Text Exploits
31,386 exploits tracked across all sources.
PunBB 1.3.5 - Multiple Cross-Site Scripting Vulnerabilities
by Piotr Duszynski
StarDevelop LiveHelp 2.0 - 'index.php' Local File Inclusion
by KedAns-Dz
Cogent DataHub <7.1.1.63 - Info Disclosure
The web server in Cogent DataHub 7.1.1.63 and earlier allows remote attackers to obtain the source code of executable files via a request with a trailing (1) space or (2) %2e (encoded dot).
by Luigi Auriemma
Rockwell RSLogix < 19 - Denial of Service via Crafted RNA Packet
RnaUtility.dll in RsvcHost.exe 2.30.0.23 in Rockwell RSLogix 19 and earlier allows remote attackers to cause a denial of service (crash) via a crafted rna packet with a long string to TCP port 4446 that triggers (1) "a memset zero overflow" or (2) an out-of-bounds read, related to improper handling of a 32-bit size field.
by Luigi Auriemma
Progea Movicon / PowerHMI <11.2.1085 - DoS/Code Injection
Progea Movicon / PowerHMI 11.2.1085 and earlier allows remote attackers to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code via an EIDP packet with a large size field, which writes a zero byte to an arbitrary memory location.
by Luigi Auriemma
Measuresoft ScadaPro < 4.0.0 - Remote Code Execution via XF Function
service.exe in Measuresoft ScadaPro 4.0.0 and earlier allows remote attackers to execute arbitrary DLL functions via the XF function, possibly related to an insecure exposed method.
by Luigi Auriemma
eSignal < 10.6.2425 - Stack-Based and Heap-Based Buffer Overflow via Long StyleTemplate or FaceName Field
WinSig.exe in eSignal 10.6.2425 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) a long StyleTemplate element in a QUO, SUM or POR file, which triggers a stack-based buffer overflow, or (2) a long Font->FaceName field (aka FaceName element), which triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.
by Luigi Auriemma
Equis MetaStock < 11.0 - Use-After-Free via Malformed Chart or Template
Use-after-free vulnerability in Equis MetaStock 11 and earlier allows remote attackers to execute arbitrary code via a malformed (1) mwc chart, (2) mws chart, (3) mwt template, or (4) mwl layout.
by Luigi Auriemma
Azeotech DAQFactory <5.85.1853 - Buffer Overflow
Stack-based buffer overflow in Azeotech DAQFactory 5.85 build 1853 and earlier allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a crafted NETB packet to UDP port 20034.
by Luigi Auriemma
Cogent DataHub <7.1.1.63 - Buffer Overflow
Multiple stack-based buffer overflows in the DH_OneSecondTick function in Cogent DataHub 7.1.1.63 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long (1) domain, (2) report_domain, (3) register_datahub, or (4) slave commands.
by Luigi Auriemma
Cogent DataHub <= 7.1.1.63 - Denial of Service via Content-Length Header
Integer overflow in Cogent DataHub 7.1.1.63 and earlier allows remote attackers to cause a denial of service (crash) via a negative or large Content-Length value.
by Luigi Auriemma
Beckhoff TwinCAT <2.11.0.2004 - DoS
Beckhoff TwinCAT 2.11.0.2004 and earlier allows remote attackers to cause a denial of service via a crafted request to UDP port 48899, which triggers an out-of-bounds read.
by Luigi Auriemma
WordPress Plugin E-Commerce 3.8.6 - SQL Injection
by Miroslav Stampar
WordPress Plugin Auctions 1.8.8 - 'wpa_id' SQL Injection
by sherl0ck_
Microsoft SharePoint 2007/2010 - 'Source' Multiple Open Redirections
by Irene Abezgauz
Carel PlantVisor <2.4.4 - Path Traversal
Directory traversal vulnerability in CarelDataServer.exe in Carel PlantVisor 2.4.4 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in an HTTP GET request.
by Luigi Auriemma
Windows Server 2003 SP2 and Server 2008 - Remote Code Execution via Crafted Packets
WINS in Microsoft Windows Server 2003 SP2 and Server 2008 Gold, SP2, R2, and R2 SP1 does not properly handle socket send exceptions, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted packets, related to unintended stack-frame values and buffer passing, aka "WINS Service Failed Response Vulnerability."
by Luigi Auriemma
Microsoft WINS - Privilege Escalation
WINS in Microsoft Windows Server 2003 SP2 and Server 2008 SP2, R2, and R2 SP1 allows local users to gain privileges by sending crafted packets over the loopback interface, aka "WINS Local Elevation of Privilege Vulnerability."
by Core Security
ForumPress < 1.7.4 - SQL Injection via groupid Parameter
SQL injection vulnerability in fs-admin/fs-admin.php in the ForumPress WP Forum Server plugin before 1.7.4 for WordPress allows remote attackers to execute arbitrary SQL commands via the groupid parameter in an editgroup action.
by Miroslav Stampar
TomatoCart 1.1 - (Authenticated) Local File Inclusion
by brain[pillow]
Papoo CMS Light 4.0 - Multiple Cross-Site Scripting Vulnerabilities
by Stefan Schurtz
By Source