Text Exploits
31,386 exploits tracked across all sources.
Selea Targa IP OCR-ANPR Camera - Server-Side Request Forgery via JSON POST Parameters
A server-side request forgery (SSRF) vulnerability exists in multiple Selea Targa IP OCR-ANPR camera models, including iZero, Targa 512, Targa 504, Targa Semplice, Targa 704 TKM, Targa 805, Targa 710 INOX, Targa 750, and Targa 704 ILB. The application fails to validate user-supplied input in JSON POST parameters such as ipnotify_address and url, which are used by internal mechanisms to perform image fetch and DNS lookups. This allows remote unauthenticated attackers to induce the system to make arbitrary HTTP requests to internal or external systems, potentially bypassing firewall policies or conducting internal service enumeration. Exploitation evidence was observed by the Shadowserver Foundation on 2025-01-25 UTC.
by LiquidWorm
Selea Targa IP OCR-ANPR Camera - Info Disclosure
Selea Targa IP OCR-ANPR Camera contains a hard-coded developer password vulnerability that allows unauthorized configuration access through an undocumented page. Attackers can exploit the hidden endpoint by using the hard-coded password 'Selea781830' to enable configuration upload and overwrite device settings.
by LiquidWorm
CVSS 9.8
Selea Targa IP OCR-ANPR Camera - XSS
Selea Targa IP OCR-ANPR Camera contains a stored cross-site scripting vulnerability in the 'files_list' parameter that allows attackers to inject malicious HTML and script code. Attackers can send a POST request to /cgi-bin/get_file.php with crafted payload to execute arbitrary scripts in victim's browser session.
by LiquidWorm
CVSS 5.4
Selea Targa IP OCR-ANPR Camera - Info Disclosure
Selea Targa IP OCR-ANPR Camera contains an unauthenticated vulnerability that allows remote attackers to access live video streams without authentication. Attackers can directly connect to RTP/RTSP or M-JPEG streams by requesting specific endpoints like p1.mjpg or p1.264 to view camera footage.
by LiquidWorm
CVSS 5.3
Selea CarPlateServer 4.0.1.6 - Unauthenticated Remote Program Execution via NO_LIST_EXE_PATH Configuration
Selea CarPlateServer 4.0.1.6 contains a remote program execution vulnerability that allows attackers to execute arbitrary Windows binaries by manipulating the NO_LIST_EXE_PATH configuration parameter. Attackers can bypass authentication through the /cps/ endpoint and modify server configuration, including changing admin passwords and executing system commands.
by LiquidWorm
CVSS 7.5
Selea CarPlateServer 4.0.1.6 - Privilege Escalation
Selea CarPlateServer 4.0.1.6 contains an unquoted service path vulnerability in the Windows service configuration that allows local users to potentially execute code with elevated privileges. Attackers can exploit the service's unquoted binary path by inserting malicious code in the system root path that could execute with LocalSystem privileges during application startup or reboot.
by LiquidWorm
CVSS 8.4
Online Documents Sharing Platform 1.0 - 'user' SQL Injection
by CANKAT ÇAKMAK
Nagios XI 5.7.5 - Multiple Persistent Cross-Site Scripting
by Matthew Aberegg
Apartment Visitors Management System 1.0 - 'email' SQL Injection
by CANKAT ÇAKMAK
Oracle Business Intelligence Enterprise Edition 11.1.1.7.140715 - Stored XSS
by omurugur
osTicket < 1.14.3 - Server-Side Request Forgery
SSRF exists in osTicket before 1.14.3, where an attacker can add malicious file to server or perform port scanning.
by Talat Mehmood
CVSS 9.8
XWiki < 12.10.3 - Stored Cross-Site Scripting via SVG Upload in Comment Section
XWiki 12.10.2 allows XSS via an SVG document to the upload feature of the comment section.
by Karan Keswani
CVSS 5.4
Life Insurance Management System 1.0 - File Upload RCE (Authenticated)
by Aitor Herrero
Life Insurance Management System 1.0 - 'client_id' SQL Injection
by Aitor Herrero
WordPress Plugin Easy Contact Form 1.1.7 - 'Name' Stored Cross-Site Scripting (XSS)
by Rahul Ramakant Singh
Online Hotel Reservation System 1.0 - Cross-site request forgery (CSRF)
by Mesut Cetin
Online Hotel Reservation System 1.0 - 'person' time-based SQL Injection
by Mesut Cetin
Online Hotel Reservation System 1.0 - 'id' Time-based SQL Injection
by Mesut Cetin
Online Hotel Reservation System 1.0 - 'description' Stored Cross-site Scripting
by Mesut Cetin
Alumni Management System 1.0 - _Last Name field in Registration page_ Stored XSS
by Siva Rajendran
Online Shopping Cart System 1.0 - 'id' SQL Injection
by Aydın Baran Ertemir
Online Movie Streaming 1.0 - Admin Authentication Bypass
by Richard Jones
Online Hotel Reservation System 1.0 - Admin Authentication Bypass
by Richard Jones
Cemetry Mapping and Information System 1.0 - Multiple SQL Injections
by Mesut Cetin
OpenCart 3.0.36 Account Takeover via Cross Site Request Forgery
OpenCart 3.0.3.6 contains a cross-site request forgery vulnerability in the /account/edit endpoint that allows unauthenticated attackers to modify victim account details by tricking users into visiting malicious pages. Attackers can craft CSRF payloads that change victim email addresses and account information, then use password reset functionality to gain unauthorized access to compromised accounts.
by Mahendra Purbia
CVSS 5.3
By Source