Text Exploits

31,394 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-110459 EXPLOITDB text
Pandora FMS 5.1 SP1 - SQL Injection
by Vulnerability-Lab
CVE-2014-6137 EXPLOITDB text
IBM Tivoli Endpoint Manager < 9.1.1117 - Cross-Site Scripting in Relay Diagnostic Page
Cross-site scripting (XSS) vulnerability in the Relay Diagnostic page in IBM Tivoli Endpoint Manager 9.1 before 9.1.1229 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
by RedTeam Pentesting
EIP-2026-101829 EXPLOITDB text
LG DVR LE6016D - Remote File Disclosure
by Yakir Wizman
CVE-2015-1576 EXPLOITDB text
u5CMS < 3.9.3 - SQL Injection via Multiple Parameters
Multiple SQL injection vulnerabilities in u5CMS before 3.9.4 allow remote attackers to execute arbitrary SQL commands via the name parameter to (1) copy2.php, (2) localize.php, (3) metai.php, (4) nc.php, (5) new2.php, or (6) rename2.php in u5admin/; (7) c parameter to u5admin/editor.php; (8) typ parameter to u5admin/meta2.php; or (9) newname parameter to u5admin/rename2.php.
by LiquidWorm
CVE-2015-1575 EXPLOITDB text
u5CMS < 3.9.3 - Cross-Site Scripting via Multiple Parameters
Multiple cross-site scripting (XSS) vulnerabilities in u5CMS before 3.9.4 allow remote attackers to inject arbitrary web script or HTML via the (1) c, (2) i, (3) l, or (4) p parameter to index.php; the (5) a or (6) b parameter to u5admin/cookie.php; the name parameter to (7) copy.php or (8) delete.php in u5admin/; the (9) f or (10) typ parameter to u5admin/deletefile.php; the (11) n parameter to u5admin/done.php; the (12) c parameter to u5admin/editor.php; the (13) uri parameter to u5admin/meta2.php; the (14) n parameter to u5admin/notdone.php; the (15) newname parameter to u5admin/rename2.php; the (16) l parameter to u5admin/sendfile.php; the (17) s parameter to u5admin/characters.php; the (18) page parameter to u5admin/savepage.php; or the (19) name parameter to u5admin/new2.php.
by LiquidWorm
EIP-2026-112841 EXPLOITDB text
u5CMS 3.9.3 - 'thumb.php' Local File Inclusion
by LiquidWorm
CVE-2015-1577 EXPLOITDB text
u5CMS < 3.9.3 - Path Traversal and Arbitrary File Write via f Parameter
Directory traversal vulnerability in u5admin/deletefile.php in u5CMS before 3.9.4 allows remote attackers to write to arbitrary files via a (1) .. (dot dot) or (2) full pathname in the f parameter.
by LiquidWorm
EIP-2026-112419 EXPLOITDB text
StaMPi - Local File Inclusion
by e . V . E . L
CVE-2015-1518 EXPLOITDB text
redaxscript < 2.2.0 - SQL Injection via search_terms Parameter
SQL injection vulnerability in the search_post function in includes/search.php in Redaxscript before 2.3.0 allows remote attackers to execute arbitrary SQL commands via the search_terms parameter.
by ITAS Team
CVE-2015-1467 EXPLOITDB text
Fork CMS < 3.8.6 - Authenticated SQL Injection via Translations Language or Type Parameter
Multiple SQL injection vulnerabilities in Translations in Fork CMS before 3.8.6 allow remote authenticated users to execute arbitrary SQL commands via the (1) language[] or (2) type[] parameter to private/en/locale/index.
by Sven Schleier
EIP-2026-105810 EXPLOITDB text
Chamilo LMS 1.9.8 - Blind SQL Injection
by Kacper Szurek
CVE-2014-7864 EXPLOITDB text
ManageEngine OpManager 8-11.5 - SQL Injection via FailOverHelperServlet Parameters
Multiple SQL injection vulnerabilities in the FailOverHelperServlet (aka FailServlet) servlet in ZOHO ManageEngine OpManager 8 through 11.5 build 11400 and IT360 10.5 and earlier allow remote attackers and remote authenticated users to execute arbitrary SQL commands via the (1) customerName or (2) serverRole parameter in a standbyUpdateInCentral operation to servlet/com.adventnet.me.opmanager.servlet.FailOverHelperServlet.
