Exploitdb Exploits
50,076 exploits tracked across all sources.
ShareMouse 5.0.43 - Privilege Escalation
ShareMouse 5.0.43 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the insecure service path configuration by placing malicious executables in specific system directories to gain elevated access during service startup.
by alacerda
CVSS 7.8
arachnys/cabot < 0.11.16 - Cross-Site Scripting via Endpoint Column
All versions of package cabot are vulnerable to Cross-site Scripting (XSS) via the Endpoint column.
by Abhiram V
CVSS 8.2
Arachnys Cabot 0.11.12 - Cross-Site Scripting via Address Column
Cross Site Scripting (XSS) vulnerability in Arachnys Cabot 0.11.12 can be exploited via the Address column.
by Abhiram V
CVSS 4.8
grocy < 2.7.1 - Authenticated Stored Cross-Site Scripting via Shopping List Deletion
Versions of Grocy <= 2.7.1 are vulnerable to Cross-Site Scripting via the Create Shopping List module, that is rendered upon deleting that Shopping List. The issue was also found in users, batteries, chores, equipment, locations, quantity units, shopping locations, tasks, taskcategories, product groups, recipes and products. Authentication is required to exploit these issues and Grocy should not be publicly exposed. The linked reference details a proof-of-concept.
by Mufaddal Masalawala
CVSS 7.3
ManageEngine Applications Manager <= 14710 - Authenticated Remote Code Execution via JAR Upload
Zoho ManageEngine Applications Manager 14710 and before allows an authenticated admin user to upload a vulnerable jar in a specific location, which leads to remote code execution.
by Hodorsec
CVSS 7.2
Nord VPN 6.31.13.0 - Code Injection
Nord VPN 6.31.13.0 contains an unquoted service path vulnerability in its nordvpn-service that allows local attackers to execute code with elevated privileges. Attackers can exploit the unquoted binary path during system startup or reboot to potentially run malicious code with LocalSystem permissions.
by chipo
CVSS 7.8
Real Time Logic BarracudaDrive <6.5 - Privilege Escalation
Insecure Service File Permissions in the bd service in Real Time Logic BarracudaDrive v6.5 allow local attackers to escalate privileges to admin by replacing the %SYSTEMDRIVE%\bd\bd.exe file. When the computer next starts, the new bd.exe will be run as LocalSystem.
by boku
CVSS 8.8
Sourcecodetester Daily Tracker System 1.0 - SQL Injection
A SQL injection vulnerability in login in Sourcecodetester Daily Tracker System 1.0 allows unauthenticated user to execute authentication bypass with SQL injection via the email parameter.
by Adeeb Shah
CVSS 9.8
BloodX 1.0 - SQL Injection
SQL injection vulnerability in BloodX 1.0 allows attackers to bypass authentication.
by BKpatron
CVSS 9.8
SiteMagic CMS 4.4.2 - Arbitrary File Upload (Authenticated)
by V1n1v131r4
Savsoft Quiz < 5.5 - Stored Cross-Site Scripting in User Registration
TechKshetra Info Solutions Pvt. Ltd Savsoft Quiz 5.5 and earlier has XSS which can result in an attacker injecting the XSS payload in the User Registration section and each time the admin visits the manage user section from the admin panel, the XSS triggers and the attacker can steal the cookie via crafted payload.
by Hemant Patidar
CVSS 6.1
SourceCodester Stock Management System <v1.0 - CSRF
A Cross-Site Request Forgery (CSRF) vulnerability in changeUsername.php in SourceCodester Stock Management System v1.0 allows remote attackers to deny future logins by changing an authenticated victim's username when they visit a third-party site.
by boku
CVSS 7.1
Rukovoditel 2.5.2 - Remote Code Execution via Language File Path Traversal
In Rukovoditel 2.5.2, an attacker may inject an arbitrary .php file location instead of a language file and thus achieve command execution.
by danyx07
CVSS 9.8
MaraCMS 7.5 - Authenticated Arbitrary File Upload via codebase/dir.php
An arbitrary file upload issue exists in Mara CMS 7.5. In order to exploit this, an attacker must have a valid authenticated (admin/manager) session and make a codebase/dir.php?type=filenew request to upload PHP code to codebase/handler.php.
by 0blio_
CVSS 7.2
moziloCMS 2.0 - Persistent Cross-Site Scripting (Authenticated)
by Abdulkadir Kaya
Online Book Store 1.0 - SQL Injection via ID Parameter
SQL injection vulnerability in sourcecodester online-book-store 1.0 allows remote attackers to view sensitive information via the id paremeter in application URL.
by Moaaz Taha
CVSS 7.5
FUEL CMS 1.4.8 - SQL Injection via fuel_replace_id Parameter
FUEL CMS 1.4.8 allows SQL injection via the 'fuel_replace_id' parameter in pages/replace/1. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
by c0mpu7er
CVSS 9.8
BlazeDVD 7.0 Professional - '.plf' Local Buffer Overflow (SEH_ASLR_DEP)
by emalp
Mara CMS 7.5 - Cross-Site Scripting via contact.php theme or pagetheme Parameters
Mara CMS 7.5 allows cross-site scripting (XSS) in contact.php via the theme or pagetheme parameters.
by George Tsimpidas
CVSS 6.1
CMS Made Simple 2.2.14 - Arbitrary File Upload (Authenticated)
by Luis Noriega
Eibiz i-Media Server Digital Signage 3.8.0 - Privilege Escalation
Eibiz i-Media Server Digital Signage 3.8.0 contains an unauthenticated privilege escalation vulnerability in the updateUser object that allows attackers to modify user roles. Attackers can exploit the /messagebroker/amf endpoint to elevate privileges and take over user accounts by manipulating role settings without authentication.
by LiquidWorm
CVSS 9.8
Online Shopping Alphaware 1.0 - SQL Injection via id Parameter in details.php
The id paramater in Online Shopping Alphaware 1.0 has been discovered to be vulnerable to an Error-Based blind SQL injection in the /alphaware/details.php path. This allows an attacker to retrieve all databases.
by Moaaz Taha
CVSS 7.5
Symphony CMS 3.0.0 - Stored Cross-Site Scripting via Event Publish Article Body Field
Cross-site scripting (XSS) vulnerabilities in Symphony CMS 3.0.0 allow remote attackers to inject arbitrary web script or HTML to fields['body'] param via events\event.publish_article.php
by SunCSR
CVSS 5.4
Nagios Log Server 2.1.6 - Persistent Cross-Site Scripting
by Jinson Varghese Behanan
ASX to MP3 converter 3.1.3.7.2010.11.05 - '.wax' Local Buffer Overflow (DEP_ASLR Bypass) (PoC)
by Paras Bhatia
By Source