Text Exploits

31,332 exploits tracked across all sources.

Sort: Activity Stars
CVE-2016-20052 EXPLOITDB CRITICAL text VERIFIED
Snews CMS 1.7 Unrestricted File Upload via snews_files
Snews CMS 1.7 contains an unrestricted file upload vulnerability that allows unauthenticated attackers to upload arbitrary files including PHP executables to the snews_files directory. Attackers can upload malicious PHP files through the multipart form-data upload endpoint and execute them by accessing the uploaded file path to achieve remote code execution.
by Amir.ght
CVSS 9.8
EIP-2026-119076 EXPLOITDB text
Rapid PHP Editor 14.1 - Remote Command Execution
by hyp3rlinx
EIP-2026-114969 EXPLOITDB text VERIFIED
Axessh 4.2 - Denial of Service
by hyp3rlinx
CVE-2016-8582 EXPLOITDB CRITICAL text VERIFIED
AlienVault OSSIM & USM <5.3.2 - SQL Injection
A vulnerability exists in gauge.php of AlienVault OSSIM and USM before 5.3.2 that allows an attacker to execute an arbitrary SQL query and retrieve database information or read local system files via MySQL's LOAD_FILE.
by Peter Lapp
CVSS 9.8
CVE-2016-8580 EXPLOITDB CRITICAL text VERIFIED
AlienVault OSSIM & USM <5.3.2 - Code Injection
PHP object injection vulnerabilities exist in multiple widget files in AlienVault OSSIM and USM before 5.3.2. These vulnerabilities allow arbitrary PHP code execution via magic methods in included classes.
by Peter Lapp
CVSS 9.8
CVE-2016-8581 EXPLOITDB MEDIUM text VERIFIED
AlienVault OSSIM & USM <5.3.2 - XSS
A persistent XSS vulnerability exists in the User-Agent header of the login process of AlienVault OSSIM and USM before 5.3.2 that allows an attacker to steal session IDs of logged in users when the current sessions are viewed by an administrator.
by Peter Lapp
CVSS 6.1
CVE-2016-9111 EXPLOITDB MEDIUM text
Citrix Receiver Desktop Lock 4.5 - Auth Bypass
Incorrect access control mechanisms in Citrix Receiver Desktop Lock 4.5 allow an attacker to bypass the authentication requirement by leveraging physical access to a VDI for temporary disconnection of a LAN cable. NOTE: as of 20161208, the vendor could not reproduce the issue, stating "the researcher was unable to provide us with information that would allow us to confirm the behaviour and, despite extensive investigation on test deployments of supported products, we were unable to reproduce the behaviour as he described. The researcher has also, despite additional requests for information, ceased to respond to us."
by Rithwik Jayasimha
CVSS 6.8
EIP-2026-101832 EXPLOITDB text
LifeSize Room 5.0.9 - Multiple Vulnerabilities
by Xiphos Research Ltd
EIP-2026-101086 EXPLOITDB text
SunellSecurity NVR / Camera - Denial of Service
by qwsj
EIP-2026-111933 EXPLOITDB text VERIFIED
School Registration and Fee System - Authentication Bypass
by opt1lc
EIP-2026-109670 EXPLOITDB text VERIFIED
My Little Forum 2.3.7 - Multiple Vulnerabilities
by Ashiyane Digital Security Team
CVE-2016-9176 EXPLOITDB CRITICAL text VERIFIED
Micro Focus Rumba <9.4 - Buffer Overflow
Stack buffer overflow in the send.exe and receive.exe components of Micro Focus Rumba 9.4 and earlier could be used by local attackers or attackers able to inject arguments to these binaries to execute code.
by Umit Aksu
CVSS 9.8
CVE-2016-10737 EXPLOITDB MEDIUM text VERIFIED
S9Y Serendipity - XSS
Serendipity 2.0.4 has XSS via the serendipity_admin.php serendipity[body] parameter.
by Besim
CVSS 5.4
CVE-2016-7384 EXPLOITDB HIGH text VERIFIED
Nvidia Gpu Driver < 342.00 - Access Control
For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer (nvlddmkm.sys) where unchecked input/output lengths in UVMLiteController Device IO Control handling may lead to denial of service or potential escalation of privileges.
