Text Exploits
31,330 exploits tracked across all sources.
libxml2 <2.9.4 - DoS
The xmlPArserPrintFileContextInternal function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.
by Google Security Research
CVSS 5.5
libxml2 - xmlParseEndTag2 Heap Buffer Overread
by Google Security Research
libxml2 <2.9.4 - DoS
The xmlDictAddString function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.
by Google Security Research
CVSS 5.5
libxml2 - htmlCurrentChar Heap Buffer Overread
by Google Security Research
Dell OMSA 8.2 - Path Traversal
Directory traversal vulnerability in Dell OpenManage Server Administrator (OMSA) 8.2 allows remote authenticated administrators to read arbitrary files via a ..\ (dot dot backslash) in the file parameter to ViewFile.
by hantwister
CVSS 4.9
Ubiquiti Networks UniFi 3.2.10 - Cross-Site Request Forgery
by Julien Ahrens
BlackBerry Enterprise Server 12 - SQL Injection
Multiple SQL injection vulnerabilities in the com.rim.mdm.ui.server.ImageServlet servlet in BlackBerry Enterprise Server 12 (BES12) Self-Service before 12.4 allow remote attackers to execute arbitrary SQL commands via the imageName parameter to (1) mydevice/client/image, (2) admin/client/image, (3) myapps/client/image, (4) ssam/client/image, or (5) all/client/image.
by Security-Assessment.com
CVSS 8.8
Wireshark - dissect_oml_attrs Static Out-of-Bounds Read
by Google Security Research
Wireshark - dissect_ber_set Static Out-of-Bounds Read
by Google Security Research
Wireshark - add_ff_vht_compressed_beamforming_report Static Out-of-Bounds Read
by Google Security Research
Canonical Ubuntu Linux - Access Control
pt_chown in the glibc package before 2.19-18+deb8u4 on Debian jessie; the elibc package before 2.15-0ubuntu10.14 on Ubuntu 12.04 LTS and before 2.19-0ubuntu6.8 on Ubuntu 14.04 LTS; and the glibc package before 2.21-0ubuntu4.2 on Ubuntu 15.10 and before 2.23-0ubuntu1 on Ubuntu 16.04 LTS and 16.10 lacks a namespace check associated with file-descriptor passing, which allows local users to capture keystrokes and spoof data, and possibly gain privileges, via pts read and write operations, related to debian/sysdeps/linux.mk. NOTE: this is not considered a vulnerability in the upstream GNU C Library because the upstream documentation has a clear security recommendation against the --enable-pt_chown option.
by halfdog
CVSS 8.4
Linux Kernel < 4.4.8 - Denial of Service
Double free vulnerability in the snd_usbmidi_create function in sound/usb/midi.c in the Linux kernel before 4.5 allows physically proximate attackers to cause a denial of service (panic) or possibly have unspecified other impact via vectors involving an invalid USB descriptor.
by Andrey Konovalov
CVSS 4.6
BlackBerry Enterprise Server 12 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in BlackBerry Enterprise Server 12 (BES12) Self-Service before 12.4 allow remote attackers to inject arbitrary web script or HTML via the locale parameter to (1) mydevice/index.jsp or (2) mydevice/loggedOut.jsp.
by Security-Assessment.com
CVSS 6.1
Pear Liveuser - Path Traversal
Directory traversal vulnerability in the "remember me" feature in liveuser.php in PHP Extension and Application Repository (PEAR) LiveUser 0.16.8 and earlier allows remote attackers to determine file existence, and possibly delete arbitrary files with short pathnames or possibly read arbitrary files, via a .. (dot dot) in the store_id value of a cookie.
by GulfTech Security
ManageEngine Firewall Analyzer 8.5 - Multiple Vulnerabilities
by Sachin Wagh
STIMS Cutter 1.1.3.20 - Buffer Overflow (Denial of Service) (PoC)
by Shantanu Khandelwal
STIMS Buffer 1.1.20 - Buffer Overflow (PoC) (SEH Overwrite)
by Shantanu Khandelwal
Geeklog - SQL Injection
Multiple SQL injection vulnerabilities in Geeklog 1.4.0 before 1.4.0sr1 and 1.3.11 before 1.3.11sr4 allow remote attackers to inject arbitrary SQL commands via the (1) userid variable to users.php or (2) sessid variable to lib-sessions.php.
by GulfTech Security
Chamilo LMS IDOR - 'messageId' Delete POST Injection
by Vulnerability-Lab
Adobe Flash Player <18.0.0.324-20.0.0.267 - RCE
Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe AIR SDK & Compiler before 20.0.0.233 allow attackers to execute arbitrary code by leveraging an unspecified "type confusion."
by Google Security Research
CVSS 8.8
Linux Kernel < 3.19.8 - Improper Privilege Management
The aufs module for the Linux kernel 3.x and 4.x does not properly maintain POSIX ACL xattr data, which allows local users to gain privileges by leveraging a group-writable setgid directory.
by halfdog
CVSS 7.8
By Source