Text Exploits

31,386 exploits tracked across all sources.

Sort: Activity Stars
CVE-2017-20214 EXPLOITDB HIGH text
FLIR Thermal Camera F/FC/PT/D 8.0.0.64 - Use of Hard-coded Credentials
FLIR Thermal Camera F/FC/PT/D firmware version 8.0.0.64 contains hard-coded SSH credentials that cannot be changed through normal camera operations. Attackers can leverage these persistent, unmodifiable credentials to gain unauthorized remote access to the thermal camera system.
by LiquidWorm
CVSS 7.5
CVE-2017-20213 EXPLOITDB HIGH text
FLIR Thermal Camera F/FC/PT/D Stream <8.0.0.64 - Info Disclosure
FLIR Thermal Camera F/FC/PT/D Stream firmware version 8.0.0.64 contains an unauthenticated vulnerability that allows remote attackers to access live camera streams without credentials. Attackers can exploit the vulnerability to view unauthorized thermal camera video feeds across multiple camera series without requiring any authentication.
by LiquidWorm
CVSS 7.5
CVE-2017-20212 EXPLOITDB MEDIUM text
FLIR Thermal Camera F/FC/PT/D <8.0.0.64 - Info Disclosure
FLIR Thermal Camera F/FC/PT/D firmware version 8.0.0.64 contains an information disclosure vulnerability that allows unauthenticated attackers to read arbitrary files through unverified input parameters. Attackers can exploit the /var/www/data/controllers/api/xml.php readFile() function to access local system files without authentication.
by LiquidWorm
CVSS 6.2
CVE-2017-11281 EXPLOITDB CRITICAL text VERIFIED
Adobe Flash Player < 26.0.0.151 - Memory Corruption in Text Handling
Adobe Flash Player has an exploitable memory corruption vulnerability in the text handling function. Successful exploitation could lead to arbitrary code execution. This affects 26.0.0.151 and earlier.
by Google Security Research
CVSS 9.8
CVE-2017-11282 EXPLOITDB CRITICAL text VERIFIED
Adobe Flash Player < 26.0.0.151 - Memory Corruption in MP4 Atom Parser
Adobe Flash Player has an exploitable memory corruption vulnerability in the MP4 atom parser. Successful exploitation could lead to arbitrary code execution. This affects 26.0.0.151 and earlier.
by Google Security Research
CVSS 9.8
CVE-2017-11281 EXPLOITDB CRITICAL text VERIFIED
Adobe Flash Player < 26.0.0.151 - Memory Corruption in Text Handling
Adobe Flash Player has an exploitable memory corruption vulnerability in the text handling function. Successful exploitation could lead to arbitrary code execution. This affects 26.0.0.151 and earlier.
by Google Security Research
CVSS 9.8
CVE-2017-11120 EXPLOITDB CRITICAL text VERIFIED
Broadcom BCM4355C0 Wi-Fi Firmware 9.44.78.27.0.1.56 - Buffer Overflow via Malformed RRM Neighbor Report Frame
On Broadcom BCM4355C0 Wi-Fi chips 9.44.78.27.0.1.56 and other chips, an attacker can craft a malformed RRM neighbor report frame to trigger an internal buffer overflow in the Wi-Fi firmware, aka B-V2017061204.
by Google Security Research
CVSS 9.8
EIP-2026-101765 EXPLOITDB text
HBGK DVR 3.0.0 build20161206 - Authentication Bypass
by RAT - ThiefKing
CVE-2017-18486 EXPLOITDB HIGH text
Jitbit Helpdesk <9.0.3 - Privilege Escalation
Jitbit Helpdesk before 9.0.3 allows remote attackers to escalate privileges because of mishandling of the User/AutoLogin userHash parameter. By inspecting the token value provided in a password reset link, a user can leverage a weak PRNG to recover the shared secret used by the server for remote authentication. The shared secret can be used to escalate privileges by forging new tokens for any user. These tokens can be used to automatically log in as the affected user.
by Kc57
CVSS 7.2
EIP-2026-111966 EXPLOITDB text
Secure E-commerce Script 1.02 - 'sid' SQL Injection
by 8bitsec
EIP-2026-110651 EXPLOITDB text
PHP Auction Ecommerce Script 1.6 - SQL Injection
by 8bitsec
EIP-2026-109624 EXPLOITDB text
Multi Level Marketing - SQL Injection
by Ihsan Sencan
EIP-2026-109094 EXPLOITDB text
Lending And Borrowing - 'pid' SQL Injection
by Ihsan Sencan
CVE-2017-14704 EXPLOITDB HIGH text
Claydip Laravel Airbnb Clone 1.0 - RCE
Multiple unrestricted file upload vulnerabilities in the (1) imageSubmit and (2) proof_submit functions in Claydip Laravel Airbnb Clone 1.0 allow remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in images/profile.
