Text Exploits

31,386 exploits tracked across all sources.

Sort: Activity Stars
CVE-2020-14461 EXPLOITDB HIGH text
Zyxel Armor X1 WAP6806 1.00(ABAL.6)C0 - Path Traversal via images/eaZy/ URI
Zyxel Armor X1 WAP6806 1.00(ABAL.6)C0 devices allow Directory Traversal via the images/eaZy/ URI.
by Rajivarnan R
CVSS 8.6
CVE-2020-15046 EXPLOITDB HIGH text
Supermicro X10DRH-iT BIOS 2.0a and IPMI Firmware 03.40 - Cross-Site Request Forgery via cgi/config_user.cgi
The web interface on Supermicro X10DRH-iT motherboards with BIOS 2.0a and IPMI firmware 03.40 allows remote attackers to exploit a cgi/config_user.cgi CSRF issue to add new admin users. The fixed versions are BIOS 3.2 and firmware 03.88.
by Metin Yunus Kandemir
CVSS 8.8
CVE-2020-14946 EXPLOITDB MEDIUM text
Global RADAR BSA Radar <1.6.7234.24750 - Info Disclosure
downloadFile.ashx in the Administrator section of the Surveillance module in Global RADAR BSA Radar 1.6.7234.24750 and earlier allows users to download transaction files. When downloading the files, a user is able to view local files on the web server by manipulating the FileName and FilePath parameters in the URL, or while using a proxy. This vulnerability could be used to view local sensitive files or configuration files.
by William Summerhill
CVSS 4.3
EIP-2026-110480 EXPLOITDB text
Park Ticketing Management System 1.0 - Authentication Bypass
by gh1mau
EIP-2026-110479 EXPLOITDB text VERIFIED
Park Ticketing Management System 1.0 - 'viewid' SQL Injection
by gh1mau
CVE-2020-37034 EXPLOITDB HIGH text
HelloWeb 2.0 - Path Traversal and Arbitrary File Download via download.asp
HelloWeb 2.0 contains an arbitrary file download vulnerability that allows remote attackers to download system files by manipulating filepath and filename parameters. Attackers can send crafted GET requests to download.asp with directory traversal to access sensitive configuration and system files.
by bRpsd
CVSS 7.5
EIP-2026-105391 EXPLOITDB text
Barangay Management System 1.0 - Authentication Bypass
by BKpatron
CVE-2020-37225 EXPLOITDB MEDIUM text
Powie's WHOIS Domain Check 0.9.31 Persistent Cross-Site Scripting
Powie's WHOIS Domain Check 0.9.31 contains a persistent cross-site scripting vulnerability that allows authenticated attackers to inject arbitrary JavaScript by exploiting unsanitized input fields in plugin settings. Attackers can submit malicious payloads through textarea and input elements in the pwhois_settings.php configuration page to execute JavaScript in the admin context and escalate privileges.
by mqt
CVSS 6.4
EIP-2026-111912 EXPLOITDB text
Savsoft Quiz 5 - Persistent Cross-Site Scripting
by th3d1gger
EIP-2026-104057 EXPLOITDB text
Qmail SMTP 1.03 - Bash Environment Variable Injection
by 1F98D
CVE-2020-15046 EXPLOITDB HIGH text
Supermicro X10DRH-iT BIOS 2.0a and IPMI Firmware 03.40 - Cross-Site Request Forgery via cgi/config_user.cgi
The web interface on Supermicro X10DRH-iT motherboards with BIOS 2.0a and IPMI firmware 03.40 allows remote attackers to exploit a cgi/config_user.cgi CSRF issue to add new admin users. The fixed versions are BIOS 3.2 and firmware 03.88.
by Metin Yunus Kandemir
CVSS 8.8
CVE-2020-14944 EXPLOITDB CRITICAL text
Global RADAR BSA Radar <1.6.7234.24750 - Privilege Escalation
Global RADAR BSA Radar 1.6.7234.24750 and earlier lacks valid authorization controls in multiple functions. This can allow for manipulation and takeover of user accounts if successfully exploited. The following vulnerable functions are exposed: ChangePassword, SaveUserProfile, and GetUser.
by William Summerhill
CVSS 9.8
CVE-2020-37224 EXPLOITDB HIGH text
Joomla J2 JOBS 1.3.0 Authenticated SQL Injection via sortby
Joomla J2 JOBS 1.3.0 contains an authenticated SQL injection vulnerability that allows authenticated attackers to manipulate database queries by injecting SQL code through the 'sortby' parameter. Attackers can send POST requests to the administrator index with malicious 'sortby' values to extract sensitive database information.
