Text Exploits
31,383 exploits tracked across all sources.
live_helper_chat < 4.61 - Stored Cross-Site Scripting in Personal Canned Messages
A stored cross-site scripting (XSS) vulnerability in the Personal Canned Messages of Live Helper Chat v4.60 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload.
by Manojkumar J
CVSS 5.4
Live Helper Chat < 4.61 - Stored Cross-Site Scripting via Facebook Chat Module Surname Parameter
A stored cross-site scripting (XSS) vulnerability in the Facebook Chat module of Live Helper Chat v4.60 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Surname parameter under the Recipient' Lists.
by Manojkumar J
CVSS 5.4
livehelperchat < 4.61 - Stored Cross-Site Scripting via Facebook Registration Name Parameter
A stored cross-site scripting (XSS) vulnerability in the Facebook registration page of Live Helper Chat v4.60 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter.
by Manojkumar J
CVSS 5.4
Live Helper Chat < 4.61 - Stored Cross-Site Scripting via Department Alias Nick Parameter
A stored cross-site scripting (XSS) vulnerability in the department assignment editing module of of Live Helper Chat v4.60 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Alias Nick parameter.
by Manojkumar J
CVSS 6.5
JS Jobs component for Joomla 1.0.0-1.4.1 - Authenticated SQL Injection via 'cvid' Parameter
A SQL injection vulnerability in the JS Jobs plugin versions 1.0.0-1.4.1 for Joomla allows low-privilege users to execute arbitrary SQL commands via the 'cvid' parameter in the employee application feature.
by Adam Wallwork
Windows 10/11, Server 2016-2019 Local Privilege Escalation via Heap Overflow
Heap-based buffer overflow in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.
by nu11secur1ty
CVSS 7.0
Windows 11 22H2 < 10.0.22621.5624 - Authenticated Use-After-Free in Brokering File System
Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.
by nu11secur1ty
CVSS 7.0
wp-publications < 1.2 - Authenticated Stored Cross-Site Scripting via Filename Output
The wp-publications WordPress plugin through 1.2 does not escape filenames before outputting them back in the page, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).
by Zeynalxan Quliyev
CVSS 4.8
White Star Software Protop 4.4.2-2024-11-27 - Unauthenticated Path Traversal via /pt3upd/ Endpoint
A directory traversal vulnerability was discovered in White Star Software Protop version 4.4.2-2024-11-27, specifically in the /pt3upd/ endpoint. An unauthenticated attacker can remotely read arbitrary files on the underlying OS using encoded traversal sequences.
by Imraan Khan (Lich-Sec)
CVSS 8.2
SugarCRM <13.0.4 and 14.x <14.0.1 - Server-Side Request Forgery via API Module Code Injection
SugarCRM before 13.0.4 and 14.x before 14.0.1 allows SSRF in the API module because a limited type of code injection can occur.
by Egidio Romano
CVSS 7.2
PivotX CMS 3.0.0 RC 3 - Stored Cross-Site Scripting via Subtitle Field
Cross Site Scripting vulnerability in PivotX CMS v.3.0.0 RC 3 allows a remote attacker to execute arbitrary code via the subtitle field.
by HayToN
CVSS 5.4
MikroTik RouterOS < 7.19.2 - Cross-Site Scripting via Hotspot DST Parameter
A cross-site scripting vulnerability is present in the hotspot of MikroTik's RouterOS on versions below 7.19.2. An attacker can inject the `javascript` protocol in the `dst` parameter. When the victim browses to the malicious URL and logs in, the XSS executes. The POST request used to login, can also be converted to a GET request, allowing an attacker to send a specifically crafted URL that automatically logs in the victim (into the attacker's account) and triggers the payload.
by Prak Sokchea
TOTOLINK N300RB Firmware 8.54 - Authenticated Remote Code Execution via Hidden Debug Interface
A hidden remote support feature protected by a static secret in TOTOLINK N300RB firmware version 8.54 allows an authenticated attacker to execute arbitrary OS commands with root privileges.
by Skander BELABED - Magellan Sécurité
CVSS 8.8
Microsoft Office Outlook - Authenticated Local Code Execution via Improper Input Validation
Improper input validation in Microsoft Office Outlook allows an authorized attacker to execute code locally.
by nu11secur1ty
CVSS 6.7
Stacks Mobile App Builder <= 5.2.3 - Authentication Bypass
Authentication Bypass Using an Alternate Path or Channel vulnerability in Stacks Stacks Mobile App Builder stacks-mobile-app-builder allows Authentication Bypass.This issue affects Stacks Mobile App Builder: from n/a through <= 5.2.3.
by stealthcopter
CVSS 9.8
Microsoft Defender for Endpoint < 101.25022.0002 - Privilege Escalation
Improper access control in Microsoft Defender for Endpoint allows an authorized attacker to elevate privileges locally.
by Rich Mirch
CVSS 7.8
Sudo <1.9.17p1 - Privilege Escalation
Sudo before 1.9.17p1 allows local users to obtain root access because /etc/nsswitch.conf from a user-controlled directory is used with the --chroot option.
by Stratascale
CVSS 9.3
sudo < 1.9.17p1 - Incorrect Authorization via Host Specification Bypass
Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor ALL, allows listed users to execute commands on unintended machines.
by Rich Mirch
CVSS 2.8
Microsoft SharePoint Enterprise Server - Remote Code Execution via Untrusted Data Deserialization
Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.
by nu11secur1ty
CVSS 8.8
freeSSHd 1.0.9 - Denial of Service
A vulnerability was found in freeSSHd 1.0.9 on Windows. It has been classified as problematic. This affects an unknown part. The manipulation leads to denial of service. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-251547.
by Fernando Mengali
CVSS 5.3
McAfee Agent < 5.7.6 - Insecure Storage of Sensitive Information in ma.db
Insecure storage of sensitive information vulnerability in MA for Linux, macOS, and Windows prior to 5.7.6 allows a local user to gain access to sensitive information through storage in ma.db. The sensitive information has been moved to encrypted database files.
by Keenan Scott
CVSS 6.1
OneTrust SDK 6.33.0 - Denial of Service via Prototype Pollution
An issue in OneTrust SDK v.6.33.0 allows a local attacker to cause a denial of service via the Object.setPrototypeOf, __proto__, and Object.assign components. NOTE: this is disputed by the Supplier who does not agree it is a prototype pollution vulnerability.
by Alameen Karim Merali
CVSS 5.7
Kubernetes ingress-nginx - Pod Network Remote Code Execution
A security issue was discovered in Kubernetes where under certain conditions, an unauthenticated attacker with access to the pod network can achieve arbitrary code execution in the context of the ingress-nginx controller. This can lead to disclosure of Secrets accessible to the controller. (Note that in the default installation, the controller can access all Secrets cluster-wide.)
by Likhith Appalaneni
CVSS 9.8
PCMan FTP Server 2.0.7 - Buffer Overflow
A vulnerability classified as critical has been found in PCMan FTP Server 2.0.7. This affects an unknown part of the component RMD Command Handler. The manipulation leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
by Fernando Mengali
CVSS 7.3
Microsoft 365 Apps and Excel - Use-After-Free
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
by nu11secur1ty
CVSS 7.8
By Source