Text Exploits
31,330 exploits tracked across all sources.
Fedora - Out-of-Bounds Write
Eye of GNOME (aka eog) 3.16.5, 3.17.x, 3.18.x before 3.18.3, 3.19.x, and 3.20.x before 3.20.4, when used with glib before 2.44.1, allow remote attackers to cause a denial of service (out-of-bounds write and crash) via vectors involving passing invalid UTF-8 to GMarkup.
by Kaslov Dmitri
CVSS 7.5
JVC VN-T - Path Traversal
JVC VN-T IP-camera models firmware versions up to 2016-08-22 (confirmed on the VN-T216VPRU model) contain a directory traversal vulnerability in the checkcgi endpoint that accepts a user-controlled file parameter. An unauthenticated remote attacker can leverage this vulnerability to read arbitrary files on the device.
by Yakir Wizman
WordPress Traversal Directory DoS
Directory traversal vulnerability in the wp_ajax_update_plugin function in wp-admin/includes/ajax-actions.php in WordPress 4.5.3 allows remote authenticated users to cause a denial of service or read certain text files via a .. (dot dot) in the plugin parameter to wp-admin/admin-ajax.php, as demonstrated by /dev/random read operations that deplete the entropy pool.
by Yorick Koster
CVSS 7.1
Wordpress < 4.5.5 - CSRF
Cross-site request forgery (CSRF) vulnerability in the wp_ajax_update_plugin function in wp-admin/includes/ajax-actions.php in WordPress before 4.6 allows remote attackers to hijack the authentication of subscribers for /dev/random read operations by leveraging a late call to the check_ajax_referer function, a related issue to CVE-2016-6896.
by Yorick Koster
CVSS 6.5
OcoMon <1.21 - SQL Injection
SQL injection vulnerability in OcoMon 1.21, and possibly other versions, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the logon page, a different vulnerability than CVE-2005-4662.
by Jonatas Fil
ObiHai ObiPhone 1032/1062 < 5-0-0-3497 - Multiple Vulnerabilities
by David Tomaschik
Vanderbilt IP-Camera CCPW3025-IR / CVMW3025-IR - Local File Disclosure
by Yakir Wizman
Honeywell IP-Camera HICC-1100PT - Local File Disclosure
by Yakir Wizman
Watchguard Rapidstream - Access Control
WatchGuard RapidStream appliances allow local users to gain privileges and execute arbitrary commands via a crafted ifconfig command, aka ESCALATEPLOWMAN.
by Shadow Brokers
CVSS 7.8
Fortinet Fortios < 4.1.11 - Memory Corruption
Buffer overflow in the Cookie parser in Fortinet FortiOS 4.x before 4.1.11, 4.2.x before 4.2.13, and 4.3.x before 4.3.9 and FortiSwitch before 3.4.3 allows remote attackers to execute arbitrary code via a crafted HTTP request, aka EGREGIOUSBLUNDER.
by Shadow Brokers
CVSS 9.8
TOPSEC Firewalls - 'ELIGIBLEBACHELOR' Remote Command Execution
by Shadow Brokers
Cisco ASA <8.4(1) - Privilege Escalation
Cisco Adaptive Security Appliance (ASA) Software before 8.4(1) on ASA 5500, ASA 5500-X, PIX, and FWSM devices allows local users to gain privileges via invalid CLI commands, aka Bug ID CSCtu74257 or EPICBANANA.
by Shadow Brokers
CVSS 7.8
Vanderbilt IP-Camera CCPW3025-IR / CVMW3025-IR - Credentials Disclosure
by Yakir Wizman
TOSHIBA IP-Camera IK-WP41A - Authentication Bypass / Configuration Download
by Todor Donev
TOPSEC Firewalls - 'ELIGIBLECONTESTANT' Remote Code Execution
by Shadow Brokers
TOPSEC Firewalls - 'ELIGIBLECANDIDATE' Remote Code Execution
by Shadow Brokers
TOPSEC Firewalls - 'ELIGIBLEBOMBSHELL' Remote Code Execution
by Shadow Brokers
SIEMENS IP Cameras (Multiple Models) - Credential Disclosure / Configuration Download
by Todor Donev
MESSOA IP-Camera NIC990 - Authentication Bypass / Configuration Download
by Todor Donev
JVC IP-Camera VN-T216VPRU - Credentials Disclosure
by Yakir Wizman
By Source