by Ihsan Sencan
CVSS 8.8
CVE-2017-14618 EXPLOITDB MEDIUM text
phpmyfaq < 2.9.8 - Cross-Site Scripting via Questions Field in Add New FAQ Action
Cross-site scripting (XSS) vulnerability in inc/PMF/Faq.php in phpMyFAQ through 2.9.8 allows remote attackers to inject arbitrary web script or HTML via the Questions field in an "Add New FAQ" action.
by Ishaq Mohammed
CVSS 4.8
CVE-2017-1000251 EXPLOITDB HIGH text
Linux Kernel 2.6.32-4.13.1 - Remote Code Execution via Bluetooth L2CAP Configuration Response
The native Bluetooth stack in the Linux Kernel (BlueZ), starting at the Linux kernel version 2.6.32 and up to and including 4.13.1, are vulnerable to a stack overflow vulnerability in the processing of L2CAP configuration responses resulting in Remote code execution in kernel space.
by Marcin Kozlowski
CVSS 8.0
CVE-2017-12615 EXPLOITDB HIGH text
Apache Tomcat 7.0.0-7.0.79 - Unauthenticated Remote Code Execution via JSP Upload
When running Apache Tomcat 7.0.0 to 7.0.79 on Windows with HTTP PUTs enabled (e.g. via setting the readonly initialisation parameter of the Default to false) it was possible to upload a JSP file to the server via a specially crafted request. This JSP could then be requested and any code it contained would be executed by the server.
by xxlegend
CVSS 8.1
CVE-2017-8731 EXPLOITDB HIGH text VERIFIED
Microsoft Edge - Remote Code Execution via Memory Corruption
Microsoft Edge in Microsoft Windows 10 1607 and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Microsoft Edge accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8734, CVE-2017-8751, and CVE-2017-11766.
by Google Security Research
CVSS 7.5
CVE-2017-8682 EXPLOITDB HIGH text VERIFIED
Microsoft Office 2007 - Improper Input Validation
Windows graphics on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, Windows Server 2016, Microsoft Office Word Viewer, Microsoft Office 2007 Service Pack 3 , and Microsoft Office 2010 Service Pack 2 allows an attacker to execute remote code by the way it handles embedded fonts, aka "Win32k Graphics Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-8683.
by Google Security Research
CVSS 8.8
CVE-2017-8683 EXPLOITDB MEDIUM text VERIFIED
Windows Graphics - Remote Code Execution via Embedded Font Handling
Windows graphics on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016, allows an attacker to execute remote code by the way it handles embedded fonts, aka "Win32k Graphics Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-8682.
by Google Security Research
CVSS 5.5
CVE-2017-14244 EXPLOITDB CRITICAL text
iBall Baton ADSL2+ Home Router FW_iB-LR7011A_1.0.2 - Auth Bypass
An authentication bypass vulnerability on iBall Baton ADSL2+ Home Router FW_iB-LR7011A_1.0.2 devices potentially allows attackers to directly access administrative router settings by crafting URLs with a .cgi extension, as demonstrated by /info.cgi and /password.cgi.
by Gem George
CVSS 9.8
CVE-2017-14507 EXPLOITDB CRITICAL text
Content Timeline plugin 4.4.2 - SQL Injection
Multiple SQL injection vulnerabilities in the Content Timeline plugin 4.4.2 for WordPress allow remote attackers to execute arbitrary SQL commands via the (1) timeline parameter in content_timeline_class.php; or the id parameter to (2) pages/content_timeline_edit.php or (3) pages/content_timeline_index.php.
by Jeroen - IT Nerdbox
CVSS 9.8
EIP-2026-111572 EXPLOITDB text
PTCEvolution 5.50 - SQL Injection
by Ihsan Sencan
EIP-2026-107996 EXPLOITDB text
iTech Gigs Script 1.20 - 'cat' SQL Injection
by 8bitsec
EIP-2026-106138 EXPLOITDB text
Contact Manager 1.0 - 'femail' SQL Injection
by Ihsan Sencan