Text Exploits
31,394 exploits tracked across all sources.
NetKit FTP Client (Ubuntu 14.04) - Crash/Denial of Service (PoC)
by TUNISIAN CYBER
Security IP Camera Star Vision DVR - Authentication Bypass
by Meisam Monsef
Windows RPC - Local Privilege Escalation via DCE/RPC Connection Reflection
The authentication implementation in the RPC subsystem in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not prevent DCE/RPC connection reflection, which allows local users to gain privileges via a crafted application, aka "Windows RPC Elevation of Privilege Vulnerability."
by monoxgas
Zend Framework < 1.12.14, 2.x < 2.4.6, 2.5.x < 2.5.2 - XML External Entity Injection via Multibyte Encoded Characters
The Zend_Xml_Security::scan in ZendXml before 1.0.1 and Zend Framework before 1.12.14, 2.x before 2.4.6, and 2.5.x before 2.5.2, when running under PHP-FPM in a threaded environment, allows remote attackers to bypass security checks and conduct XML external entity (XXE) and XML entity expansion (XEE) attacks via multibyte encoded characters.
by Dawid Golunski
Joomla! Component com_jem 2.1.4 - Multiple Vulnerabilities
by Martino Sani
Printer Pro 5.4.3 IOS - Persistent Cross-Site Scripting
by Taurus Omar
WordPress Plugin WPTF Image Gallery 1.03 - Arbitrary File Download
by Larry W. Cashdollar
WordPress Plugin Simple Image Manipulator 1.0 - Arbitrary File Download
by Larry W. Cashdollar
WordPress Plugin Recent Backups 0.7 - Arbitrary File Download
by Larry W. Cashdollar
WordPress Plugin Candidate Application Form 1.0 - Arbitrary File Download
by Larry W. Cashdollar
Apple Mac OSX Keychain - EXC_BAD_ACCESS Denial of Service
by Juan Sacco
Job Manager < 0.7.22 - Cross-Site Scripting via Email Field
Cross-site scripting (XSS) vulnerability in the Job Manager plugin 0.7.22 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the email field.
by Owais Mehtab
Microweber 1.0.3 - Arbitrary File Upload / Filter Bypass / PHP Remote Code Execution
by LiquidWorm
Froxlor Server Management Panel 0.9.33.1 - MySQL Login Information Disclosure
by Dustin Dörr
By Source