Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2019-03-01	Google Chrome < M72 - PaymentRequest Service Use-After-Free	dos	multiple	Google Security Research
2019-03-01	macOS XNU – Copy-on-Write Behavior Bypass via Mount of User-Owned Filesystem Image	dos	macos	Google Security Research
2019-02-28	WebKitGTK 2.23.90 / WebKitGTK+ 2.22.6 – Denial of Service	dos	linux	Dhiraj Mishra
2019-02-28	Joomla! Component J2Store < 3.3.7 - SQL Injection	webapps	php	Andrei Conache
2019-02-28	Usermin 1.750 – Remote Command Execution (Metasploit)	webapps	linux	AkkuS
2019-02-28	Alcatel-Lucent (Nokia) GPON I-240W-Q – Buffer Overflow	remote	hardware	Artem Metla
2019-02-28	TransMac 12.3 – Denial of Service (PoC)	dos	windows	Alejandra Sánchez
2019-02-28	Simple Online Hotel Reservation System – SQL Injection	webapps	php	Mr Winst0n
2019-02-28	Simple Online Hotel Reservation System – Cross-Site Request Forgery (Add Admin)	webapps	php	Mr Winst0n
2019-02-28	FTP Server 1.32 – Denial of Service	dos	android	s4vitar
2019-02-28	Simple Online Hotel Reservation System – Cross-Site Request Forgery (Delete Admin)	webapps	php	Mr Winst0n
2019-02-28	Feng Office 3.7.0.5 – Remote Command Execution (Metasploit)	webapps	php	AkkuS
2019-02-27	PHP 7.2 – ‘imagecolormatch()’ Out of Band Heap Write	remote	php	cfreal
2019-02-25	Drupal < 8.6.9 - REST Module Remote Code Execution	webapps	php	leonjza
2019-02-25	Xlight FTP Server 3.9.1 – Buffer Overflow (PoC)	dos	windows	Logan Whitmire
2019-02-25	Advance Gift Shop Pro Script 2.0.3 – SQL Injection	webapps	php	Mr Winst0n
2019-02-25	News Website Script 2.0.5 – SQL Injection	webapps	php	Mr Winst0n
2019-02-25	PHP Ecommerce Script 2.0.6 – Cross-Site Scripting / SQL Injection	webapps	php	Mr Winst0n
2019-02-25	zzzphp CMS 1.6.1 – Remote Code Execution	webapps	php	Yang Chenglong
2019-02-25	Jenkins Plugin Script Security 1.49/Declarative 1.3.4/Groovy 2.60 – Remote Code Execution	webapps	java	wetw0rk
2019-02-23	Drupal < 8.6.10 / < 8.5.11 - REST Module Remote Code Execution	webapps	php	Charles Fol
2019-02-22	WebKit JSC – reifyStaticProperty Needs to set the PropertyAttribute::CustomAccessor flag for CustomGetterSetter	dos	multiple	Google Security Research
2019-02-22	Quest NetVault Backup Server < 11.4.5 - Process Manager Service SQL Injection / Remote Code Execution	webapps	multiple	Chris Anastasio
2019-02-22	Micro Focus Filr 3.4.0.217 – Path Traversal / Local Privilege Escalation	webapps	linux	SecureAuth
2019-02-22	WinRAR 5.61 – Path Traversal	local	windows	WyAtu
2019-02-22	Teracue ENC-400 – Command Injection / Missing Authentication	webapps	hardware	Stephen Shkardoon
2019-02-22	Nuuo Central Management – (Authenticated) SQL Server SQL Injection (Metasploit)	remote	windows	Metasploit
2019-02-21	ScreenStream 3.0.15 – Denial of Service	dos	android	s4vitar
2019-02-21	MikroTik RouterOS < 6.43.12 (stable) / < 6.42.12 (long-term) - Firewall and NAT Bypass	remote	hardware	Jacob Baines
2019-02-21	Virtual VCR Max .0a – ‘.vcr’ Buffer Overflow (PoC)	dos	windows	Wade Guest
2019-02-21	AirDrop 2.0 – Denial of Service (DoS)	dos	android	s4vitar
2019-02-21	Valentina Studio 9.0.5 Linux – ‘Host’ Buffer Overflow (PoC)	dos	linux	Alejandra Sánchez
2019-02-21	EI-Tube 3 – SQL Injection	webapps	php	Meisam Monsef
2019-02-21	C4G Basic Laboratory Information System (BLIS) 3.4 – SQL Injection	webapps	php	Carlos Avila
2019-02-21	RealTerm Serial Terminal 2.0.0.70 – ‘Echo Port’ Buffer Overflow (SEH)	local	windows	Matteo Malvica
2019-02-21	Memu Play 6.0.7 – Privilege Escalation	local	windows	Alejandra Sánchez
2019-02-20	FTPShell Server 6.83 – ‘Account name to ban’ Denial of Service (PoC)	dos	windows	Victor Mondragón
2019-02-20	FaceTime – Texture Processing Memory Corruption	dos	macos	Google Security Research
2019-02-20	Belkin Wemo UPnP – Remote Code Execution (Metasploit)	remote	hardware	Metasploit
2019-02-20	MatrixSSL < 4.0.2 - Stack Buffer Overflow Verifying x.509 Certificates	dos	linux	Google Security Research
2019-02-20	Android Kernel < 4.8 - ptrace seccomp Filter Bypass	dos	android	Google Security Research
2019-02-20	HotelDruid 2.3 – Cross-Site Scripting	webapps	php	Mehmet EMIROGLU
2019-02-20	WinRAR 5.61 – ‘.lng’ Denial of Service	dos	windows	Kağan Çapar
2019-02-19	Zoho ManageEngine Netflow Analyzer Professional 7.0.0.2 – Path Traversal / Cross-Site Scripting	webapps	jsp	Rafael Pedrero
2019-02-19	MaxxAudio Drivers WavesSysSvc64.exe 1.6.2.0 – Local Privilege Escalation	local	windows	Mike Siegel
2019-02-19	NetSetMan 4.7.1 – ‘Workgroup’ Denial of Service (PoC)	dos	windows	Victor Mondragón
2019-02-19	Zuz Music 2.1 – ‘zuzconsole/___contact ‘ Persistent Cross-Site Scripting	webapps	php	Deyaa Muhammad
2019-02-19	Valentina Studio 9.0.4 – ‘Host’ Denial of Service (PoC)	dos	windows	Victor Mondragón
2019-02-19	BulletProof FTP Server 2019.0.0.50 – ‘SMTP Server’ Denial of Service (PoC)	dos	windows	Victor Mondragón
2019-02-19	eDirectory – SQL Injection	webapps	php	Efrén Díaz