Exploitdb Exploits
50,130 exploits tracked across all sources.
Router ZTE-H108NS - Stack Buffer Overflow (DoS)
by George Tsimpidas
Lsoft Listserv - XSS
A cross-site scripting (XSS) vulnerability in the LISTSERV 17 web interface allows remote attackers to inject arbitrary JavaScript or HTML via the c parameter.
by Shaunt Der-Grigorian
CVSS 6.1
Lsoft Listserv - IDOR
The LISTSERV 17 web interface allows remote attackers to conduct Insecure Direct Object References (IDOR) attacks via a modified email address in a wa.exe URL. The impact is unauthorized modification of a victim's LISTSERV account.
by Shaunt Der-Grigorian
CVSS 7.5
D-Link DSL-124 ME_1.00 - Info Disclosure
D-Link DSL-124 ME_1.00 contains a configuration file disclosure vulnerability that allows unauthenticated attackers to retrieve router settings through a POST request. Attackers can send a specific POST request to the router's configuration endpoint to download a complete backup file containing sensitive network credentials and system configurations.
by Aryan Chehreghani
CVSS 7.5
Outline 1.6.0 - Privilege Escalation
Outline 1.6.0 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted service path in the OutlineService executable to inject malicious code that will be executed with LocalSystem permissions.
by Milad karimi
CVSS 7.8
Inbit Messenger < 4.9.0 - Out-of-Bounds Write
Inbit Messenger versions 4.6.0 to 4.9.0 contain a remote stack-based buffer overflow vulnerability that allows unauthenticated attackers to execute arbitrary code by sending malformed network packets. Attackers can craft a specially designed payload targeting the messenger's network handler to overwrite the Structured Exception Handler (SEH) and execute shellcode on vulnerable Windows systems.
by a-rey
CVSS 9.8
Inbit Messenger < 4.9.0 - Out-of-Bounds Write
Inbit Messenger 4.6.0 - 4.9.0 contains a remote command execution vulnerability that allows unauthenticated attackers to execute arbitrary commands by exploiting a stack overflow in the messenger's protocol. Attackers can send specially crafted XML packets to port 10883 with a malicious payload to trigger the vulnerability and execute commands with system privileges.
by a-rey
CVSS 9.8
Internet Download Manager v6.41 Build 3 - Remote Code Execution (RCE)
by M. Akil Gündoğan
Wpallimport WP All Import < 3.6.8 - Unrestricted File Upload
The plugin WP All Import is vulnerable to arbitrary file uploads due to missing file type validation via the wp_all_import_get_gz.php file in versions up to, and including, 3.6.7. This makes it possible for authenticated attackers, with administrator level permissions and above, to upload arbitrary files on the affected sites server which may make remote code execution possible.
by AkuCyberSec
CVSS 7.2
Revenue Collection System v1.0 - Remote Code Execution (RCE)
by Joe Pollock
Human Resource Management System 1.0 - SQL Injection (unauthenticated)
by Matthijs van der Vaart (eMVee)
Book Store Management System 1.0.0 - Stored Cross-Site Scripting (XSS)
by Rajeshwar Singh
Uniview NVR301-04S2-P4 - Reflected Cross-Site Scripting (XSS)
by Bleron Rrustemi
Social-Share-Buttons 2.2.3 - SQL Injection
Social-Share-Buttons 2.2.3 contains a critical SQL injection vulnerability in the project_id parameter that allows attackers to manipulate database queries. Attackers can exploit this vulnerability by sending crafted POST requests with malicious SQL payloads to retrieve and potentially steal entire database contents.
by nu11secur1ty
CVSS 8.2
Automattic Jetpack - XSS
Jetpack 11.4 contains a cross-site scripting vulnerability in the contact form module that allows attackers to inject malicious scripts through the post_id parameter. Attackers can craft malicious URLs with script payloads to execute arbitrary JavaScript in victims' browsers when they interact with the contact form page.
by Behrouz Mansoori
CVSS 6.1
Youphptube < 7.8 - XSS
YouPHPTube <= 7.8 contains a cross-site scripting vulnerability that allows attackers to inject malicious scripts through the redirectUri parameter in the signup page. Attackers can craft special signup URLs with embedded script tags to execute arbitrary JavaScript in victims' browsers when they access the signup page.
by Rafael Pedrero
CVSS 6.1
Youphptube < 7.8 - Path Traversal
YouPHPTube <= 7.8 contains a local file inclusion vulnerability that allows unauthenticated attackers to access arbitrary files by manipulating the 'lang' parameter in GET requests. Attackers can exploit the path traversal flaw in locale/function.php to include and view PHP files outside the intended directory by using directory traversal sequences.
by Rafael Pedrero
CVSS 5.5
SugarSync 4.1.3 - 'SugarSync Service' Unquoted Service Path
by Jorge Manuel Lozano Gómez
HDD Health 4.2.0.112 - 'HDDHealth' Unquoted Service Path
by Jorge Manuel Lozano Gómez
Heartex - Label Studio Community Edition <1.5.0 - SSRF
A Server Side Request Forgery (SSRF) in the Data Import module in Heartex - Label Studio Community Edition versions 1.5.0 and earlier allows an authenticated user to access arbitrary files on the system. Furthermore, self-registration is enabled by default in these versions of Label Studio enabling a remote attacker to create a new account and then exploit the SSRF.
by Ryan Smith
CVSS 6.5
By Source