by Mehmet Kelepçe
CVSS 7.1
EIP-2026-119667 EXPLOITDB text
Microsoft Windows mshta.exe 2019 - XML External Entity Injection
by hyp3rlinx
EIP-2026-110177 EXPLOITDB text
Online Shopping Portal 3.1 - 'email' SQL Injection
by gh1mau
CVE-2020-14945 EXPLOITDB HIGH text
Global RADAR BSA Radar <1.6.7234.24750 - Privilege Escalation
A privilege escalation vulnerability exists within Global RADAR BSA Radar 1.6.7234.24750 and earlier that allows an authenticated, low-privileged user to escalate their privileges to administrator rights (i.e., the BankAdmin role) via modified SaveUser data.
by William Summerhill
CVSS 8.8
CVE-2019-5029 EXPLOITDB CRITICAL text
Exhibitor Web UI <1.7.1 - Command Injection
An exploitable command injection vulnerability exists in the Config editor of the Exhibitor Web UI versions 1.0.9 to 1.7.1. Arbitrary shell commands surrounded by backticks or $() can be inserted into the editor and will be executed by the Exhibitor process when it launches ZooKeeper. An attacker can execute any command as the user running the Exhibitor process.
by Logan Sanderson
CVSS 9.8
CVE-2020-23934 EXPLOITDB HIGH text VERIFIED
RiteCMS 2.2.1 - Authenticated OS Command Execution via Filemanager PHP Upload
An issue was discovered in RiteCMS 2.2.1. An authenticated user can directly execute system commands by uploading a php web shell in the "Filemanager" section.
by Enes Özeser
CVSS 8.8
EIP-2026-109824 EXPLOITDB text
Nagios XI 5.6.12 - 'export-rrd.php' Remote Code Execution
by Basim Alabdullah
EIP-2026-107083 EXPLOITDB text
File Management System 1.1 - Persistent Cross-Site Scripting
by KeopssGroup0day_Inc
CVE-2019-3759 EXPLOITDB MEDIUM text
RSA Identity Governance and Lifecycle < 7.1.0 P08 - Authenticated Code Injection via Groovy Script Execution
The RSA Identity Governance and Lifecycle software and RSA Via Lifecycle and Governance products prior to 7.1.0 P08 contain a code injection vulnerability. A remote authenticated malicious user could potentially exploit this vulnerability to run custom Groovy scripts to gain limited access to view or modify information on the Workflow system.
by Jakub Palaczynski
CVSS 6.4
CVE-2020-5902 EXPLOITDB CRITICAL text
BIG-IP 11.6.1-11.6.5.1 - Remote Code Execution via TMUI Undisclosed Pages
In BIG-IP versions 15.0.0-15.1.0.3, 14.1.0-14.1.2.5, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.1, the Traffic Management User Interface (TMUI), also referred to as the Configuration utility, has a Remote Code Execution (RCE) vulnerability in undisclosed pages.
by Budi Khoirudin
CVSS 9.8
CVE-2020-14947 EXPLOITDB HIGH text
OCS Inventory NG 2.7 - Remote Code Execution via Shell Metacharacters in SNMP MIB File Handling
OCS Inventory NG 2.7 allows Remote Command Execution via shell metacharacters to require/commandLine/CommandLine.php because mib_file in plugins/main_sections/ms_config/ms_snmp_config.php is mishandled in get_mib_oid.
by Askar
CVSS 8.8
CVE-2020-37035 EXPLOITDB HIGH text
e-Learning PHP Script 0.1.0 - SQL Injection
e-Learning PHP Script 0.1.0 contains a SQL injection vulnerability in the search functionality that allows attackers to manipulate database queries through unvalidated user input. Attackers can inject malicious SQL code in the 'search' parameter to potentially extract, modify, or access sensitive database information.
by KeopssGroup0day_Inc
CVSS 8.2
EIP-2026-110814 EXPLOITDB text
PHP-Fusion 9.03.60 - PHP Object Injection
by coiffeur
By Source
All 31,386 Writeup 62,482 Exploitdb 50,076 Nomisec 22,450 Github 3,674 Metasploit 3,315 Vulncheck_xdb 930 Inthewild 514 Gitlab 479 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,597 ruby 6,006 c 3,631 perl 2,849 html 2,076 php 1,333 bash 462 java 371 c++ 261 javascript 231 shell 133 go 73 postscript 25 typescript 25