitrary code execution. This affects 26.0.0.151 and earlier.
by Google Security Research
CVSS 9.8
Broadcom Bcm4355c0 Firmware < 11.0 - Memory Corruption
On Broadcom BCM4355C0 Wi-Fi chips 9.44.78.27.0.1.56 and other chips, an attacker can craft a malformed RRM neighbor report frame to trigger an internal buffer overflow in the Wi-Fi firmware, aka B-V2017061204.
by Google Security Research
CVSS 9.8
HBGK DVR 3.0.0 build20161206 - Authentication Bypass
by RAT - ThiefKing
Jitbit Helpdesk <9.0.3 - Privilege Escalation
Jitbit Helpdesk before 9.0.3 allows remote attackers to escalate privileges because of mishandling of the User/AutoLogin userHash parameter. By inspecting the token value provided in a password reset link, a user can leverage a weak PRNG to recover the shared secret used by the server for remote authentication. The shared secret can be used to escalate privileges by forging new tokens for any user. These tokens can be used to automatically log in as the affected user.
by Kc57
CVSS 7.2
Claydip Laravel Airbnb Clone 1.0 - RCE
Multiple unrestricted file upload vulnerabilities in the (1) imageSubmit and (2) proof_submit functions in Claydip Laravel Airbnb Clone 1.0 allow remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in images/profile.
by Ihsan Sencan
CVSS 8.8
phpMyFAQ <2.9.8 - XSS
Cross-site scripting (XSS) vulnerability in inc/PMF/Faq.php in phpMyFAQ through 2.9.8 allows remote attackers to inject arbitrary web script or HTML via the Questions field in an "Add New FAQ" action.
by Ishaq Mohammed
CVSS 4.8
Linux Kernel <4.14 - RCE
The native Bluetooth stack in the Linux Kernel (BlueZ), starting at the Linux kernel version 2.6.32 and up to and including 4.13.1, are vulnerable to a stack overflow vulnerability in the processing of L2CAP configuration responses resulting in Remote code execution in kernel space.
by Marcin Kozlowski
CVSS 8.0
Apache Tomcat < 7.0.79 - Unrestricted File Upload
When running Apache Tomcat 7.0.0 to 7.0.79 on Windows with HTTP PUTs enabled (e.g. via setting the readonly initialisation parameter of the Default to false) it was possible to upload a JSP file to the server via a specially crafted request. This JSP could then be requested and any code it contained would be executed by the server.
by xxlegend
CVSS 8.1
Microsoft Edge - Memory Corruption
Microsoft Edge in Microsoft Windows 10 1607 and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Microsoft Edge accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8734, CVE-2017-8751, and CVE-2017-11766.
by Google Security Research
CVSS 7.5
By Source