Nomisec Exploits

21,852 exploits tracked across all sources.

Sort: Activity Stars
CVE-2023-4294 NOMISEC MEDIUM
URL Shortify <1.7.6 - XSS
The URL Shortify WordPress plugin before 1.7.6 does not properly escape the value of the referer header, thus allowing an unauthenticated attacker to inject malicious javascript that will trigger in the plugins admin panel with statistics of the created short link.
by b0marek
CVSS 6.1
CVE-2023-4631 NOMISEC MEDIUM
DoLogin Security WP <3.7 - Info Disclosure
The DoLogin Security WordPress plugin before 3.7 uses headers such as the X-Forwarded-For to retrieve the IP address of the request, which could lead to IP spoofing.
by b0marek
CVSS 5.3
CVE-2023-4279 NOMISEC HIGH
User Activity Log <1.6.7 - Info Disclosure
This User Activity Log WordPress plugin before 1.6.7 retrieves client IP addresses from potentially untrusted headers, allowing an attacker to manipulate its value. This may be used to hide the source of malicious traffic.
by b0marek
CVSS 7.5
CVE-2023-0157 NOMISEC MEDIUM
AIOS WordPress <5.1.5 - XSS
The All-In-One Security (AIOS) WordPress plugin before 5.1.5 does not escape the content of log files before outputting it to the plugin admin page, allowing an authorized user (admin+) to plant bogus log files containing malicious JavaScript code that will be executed in the context of any administrator visiting this page.
by b0marek
CVSS 4.8
CVE-2023-0156 NOMISEC MEDIUM
AIOS WordPress <5.1.5 - Info Disclosure
The All-In-One Security (AIOS) WordPress plugin before 5.1.5 does not limit what log files to display in it's settings pages, allowing an authorized user (admin+) to view the contents of arbitrary files and list directories anywhere on the server (to which the web server has access). The plugin only displays the last 50 lines of the file.
by b0marek
CVSS 4.9
CVE-2023-42426 NOMISEC MEDIUM
Froala Editor - XSS
Cross-site scripting (XSS) vulnerability in Froala Froala Editor v.4.1.1 allows remote attackers to execute arbitrary code via the 'Insert link' parameter in the 'Insert Image' component.
by b0marek
CVSS 6.1
CVE-2023-31419 NOMISEC MEDIUM
Elasticsearch - DoS
A flaw was discovered in Elasticsearch, affecting the _search API that allowed a specially crafted query string to cause a Stack Overflow and ultimately a Denial of Service.
by sqrtZeroKnowledge
18 stars
CVSS 6.5
CVE-2023-44061 NOMISEC HIGH
Simple and Nice Shopping Cart Script <1.0 - RCE
File Upload vulnerability in Simple and Nice Shopping Cart Script v.1.0 allows a remote attacker to execute arbitrary code via the upload function in the edit profile component.
by SoundarXploit
CVSS 8.8
CVE-2023-41575 NOMISEC MEDIUM
Blood Bank & Donor Management v2.2 - XSS
Multiple stored cross-site scripting (XSS) vulnerabilities in /bbdms/sign-up.php of Blood Bank & Donor Management v2.2 allow attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Full Name, Message, or Address parameters.
by SoundarXploit
CVSS 5.4
CVE-2023-43154 NOMISEC CRITICAL
Macros CMS 1.1.4f - Auth Bypass
In Macrob7 Macs Framework Content Management System (CMS) 1.1.4f, loose comparison in "isValidLogin()" function during login attempt results in PHP type confusion vulnerability that leads to authentication bypass and takeover of the administrator account.
by ally-petitt
CVSS 9.8
CVE-2022-34753 NOMISEC HIGH
Schneider-electric Spacelogic C-bus H... - OS Command Injection
A CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that could cause remote root exploit when the command is compromised. Affected Products: SpaceLogic C-Bus Home Controller (5200WHC2), formerly known as C-Bus Wiser Homer Controller MK2 (V1.31.460 and prior)
by K3ysTr0K3R
1 stars
CVSS 8.8
CVE-2023-44767 NOMISEC MEDIUM
Ritecms - XSS
A File upload vulnerability in RiteCMS 3.0 allows a local attacker to upload a SVG file with XSS content.
by sromanhu
CVSS 4.8
CVE-2023-43879 NOMISEC MEDIUM
Rite CMS 3.0 - XSS
Rite CMS 3.0 has a Cross-Site scripting (XSS) vulnerability that allows attackers to execute arbitrary code via a crafted payload into the Global Content Blocks in the Administration Menu.
