Text Exploits
31,433 exploits tracked across all sources.
WordPress Plugin stafflist 3.1.2 - SQLi (Authenticated)
by Hassan Khan Yusufzai
Advanced Uploader < 4.2 - Authenticated Arbitrary File Upload
The Advanced Uploader WordPress plugin through 4.2 allows any authenticated users like subscriber to upload arbitrary files, such as PHP, which could lead to RCE
by Roel van Beurden
CVSS 8.8
PHProjekt PhpSimplyGest 1.3.0 - Stored Cross-Site Scripting via Project Title
A stored cross-site scripting (XSS) vulnerability in PHProjekt PhpSimplyGest v1.3.0 allows attackers to execute arbitrary web scripts or HTML via a project title.
by Andrea Intilangelo
CVSS 5.4
Microfinance Management System 1.0 - 'customer_number' SQLi
by Eren Gozaydin
Explore CMS 1.0 - SQL Injection via Page ID Parameter
Explore CMS v1.0 was discovered to contain a SQL injection vulnerability via a /page.php?id= request.
by Sajibe Kanti
CVSS 9.8
Cyclos 4.0.0-4.14.7 - Unauthenticated DOM-Based Cross-Site Scripting via Undefined Enum Constant
Cyclos 4 PRO 4.14.7 and before does not validate user input at error inform, which allows remote unauthenticated attacker to execute javascript code via undefine enum constant.
by Tin Pham
CVSS 6.1
Cyclos 4.0.0-4.14.7 - DOM-Based Cross-Site Scripting via Registration GroupId Parameter
A Dom-based Cross-site scripting (XSS) vulnerability at registration account in Cyclos 4 PRO.14.7 and before allows remote attackers to inject arbitrary web script or HTML via the groupId parameter.
by Tin Pham
CVSS 6.1
SAP BusinessObjects Business Intelligence Platform 420, 430 - XML External Entity Injection via SOAP Web Services
When a user access SOAP Web services in SAP BusinessObjects Business Intelligence Platform - version 420, 430, it does not sufficiently validate the XML document accepted from an untrusted source, which might result in arbitrary files retrieval from the server and in successful exploits of DoS.
by West Shepherd
CVSS 8.1
TLR-2005KSH Firmware - Unauthenticated Arbitrary File Upload via PUT Method
TLR-2005KSH is affected by an incorrect access control vulnerability. THe PUT method is enabled so an attacker can upload arbitrary files including HTML and CGI formats.
by Ahmed Alroky
CVSS 9.8
DLink DIR850 ET850-1.08TRb03 - Open Redirect
DLink DIR850 ET850-1.08TRb03 is affected by an incorrect access control vulnerability through URL redirection to untrusted site.
by Ahmed Alroky
CVSS 6.1
DLink DIR850 ET850-1.08TRb03 - Info Disclosure
DLink DIR850 ET850-1.08TRb03 is affected by an incorrect access control vulnerability through an unauthenticated remote configuration download.
by Ahmed Alroky
CVSS 7.5
D-Link DAP-1620 Firmware - Path Traversal and Unauthorized File Read
Local File Inclusion due to path traversal in D-Link DAP-1620 leads to unauthorized internal files reading [/etc/passwd] and [/etc/shadow].
by Momen Eldawakhly
CVSS 7.5
Bookeen Notea Firmware BK_R_1.0.5_20210608 - Path Traversal
Bookeen Notea Firmware BK_R_1.0.5_20210608 is affected by a directory traversal vulnerability that allows an attacker to obtain sensitive information.
by Clement MAILLIOUX
CVSS 4.6
GitLab 14.4-14.6.7 14.8-14.8.4 14.9-14.9.1 - Stored Cross-Site Scripting via Notes
Improper neutralization of user input in GitLab CE/EE versions 14.4 before 14.7.7, all versions starting from 14.8 before 14.8.5, all versions starting from 14.9 before 14.9.2 allowed an attacker to exploit XSS by injecting HTML in notes.
by Greenwolf
CVSS 8.7
GitLab 14.7-14.7.6, 14.8-14.8.4, 14.9-14.9.1 - Authentication Bypass via Hardcoded OmniAuth Password
A hardcoded password was set for accounts registered using an OmniAuth provider (e.g. OAuth, LDAP, SAML) in GitLab CE/EE versions 14.7 prior to 14.7.7, 14.8 prior to 14.8.5, and 14.9 prior to 14.9.2 allowing attackers to potentially take over accounts
by Greenwolf
CVSS 9.1
WordPress Plugin Videos sync PDF 1.7.4 Stored XSS
WordPress Plugin Videos sync PDF 1.7.4 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by exploiting unsanitized mov, pdf, mp4, webm, and ogg parameters. Attackers can inject payloads like autofocus onfocus event handlers through the plugin options panel to execute arbitrary JavaScript when administrators view or edit video settings.
by UnD3sc0n0c1d0
CVSS 6.4
PTPublisher 2.3.4 - Unquoted Service Path in PTProtect Service
PTPublisher 2.3.4 contains an unquoted service path vulnerability in the PTProtect service that allows local attackers to potentially execute arbitrary code with elevated privileges. Attackers can exploit the unquoted path in 'C:\Program Files (x86)\Primera Technology\PTPublisher\UsbFlashDongleService.exe' to inject malicious executables and gain system-level access.
by bios
CVSS 7.8
EaseUS Data Recovery <15.1.0.0 - Code Injection
EaseUS Data Recovery 15.1.0.0 contains an unquoted service path vulnerability in the EaseUS UPDATE SERVICE executable. Attackers can exploit the unquoted path to inject and execute malicious code with elevated LocalSystem privileges.
by bios
CVSS 8.4
Microsoft Exchange Mailbox Assistants 15.0.847.40 - 'Service MSExchangeMailboxAssistants' Unquoted Service Path
by Antonio Cuomo
Microsoft Exchange Active Directory Topology 15.0.847.40 - 'Service MSExchangeADTopology' Unquoted Service Path
by Antonio Cuomo
Popup Maker < 1.16.5 - Authenticated Stored Cross-Site Scripting in Popup Settings
The Popup Maker WordPress plugin before 1.16.5 does not sanitise and escape some of its Popup settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed
by Roel van Beurden
CVSS 4.8
By Source