by Pedro Ribeiro
EIP-2026-102572 EXPLOITDB text
Chemtool 1.6.14 - Memory Corruption
by Pablo González
CVE-2015-2067 EXPLOITDB text
MAGMI - Path Traversal via File Parameter
Directory traversal vulnerability in web/ajax_pluginconf.php in the MAGMI (aka Magento Mass Importer) plugin for Magento Server allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.
by SECUPENT
CVE-2015-2068 EXPLOITDB text
MAGMI < 0.7.22 - Cross-Site Scripting via Profile Parameter or QUERY_STRING
Multiple cross-site scripting (XSS) vulnerabilities in the MAGMI (aka Magento Mass Importer) plugin for Magento Server allow remote attackers to inject arbitrary web script or HTML via the (1) profile parameter to web/magmi.php or (2) QUERY_STRING to web/magmi_import_run.php.
by SECUPENT
CVE-2015-1471 EXPLOITDB text
Pragyan CMS 3.0 - SQL Injection via User Parameter
SQL injection vulnerability in userprofile.lib.php in Pragyan CMS 3.0 allows remote attackers to execute arbitrary SQL commands via the user parameter to the default URI.
by Steffen Rösemann
CVE-2014-7883 EXPLOITDB text VERIFIED
HP Universal CMDB Probe 9.05, 10.01, 10.11 - Exposure of Sensitive Information via HTTP TRACE Method
HP Universal CMDB (UCMDB) Probe 9.05, 10.01, and 10.11 enables the HTTP TRACE method, which allows remote attackers to obtain sensitive information by reading the headers of a response.
by Hans-Martin Muench
CVE-2015-1428 EXPLOITDB text
Sefrengo < 1.6.1 - SQL Injection via sefrengo Cookie or value_id Parameter
Multiple SQL injection vulnerabilities in Sefrengo before 1.6.2 allow (1) remote attackers to execute arbitrary SQL commands via the sefrengo cookie in a login to backend/main.php or (2) remote authenticated users to execute arbitrary SQL commands via the value_id parameter in a save_value action to backend/main.php.
by ITAS Team
CVE-2014-7288 EXPLOITDB text VERIFIED
Symantec PGP Universal Server & Encryption Management Server <3.3.2...
Symantec PGP Universal Server and Encryption Management Server before 3.3.2 MP7 allow remote authenticated administrators to execute arbitrary shell commands via a crafted command line in a database-backup restore action.
by Paul Craig
CVE-2014-8826 EXPLOITDB text
Apple OS X <10.10.2 - Info Disclosure
LaunchServices in Apple OS X before 10.10.2 does not properly handle file-type metadata, which allows attackers to bypass the Gatekeeper protection mechanism via a crafted JAR archive.
by Amplia Security Research
CVE-2012-4891 EXPLOITDB text
ManageEngine Firewall Analyzer 7.2 - XSS
Cross-site scripting (XSS) vulnerability in fw/index2.do in ManageEngine Firewall Analyzer 7.2 allows remote attackers to inject arbitrary web script or HTML via the url parameter, a different vector than CVE-2012-4889. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by Ertebat Gostar Co
CVE-2014-8612 EXPLOITDB text VERIFIED
FreeBSD - Local Privilege Escalation and Arbitrary Kernel Memory Read via SCTP Stream ID
Multiple array index errors in the Stream Control Transmission Protocol (SCTP) module in FreeBSD 10.1 before p5, 10.0 before p17, 9.3 before p9, and 8.4 before p23 allow local users to (1) gain privileges via the stream id to the setsockopt function, when setting the SCTIP_SS_VALUE option, or (2) read arbitrary kernel memory via the stream id to the getsockopt function, when getting the SCTP_SS_PRIORITY option.
by Core Security
CVE-2015-1477 EXPLOITDB text
CMSJunkie J-ClassifiedsManager - SQL Injection
SQL injection vulnerability in the CMSJunkie J-ClassifiedsManager component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a viewad task to classifieds/offerring-ads.
by Sarath Nair
CVE-2014-9598 EXPLOITDB text
VideoLAN VLC media player <2.1.5 - RCE
The picture_Release function in misc/picture.c in VideoLAN VLC media player 2.1.5 allows remote attackers to execute arbitrary code or cause a denial of service (write access violation) via a crafted M2V file.
by Veysel HATAS
CVE-2014-9597 EXPLOITDB text
VideoLAN VLC media player <2.1.5 - RCE
The picture_pool_Delete function in misc/picture_pool.c in VideoLAN VLC media player 2.1.5 allows remote attackers to execute arbitrary code or cause a denial of service (DEP violation and application crash) via a crafted FLV file.
by Veysel HATAS