Text Exploits

31,386 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-119414 EXPLOITDB text
Pelco VideoXpert 1.12.105 - Directory Traversal
by LiquidWorm
EIP-2026-117760 EXPLOITDB text
Pelco VideoXpert 1.12.105 - Local Privilege Escalation
by LiquidWorm
CVE-2017-6971 EXPLOITDB HIGH text VERIFIED
AlienVault USM/OSSIM <5.3.7/NfSen <1.3.8 - Command Injection
AlienVault USM and OSSIM before 5.3.7 and NfSen before 1.3.8 allow remote authenticated users to execute arbitrary commands in a privileged context, or launch a reverse shell, via vectors involving the PHP session ID and the NfSen PHP code, aka AlienVault ID ENG-104862.
by Paul Taylor
CVSS 8.8
CVE-2017-6970 EXPLOITDB HIGH text VERIFIED
AlienVault USM/OSSIM <5.3.7/NfSen <1.3.8 - Command Injection
AlienVault USM and OSSIM before 5.3.7 and NfSen before 1.3.8 allow local users to execute arbitrary commands in a privileged context via an NfSen socket, aka AlienVault ID ENG-104863.
by Paul Taylor
CVSS 8.4
EIP-2026-101913 EXPLOITDB text
Pelco Sarix/Spectra Cameras - Remote Code Execution
by LiquidWorm
EIP-2026-101912 EXPLOITDB text
Pelco Sarix/Spectra Cameras - Cross-Site Request Forgery / Cross-Site Scripting
by LiquidWorm
EIP-2026-101911 EXPLOITDB text
Pelco Sarix/Spectra Cameras - Cross-Site Request Forgery (Enable SSH Root Access)
by LiquidWorm
EIP-2026-115251 EXPLOITDB text
Firefox 54.0.1 - Denial of Service
by hyp3rlinx
CVE-2017-10974 EXPLOITDB HIGH text
Yaws 1.91 - Unauthenticated Path Traversal via HTTP Directory Traversal with /%5C../
Yaws 1.91 allows Unauthenticated Remote File Disclosure via HTTP Directory Traversal with /%5C../ to port 8080. NOTE: this CVE is only about use of an initial /%5C sequence to defeat traversal protection mechanisms; the initial /%5C sequence was apparently not discussed in earlier research on this product.
by hyp3rlinx
CVSS 7.5
CVE-2017-9147 EXPLOITDB MEDIUM text VERIFIED
LibTIFF 4.0.7 - Out-of-bounds Read in _TIFFVGetField
LibTIFF 4.0.7 has an invalid read in the _TIFFVGetField function in tif_dir.c, which might allow remote attackers to cause a denial of service (crash) via a crafted TIFF file.
by zhangtan
CVSS 6.5
CVE-2017-9936 EXPLOITDB MEDIUM text VERIFIED
LibTIFF 4.0.8 - Memory Leak in tif_jbig.c
In LibTIFF 4.0.8, there is a memory leak in tif_jbig.c. A crafted TIFF document can lead to a memory leak resulting in a remote denial of service attack.
by team OWL337
CVSS 6.5
CVE-2017-10688 EXPLOITDB HIGH text VERIFIED
LibTIFF 4.0.8 - Denial of Service via TIFFWriteDirectoryTagCheckedLong8Array Assertion Abort
In LibTIFF 4.0.8, there is a assertion abort in the TIFFWriteDirectoryTagCheckedLong8Array function in tif_dirwrite.c. A crafted input will lead to a remote denial of service attack.
by team OWL337
CVSS 7.5
CVE-2017-9834 EXPLOITDB CRITICAL text
WatuPRO < 5.5.1 - SQL Injection via watupro_questions Parameter
SQL injection vulnerability in the WatuPRO plugin before 5.5.3.7 for WordPress allows remote attackers to execute arbitrary SQL commands via the watupro_questions parameter in a watupro_submit action to wp-admin/admin-ajax.php.
by Manich Koomsusi
CVSS 9.8
EIP-2026-101902 EXPLOITDB text
OpenDreamBox 2.0.0 Plugin WebAdmin - Remote Code Execution
by Jonatas Fil
EIP-2026-103482 EXPLOITDB text VERIFIED
Google Chrome - Out-of-Bounds Access in RegExp Stubs
by Google Security Research
EIP-2026-100064 EXPLOITDB text VERIFIED
eVestigator Forensic PenTester - Man In The Middle Remote Code Execution
by intern0t
EIP-2026-100063 EXPLOITDB text VERIFIED
BestSafe Browser - Man In The Middle Remote Code Execution
by intern0t
EIP-2026-100061 EXPLOITDB text
Australian Education App - Remote Code Execution
by intern0t
EIP-2026-100040 EXPLOITDB text VERIFIED
LG MRA58K - 'ASFParser::SetMetaData' Stack Overflow
by Google Security Research
CVE-2017-9812 EXPLOITDB HIGH text VERIFIED
Kaspersky Anti-Virus for Linux File Server < 8.0.3.297 - Arbitrary File Read via getReportStatus reportId Parameter
The reportId parameter of the getReportStatus action method can be abused in the web interface in Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 (version 8.0.4.312) to read arbitrary files with kluser privileges.
by Core Security
CVSS 7.5
CVE-2017-9811 EXPLOITDB CRITICAL text VERIFIED
Kaspersky Anti-Virus for Linux File Server < 8.0.3.297 - Privilege Escalation via Quarantine Operations
The kluser is able to interact with the kav4fs-control binary in Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 (version 8.0.4.312). By abusing the quarantine read and write operations, it is possible to elevate the privileges to root.
by Core Security
CVSS 9.8
CVE-2017-9810 EXPLOITDB HIGH text VERIFIED
Kaspersky Anti-Virus for Linux File Server <8.0.4.312 - CSRF
There are no Anti-CSRF tokens in any forms on the web interface in Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 (version 8.0.4.312). This would allow an attacker to submit authenticated requests when an authenticated user browses an attacker-controlled domain.
by Core Security
CVSS 8.8
CVE-2017-9813 EXPLOITDB MEDIUM text VERIFIED
Kaspersky Anti-Virus for Linux File Server <8.0.4.312 - XSS
In Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 (version 8.0.4.312), the scriptName parameter of the licenseKeyInfo action method is vulnerable to cross-site scripting (XSS).
by Core Security
CVSS 6.1
CVE-2017-8558 EXPLOITDB HIGH text VERIFIED
Microsoft Malware Protection Engine - Remote Code Execution via Crafted File Scan
The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on 32-bit versions of Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703 does not properly scan a specially crafted file leading to memory corruption. aka "Microsoft Malware Protection Engine Remote Code Execution Vulnerability".
by Google Security Research
CVSS 7.8
EIP-2026-114143 EXPLOITDB text
WordPress Plugin Ultimate Product Catalogue 4.2.2 - SQL Injection
by Lenon Leite