by Google Security Research
CVSS 7.8
CVE-2016-8812 EXPLOITDB HIGH text VERIFIED
NVIDIA GeForce Experience <GFE 2.11.4.125-3.1.0.52 - Buffer Overflow
For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA GeForce Experience R340 before GFE 2.11.4.125 and R375 before GFE 3.1.0.52 contains a vulnerability in the kernel mode layer (nvstreamkms.sys) allowing a user to cause a stack buffer overflow with specially crafted executable paths, leading to a denial of service or escalation of privileges.
by Google Security Research
CVSS 8.8
CVE-2016-7385 EXPLOITDB HIGH text VERIFIED
Nvidia Gpu Driver < 342.00 - Access Control
For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape ID 0x700010d where a value passed from a user to the driver is used without validation as the index to an internal array, leading to denial of service or potential escalation of privileges.
by Google Security Research
CVSS 7.8
CVE-2016-7387 EXPLOITDB HIGH text VERIFIED
Nvidia Gpu Driver < 342.00 - Access Control
For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape ID 0x600000D where a value passed from a user to the driver is used without validation as the index to an internal array, leading to denial of service or potential escalation of privileges.
by Google Security Research
CVSS 7.8
CVE-2016-8806 EXPLOITDB HIGH text VERIFIED
NVIDIA Windows GPU Display Driver and R375 before 375.63 <342.00-375.63 - Privilege Escalation
For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape ID 0x5000027 where a pointer passed from an user to the driver is used without validation, leading to denial of service or potential escalation of privileges.
by Google Security Research
CVSS 7.8
CVE-2016-8805 EXPLOITDB HIGH text VERIFIED
NVIDIA Windows GPU Display Driver - Privilege Escalation
For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape ID 0x7000014 where a value passed from an user to the driver is used without validation as the index to an internal array, leading to denial of service or potential escalation of privileges.
by Google Security Research
CVSS 7.8
CVE-2016-8807 EXPLOITDB HIGH text VERIFIED
NVIDIA Windows GPU Display Driver <342.00-375.63 - Buffer Overflow
For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape ID 0x10000e9 where a value is passed from an user to the driver is used without validation as the size input to memcpy() causing a stack buffer overflow, leading to denial of service or potential escalation of privileges.
by Google Security Research
CVSS 7.8
CVE-2016-7390 EXPLOITDB HIGH text VERIFIED
Nvidia Gpu Driver < 342.00 - Access Control
For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape ID 0x7000194 where a value passed from a user to the driver is used without validation as the index to an internal array, leading to denial of service or potential escalation of privileges.
by Google Security Research
CVSS 7.8
CVE-2016-8811 EXPLOITDB HIGH text VERIFIED
NVIDIA Windows GPU Display Driver R340 <342.00 and R375 <375.63 - DoS
For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape ID 0x7000170 where the size of an input buffer is not validated, leading to denial of service or potential escalation of privileges.
by Google Security Research
CVSS 7.8
CVE-2016-8808 EXPLOITDB HIGH text VERIFIED
NVIDIA Windows GPU Display Driver and R375 <342.00-375.63 - Privilege Escalation
For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape ID 0x70000d5 where a value passed from an user to the driver is used without validation as the index to an internal array, leading to denial of service or potential escalation of privileges.
by Google Security Research
CVSS 7.8
CVE-2016-8810 EXPLOITDB HIGH text VERIFIED
Nvidia Gpu Driver < 342.00 - Access Control
For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape ID 0x100009a where a value passed from an user to the driver is used without validation as the index to an internal array, leading to denial of service or potential escalation of privileges.
by Google Security Research
CVSS 7.8
CVE-2016-8809 EXPLOITDB HIGH text VERIFIED
NVIDIA Windows GPU Display Driver <342.00-375.63 - DoS/Privilege Es...
For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape ID 0x70001b2 where the size of an input buffer is not validated, leading to denial of service or potential escalation of privileges.
by Google Security Research
CVSS 7.8
By Source
All 31,332 Writeup 59,805 Exploitdb 49,992 Nomisec 21,494 Metasploit 3,218 Github 2,537 Vulncheck_xdb 904 Inthewild 514 Gitlab 441 Gitee 415 Patchapalooza 312
By Language
text 31,332 python 5,922 ruby 5,907 c 3,563 perl 2,849 html 2,053 php 1,326 bash 459 java 362 c++ 250 javascript 215 shell 90 go 53 postscript 25 xml 24