Text Exploits
31,337 exploits tracked across all sources.
Google Native Client - Memory Corruption
NaCl in 2015 allowed the CLFLUSH instruction, making rowhammer attacks possible.
by Google Security Research
CVSS 10.0
Apple Mac EFI - Memory Corruption
Apple Mac EFI before 2015-001, as used in OS X before 10.10.4 and other products, does not properly set refresh rates for DDR3 RAM, which might make it easier for remote attackers to conduct row-hammer attacks, and consequently gain privileges or cause a denial of service (memory corruption), by triggering certain patterns of access to memory locations.
by Google Security Research
Google Native Client - Memory Corruption
NaCl in 2015 allowed the CLFLUSH instruction, making rowhammer attacks possible.
by Google Security Research
CVSS 10.0
WordPress Plugin Reflex Gallery 3.1.3 - Arbitrary File Upload
by CrashBandicot
Palosanto Elastix < 2.5.0 - SQL Injection
SQL injection vulnerability in a2billing/customer/iridium_threed.php in Elastix 2.5.0 and earlier allows remote attackers to execute arbitrary SQL commands via the transactionID parameter.
by Ahmed Aboul-Ela
Projectsend - SQL Injection
SQL injection vulnerability in client-edit.php in ProjectSend (formerly cFTP) r561 allows remote authenticated users to execute arbitrary SQL commands via the id parameter to users-edit.php.
by ITAS Team
Betster - SQL Injection
Multiple SQL injection vulnerabilities in Betster (aka PHP Betoffice) 1.0.4 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) showprofile.php or (2) categoryedit.php or (3) username parameter in a login to index.php.
by ZeQ3uL
UpThemes Theme DesignFolio Plus 1.2 - Unrestricted Upload
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability has been found in UpThemes Theme DesignFolio Plus 1.2 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of the patch is 53f6ae62878076f99718e5feb589928e83c879a9. It is recommended to apply a patch to fix this issue. The identifier VDB-221809 was assigned to this vulnerability. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
by CrashBandicot
CVSS 6.3
Solarwinds Orion Platform <11.5 - SQL Injection
Multiple SQL injection vulnerabilities in the Manage Accounts page in the AccountManagement.asmx service in the Solarwinds Orion Platform 2015.1, as used in Network Performance Monitor (NPM) before 11.5, NetFlow Traffic Analyzer (NTA) before 4.1, Network Configuration Manager (NCM) before 7.3.2, IP Address Manager (IPAM) before 4.3, User Device Tracker (UDT) before 3.2, VoIP & Network Quality Manager (VNQM) before 4.2, Server & Application Manager (SAM) before 6.2, Web Performance Monitor (WPM) before 2.2, and possibly other Solarwinds products, allow remote authenticated users to execute arbitrary SQL commands via the (1) dir or (2) sort parameter to the (a) GetAccounts or (b) GetAccountGroups endpoint.
by Brandon Perry
Photocati Media Photocrati < 4.07 - SQL Injection
SQL injection vulnerability in ecomm-sizes.php in the Photocrati theme 4.x for WordPress allows remote attackers to execute arbitrary SQL commands via the prod_id parameter.
by ayastar
WordPress Plugin cp-multi-view-calendar 1.1.4 - SQL Injection
by i0akiN SEC-LABORATORY
Avinu Phpmoadmin - Command Injection
The saveObject function in moadmin.php in phpMoAdmin 1.1.2 allows remote attackers to execute arbitrary commands via shell metacharacters in the object parameter.
by @u0x
WordPress Plugin Calculated Fields Form 1.0.10 - SQL Injection
by Ibrahim Raafat
vBulletin - Authenticated RCE
functions_vbseo_hook.php in the VBSEO module for vBulletin allows remote authenticated users to execute arbitrary code via the HTTP Referer header to visitormessage.php.
by Net.Edit0r
CVSS 8.8
Ubisoft Uplay 5.0 - Insecure File Permissions Privilege Escalation
by LiquidWorm
Electronic Arts Origin Client 9.5.5 - Multiple Privilege Escalation Vulnerabilities
by LiquidWorm
SQLite <3.8.10.2 - Info Disclosure
Multiple unspecified vulnerabilities in SQLite before 3.8.10.2, as used in Apple iOS before 9, have unknown impact and attack vectors.
by Andras Kabai
Zeuscart - SQL Injection
Multiple SQL injection vulnerabilities in the administrative backend in ZeusCart 4 allow remote administrators to execute arbitrary SQL commands via the id parameter in a (1) disporders detail or (2) subadminmgt edit action or (3) cid parameter in an editcurrency action to admin/.
by Steffen Rösemann
Ajsquare Zeuscart - XSS
Multiple cross-site scripting (XSS) vulnerabilities in ZeusCart 4 allow remote attackers to inject arbitrary web script or HTML via the (1) schltr parameter in a brands action or (2) brand parameter in a viewbrands action to index.php. NOTE: The search parameter vector is already covered by CVE-2010-5322.
by Steffen Rösemann
ZeusCart <4.0 - XSS
Cross-site scripting (XSS) vulnerability in ZeusCart 4.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameter in a search action to index.php.
by Steffen Rösemann
Ajsquare Zeuscart - Information Disclosure
ZeusCart 4 allows remote attackers to obtain configuration information via a getphpinfo action to admin/, which calls the phpinfo function.
by Steffen Rösemann
Cybernetikz Easy Social Icons < 1.2.2 - CSRF
Cross-site request forgery (CSRF) vulnerability in the Easy Social Icons plugin before 1.2.3 for WordPress allows remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting (XSS) attacks via the image_file parameter in an edit action in the cnss_social_icon_add page to wp-admin/admin.php.
by Eric Flokstra
Phpbugtracker < 1.6.0 - SQL Injection
Multiple SQL injection vulnerabilities in Issuetracker phpBugTracker before 1.7.0 allow remote attackers to execute arbitrary SQL commands via unspecified parameters.
by Steffen Rösemann
CVSS 9.8
By Source