Text Exploits

31,392 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-113603 EXPLOITDB text
WordPress Plugin Booking Calendar Contact Form 1.1.24 - addslashes SQL Injection
by i0akiN SEC-LABORATORY
EIP-2026-105499 EXPLOITDB text
BK Mobile jQuery CMS 2.4 - Multiple Vulnerabilities
by Rahul Pratap Singh
EIP-2026-102293 EXPLOITDB text
Secure Item Hub 1.0 iOS - Multiple Vulnerabilities
by Vulnerability-Lab
EIP-2026-115285 EXPLOITDB text
Foxit Reader 7.2.8.1124 - '.PDF' Parsing Memory Corruption
by Francis Provencher
EIP-2026-113601 EXPLOITDB text
WordPress Plugin Booking Calendar Contact Form 1.1.23 - Shortcode SQL Injection
by i0akiN SEC-LABORATORY
EIP-2026-107457 EXPLOITDB text
Gongwalker API Manager 1.1 - Blind SQL Injection
by HaHwul
EIP-2026-103744 EXPLOITDB text VERIFIED
Wireshark - hiqnet_display_data Static Out-of-Bounds Read
by Google Security Research
EIP-2026-103737 EXPLOITDB text VERIFIED
Wireshark - dissect_nhdr_extopt Stack Buffer Overflow
by Google Security Research
EIP-2026-103734 EXPLOITDB text VERIFIED
Wireshark - dissect_ber_constrained_bitstring Heap Out-of-Bounds Read
by Google Security Research
EIP-2026-103730 EXPLOITDB text VERIFIED
Wireshark - 'nettrace_3gpp_32_423_file_open' Stack Out-of-Bounds Read
by Google Security Research
EIP-2026-103729 EXPLOITDB text VERIFIED
Wireshark - 'iseries_check_file_type' Stack Out-of-Bounds Read
by Google Security Research
EIP-2026-103623 EXPLOITDB text VERIFIED
pdfium - opj_jp2_apply_pclr 'libopenjpeg' Heap Out-of-Bounds Read
by Google Security Research
EIP-2026-103622 EXPLOITDB text VERIFIED
pdfium - opj_j2k_read_mcc 'libopenjpeg' Heap Out-of-Bounds Read
by Google Security Research
CVE-2016-0006 EXPLOITDB HIGH text VERIFIED
Microsoft Windows - Local Privilege Escalation via Reparse Point Mishandling
The sandbox implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 Gold and 1511 mishandles reparse points, which allows local users to gain privileges via a crafted application, aka "Windows Mount Point Elevation of Privilege Vulnerability," a different vulnerability than CVE-2016-0007.
by Google Security Research
CVSS 7.3
CVE-2016-0007 EXPLOITDB HIGH text VERIFIED
Microsoft Windows - Local Privilege Escalation via Reparse Point Mishandling
The sandbox implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 Gold and 1511 mishandles reparse points, which allows local users to gain privileges via a crafted application, aka "Windows Mount Point Elevation of Privilege Vulnerability," a different vulnerability than CVE-2016-0006.
by Google Security Research
CVSS 7.8
CVE-2016-0007 EXPLOITDB HIGH text VERIFIED
Microsoft Windows - Local Privilege Escalation via Reparse Point Mishandling
The sandbox implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 Gold and 1511 mishandles reparse points, which allows local users to gain privileges via a crafted application, aka "Windows Mount Point Elevation of Privilege Vulnerability," a different vulnerability than CVE-2016-0006.
by Google Security Research
CVSS 7.8
EIP-2026-113602 EXPLOITDB text
WordPress Plugin Booking Calendar Contact Form 1.1.23 - SQL Injection
by i0akiN SEC-LABORATORY
EIP-2026-117727 EXPLOITDB text
Oracle - 'HtmlConverter.exe' Local Buffer Overflow
by hyp3rlinx
CVE-2016-0727 EXPLOITDB HIGH text
NTP Package <4.2.6.p3 - Privilege Escalation via Crontab Script
The crontab script in the ntp package before 1:4.2.6.p3+dfsg-1ubuntu3.11 on Ubuntu 12.04 LTS, before 1:4.2.6.p5+dfsg-3ubuntu2.14.04.10 on Ubuntu 14.04 LTS, on Ubuntu Wily, and before 1:4.2.8p4+dfsg-3ubuntu5.3 on Ubuntu 16.04 LTS allows local users with access to the ntp account to write to arbitrary files and consequently gain privileges via vectors involving statistics directory cleanup.
by halfdog
CVSS 7.8
EIP-2026-116050 EXPLOITDB text
PDF-XChange Viewer 2.5.315.0 - Shading Type 7 Heap Memory Corruption
by Sébastien Morin
CVE-2015-8283 EXPLOITDB MEDIUM text
SeaWell Networks Spectrum SDC <2.05.00 - Path Traversal
Directory traversal vulnerability in configure_manage.php in SeaWell Networks Spectrum SDC 02.05.00.
by Karn Ganeshen
CVSS 6.5
CVE-2015-8282 EXPLOITDB CRITICAL text
SeaWell Networks Spectrum SDC <2.05.00 - Info Disclosure
SeaWell Networks Spectrum SDC 02.05.00 has a default password of "admin" for the "admin" account.
by Karn Ganeshen
CVSS 9.8
EIP-2026-118099 EXPLOITDB text
WEG SuperDrive G2 12.0.0 - Insecure File Permissions
by LiquidWorm
CVE-2015-8284 EXPLOITDB HIGH text
SeaWell Networks Spectrum SDC <2.05.00 - Privilege Escalation
SeaWell Networks Spectrum SDC 02.05.00 allows remote viewer users to perform administrative functions.
by Karn Ganeshen
CVSS 8.8
EIP-2026-104976 EXPLOITDB text
Advanced Electron Forum 1.0.9 - Remote File Inclusion / Cross-Site Request Forgery
by hyp3rlinx