Text Exploits
31,392 exploits tracked across all sources.
WordPress Plugin Ocim MP3 - SQL Injection
by xevil & Blankon33
phpRPC <= 0.7 - Remote Code Execution via Base64 Tag in RPC Decoder
Eval injection vulnerability in the decode function in rpc_decoder.php for phpRPC 0.7 and earlier, as used by runcms, exoops, and possibly other programs, allows remote attackers to execute arbitrary PHP code via the base64 tag.
by GulfTech Security
Joomla! Component com_poweradmin 2.3.0 - Multiple Vulnerabilities
by RatioSec Research
Wireshark - print_hex_data_buffer / print_packet Use-After-Free
by Google Security Research
Zimbra Collaboration Server < 8.5 - Cross-Site Request Forgery via SOAP BatchRequest
Multiple cross-site request forgery (CSRF) vulnerabilities in the Mail interface in Zimbra Collaboration Server (ZCS) before 8.5 allow remote attackers to hijack the authentication of arbitrary users for requests that change account preferences via a SOAP request to service/soap/BatchRequest.
by Sysdream
CVSS 8.8
Proxmox VE 3/4 - Insecure Hostname Checking Remote Command Execution
by Sysdream
Infor CRM 8.2.0.1136 - Multiple HTML Script Injection Vulnerabilities
by LiquidWorm
Mambo 4.5.3, 4.5.3h - Path Traversal via mos_change_template Parameter
Directory traversal vulnerability in the _setTemplate function in Mambo 4.5.3, 4.5.3h, and possibly earlier versions allows remote attackers to read and include arbitrary files via the mos_change_template parameter. NOTE: CVE-2006-1794 has been assigned to the SQL injection vector.
by GulfTech Security
Wireshark - vwr_read_s2_s3_W_rec Heap Buffer Overflow
by Google Security Research
libxml2 <2.9.4 - DoS
The xmlPArserPrintFileContextInternal function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.
by Google Security Research
CVSS 5.5
libxml2 - xmlParseEndTag2 Heap Buffer Overread
by Google Security Research
Apple iPhone OS < 9.3.2 - Out-of-bounds Read in xmlDictAddString
The xmlDictAddString function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.
by Google Security Research
CVSS 5.5
libxml2 - htmlCurrentChar Heap Buffer Overread
by Google Security Research
Dell OpenManage Server Administrator 8.2 - Authenticated Path Traversal via ViewFile File Parameter
Directory traversal vulnerability in Dell OpenManage Server Administrator (OMSA) 8.2 allows remote authenticated administrators to read arbitrary files via a ..\ (dot dot backslash) in the file parameter to ViewFile.
by hantwister
CVSS 4.9
Ubiquiti Networks UniFi 3.2.10 - Cross-Site Request Forgery
by Julien Ahrens
BlackBerry Enterprise Server 12 - SQL Injection
Multiple SQL injection vulnerabilities in the com.rim.mdm.ui.server.ImageServlet servlet in BlackBerry Enterprise Server 12 (BES12) Self-Service before 12.4 allow remote attackers to execute arbitrary SQL commands via the imageName parameter to (1) mydevice/client/image, (2) admin/client/image, (3) myapps/client/image, (4) ssam/client/image, or (5) all/client/image.
by Security-Assessment.com
CVSS 8.8
Wireshark - dissect_oml_attrs Static Out-of-Bounds Read
by Google Security Research
Wireshark - dissect_ber_set Static Out-of-Bounds Read
by Google Security Research
Wireshark - add_ff_vht_compressed_beamforming_report Static Out-of-Bounds Read
by Google Security Research
Ubuntu Linux - Local Privilege Escalation via pt_chown Namespace Check Bypass
pt_chown in the glibc package before 2.19-18+deb8u4 on Debian jessie; the elibc package before 2.15-0ubuntu10.14 on Ubuntu 12.04 LTS and before 2.19-0ubuntu6.8 on Ubuntu 14.04 LTS; and the glibc package before 2.21-0ubuntu4.2 on Ubuntu 15.10 and before 2.23-0ubuntu1 on Ubuntu 16.04 LTS and 16.10 lacks a namespace check associated with file-descriptor passing, which allows local users to capture keystrokes and spoof data, and possibly gain privileges, via pts read and write operations, related to debian/sysdeps/linux.mk. NOTE: this is not considered a vulnerability in the upstream GNU C Library because the upstream documentation has a clear security recommendation against the --enable-pt_chown option.
by halfdog
CVSS 8.4
Linux Kernel < 4.4.8 - Use-After-Free in USB MIDI Descriptor Handling
Double free vulnerability in the snd_usbmidi_create function in sound/usb/midi.c in the Linux kernel before 4.5 allows physically proximate attackers to cause a denial of service (panic) or possibly have unspecified other impact via vectors involving an invalid USB descriptor.
by Andrey Konovalov
CVSS 4.6
BlackBerry Enterprise Server 12 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in BlackBerry Enterprise Server 12 (BES12) Self-Service before 12.4 allow remote attackers to inject arbitrary web script or HTML via the locale parameter to (1) mydevice/index.jsp or (2) mydevice/loggedOut.jsp.
by Security-Assessment.com
CVSS 6.1
By Source