Text Exploits

31,392 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-103624 EXPLOITDB text VERIFIED
pdfium - opj_t2_read_packet_header 'libopenjpeg' Heap Use-After-Free
by Google Security Research
CVE-2015-4593 EXPLOITDB HIGH text
eClinicalWorks Population Health - Cross-Site Request Forgery in portalUserService.jsp
eClinicalWorks Population Health (CCMR) suffers from a cross-site request forgery (CSRF) vulnerability in portalUserService.jsp which allows remote attackers to hijack the authentication of content administrators for requests that could lead to the creation, modification and deletion of users, appointments and employees.
by Jerold Hoong
CVSS 8.8
EIP-2026-116581 EXPLOITDB text
WPS Office < 2016 - '.xls' Heap Memory Corruption
by Francis Provencher
EIP-2026-116580 EXPLOITDB text
WPS Office < 2016 - '.ppt' Heap Memory Corruption
by Francis Provencher
EIP-2026-116579 EXPLOITDB text
WPS Office < 2016 - '.ppt' drawingContainer Memory Corruption
by Francis Provencher
EIP-2026-116578 EXPLOITDB text
WPS Office < 2016 - '.doc' OneTableDocumentStream Memory Corruption
by Francis Provencher
EIP-2026-114953 EXPLOITDB text
Autonics DAQMaster 1.7.3 - DQP Parsing Buffer Overflow Code Execution (PoC)
by LiquidWorm
EIP-2026-107959 EXPLOITDB text
iScripts EasyCreate 3.0 - Multiple Vulnerabilities
by Bikramaditya Guha
EIP-2026-104323 EXPLOITDB text
ManageEngine EventLog Analyzer 4.0 < 10 - Privilege Escalation
by GraphX
EIP-2026-102375 EXPLOITDB text
Hippo CMS 10.1 - Multiple Vulnerabilities
by LiquidWorm
EIP-2026-114044 EXPLOITDB text VERIFIED
WordPress Plugin Simple Add Pages or Posts 1.6 - Cross-Site Request Forgery
by ALIREZA_PROMIS
EIP-2026-111541 EXPLOITDB text
ProjectSend r582 - Multiple Vulnerabilities
by Filippo Cavallarin
EIP-2026-116489 EXPLOITDB text
VideoLAN VLC Media Player 2.2.1 - '.mp4' Heap Memory Corruption
by Francis Provencher
EIP-2026-111674 EXPLOITDB text
Ramui Web Hosting Directory Script 4.0 - Remote File Inclusion
by bd0rk
CVE-2015-7084 EXPLOITDB text VERIFIED
Apple iOS <9.2, macOS <10.11.2, tvOS <9.1, watchOS <2.1 - Memory Corruption in Kernel
The kernel in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-7083.
by Google Security Research
CVE-2015-7986 EXPLOITDB text
SAP HANA <1.00.095 - Memory Corruption
The index server (hdbindexserver) in SAP HANA 1.00.095 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via an HTTP request, aka SAP Security Note 2197428.
by ERPScan
CVE-2016-1721 EXPLOITDB HIGH text VERIFIED
Apple iOS <9.2.1, OS X <10.11.3, tvOS <9.1.1 - Memory Corruption
The kernel in Apple iOS before 9.2.1, OS X before 10.11.3, and tvOS before 9.1.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors.
by Google Security Research
CVSS 7.8
CVE-2015-7112 EXPLOITDB text VERIFIED
Apple iOS <9.2, macOS <10.11.2, tvOS <9.1, watchOS <2.1 - Memory Corruption in IOHIDFamily API
The IOHIDFamily API in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2015-7111.
by Google Security Research
CVE-2016-1719 EXPLOITDB HIGH text VERIFIED
Apple iOS <9.2.1-OS X <10.11.3-tvOS <9.1.1 - Privilege Escalation/DoS
The IOHIDFamily API in Apple iOS before 9.2.1, OS X before 10.11.3, and tvOS before 9.1.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors.
by Google Security Research
CVSS 7.8
CVE-2016-1719 EXPLOITDB HIGH text VERIFIED
Apple iOS <9.2.1-OS X <10.11.3-tvOS <9.1.1 - Privilege Escalation/DoS
The IOHIDFamily API in Apple iOS before 9.2.1, OS X before 10.11.3, and tvOS before 9.1.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors.
by Google Security Research
CVSS 7.8
CVE-2016-1719 EXPLOITDB HIGH text VERIFIED
Apple iOS <9.2.1-OS X <10.11.3-tvOS <9.1.1 - Privilege Escalation/DoS
The IOHIDFamily API in Apple iOS before 9.2.1, OS X before 10.11.3, and tvOS before 9.1.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors.
by Google Security Research
CVSS 7.8
CVE-2016-1719 EXPLOITDB HIGH text VERIFIED
Apple iOS <9.2.1-OS X <10.11.3-tvOS <9.1.1 - Privilege Escalation/DoS
The IOHIDFamily API in Apple iOS before 9.2.1, OS X before 10.11.3, and tvOS before 9.1.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors.
by Google Security Research
CVSS 7.8
CVE-2016-1719 EXPLOITDB HIGH text VERIFIED
Apple iOS <9.2.1-OS X <10.11.3-tvOS <9.1.1 - Privilege Escalation/DoS
The IOHIDFamily API in Apple iOS before 9.2.1, OS X before 10.11.3, and tvOS before 9.1.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors.
by Google Security Research
CVSS 7.8
CVE-2016-1719 EXPLOITDB HIGH text VERIFIED
Apple iOS <9.2.1-OS X <10.11.3-tvOS <9.1.1 - Privilege Escalation/DoS
The IOHIDFamily API in Apple iOS before 9.2.1, OS X before 10.11.3, and tvOS before 9.1.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors.
by Google Security Research
CVSS 7.8
CVE-2016-20084 EXPLOITDB HIGH text
WordPress appointment-booking-calendar 1.1.24 Privilege Escalation XSS
WordPress appointment-booking-calendar 1.1.24 contains multiple privilege escalation vulnerabilities that allow unauthenticated attackers to modify calendar settings and inject persistent cross-site scripting payloads through the admin.php page parameters. Attackers can inject malicious JavaScript into the 'ict' and 'ics' options or the calendar 'name' parameter via GET requests to execute arbitrary scripts when the calendar is displayed or accessed in the administration interface.
by i0akiN SEC-LABORATORY
CVSS 7.2