Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2019-04-03	Clinic Pro v4 – ‘month’ SQL Injection	webapps	php	Abdullah Çelebi
2019-04-03	iScripts ReserveLogic – SQL Injection	webapps	php	Ahmet Ümit BAYRAM
2019-04-02	phpFileManager 1.7.8 – Local File Inclusion	webapps	php	Murat Kalafatoglu
2019-04-02	WordPress Plugin PayPal Checkout Payment Gateway 1.6.8 – Parameter Tampering	webapps	php	Vikas Chaudhary
2019-04-02	Fiverr Clone Script 1.2.2 – SQL Injection / Cross-Site Scripting	webapps	php	Mr Winst0n
2019-04-02	Inout EasyRooms – SQL Injection	webapps	php	Ahmet Ümit BAYRAM
2019-04-02	AIDA64 Extreme / Engineer / Network Audit 5.99.4900 – SEH Buffer Overflow (EggHunter)	local	windows	Peyman Forouzan
2019-04-02	CMS Made Simple < 2.2.10 - SQL Injection	webapps	php	Daniele Scanu
2019-04-02	JioFi 4G M2S 1.0.2 – Cross-Site Request Forgery	webapps	hardware	Vikas Chaudhary
2019-04-02	LimeSurvey < 3.16 - Remote Code Execution	webapps	php	q3rv0
2019-04-02	Inout RealEstate – ‘city’ SQL Injection	webapps	php	Ahmet Ümit BAYRAM
2019-03-29	CentOS Web Panel 0.9.8.789 – NameServer Field Persistent Cross-Site Scripting	webapps	linux	DKM
2019-03-28	Fat Free CRM 0.19.0 – HTML Injection	webapps	ruby	Ismail Tasdelen
2019-03-28	WordPress Plugin Loco Translate 2.2.1 – Local File Inclusion	webapps	php	Ali S. Ahmad
2019-03-28	Airbnb Clone Script – Multiple SQL Injection	webapps	php	Ahmet Ümit BAYRAM
2019-03-28	i-doit 1.12 – ‘qr.php’ Cross-Site Scripting	webapps	php	BlackFog Team
2019-03-28	Base64 Decoder 1.1.2 – Local Buffer Overflow (SEH Egghunter)	local	windows	Paolo Perego
2019-03-28	Thomson Reuters Concourse & Firm Central < 2.13.0097 - Directory Traversal / Local File Inclusion	webapps	windows	0v3rride
2019-03-28	Jettweb PHP Hazır Rent A Car Sitesi Scripti V2 – ‘arac_kategori_id’ SQL Injection	webapps	php	Ahmet Ümit BAYRAM
2019-03-28	BigTree 4.3.4 CMS – Multiple SQL Injection	webapps	php	Mehmet EMIROGLU
2019-03-28	CMS Made Simple (CMSMS) Showtime2 – File Upload Remote Code Execution (Metasploit)	remote	php	Metasploit
2019-03-28	Microsoft Visio 2016 16.0.4738.1000 – ‘Log in accounts’ Denial of Service	dos	windows	César Adrián Coronado Llanos
2019-03-28	Job Portal 3.1 – ‘job_submit’ SQL Injection	webapps	php	Mehmet EMIROGLU
2019-03-28	Oracle Weblogic Server Deserialization RCE – Raw Object (Metasploit)	remote	multiple	Metasploit
2019-03-28	gnutls 3.6.6 – ‘verify_crt()’ Use-After-Free	dos	linux	Google Security Research
2019-03-28	WordPress Plugin Anti-Malware Security and Brute-Force Firewall 4.18.63 – Local File Inclusion (PoC)	webapps	php	Ali S. Ahmad
2019-03-27	Jettweb Hazır Rent A Car Scripti V4 – SQL Injection	webapps	php	Ahmet Ümit BAYRAM
2019-03-26	Rukovoditel ERP & CRM 2.4.1 – ‘path’ Cross-Site Scripting	webapps	php	Javier Olmedo
2019-03-26	Jettweb Php Hazır İlan Sitesi Scripti V2 – SQL Injection	webapps	php	Ahmet Ümit BAYRAM
2019-03-26	Spidermonkey – IonMonkey Type Inference is Incorrect for Constructors Entered via OSR	dos	multiple	Google Security Research
2019-03-26	SJS Simple Job Script – SQL Injection / Cross-Site Scripting	webapps	php	Ahmet Ümit BAYRAM
2019-03-26	Titan FTP Server Version 2019 Build 3505 – Directory Traversal / Local File Inclusion	webapps	windows	Kevin Randall
2019-03-26	Microsoft Windows 7/2008 – ‘Win32k’ Denial of Service (PoC)	dos	windows	ze0r
2019-03-26	Firefox < 66.0.1 - 'Array.prototype.slice' Buffer Overflow	dos	multiple	xuechiyaobai
2019-03-26	XooDigital – ‘p’ SQL Injection	webapps	php	Ahmet Ümit BAYRAM
2019-03-26	XooGallery – Multiple SQL Injection	webapps	php	Ahmet Ümit BAYRAM
2019-03-25	Jettweb PHP Hazır Haber Sitesi Scripti V2 – SQL Injection (Authentication Bypass)	webapps	php	Ahmet Ümit BAYRAM
2019-03-25	Jettweb PHP Hazır Haber Sitesi Scripti V3 – SQL Injection	webapps	php	Ahmet Ümit BAYRAM
2019-03-25	Jettweb PHP Hazır Haber Sitesi Scripti V1 – SQL Injection	webapps	php	Ahmet Ümit BAYRAM
2019-03-25	X-NetStat Pro 5.63 – Local Buffer Overflow	local	windows	Peyman Forouzan
2019-03-25	Apache CouchDB 2.3.1 – Cross-Site Request Forgery / Cross-Site Scripting	webapps	multiple	Ozer Goker
2019-03-25	Zeeways Matrimony CMS – SQL Injection	webapps	php	Ahmet Ümit BAYRAM
2019-03-25	VMware Workstation 14.1.5 / VMware Player 15.0.2 – Host VMX Process Impersonation Hijack Privilege Escalation	local	windows	Google Security Research
2019-03-25	VMware Workstation 14.1.5 / VMware Player 15 – Host VMX Process COM Class Hijack Privilege Escalation	local	windows	Google Security Research
2019-03-25	Zeeways Jobsite CMS – ‘id’ SQL Injection	webapps	php	Ahmet Ümit BAYRAM
2019-03-22	snap – seccomp BBlacklist for TIOCSTI can be Circumvented	dos	linux	Google Security Research
2019-03-22	Inout Article Base CMS – SQL Injection	webapps	php	Ahmet Ümit BAYRAM
2019-03-22	Meeplace Business Review Script – ‘id’ SQL Injection	webapps	php	Ahmet Ümit BAYRAM
2019-03-22	Matri4Web Matrimony Website Script – Multiple SQL Injection	webapps	php	Ahmet Ümit BAYRAM
2019-03-21	Canarytokens 2019-03-01 – Detection Bypass	dos	windows	Benjamin Zink Loft, Gionathan Reale