Exploitdb Exploits
49,989 exploits tracked across all sources.
Nuuo Nvrmini2 Firmware - OS Command Injection
NUUO NVRMini2 version 3.9.1 is vulnerable to authenticated remote command injection. An attacker can send crafted requests to upgrade_handle.php to execute OS commands as root.
by Artem Metla
CVSS 8.8
FreshRSS 1.11.1 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in GET requests in FreshRSS 1.11.1 allow remote attackers to inject arbitrary web script or HTML via the (1) c parameter or (2) a parameter.
by Netsparker
CVSS 6.1
DomainMOD <4.11.01 - XSS
DomainMOD through 4.11.01 has XSS via the assets/add/registrar.php notes field for the Registrar.
by Mohammed Abdul Raheem
CVSS 4.8
DomainMOD <4.11.01 - XSS
DomainMOD through 4.11.01 has XSS via the assets/add/account-owner.php Owner name field.
by Mohammed Abdul Raheem
CVSS 4.8
DomainMOD <4.11.01 - XSS
DomainMOD through 4.11.01 has XSS via the admin/ssl-fields/add.php notes field for Custom SSL Fields.
by Mohammed Abdul Raheem
CVSS 4.8
DomainMOD <4.11.01 - XSS
DomainMOD through 4.11.01 has XSS via the admin/domain-fields/ notes field in an Add Custom Field action for Custom Domain Fields.
by Mohammed Abdul Raheem
CVSS 5.4
Dolibarr ERP/CRM <8.0.3 - XSS
Dolibarr ERP/CRM through 8.0.3 has /exports/export.php?datatoexport= XSS.
by AkkuS
CVSS 6.1
Wireshark <2.6.5-2.4.11 - Buffer Overflow
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the IxVeriWave file parser could crash. This was addressed in wiretap/vwr.c by adjusting a buffer boundary.
by Google Security Research
CVSS 7.5
Wireshark - 'cdma2k_message_ACTIVE_SET_RECORD_FIELDS' Stack Corruption
by Google Security Research
Openbsd Openssh < 7.7 - Race Condition
OpenSSH through 7.7 is prone to a user enumeration vulnerability due to not delaying bailout for an invalid authenticating user until after the packet containing the request has been fully parsed, related to auth2-gss.c, auth2-hostbased.c, and auth2-pubkey.c.
by Leap Security
CVSS 5.3
Rockwellautomation Powermonitor 1000 Firmware - Authentication Bypass
An issue was discovered in Rockwell Automation Allen-Bradley PowerMonitor 1000. An unauthenticated user can add/edit/remove administrators because access control is implemented on the client side via a disabled attribute for a BUTTON element.
by Luca.Chiou
CVSS 8.1
NEC Univerge Sv9100 Webpro Firmware - Insufficiently Protected Credentials
NEC Univerge Sv9100 WebPro 6.00.00 devices have Cleartext Password Storage in the Web UI.
by hyp3rlinx
CVSS 9.8
xorg-x11-server <1.20.3 - Privilege Escalation
A flaw was found in xorg-x11-server before 1.20.3. An incorrect permission check for -modulepath and -logfile options when starting Xorg. X server allows unprivileged users with the ability to log in to the system via physical console to escalate their privileges and run arbitrary code under root privileges.
by 0xdono
CVSS 6.6
Rockwell Automation Allen-Bradley PowerMonitor 1000 - Code Injection
Rockwell Automation Allen-Bradley PowerMonitor 1000 all versions. A remote attacker could inject arbitrary code into a targeted userâs web browser to gain access to the affected device.
by Luca.Chiou
CVSS 6.1
Fleetco FMM <1.2 - RCE
Fleetco Fleet Maintenance Management (FMM) 1.2 and earlier allows uploading an arbitrary ".php" file with the application/x-php Content-Type to the accidents_add.php?submit=1 URI, as demonstrated by the value_Images_1 field, which leads to remote command execution on the remote server. Any authenticated user can exploit this.
by AkkuS
CVSS 8.8
Cyberark Password Vault < 9.7 - Information Disclosure
CyberArk Password Vault before 9.7 allows remote attackers to obtain sensitive information from process memory by replaying a logon message.
by Thomas Zuk
CVSS 5.3
Mozilla Firefox 63.0.1 - Denial of Service (PoC)
by SAIKUMAR CHEBROLU
WordPress Plugin Advanced-Custom-Fields 5.7.7 - Cross-Site Scripting
by Loading Kura Kura
PHP Server Monitor 3.3.1 - Cross-Site Request Forgery
by Javier Olmedo
Joomla! Component JE Photo Gallery 1.1 - 'categoryid' SQL Injection
by Ihsan Sencan
PaloAlto Networks Expedition Migration Tool 1.0.106 - Information Disclosure
by ParagonSec
Superset <0.23 - Code Injection
Versions of Superset prior to 0.23 used an unsafe load method from the pickle library to deserialize data leading to possible remote code execution. Note Superset 0.23 was released prior to any Superset release under the Apache Software Foundation.
by David May
CVSS 9.8
Synaccess netBooter NP-02x/NP-08x 6.8 - Auth Bypass
Synaccess netBooter NP-02x/NP-08x 6.8 contains an authentication bypass vulnerability in the webNewAcct.cgi script that allows unauthenticated attackers to create admin user accounts. Attackers can exploit the missing control check by sending crafted POST requests to create administrative accounts and gain unauthorized control over power supply management.
by LiquidWorm
CVSS 9.8
By Source