Exploitdb Exploits
50,076 exploits tracked across all sources.
Simple Payroll System with Dynamic Tax Bracket - SQL Injection via Login Username Parameter
The Simple Payroll System with Dynamic Tax Bracket in PHP using SQLite Free Source Code (by: oretnom23 ) is vulnerable from remote SQL-Injection-Bypass-Authentication for the admin account. The parameter (username) from the login form is not protected correctly and there is no security and escaping from malicious payloads.
by Yash Mahajan
CVSS 9.8
Cypress Solutions CTM-200 2.7.1 - Command Injection
Cypress Solutions CTM-200 2.7.1 contains an authenticated command injection vulnerability in the firmware upgrade script that allows remote attackers to execute shell commands. Attackers can exploit the 'fw_url' parameter in the ctm-config-upgrade.sh script to inject and execute arbitrary commands with root privileges.
by LiquidWorm
CVSS 8.8
Cypress Solutions CTM-200/CTM-ONE <1.3.6 - Code Injection
Cypress Solutions CTM-200/CTM-ONE 1.3.6 contains hard-coded credentials vulnerability in Linux distribution that exposes root access. Attackers can exploit the static 'Chameleon' password to gain remote root access via Telnet or SSH on affected devices.
by LiquidWorm
CVSS 7.5
Student Quarterly Grading System 1.0 - 'grade' Stored Cross-Site Scripting (XSS)
by Hüseyin Serkan Balkanli
Simple Issue Tracker System 1.0 - SQLi Authentication Bypass
by Bekir Bugra TURKOGLU
Pharmacy Point of Sale System 1.0 - 'Add New User' Cross-Site Request Forgery (CSRF)
by Murat DEMİRCİ
Online Learning System 2.0 - 'Multiple' SQLi Authentication Bypass
by Blackhan
Company's Recruitment Management System 1.0 - 'Multiple' SQL Injection (Unauthenticated)
by Yash Mahajan
Logitech Media Server 8.2.0 - 'Title' Cross-Site Scripting (XSS)
by Mert Daş
Apache HTTP Server 2.4.49-2.4.50 - Path Traversal and Remote Code Execution via Alias-like Directives
It was found that the fix for CVE-2021-41773 in Apache HTTP Server 2.4.50 was insufficient. An attacker could use a path traversal attack to map URLs to files outside the directories configured by Alias-like directives. If files outside of these directories are not protected by the usual default configuration "require all denied", these requests can succeed. If CGI scripts are also enabled for these aliased pathes, this could allow for remote code execution. This issue only affects Apache 2.4.49 and Apache 2.4.50 and not earlier versions.
by Lucas Souza
CVSS 9.8
Keycloak < 13.0.0 - Server-Side Request Forgery via OIDC request_uri Parameter
A flaw was found in Keycloak before 13.0.0, where it is possible to force the server to call out an unverified URL using the OIDC parameter request_uri. This flaw allows an attacker to use this parameter to execute a Server-side request forgery (SSRF) attack.
by Mayank Deshmukh
CVSS 5.3
SonicOS < 7.0.1-r1262 - Host Header Redirection
A Host Header Redirection vulnerability in SonicOS potentially allows a remote attacker to redirect firewall management users to arbitrary web domains.
by Ramikan
CVSS 6.1
WordPress Pie Register <3.7.1.4 - Auth Bypass
An authentication bypass vulnerability exists in the WordPress Pie Register plugin ≤ 3.7.1.4 that allows unauthenticated attackers to impersonate arbitrary users by submitting a crafted POST request to the login endpoint. By setting social_site=true and manipulating the user_id_social_site parameter, an attacker can generate a valid WordPress session cookie for any user ID, including administrators. Once authenticated, the attacker may exploit plugin upload functionality to install a malicious plugin containing arbitrary PHP code, resulting in remote code execution on the underlying server.
by Lotfi13-DZ
IFSC Code Finder Project 1.0 - SQL Injection via searchifsccode Parameter
SQL Injection vulnerability exists in IFSC Code Finder Project 1.0 via the searchifsccode POST parameter in /search.php.
by Yash Mahajan
CVSS 9.8
Cmder Console Emulator 1.3.18 - DoS
Cmder Console Emulator 1.3.18 contains a buffer overflow vulnerability that allows attackers to trigger a denial of service condition through a maliciously crafted .cmd file. Attackers can create a specially constructed .cmd file with repeated characters to overwhelm the console emulator's buffer and crash the application.
by Aryan Chehreghani
CVSS 9.8
django-unicorn < 0.36.0 - Cross-Site Scripting via Component Name
The Unicorn framework through 0.35.3 for Django allows XSS via component.name.
by Raven Security Associates
CVSS 5.4
Simple Online College Entrance Exam System 1.0 - Unauthenticated Admin Creation
by Amine ismail
Simple Online College Entrance Exam System 1.0 - Account Takeover
by Amine ismail
Simple Online College Entrance Exam System 1.0 - 'Multiple' SQL injection
by Amine ismail
Online Traffic Offense Management System 1.0 - Privilage escalation (Unauthenticated)
by snup
Online Enrollment Management System 1.0 - Authentication Bypass
by Amine ismail
Online Employees Work From Home Attendance System 1.0 - SQLi Authentication Bypass
by Merve Oral
Maian Cart 3.8 - Unauthenticated Remote Code Execution via Elfinder Plugin
Maian Cart v3.8 contains a preauthorization remote code execution (RCE) exploit via a broken access control issue in the Elfinder plugin.
by DreyAnd
CVSS 9.8
Loan Management System 1.0 - SQLi Authentication Bypass
by Merve Oral
Online DJ Booking Management System 1.0 - Cross-Site Scripting in view-booking-detail.php
Cross Site Scripting (XSS).vulnerability exists in Online DJ Booking Management System 1.0 in view-booking-detail.php.
by Yash Mahajan
CVSS 6.1
By Source