Github Exploits
3,754 exploits tracked across all sources.
Android 6.0-8.1 - Remote Escalation of Privilege via Missing Bounds Check in avrc_pars_vendor_cmd
In avrc_pars_vendor_cmd of avrc_pars_tg.cc, there is a possible stack corruption due to a missing bounds check. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-69479009.
by codecat007
Android 5.1.1-8.1 - Remote Code Execution via Missing Bounds Check in avrc_pars_vendor_cmd
In avrc_pars_vendor_cmd of avrc_pars_tg.cc, there is a possible stack corruption due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-69478941.
by codecat007
Android 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1 - Remote Code Execution via Out-of-bounds Write in sdp_server.cc
In process_service_search_attr_req of sdp_server.cc, there is an out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-68817966.
by codecat007
Android 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1 - Remote Code Execution via Out-of-bounds Write in sdp_server.c
In process_service_attr_req of sdp_server.c, there is an out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-68776054.
by codecat007
Android 8.0 8.1 - Remote Code Execution via Stack Buffer Overflow in avrc_pars_browsing_cmd
In avrc_pars_browsing_cmd of avrc_pars_tg.cc, there is a possible stack buffer overflow due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 8.0, 8.1. Android ID: A-71603262.
by codecat007
Concrete CMS < 8.5.5 - Stored Cross-Site Scripting in Conversations Rich Text Editor
An issue was discovered in Concrete CMS through 8.5.5. Stored XSS can occur in Conversations when the Active Conversation Editor is set to Rich Text.
by bl4de
CVSS 5.4
servey < 3 - Path Traversal
A path traversal vulnerability in servey version < 3 allows an attacker to read content of any arbitrary file.
by bl4de
CVSS 7.5
buttle 0.2.0 - Stored Cross-Site Scripting via Arbitrary File Creation
XSS in buttle npm package version 0.2.0 causes execution of attacker-provided code in the victim's browser when an attacker creates an arbitrary file on the server.
by bl4de
CVSS 6.1
metascraper <= 3.9.2 - Stored Cross-Site Scripting in Open Graph Meta Properties
There is a stored Cross-Site Scripting vulnerability in Open Graph meta properties read by the `metascrape` npm module <= 3.9.2.
by bl4de
CVSS 6.1
statics-server <= 0.0.9 - Cross-Site Scripting via Directory Index Filename
An XSS in statics-server <= 0.0.9 can be used via injected iframe in the filename when statics-server displays directory index in the browser.
by bl4de
CVSS 6.1
sexstatic <= 0.6.2 - Stored Cross-Site Scripting via Directory Name
XSS in sexstatic <=0.6.2 causes HTML injection in directory name(s) leads to Stored XSS when malicious file is embed with <iframe> element used in directory name.
by bl4de
CVSS 6.1
query-mysql 0.0.0-0.0.2 - SQL Injection
Node.js third-party module query-mysql versions 0.0.0, 0.0.1, and 0.0.2 are vulnerable to an SQL injection vulnerability due to lack of user input sanitization. This may allow an attacker to run arbitrary SQL queries when fetching data from database.
by bl4de
CVSS 8.8
glance <= 3.0.5 - Stored Cross-Site Scripting via Crafted File Name
There is a Stored XSS vulnerability in the glance node module versions <= 3.0.5. File name, which contains malicious HTML (eg. embedded iframe element or javascript: pseudo-protocol handler in <a> element) allows to execute JavaScript code against any user who opens a directory listing containing such crafted file name.
by bl4de
CVSS 6.1
public.js < 0.1.3 - Cross-Site Scripting via HTML in Filename
The public node module versions <= 1.0.3 allows to embed HTML in file names, which (in certain conditions) might lead to execute malicious JavaScript.
by bl4de
CVSS 6.1
html-pages - Path Traversal via cURL
The html-pages node module contains a path traversal vulnerabilities that allows an attacker to read any file from the server with cURL.
by bl4de
CVSS 9.8
stattic < 0.3.0 - Path Traversal
stattic node module suffers from a Path Traversal vulnerability due to lack of validation of path, which allows a malicious user to read content of any file with known path.
by bl4de
CVSS 7.5
crud-file-server < 0.9.0 - Path Traversal via URL Validation Bypass
crud-file-server node module before 0.9.0 suffers from a Path Traversal vulnerability due to incorrect validation of url, which allows a malicious user to read content of any file with known path.
by bl4de
CVSS 7.5
public.js < 0.1.3 - Path Traversal via filePath Parameter
public node module suffers from a Path Traversal vulnerability due to lack of validation of filePath, which allows a malicious user to read content of any file with known path.
by bl4de
CVSS 7.5
mcstatic - Path Traversal via filePath Parameter
mcstatic node module suffers from a Path Traversal vulnerability due to lack of validation of filePath, which allows a malicious user to read content of any file with known path.
by bl4de
CVSS 7.5
localhost-now < 1.0.2 - Path Traversal via File Path Validation Bypass
localhost-now node module suffers from a Path Traversal vulnerability due to lack of validation of file, which allows a malicious user to read content of any file with known path.
by bl4de
CVSS 7.5
626 - Path Traversal via File Parameter
626 node module suffers from a Path Traversal vulnerability due to lack of validation of file, which allows a malicious user to read content of any file with known path.
by bl4de
CVSS 7.5
crud-file-server < 0.8.0 - Cross-Site Scripting via File Name
crud-file-server node module before 0.8.0 suffers from a Cross-Site Scripting vulnerability to a lack of validation of file names.
by bl4de
CVSS 6.1
hekto < 0.2.3 - Path Traversal via File Parameter
hekto node module suffers from a Path Traversal vulnerability due to lack of validation of file, which allows a malicious user to read content of any file with known path.
by bl4de
CVSS 7.5
general-file-server - Path Traversal via currpath Parameter
general-file-server node module suffers from a Path Traversal vulnerability due to lack of validation of currpath, which allows a malicious user to read content of any file with known path.
by bl4de
CVSS 7.5
Sencha Connect < 2.14.0 - Cross-Site Scripting in Directory Middleware
connect node module before 2.14.0 suffers from a Cross-Site Scripting (XSS) vulnerability due to a lack of validation of file in directory.js middleware.
by bl4de
CVSS 5.4
By Source