Text Exploits
31,341 exploits tracked across all sources.
GDidees CMS <3.9.1 - Info Disclosure
GDidees CMS v3.9.1 and lower was discovered to contain an arbitrary file download vulenrability via the filename parameter at /_admin/imgdownload.php.
by Hadi Mene
CVSS 7.5
Hockeycomputindo Bang Resto - XSS
Bang Resto 1.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the itemName parameter in the admin/menu.php Add New Menu function.
by Rahad Chowdhury
CVSS 4.8
Hockeycomputindo Bang Resto - SQL Injection
Bang Resto 1.0 was discovered to contain multiple SQL injection vulnerabilities via the btnMenuItemID, itemID, itemPrice, menuID, staffID, or itemqty parameter.
by Rahad Chowdhury
CVSS 8.8
Microsoft 365 Apps - Heap Buffer Overflow
Microsoft Word Remote Code Execution Vulnerability
by nu11secur1ty
CVSS 7.8
Linux Kernel - Info Disclosure
The Linux kernel allows userspace processes to enable mitigations by calling prctl with PR_SET_SPECULATION_CTRL which disables the speculation feature as well as by using seccomp. We had noticed that on VMs of at least one major cloud provider, the kernel still left the victim process exposed to attacks in some cases even after enabling the spectre-BTI mitigation with prctl. The same behavior can be observed on a bare-metal machine when forcing the mitigation to IBRS on boot command line.
This happened because when plain IBRS was enabled (not enhanced IBRS), the kernel had some logic that determined that STIBP was not needed. The IBRS bit implicitly protects against cross-thread branch target injection. However, with legacy IBRS, the IBRS bit was cleared on returning to userspace, due to performance reasons, which disabled the implicit STIBP and left userspace threads vulnerable to cross-thread branch target injection against which STIBP protects.
by nu11secur1ty
CVSS 5.6
Swagger UI 4.1.3 - User Interface (UI) Misrepresentation of Critical Information
by Rafael Cintra Lopes
Franklin Fueling Systems TS-550 - Default Password
by Parsa Rezaie Khiabanloo
InnovaStudio WYSIWYG Editor 5.4 - Unrestricted File Upload
InnovaStudio WYSIWYG Editor 5.4 contains an unrestricted file upload vulnerability that allows attackers to bypass file extension restrictions through filename manipulation. Attackers can upload malicious ASP shells by using null byte techniques and alternate file extensions to circumvent upload controls in the asset manager.
by Zer0FauLT
CVSS 9.8
Google Chrome Browser 111.0.5563.64 - AXPlatformNodeCocoa Fatal OOM/Crash (macOS)
by LiquidWorm
Sielco PolyEco Digital FM Transmitter 2.0.6 - Unauthenticated Information Disclosure
by LiquidWorm
Sielco PolyEco Digital FM Transmitter 2.0.6 - Radio Data System POST Manipulation
by LiquidWorm
Sielco PolyEco Digital FM Transmitter 2.0.6 - Authorization Bypass Factory Reset
by LiquidWorm
Sielco PolyEco Digital FM Transmitter 2.0.6 - Account Takeover / Lockout / EoP
by LiquidWorm
Sielco Analog FM Transmitter 2.12 - Improper Access Control Change Admin Password
by LiquidWorm
Sielco Analog FM Transmitter 2.12 - Cross-Site Request Forgery
by LiquidWorm
Sielco Analog FM Transmitter 2.12 - 'id' Cookie Brute Force Session Hijacking
by LiquidWorm
Sielco Analog FM Transmitter 2.12 - Remote Privilege Escalation
by LiquidWorm
Ever Gauzy <0.281.9 - Auth Bypass
Ever Gauzy v0.281.9 contains a JWT authentication vulnerability that allows attackers to exploit weak HMAC secret key implementation. Attackers can leverage the exposed JWT token to authenticate and gain unauthorized access with administrative permissions.
by nu11secur1ty
CVSS 9.8
Microsoft Edge <Webview2 - SSRF
Microsoft Edge (Chromium-based) Webview2 Spoofing Vulnerability
by nu11secur1ty
CVSS 8.2
Eset Endpoint Antivirus < 8.1.2062.0 - Improper Privilege Management
Local privilege escalation vulnerability potentially allowed an attacker to misuse ESET’s file operations to delete files without having proper permission.
by Milad karimi
CVSS 7.8
ActFax 10.10 - Privilege Escalation
ActFax 10.10 contains an unquoted service path vulnerability that allows local attackers to potentially escalate privileges by exploiting the ActiveFaxServiceNT service configuration. Attackers with write permissions to Program Files directories can inject a malicious ActSrvNT.exe executable to gain elevated system access when the service restarts.
by Birkan ALHAN
CVSS 6.2
WebsiteBaker 2.13.3 - XSS
WebsiteBaker 2.13.3 contains a stored cross-site scripting vulnerability that allows authenticated users to inject malicious scripts when creating web pages. Attackers can craft malicious payloads in page titles that execute arbitrary JavaScript when the page is viewed by other users.
by Mirabbas Ağalarov
CVSS 5.4
Dotclear 2.25.3 - RCE
Dotclear 2.25.3 contains a remote code execution vulnerability that allows authenticated attackers to upload malicious PHP files with .phar extension through the blog post creation interface. Attackers can upload files containing PHP system commands that execute when the uploaded file is accessed, enabling arbitrary code execution on the server.
by Mirabbas Ağalarov
CVSS 8.8
By Source