Text Exploits
31,392 exploits tracked across all sources.
VideoLAN VLC Media Player Web Interface 2.2.1 - Metadata Title Cross-Site Scripting
by Andrea Sindoni
D-Link DIR-816L <2.06.B09_BETA - CSRF
Multiple cross-site request forgery (CSRF) vulnerabilities in the D-Link DIR-816L Wireless Router with firmware before 2.06.B09_BETA allow remote attackers to hijack the authentication of administrators for requests that (1) change the admin password, (2) change the network policy, or (3) possibly have other unspecified impact via crafted requests to hedwig.cgi and pigwidgeon.cgi.
by Bhadresh Patel
D-Link DIR-890L/R - Multiple Buffer Overflow Vulnerabilities
by Samuel Huntley
D-Link DIR-880L - Multiple Buffer Overflow Vulnerabilities
by Samuel Huntley
D-Link DIR-866L - Multiple Buffer Overflow Vulnerabilities
by Samuel Huntley
D-Link DIR-615 - Multiple Buffer Overflow Vulnerabilities
by Samuel Huntley
b374k 3.2.3/2.8 (Web Shell) - Cross-Site Request Forgery / Command Injection
by hyp3rlinx
R-Scripts Vacation Rental Script 7R - Multiple Vulnerabilities
by LiquidWorm
WP Fastest Cache < 0.8.4.9 - SQL Injection via poll_id Parameter
The wp-fastest-cache plugin before 0.8.4.9 for WordPress has SQL injection in wp-admin/admin-ajax.php?action=wpfc_wppolls_ajax_request via the poll_id parameter.
by Kacper Szurek
CVSS 9.8
Huawei HG630a / HG630a-50 - Default SSH Admin Password on ADSL Modems
by Murat Sahin
TestLink 1.9.14 - Cross-Site Request Forgery
by Aravind C Ajayan_ Balagopal N
FreeType 2.6.1 - TrueType tt_sbit_decoder_load_bit_aligned Heap Out-of-Bounds Read
by Google Security Research
Google AdWords API PHP client library 6.2.0 - Arbitrary PHP Code Execution
by Dawid Golunski
Google AdWords 6.2.0 API client libraries - XML eXternal Entity Injection
by Dawid Golunski
By Source