Text Exploits
31,386 exploits tracked across all sources.
Yoga Class Registration System v1.0 - Multiple SQLi
by Abdulhakim Öner
TranslatePress < 2.3.3 - Authenticated SQL Injection via Language Addition
The Translate Multilingual sites WordPress plugin before 2.3.3 is vulnerable to an authenticated SQL injection. By adding a new language (via the settings page) containing specific special characters, the backticks in the SQL query can be surpassed and a time-based blind payload can be injected.
by Elias Hohl
CVSS 8.8
SimpleMachinesForum <2.1.1 - Authenticated RCE
SimpleMachinesForum 2.1.1 and earlier allows remote authenticated administrators to execute arbitrary code by inserting a vulnerable php code because the themes can be modified by an administrator. NOTE: the vendor's position is that administrators are intended to have the ability to modify themes, and can thus choose any PHP code that they wish to have executed on the server.
by Sarang Tumne
CVSS 7.2
PHPGurukul Online Birth Certificate System V 1.2 - Blind XSS
by Prasheek Kamble
Online Diagnostic Lab Management System v1.0 - Remote Code Execution (RCE) (Unauthenticated)
by yousef alraddadi
NEX-Forms < 7.9.7 - Authenticated SQL Injection via Forms Statistics Chart
The NEX-Forms WordPress plugin before 7.9.7 does not properly sanitise and escape user input before using it in SQL statements, leading to SQL injections. The attack can be executed by anyone who is permitted to view the forms statistics chart, by default administrators, however can be configured otherwise via the plugin settings.
by Elias Hohl
CVSS 8.8
MODX Revolution <2.8.3-pl - Authenticated RCE
MODX Revolution through 2.8.3-pl allows remote authenticated administrators to execute arbitrary code by uploading an executable file, because the Uploadable File Types setting can be changed by an administrator.
by Sarang Tumne
CVSS 7.2
Lavalite v9.0.0 - XSRF-TOKEN cookie File path traversal
by nu11secur1ty
ImpressCMS < 1.4.3 - SQL Injection
SQL Injection in ImpressCMS 1.4.3 and earlier allows remote attackers to inject into the code in unintended way, this allows an attacker to read and modify the sensitive information from the database used by the application. If misconfigured, an attacker can even upload a malicious web shell to compromise the entire system.
by Sarang Tumne
CVSS 7.2
Human Resources Management System v1.0 - Multiple SQLi
by Abdulhakim Öner
Employee Performance Evaluation System v1.0 - File Inclusion and RCE
by nu11secur1ty
Composr-CMS <10.0.39 - Authenticated RCE
Authenticated remote code execution (RCE) in Composr-CMS 10.0.39 and earlier allows remote attackers to execute arbitrary code via uploading a PHP shell through /adminzone/index.php?page=admin-commandr.
by Sarang Tumne
CVSS 8.8
Bus Pass Management System 1.0 - Reflected Cross-Site Scripting via Searchdata Parameter
Bus Pass Management System v1.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the searchdata parameter.
by Ali Alipour
CVSS 6.1
Abantecart <= 1.3.2 - Authenticated Remote Code Execution via Media Manager Image Upload
Abantecart through 1.3.2 allows remote authenticated administrators to execute arbitrary code by uploading an executable file, because the Catalog>Media Manager>Images settings can be changed by an administrator (e.g., by configuring .php to be a valid image file type).
by Sarang Tumne
CVSS 7.2
D-Link DNR-322L <=2.60B15 - Authenticated Remote Code Execution
by luka
D-Link DIR-819 Firmware 1.06 - Denial of Service via sys_token Parameter
On D-Link DIR-819 Firmware Version 1.06 Hardware Version A1 devices, it is possible to trigger a Denial of Service via the sys_token parameter in a cgi-bin/webproc?getpage=html/index.html request.
by whokilleddb
CVSS 7.5
Password Manager for IIS 2.0 - Cross-Site Scripting via ResultURL Parameter
Password Manager for IIS 2.0 has a cross-site scripting (XSS) vulnerability via the /isapi/PasswordManager.dll ResultURL parameter.
by VP4TR10T
CVSS 6.1
Owlfiles File Manager 12.0.1 - Cross-Site Scripting via HTTP Server Path Parameter
Owlfiles File Manager 12.0.1 contains a cross-site scripting vulnerability that allows attackers to inject malicious scripts through the path parameter in HTTP server endpoints. Attackers can craft URLs targeting the download and list endpoints with embedded script tags to execute arbitrary JavaScript in users' browsers.
by Chokri Hammedi
CVSS 5.0
Owlfiles File Manager 12.0.1 - Path Traversal
Owlfiles File Manager 12.0.1 contains a path traversal vulnerability in its built-in HTTP server that allows attackers to access system directories. Attackers can exploit the vulnerability by crafting GET requests with directory traversal sequences to access restricted system directories on the device.
by Chokri Hammedi
CVSS 7.5
WorkOrder CMS 0.1.0 - SQL Injection
WorkOrder CMS 0.1.0 contains a SQL injection vulnerability that allows unauthenticated attackers to bypass login by manipulating username and password parameters. Attackers can inject malicious SQL queries using techniques like OR '1'='1' and stacked queries to access database information or execute administrative commands.
by Chokri Hammedi
CVSS 8.2
Gralp MAN-EAM-0003 3.2.4 - XML External Entity Injection via XML File Upload
cgi-bin/xmlstatus.cgi in Güralp MAN-EAM-0003 3.2.4 is vulnerable to an XML External Entity (XXE) issue via XML file upload, which leads to local file disclosure.
by Ahmed Alroky
CVSS 7.5
Atlassian Bitbucket Server/Data Center <7.6.17/<7.17.10/<7.21.4/<8....
Multiple API endpoints in Atlassian Bitbucket Server and Data Center 7.0.0 before version 7.6.17, from version 7.7.0 before version 7.17.10, from version 7.18.0 before version 7.21.4, from version 8.0.0 before version 8.0.3, from version 8.1.0 before version 8.1.3, and from version 8.2.0 before version 8.2.2, and from version 8.3.0 before 8.3.1 allows remote attackers with read permissions to a public or private Bitbucket repository to execute arbitrary code by sending a malicious HTTP request. This vulnerability was reported via our Bug Bounty Program by TheGrandPew.
by khal4n1
CVSS 8.8
wkhtmltopdf 0.12.6 - Server-Side Request Forgery via iframe Source
wkhtmlTOpdf 0.12.6 is vulnerable to SSRF which allows an attacker to get initial access into the target's system by injecting iframe tag with initial asset IP address on it's source. This allows the attacker to takeover the whole infrastructure by accessing their internal assets.
by Momen Eldawakhly
CVSS 9.8
VIAVIWEB Wallpaper Admin 1.0 - SQL Injection
VIAVIWEB Wallpaper Admin 1.0 contains an SQL injection vulnerability that allows authenticated attackers to manipulate database queries by injecting SQL code through the img_id parameter. Attackers can send GET requests to edit_gallery_image.php with malicious img_id values to extract database information.
by Edd13Mora
CVSS 6.5
VIAVIWEB Wallpaper Admin 1.0 - Unauthenticated Remote Code Execution via Image Upload
VIAVIWEB Wallpaper Admin 1.0 contains an unauthenticated remote code execution vulnerability in the image upload functionality. Attackers can upload a malicious PHP file through the add_gallery_image.php endpoint to execute arbitrary code on the server.
by Edd13Mora
CVSS 9.8
By Source