Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2019-04-15	MailCarrier 2.51 – POP3 ‘TOP’ SEH Buffer Overflow	remote	windows	Dino Covotsos
2019-04-12	Zimbra Collaboration – Autodiscover Servlet XXE and ProxyServlet SSRF (Metasploit)	remote	linux	Metasploit
2019-04-12	Microsoft Windows – Contact File Format Arbitary Code Execution (Metasploit)	local	windows	Metasploit
2019-04-12	ATutor < 2.2.4 - 'file_manager' Remote Code Execution (Metasploit)	webapps	php	AkkuS
2019-04-12	Microsoft Internet Explorer 11 – XML External Entity Injection	local	windows	hyp3rlinx
2019-04-12	CyberArk EPM 10.2.1.603 – Security Restrictions Bypass	local	windows	Alpcan Onaran
2019-04-10	FTPShell Server 6.83 – ‘Virtual Path Mapping’ Local Buffer	local	windows	Dino Covotsos
2019-04-10	Dell KACE Systems Management Appliance (K1000) 6.4.120756 – Unauthenticated Remote Code Execution	webapps	php	Julien Ahrens
2019-04-10	D-Link DI-524 V2.06RU – Multiple Cross-Site Scripting	webapps	hardware	Semen Alexandrovich Lyhin
2019-04-10	FTPShell Server 6.83 – ‘Account name to ban’ Local Buffer	local	windows	Dino Covotsos
2019-04-09	Apache Axis 1.4 – Remote Code Execution	remote	multiple	David Yesland
2019-04-09	Ashop Shopping Cart Software – ‘bannedcustomers.php?blacklistitemid’ SQL Injection	webapps	php	Doğukan Karaciğer
2019-04-09	TP-LINK TL-WR940N / TL-WR941ND – Buffer Overflow	remote	hardware	Grzegorz Wypych
2019-04-09	Microsoft Windows – AppX Deployment Service Privilege Escalation	local	windows	Nabeel Ahmed
2019-04-08	AllPlayer 7.4 – SEH Buffer Overflow (Unicode)	local	windows	Chris Au
2019-04-08	SaLICru -SLC-20-cube3(5) – HTML Injection	webapps	hardware	Ramikan
2019-04-08	ShoreTel Connect ONSITE < 19.49.1500.0 - Multiple Vulnerabilities	webapps	php	Ramikan
2019-04-08	FlexHEX 2.71 – SEH Buffer Overflow (Unicode)	local	windows	Chris Au
2019-04-08	Apache 2.4.17 < 2.4.38 - 'apache2ctl graceful' 'logrotate' Local Privilege Escalation	local	linux	cfreal
2019-04-08	QNAP Netatalk < 3.1.12 - Authentication Bypass	remote	multiple	muts
2019-04-08	Jobgator – ‘experience’ SQL Injection	webapps	php	Ahmet Ümit BAYRAM
2019-04-08	Tradebox CryptoCurrency – ‘symbol’ SQL Injection	webapps	php	Abdullah Çelebi
2019-04-08	Bolt CMS 3.6.6 – Cross-Site Request Forgery / Remote Code Execution	webapps	php	FelipeGaspar
2019-04-08	WordPress Plugin Limit Login Attempts Reloaded 2.7.4 – Login Limit Bypass	webapps	php	isdampe
2019-04-08	Download Accelerator Plus (DAP) 10.0.6.0 – SEH Buffer Overflow	local	windows	Peyman Forouzan
2019-04-08	River Past Cam Do 3.7.6 – ‘Activation Code’ Local Buffer Overflow	local	windows	Chris Au
2019-04-08	ManageEngine ServiceDesk Plus 9.3 – User Enumeration	webapps	java	Operat0r
2019-04-08	CentOS Web Panel 0.9.8.793 (Free) / 0.9.8.753 (Pro) – Cross-Site Scripting	webapps	linux	DKM
2019-04-05	WordPress Core 5.0.0 – Crop-image Shell Upload (Metasploit)	remote	php	Metasploit
2019-04-05	AIDA64 Extreme 5.99.4900 – ‘Logging’ SEH Buffer Overflow	local	windows	Peyman Forouzan
2019-04-05	WordPress Plugin Contact Form Maker 1.13.1 – Cross-Site Request Forgery	webapps	php	Peyman Forouzan
2019-04-05	Manage Engine ServiceDesk Plus 10.0 – Privilege Escalation	webapps	jsp	Ata Hakçıl, Melih Kaan Yıldız
2019-04-04	Magic ISO Maker 5.5(build 281) – ‘Serial Code’ Denial of Service (PoC)	dos	windows	Alejandra Sánchez
2019-04-04	AIDA64 Engineer 5.99.4900 – ‘Load from file’ Field Buffer Overflow (SEH)	local	windows	Anurag Srivastava
2019-04-04	FreeSMS 2.1.2 – SQL Injection (Authentication Bypass)	webapps	php	Yilmaz Degirmenci
2019-04-03	SpiderMonkey – IonMonkey Compiled Code Fails to Update Inferred Property Types (Type Confusion)	dos	multiple	Google Security Research
2019-04-03	Google Chrome 72.0.3626.81 – ‘V8TrustedTypePolicyOptions::ToImpl’ Type Confusion	dos	multiple	Google Security Research
2019-04-03	PhreeBooks ERP 5.2.3 – Arbitrary File Upload	webapps	php	Abdullah Çelebi
2019-04-03	TeemIp IPAM < 2.4.0 - 'new_config' Command Injection (Metasploit)	remote	php	AkkuS
2019-04-03	AIDA64 Business 5.99.4900 – SEH Buffer Overflow (EggHunter)	local	windows	Peyman Forouzan
2019-04-03	Cisco RV320 and RV325 – Unauthenticated Remote Code Execution (Metasploit)	remote	hardware	Metasploit
2019-04-03	Clinic Pro v4 – ‘month’ SQL Injection	webapps	php	Abdullah Çelebi
2019-04-03	iScripts ReserveLogic – SQL Injection	webapps	php	Ahmet Ümit BAYRAM
2019-04-03	Google Chrome 72.0.3626.96 / 74.0.3702.0 – ‘JSPromise::TriggerPromiseReactions’ Type Confusion	remote	multiple	Google Security Research
2019-04-03	Ashop Shopping Cart Software – SQL Injection	webapps	php	Ahmet Ümit BAYRAM
2019-04-03	PhreeBooks ERP 5.2.3 – Remote Command Execution (1)	remote	Python	Metin Yunus Kandemir
2019-04-03	WebKit JavaScriptCore – CodeBlock Dangling Watchpoints Use-After-Free	dos	multiple	Google Security Research
2019-04-03	Google Chrome 73.0.3683.39 / Chromium 74.0.3712.0 – ‘ReadableStream’ Internal Object Leak Type Confusion	dos	multiple	Google Security Research
2019-04-03	WebKit JavaScriptCore – Out-Of-Bounds Access in FTL JIT due to LICM Moving Array Access Before the Bounds Check	dos	multiple	Google Security Research
2019-04-03	iOS < 12.2 / macOS < 10.14.4 XNU - pidversion Increment During execve is Unsafe	dos	multiple	Google Security Research