by sromanhu
CVSS 4.8
CVE-2023-43878 NOMISEC MEDIUM
Rite CMS 3.0 - XSS
Rite CMS 3.0 has Multiple Cross-Site scripting (XSS) vulnerabilities that allow attackers to execute arbitrary code via a crafted payload into the Main Menu Items in the Administration Menu.
by sromanhu
CVSS 5.4
CVE-2023-43877 NOMISEC MEDIUM
Rite CMS 3.0 - XSS
Rite CMS 3.0 has Multiple Cross-Site scripting (XSS) vulnerabilities that allow attackers to execute arbitrary code via a payload crafted in the Home Page fields in the Administration menu.
by sromanhu
CVSS 4.8
CVE-2023-41436 NOMISEC MEDIUM
CSZCMS <1.3.0 - XSS
Cross Site Scripting vulnerability in CSZCMS v.1.3.0 allows a local attacker to execute arbitrary code via a crafted script to the Additional Meta Tag parameter in the Pages Content Menu component.
by sromanhu
CVSS 5.4
CVE-2023-40989 NOMISEC CRITICAL
Jeecg-boot <3.5.3 - SQL Injection
SQL injection vulnerbility in jeecgboot jeecg-boot v 3.0, 3.5.3 that allows a remote attacker to execute arbitrary code via a crafted request to the report/jeecgboot/jmreport/queryFieldBySql component.
by Zone1-Z
CVSS 9.8
CVE-2023-31719 NOMISEC CRITICAL
FUXA <= 1.1.12 - SQL Injection
FUXA <= 1.1.12 is vulnerable to SQL Injection via /api/signin.
by MateusTesser
CVSS 9.8
CVE-2023-31718 NOMISEC HIGH
FUXA <= 1.1.12 - Path Traversal
FUXA <= 1.1.12 is vulnerable to Local via Inclusion via /api/download.
by MateusTesser
CVSS 7.5
CVE-2023-31717 NOMISEC HIGH
FUXA <= 1.1.12 - SQL Injection
A SQL Injection attack in FUXA <= 1.1.12 allows exfiltration of confidential information from the database.
by MateusTesser
CVSS 7.5
CVE-2023-31716 NOMISEC HIGH
FUXA <= 1.1.12 - Local File Inclusion
FUXA <= 1.1.12 has a Local File Inclusion vulnerability via file=fuxa.log
by MateusTesser
CVSS 7.5
CVE-2023-25136 NOMISEC MEDIUM
Openbsd Openssh - Double Free
OpenSSH server (sshd) 9.1 introduced a double-free vulnerability during options.kex_algorithms handling. This is fixed in OpenSSH 9.2. The double free can be leveraged, by an unauthenticated remote attacker in the default configuration, to jump to any location in the sshd address space. One third-party report states "remote code execution is theoretically possible."
by malvika-thakur
3 stars
CVSS 6.5
CVE-2023-43356 NOMISEC MEDIUM
CMSmadesimple <2.2.18 - XSS
Cross Site Scripting vulnerability in CMSmadesimple v.2.2.18 allows a local attacker to execute arbitrary code via a crafted script to the Global Meatadata parameter in the Global Settings Menu component.
by sromanhu
CVSS 5.4
CVE-2023-43359 NOMISEC MEDIUM
CMSmadesimple <2.2.18 - XSS
Cross Site Scripting vulnerability in CMSmadesimple v.2.2.18 allows a local attacker to execute arbitrary code via a crafted script to the Page Specific Metadata and Smarty data parameters in the Content Manager Menu component.
by sromanhu
CVSS 5.4
CVE-2023-43360 NOMISEC MEDIUM
CMSmadesimple <2.2.18 - XSS
Cross Site Scripting vulnerability in CMSmadesimple v.2.2.18 allows a local attacker to execute arbitrary code via a crafted script to the Top Directory parameter in the File Picker Menu component.
by sromanhu
CVSS 5.4
By Source
All 21,852 Writeup 60,268 Exploitdb 50,007 Nomisec 21,852 Metasploit 3,224 Github 2,606 Vulncheck_xdb 906 Inthewild 514 Gitlab 442 Gitee 415 Patchapalooza 312
By Language
text 31,342 python 5,980 ruby 5,913 c 3,569 perl 2,849 html 2,053 php 1,326 bash 460 java 362 c++ 250 javascript 217 shell 91 go 55 postscript 25 xml 24