Text Exploits

31,386 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-108819 EXPLOITDB text
Joomla! Component OS Services Booking 2.5.1 - SQL Injection
by Ihsan Sencan
EIP-2026-108818 EXPLOITDB text
Joomla! Component OS Property 3.0.8 - SQL Injection
by Ihsan Sencan
EIP-2026-108797 EXPLOITDB text
Joomla! Component Most Wanted Real Estate 1.1.0 - SQL Injection
by Ihsan Sencan
EIP-2026-108746 EXPLOITDB text
Joomla! Component Joomloc-Lite 1.3.2 - 'site_id' SQL Injection
by Ihsan Sencan
EIP-2026-108745 EXPLOITDB text
Joomla! Component Joomloc-CAT 4.1.3 - 'ville' SQL Injection
by Ihsan Sencan
EIP-2026-108734 EXPLOITDB text
Joomla! Component JomWALL 4.0 - 'wuid' SQL Injection
by Ihsan Sencan
EIP-2026-108662 EXPLOITDB text
Joomla! Component Google Map Store Locator 4.4 - SQL Injection
by Ihsan Sencan
EIP-2026-108639 EXPLOITDB text
Joomla! Component EShop 2.5.1 - 'id' SQL Injection
by Ihsan Sencan
EIP-2026-108220 EXPLOITDB text
Joomla! Component Bazaar Platform 3.0 - SQL Injection
by Ihsan Sencan
EIP-2026-108899 EXPLOITDB text
Joomla! Component WMT Content Timeline 1.0 - 'id' SQL Injection
by Ihsan Sencan
EIP-2026-108880 EXPLOITDB text
Joomla! Component Team Display 1.2.1 - 'filter_category' SQL Injection
by Ihsan Sencan
EIP-2026-108664 EXPLOITDB text
Joomla! Component Groovy Gallery 1.0.0 - SQL Injection
by Ihsan Sencan
CVE-2017-6060 EXPLOITDB HIGH text VERIFIED
MuPDF - Stack-based Buffer Overflow in jstest_main.c
Stack-based buffer overflow in jstest_main.c in mujstest in Artifex Software, Inc. MuPDF 1.10a allows remote attackers to have unspecified impact via a crafted image.
by Agostino Sarubbo
CVSS 7.8
EIP-2026-113658 EXPLOITDB text VERIFIED
WordPress Plugin Corner Ad 1.0.7 - Cross-Site Scripting
by Atik Rahman
EIP-2026-108871 EXPLOITDB text
Joomla! Component Spider FAQ Lite 1.3.1 - SQL Injection
by Ihsan Sencan
EIP-2026-108869 EXPLOITDB text
Joomla! Component Spider Facebook 1.6.1 - SQL Injection
by Ihsan Sencan
EIP-2026-108867 EXPLOITDB text
Joomla! Component Spider Catalog Lite 1.8.10 - SQL Injection
by Ihsan Sencan
EIP-2026-108865 EXPLOITDB text
Joomla! Component Spider Calendar Lite 3.2.16 - SQL Injection
by Ihsan Sencan
EIP-2026-108721 EXPLOITDB text
Joomla! Component JEmbedAll 1.4 - SQL Injection
by Ihsan Sencan
CVE-2017-0312 EXPLOITDB HIGH text VERIFIED
NVIDIA Windows GPU Display Driver - Denial of Service or Privilege Escalation via DxgkDdiEscapeID 0x100008b
All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscapeID 0x100008b where user provided input is used as the limit for a loop may lead to denial of service or potential escalation of privileges
by Google Security Research
CVSS 7.8
CVE-2017-0313 EXPLOITDB HIGH text VERIFIED
NVIDIA Windows GPU Display Driver - Denial of Service or Privilege Escalation via SubmitCommandVirtual DDI
All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys) implementation of the SubmitCommandVirtual DDI (DxgkDdiSubmitCommandVirtual) where untrusted input is used to reference memory outside of the intended boundary of the buffer leading to denial of service or escalation of privileges.
by Google Security Research
CVSS 7.8
CVE-2017-0038 EXPLOITDB MEDIUM text VERIFIED
Windows GDI - Information Disclosure via Crafted EMF File
gdi32.dll in Graphics Device Interface (GDI) in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 allows remote attackers to obtain sensitive information from process heap memory via a crafted EMF file, as demonstrated by an EMR_SETDIBITSTODEVICE record with modified Device Independent Bitmap (DIB) dimensions. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-3216, CVE-2016-3219, and/or CVE-2016-3220.
by Google Security Research
CVSS 5.5
CVE-2017-5881 EXPLOITDB HIGH text VERIFIED
GOM Player 2.3.10.5266 - Memory Corruption via Crafted FPX File
GOM Player 2.3.10.5266 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted fpx file.
by Peter Baris
CVSS 7.8
EIP-2026-108764 EXPLOITDB text
Joomla! Component JSP Store Locator 2.2 - 'id' SQL Injection
by Ihsan Sencan
EIP-2026-108739 EXPLOITDB text
Joomla! Component JoomBlog 1.3.1 - SQL Injection
by Ihsan Sencan