Text Exploits

31,386 exploits tracked across all sources.

Sort: Activity Stars
CVE-2017-9243 EXPLOITDB MEDIUM text
Aries QWR-1104 Wireless-N Router Firmware WRC.253.2.0913 - Cross-Site Scripting via Wireless Site Survey AP Name
Aries QWR-1104 Wireless-N Router with Firmware Version WRC.253.2.0913 has XSS on the Wireless Site Survey page, exploitable with the name of an access point.
by Touhid M.Shaikh
CVSS 6.1
EIP-2026-118641 EXPLOITDB text VERIFIED
Home Web Server 1.9.1 (build 164) - Remote Code Execution
by Guillaume Kaddouch
EIP-2026-117503 EXPLOITDB text VERIFIED
Microsoft MsMpEng - Multiple Problems Handling ntdll!NtControlChannel Commands
by Google Security Research
CVE-2017-2508 EXPLOITDB MEDIUM text VERIFIED
Safari < 10.1.1 - Universal Cross-Site Scripting in WebKit via Container Node Interaction
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to conduct Universal XSS (UXSS) attacks via a crafted web site that improperly interacts with container nodes.
by Google Security Research
CVSS 6.1
CVE-2016-9834 EXPLOITDB MEDIUM text
Sophos Cyberoam Firewall Firmware <= 10.6.4 - Stored Cross-Site Scripting via LiveConnectionDetail.jsp Parameters
An XSS vulnerability allows remote attackers to execute arbitrary client side script on vulnerable installations of Sophos Cyberoam firewall devices with firmware through 10.6.4. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of a request to the "LiveConnectionDetail.jsp" application. GET parameters "applicationname" and "username" are improperly sanitized allowing an attacker to inject arbitrary JavaScript into the page. This can be abused by an attacker to perform a cross-site scripting attack on the user. A vulnerable URI is /corporate/webpages/trafficdiscovery/LiveConnectionDetail.jsp.
by Bhadresh Patel
CVSS 6.1
CVE-2017-2523 EXPLOITDB CRITICAL text VERIFIED
iPhone OS < 10.3.2, macOS < 10.12.5, tvOS < 10.2.1, watchOS < 3.2.2 - Remote Code Execution in Foundation
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "Foundation" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted data.
by Google Security Research
CVSS 9.8
CVE-2017-2522 EXPLOITDB CRITICAL text VERIFIED
iPhone OS < 10.3.2, macOS < 10.12.5, tvOS < 10.2.1, watchOS < 3.2.2 - Remote Code Execution in CoreFoundation
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "CoreFoundation" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted data.
by Google Security Research
CVSS 9.8
CVE-2017-2524 EXPLOITDB CRITICAL text VERIFIED
iPhone OS < 10.3.2, macOS < 10.12.5, tvOS < 10.2.1, watchOS < 3.2.2 - Remote Code Execution in TextInput Component
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "TextInput" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted data.
by Google Security Research
CVSS 9.8
CVE-2017-2527 EXPLOITDB CRITICAL text VERIFIED
macOS < 10.12.5 - Remote Code Execution in CoreAnimation
An issue was discovered in certain Apple products. macOS before 10.12.5 is affected. The issue involves the "CoreAnimation" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory consumption and application crash) via crafted data.
by Google Security Research
CVSS 9.8
CVE-2017-2516 EXPLOITDB MEDIUM text VERIFIED
macOS < 10.12.5 - Kernel Memory Read Restriction Bypass via Crafted App
An issue was discovered in certain Apple products. macOS before 10.12.5 is affected. The issue involves the "Kernel" component. It allows attackers to bypass intended memory-read restrictions via a crafted app.
by Google Security Research
CVSS 5.0
CVE-2017-2509 EXPLOITDB MEDIUM text VERIFIED
macOS < 10.12.5 - Kernel Memory Read Restriction Bypass via Crafted App
An issue was discovered in certain Apple products. macOS before 10.12.5 is affected. The issue involves the "Kernel" component. It allows attackers to bypass intended memory-read restrictions via a crafted app.
by Google Security Research
CVSS 5.5
CVE-2017-9101 EXPLOITDB CRITICAL text VERIFIED
PlaySMS 1.4 - Remote Code Execution
import.php (aka the Phonebook import feature) in PlaySMS 1.4 allows remote code execution via vectors involving the User-Agent HTTP header and PHP code in the name of a file.
by Touhid M.Shaikh
CVSS 9.8
CVE-2017-9024 EXPLOITDB HIGH text
Secure Bytes SCA 3.0 - Path Traversal
Secure Bytes Cisco Configuration Manager, as bundled in Secure Bytes Secure Cisco Auditor (SCA) 3.0, has a Directory Traversal issue in its TFTP Server, allowing attackers to read arbitrary files via ../ sequences in a pathname.
