Text Exploits
31,394 exploits tracked across all sources.
WordPress Plugin CP Image Store with Slideshow 1.0.5 - Arbitrary File Download
by i0akiN SEC-LABORATORY
easy2map < 1.2.4 - SQL Injection via mapName Parameter
Multiple SQL injection vulnerabilities in includes/Function.php in the Easy2Map plugin before 1.2.5 for WordPress allow remote attackers to execute arbitrary SQL commands via the mapName parameter in an e2m_img_save_map_name action to wp-admin/admin-ajax.php and other unspecified vectors.
by Larry W. Cashdollar
Blueberry Express 5.9.0.3678 - Local Buffer Overflow (SEH)
by Vulnerability-Lab
Symantec Endpoint Protection 12.1.4013 - Service Disabling
by hyp3rlinx
WP e-Commerce Shop Styling <2.6 - Path Traversal
Directory traversal vulnerability in the WP e-Commerce Shop Styling plugin before 2.6 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter to includes/download.php.
by Larry W. Cashdollar
CVSS 7.5
easy2map < 1.2.4 - Unauthenticated Path Traversal and Arbitrary File Write via MapPinImageSave.php map_id Parameter
Directory traversal vulnerability in includes/MapPinImageSave.php in the Easy2Map plugin before 1.2.5 for WordPress allows remote attackers to create arbitrary files via a .. (dot dot) in the map_id parameter.
by Larry W. Cashdollar
Centreon <2.5.4 - Command Injection
The escape_command function in include/Administration/corePerformance/getStats.php in Centreon (formerly Merethis Centreon) 2.5.4 and earlier (fixed in Centreon 19.10.0) uses an incorrect regular expression, which allows remote authenticated users to execute arbitrary commands via shell metacharacters in the ns_id parameter.
by Huy-Ngoc DAU
Grandstream GXV3275 < 1.0.3.30 - Multiple Vulnerabilities
by David Jorm
AirLive BU-2015, BU-3026, and MD-3025 - OS Command Injection via cgi_test.cgi Parameters
cgi_test.cgi in AirLive BU-2015 with firmware 1.03.18, BU-3026 with firmware 1.43, and MD-3025 with firmware 1.81 allows remote attackers to execute arbitrary OS commands via shell metacharacters after an "&" (ampersand) in the write_mac write_pid, write_msn, write_tan, or write_hdv parameter.
by Core Security
CVSS 9.8
AirLink101 SkyIPCam1620W Wireless N MPEG4 3GPP Firmware - Authenticated OS Command Injection via mac Parameter
snwrite.cgi in AirLink101 SkyIPCam1620W Wireless N MPEG4 3GPP network camera with firmware FW_AIC1620W_1.1.0-12_20120709_r1192.pck allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in the mac parameter.
by Core Security
CVSS 8.8
Orchard 1.7.3-1.8.2 and 1.9.x < 1.9.1 - Stored Cross-Site Scripting via Username
Cross-site scripting (XSS) vulnerability in the Users module in Orchard 1.7.3 through 1.8.2 and 1.9.x before 1.9.1 allows remote attackers to inject arbitrary web script or HTML via the username when creating a new user account, which is not properly handled when deleting an account.
by Paris Zoumpouloglou
WordPress Plugin ACF Frontend Display 2.0.5 - Arbitrary File Upload
by TUNISIAN CYBER
phpliteadmin 1.1 - Cross-Site Scripting via PATH_INFO or Table Parameters
Multiple cross-site scripting (XSS) vulnerabilities in phpLiteAdmin 1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) PATH_INFO, (2) droptable parameter, or (3) table parameter to phpliteadmin.php.
by hyp3rlinx
D-Link DSL-2750u / DSL-2730u - (Authenticated) Local File Disclosure
by SATHISH ARTHAR
s3bubble-amazon-s3-html-5-video-with-adverts 0.7 - Path Traversal via Downloader Path Parameter
The s3bubble-amazon-s3-html-5-video-with-adverts plugin 0.7 for WordPress has directory traversal via the adverts/assets/plugins/ultimate/content/downloader.php path parameter.
by CrashBandicot
CVSS 7.5
WordPress Plugin Albo Pretorio Online 3.2 - Multiple Vulnerabilities
by Alessandro Cingolani
PEAR XML_RPC < 1.3.0 and PHPXMLRPC < 1.1 - Remote Code Execution via Unsanitized XML Input
Eval injection vulnerability in PEAR XML_RPC 1.3.0 and earlier (aka XML-RPC or xmlrpc) and PHPXMLRPC (aka XML-RPC For PHP or php-xmlrpc) 1.1 and earlier, as used in products such as (1) WordPress, (2) Serendipity, (3) Drupal, (4) egroupware, (5) MailWatch, (6) TikiWiki, (7) phpWebSite, (8) Ampache, and others, allows remote attackers to execute arbitrary PHP code via an XML file, which is not properly sanitized before being used in an eval statement.
by GulfTech Security
Novius OS 5.0.1 - Path Traversal via Tab Parameter
Directory traversal vulnerability in Novius OS 5.0.1 (Elche) allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the tab parameter to admin/.
by hyp3rlinx
Polycom RealPresence Resource Manager < 8.3.2 - Authenticated Directory Traversal and Arbitrary File Upload
Multiple directory traversal vulnerabilities in Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allow (1) remote authenticated users to read arbitrary files via a .. (dot dot) in the Modifier parameter to PlcmRmWeb/FileDownload; or remote authenticated administrators to upload arbitrary files via the (2) Filename or (3) SE_FNAME parameter to PlcmRmWeb/FileUpload or to read and remove arbitrary files via the (4) filePathName parameter in an importSipUriReservations SOAP request to PlcmRmWeb/JUserManager.
by SEC Consult
CVSS 6.5
By Source