Text Exploits

31,337 exploits tracked across all sources.

Sort: Activity Stars
CVE-2015-0514 EXPLOITDB text
EMC Watch4net < 6.5 - Information Disclosure
EMC M&R (aka Watch4Net) before 6.5u1 and ViPR SRM before 3.6.1 might allow remote attackers to obtain cleartext data-center discovery credentials by leveraging certain SRM access to conduct a decryption attack.
by Han Sahin
CVE-2015-2281 EXPLOITDB text VERIFIED
Fortinet Single Sign ON - Memory Corruption
Stack-based buffer overflow in collectoragent.exe in Fortinet Single Sign On (FSSO) before build 164 allows remote attackers to execute arbitrary code via a large PROCESS_HELLO message to the Message Dispatcher on TCP port 8000.
by Core Security
CVE-2015-2746 EXPLOITDB text
Websense Triton < 7.7 - Command Injection
The network diagnostics tool (CommandLineServlet) in the Appliance Manager command line utility (CLU) in Websense TRITON 7.8.3 and V-Series appliances before 7.8.4 Hotfix 02 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the "second" parameter of a command, as demonstrated by the Destination parameter in the ping command.
by Han Sahin
EIP-2026-117958 EXPLOITDB text
Spybot Search & Destroy 1.6.2 Security Center Service - Local Privilege Escalation
by LiquidWorm
CVE-2015-2269 EXPLOITDB text
Moodle < 2.5.9 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in lib/javascript-static.js in Moodle through 2.5.9, 2.6.x before 2.6.9, 2.7.x before 2.7.6, and 2.8.x before 2.8.4 allow remote authenticated users to inject arbitrary web script or HTML via a (1) alt or (2) title attribute in an IMG element.
by LiquidWorm
EIP-2026-104337 EXPLOITDB text VERIFIED
Metasploit Project < 4.11.1 - Initial User Creation Cross-Site Request Forgery (Metasploit)
by Mohamed Abdelbaset Elnoby
CVE-2015-2789 EXPLOITDB text
Foxit Reader <7.0.6.1126 - Privilege Escalation
Unquoted Windows search path vulnerability in the Foxit Cloud Safe Update Service in the Cloud plugin in Foxit Reader 6.1 through 7.0.6.1126 allows local users to gain privileges via a Trojan horse program in the %SYSTEMDRIVE% folder.
by LiquidWorm
CVE-2015-2791 EXPLOITDB text
Wpml < 3.1.8 - Access Control
The "menu sync" function in the WPML plugin before 3.1.9 for WordPress allows remote attackers to delete arbitrary posts, pages, and menus via a crafted request to sitepress-multilingual-cms/menu/menus-sync.php.
by Jouko Pynnonen
CVE-2015-2292 EXPLOITDB text VERIFIED
Yoast Wordpress Seo < 1.5.6 - SQL Injection
Multiple SQL injection vulnerabilities in admin/class-bulk-editor-list-table.php in the WordPress SEO by Yoast plugin before 1.5.7, 1.6.x before 1.6.4, and 1.7.x before 1.7.4 for WordPress allow remote authenticated users to execute arbitrary SQL commands via the (1) order_by or (2) order parameter in the wpseo_bulk-editor page to wp-admin/admin.php. NOTE: this can be leveraged using CSRF to allow remote attackers to execute arbitrary SQL commands.
by Ryan Dewhurst
EIP-2026-112231 EXPLOITDB text VERIFIED
Smart PHP Poll - Authentication Bypass
by Mr.tro0oqy yemen
EIP-2026-108542 EXPLOITDB text
Joomla! Component com_simplephotogallery 1.0 - SQL Injection
by Moneer Masoud
CVE-2015-2291 EXPLOITDB HIGH text
Intel Ethernet Diagnostics Driver Iqv... - Improper Input Validation
(1) IQVW32.sys before 1.3.1.0 and (2) IQVW64.sys before 1.3.1.0 in the Intel Ethernet diagnostics driver for Windows allows local users to cause a denial of service or possibly execute arbitrary code with kernel privileges via a crafted (a) 0x80862013, (b) 0x8086200B, (c) 0x8086200F, or (d) 0x80862007 IOCTL call.
by Glafkos Charalambous
CVSS 7.8
CVE-2015-2275 EXPLOITDB text
Wotlab Community Gallery - XSS
Cross-site scripting (XSS) vulnerability in WoltLab Community Gallery 2.0 before 2014-12-26 allows remote attackers to inject arbitrary web script or HTML via the parameters[data][7][title] parameter in a saveImageData action to index.php/AJAXProxy.