by hyp3rlinx
CVSS 7.5
CVE-2017-7620 EXPLOITDB MEDIUM text
MantisBT < 1.3.11, 2.x < 2.3.3, 2.4.x < 2.4.1 - Cross-Site Request Forgery via Permalink Injection
MantisBT before 1.3.11, 2.x before 2.3.3, and 2.4.x before 2.4.1 omits a backslash check in string_api.php and consequently has conflicting interpretations of an initial \/ substring as introducing either a local pathname or a remote hostname, which leads to (1) arbitrary Permalink Injection via CSRF attacks on a permalink_page.php?url= URI and (2) an open redirect via a login_page.php?return= URI.
by hyp3rlinx
CVSS 6.5
CVE-2017-5631 EXPLOITDB MEDIUM text
CaseAware - Reflected Cross-Site Scripting via Login Page User Parameter
An issue was discovered in KMCIS CaseAware. Reflected cross site scripting is present in the user parameter (i.e., "usr") that is transmitted in the login.php query string.
by justpentest
CVSS 6.1
CVE-2017-9100 EXPLOITDB HIGH text
D-Link DIR-600M <3.04 - Auth Bypass
login.cgi on D-Link DIR-600M devices with firmware 3.04 allows remote attackers to bypass authentication by entering more than 20 blank spaces in the password field during an admin login attempt.
by Touhid M.Shaikh
CVSS 8.8
CVE-2016-6256 EXPLOITDB CRITICAL text
SAP Business One for Android <1.2.3 - XSS
SAP Business One for Android 1.2.3 allows remote attackers to conduct XML External Entity (XXE) attacks via crafted XML data in a request to B1iXcellerator/exec/soap/vP.001sap0003.in_WCSX/com.sap.b1i.vplatform.runtime/INB_WS_CALL_SYNC_XPT/INB_WS_CALL_SYNC_XPT.ipo/proc, aka SAP Security Note 2378065.
by Ravindra Singh Rathore
CVSS 9.6
CVE-2017-12930 EXPLOITDB CRITICAL text
TecnoVISION DLX Spot Player4 >1.5.10 - Unauthenticated SQL Injection via Admin Interface
SQL Injection in the admin interface in TecnoVISION DLX Spot Player4 version >1.5.10 allows remote unauthenticated users to access the web interface as administrator via a crafted password.
by Simon Brannstrom
CVSS 9.8
CVE-2017-12929 EXPLOITDB HIGH text
TecnoVISION DLX Spot Player4 >1.5.10 - Authenticated Arbitrary File Upload via resource.php
Arbitrary File Upload in resource.php of TecnoVISION DLX Spot Player4 version >1.5.10 allows remote authenticated users to upload arbitrary files leading to Remote Command Execution.
by Simon Brannstrom
CVSS 8.8
EIP-2026-111326 EXPLOITDB text
PlaySMS 1.4 - Remote Code Execution
by Touhid M.Shaikh
CVE-2017-8917 EXPLOITDB CRITICAL text
Joomla! 3.7.x - SQL Injection
SQL injection vulnerability in Joomla! 3.7.x before 3.7.1 allows attackers to execute arbitrary SQL commands via unspecified vectors.
by Mateus Lino
CVSS 9.8
EIP-2026-105442 EXPLOITDB text VERIFIED
Belden Garrettcom 6K/10K Switches - Authentication Bypass / Memory Corruption
by David Tomaschik
CVE-2017-12930 EXPLOITDB CRITICAL text
TecnoVISION DLX Spot Player4 >1.5.10 - Unauthenticated SQL Injection via Admin Interface
SQL Injection in the admin interface in TecnoVISION DLX Spot Player4 version >1.5.10 allows remote unauthenticated users to access the web interface as administrator via a crafted password.
by Simon Brannstrom
CVSS 9.8
CVE-2017-3546 EXPLOITDB MEDIUM text
Oracle PeopleSoft Products - Unauth Info Disclosure
Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products (subcomponent: MultiChannel Framework). Supported versions that are affected are 8.54 and 8.55. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise PeopleTools. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of PeopleSoft Enterprise PeopleTools accessible data as well as unauthorized read access to a subset of PeopleSoft Enterprise PeopleTools accessible data. CVSS 3.0 Base Score 6.5 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N).
by ERPScan
CVSS 6.5
EIP-2026-102406 EXPLOITDB text
ManageEngine ServiceDesk Plus 9.0 - Authentication Bypass
by ByteM3