by ITAS Team
CVE-2014-7884 EXPLOITDB text
HP ArcSight Logger <6.0P1 - Unspecified Vuln
Multiple unspecified vulnerabilities in HP ArcSight Logger before 6.0P1 have unknown impact and remote authenticated attack vectors.
by Horoszkiewicz Julian ISP_
CVE-2015-2841 EXPLOITDB text
Citrix Netscaler - Improper Access Control
Citrix NetScaler AppFirewall, as used in NetScaler 10.5, allows remote attackers to bypass intended firewall restrictions via a crafted Content-Type header, as demonstrated by the application/octet-stream and text/xml Content-Types.
by BGA Security
EIP-2026-106048 EXPLOITDB text VERIFIED
Codiad 2.5.3 - Local File Inclusion
by TUNISIAN CYBER
CVE-2015-2285 EXPLOITDB text
Ubuntu Upstart <1.13.2-0ubuntu9 - Command Injection
The logrotation script (/etc/cron.daily/upstart) in the Ubuntu Upstart package before 1.13.2-0ubuntu9, as used in Ubuntu Vivid 15.04, allows local users to execute arbitrary commands and gain privileges via a crafted file in /run/user/*/upstart/sessions/.
by halfdog
CVE-2015-0081 EXPLOITDB text VERIFIED
Microsoft Windows 7 - Remote Code Execution
Windows Text Services (WTS) in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a crafted (1) web site or (2) file, aka "WTS Remote Code Execution Vulnerability."
by Francis Provencher
CVE-2015-2790 EXPLOITDB text
Foxitsoftware Enterprise Reader - Improper Input Validation
Foxit Reader, Enterprise Reader, and PhantomPDF before 7.1 allow remote attackers to cause a denial of service (memory corruption and crash) via a crafted (1) Ubyte Size in a DataSubBlock structure or (2) LZWMinimumCodeSize in a GIF image.
by Francis Provencher
CVE-2015-2790 EXPLOITDB text
Foxitsoftware Enterprise Reader - Improper Input Validation
Foxit Reader, Enterprise Reader, and PhantomPDF before 7.1 allow remote attackers to cause a denial of service (memory corruption and crash) via a crafted (1) Ubyte Size in a DataSubBlock structure or (2) LZWMinimumCodeSize in a GIF image.
by Francis Provencher
CVE-2015-2679 EXPLOITDB text
Genixcms < 0.0.1 - SQL Injection
Multiple SQL injection vulnerabilities in MetalGenix GeniXCMS before 0.0.2 allow remote attackers to execute arbitrary SQL commands via the (1) page parameter to index.php or (2) username parameter to gxadmin/login.php.
by LiquidWorm
CVE-2015-2678 EXPLOITDB text
Genixcms < 0.0.1 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in MetalGenix GeniXCMS before 0.0.2 allow remote attackers to inject arbitrary web script or HTML via the (1) cat parameter in the categories page to gxadmin/index.php or (2) page parameter to index.php.
by LiquidWorm
EIP-2026-108541 EXPLOITDB text
Joomla! Component com_simplephotogallery 1.0 - Arbitrary File Upload
by CrashBandicot
CVE-2015-2680 EXPLOITDB text
Metalgenix Genixcms < 0.0.1 - CSRF
Cross-site request forgery (CSRF) vulnerability in MetalGenix GeniXCMS before 0.0.2 allows remote attackers to hijack the authentication of administrators for requests that add an administrator account via a request in the users page to gxadmin/index.php.
by LiquidWorm
CVE-2014-9261 EXPLOITDB text
Codoforum 2.5.1 - Path Traversal
The sanitize function in Codoforum 2.5.1 does not properly implement filtering for directory traversal sequences, which allows remote attackers to read arbitrary files via a .. (dot dot) in the path parameter to index.php.
by Kacper Szurek
By Source
All 31,337 Writeup 59,977 Exploitdb 49,996 Nomisec 21,600 Metasploit 3,218 Github 2,556 Vulncheck_xdb 904 Inthewild 514 Gitlab 441 Gitee 415 Patchapalooza 312
By Language
text 31,337 python 5,936 ruby 5,907 c 3,565 perl 2,849 html 2,053 php 1,326 bash 459 java 362 c++ 250 javascript 215 shell 90 go 53 postscript 25 xml 24