Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2019-02-04	SuiteCRM 7.10.7 – ‘parentTab’ SQL Injection	webapps	php	Mehmet EMIROGLU
2019-02-04	SuiteCRM 7.10.7 – ‘record’ SQL Injection	webapps	php	Mehmet EMIROGLU
2019-02-01	Remote Process Explorer 1.0.0.16 – Buffer Overflow (PoC) (SEH Overwrite)	dos	windows	Rafael Pedrero
2019-02-01	PassFab Excel Password Recovery 8.3.1 – SEH Local Exploit	local	windows	Achilles
2019-02-01	SureMDM < 2018-11 Patch - Local / Remote File Inclusion	webapps	windows	Digital Interruption
2019-01-31	macOS < 10.14.3 / iOS < 12.1.3 XNU - 'vm_map_copy' Optimization which Requires Atomicity isn't Atomic	dos	multiple	Google Security Research
2019-01-31	Advanced Host Monitor 11.90 Beta – ‘Registration number’ Denial of Service (PoC)	dos	windows	Luis Martínez
2019-01-31	macOS < 10.14.3 / iOS < 12.1.3 - Kernel Heap Overflow in PF_KEY due to Lack of Bounds Checking when Retrieving Statistics	dos	multiple	Google Security Research
2019-01-31	UltraISO 9.7.1.3519 – ‘Output FileName’ Local Buffer Overflow (SEH)	local	windows	Dino Covotsos
2019-01-31	FlexHEX 2.46 – Buffer Overflow (PoC) (SEH Overwrite)	dos	windows	Rafael Pedrero
2019-01-31	macOS XNU – Copy-on-Write Behaviour Bypass via Partial-Page Truncation of File	dos	macos	Google Security Research
2019-01-31	macOS < 10.14.3 / iOS < 12.1.3 - Sandbox Escapes due to Type Confusions and Memory Safety Issues in iohideventsystem	dos	multiple	Google Security Research
2019-01-31	macOS < 10.14.3 / iOS < 12.1.3 - Arbitrary mach Port Name Deallocation in XPC Services due to Invalid mach Message Parsing in _xpc_serializer_unpack	dos	multiple	Google Security Research
2019-01-31	AMAC Address Change 5.4 – Denial of Service (PoC)	dos	windows	Rafael Pedrero
2019-01-31	ASPRunner Professional 6.0.766 – Denial of Service (PoC)	dos	windows	Rafael Pedrero
2019-01-31	LanHelper 1.74 – Denial of Service (PoC)	dos	windows	Rafael Pedrero
2019-01-31	R 3.5.0 – Local Buffer Overflow (SEH)	local	windows	Dino Covotsos
2019-01-31	Anyburn 4.3 – ‘Convert image to file format’ Denial of Service	dos	windows	Dino Covotsos
2019-01-30	Advanced File Manager 3.4.1 – Denial of Service (PoC)	dos	windows	Rafael Pedrero
2019-01-30	10-Strike Network Inventory Explorer 8.54 – Local Buffer Overflow (SEH) (DEP Bypass)	local	windows	bzyo
2019-01-30	Rukovoditel Project Management CRM 2.4.1 – ‘lists_id’ SQL Injection	webapps	php	Mehmet EMIROGLU
2019-01-30	iOS/macOS 10.13.6 – ‘if_ports_used_update_wakeuuid()’ 16-byte Uninitialized Kernel Stack Disclosure	dos	multiple	Google Security Research
2019-01-30	IP-Tools 2.50 – Local Buffer Overflow (PoC)	dos	windows	Rafael Pedrero
2019-01-30	Necrosoft DIG 0.4 – Buffer Overflow (PoC) (SEH Overwrite)	dos	windows	Rafael Pedrero
2019-01-29	PDF Signer 3.0 – Server-Side Template Injection leading to Remote Command Execution (via Cross-Site Request Forgery Cookie)	webapps	php	dd_
2019-01-29	MiniUPnPd 2.1 – Out-of-Bounds Read	dos	linux	b1ack0wl
2019-01-29	HTML5 Video Player 1.2.5 – Local Buffer Overflow (Non SEH)	local	windows	Dino Covotsos
2019-01-28	Cisco RV300 / RV320 – Information Disclosure	webapps	hardware	Harom Ramos
2019-01-28	Teameyo Project Management System 1.0 – SQL Injection	webapps	php	Ihsan Sencan
2019-01-28	Sricam gSOAP 2.8 – Denial of Service	dos	hardware	Andrew Watson
2019-01-28	ResourceSpace 8.6 – ‘collection_edit.php’ SQL Injection	webapps	php	dd_
2019-01-28	CMSsite 1.0 – ‘cat_id’ SQL Injection	webapps	php	Majid kalantari
2019-01-28	BEWARD Intercom 2.3.1 – Credentials Disclosure	local	windows	LiquidWorm
2019-01-28	Newsbull Haber Script 1.0.0 – ‘search’ SQL Injection	webapps	php	Mehmet EMIROGLU
2019-01-28	Easy Video to iPod Converter 1.6.20 – Buffer Overflow (SEH)	local	windows	Nawaf Alkeraithe
2019-01-28	LogonBox Limited / Hypersocket Nervepoint Access Manager – (Unauthenticated) Insecure Direct Object Reference	webapps	multiple	0v3rride
2019-01-28	AirTies Air5341 Modem 1.0.0.12 – Cross-Site Request Forgery	webapps	hardware	Ali Can Gönüllü
2019-01-28	WordPress Plugin Ad Manager WD 1.0.11 – Arbitrary File Download	webapps	php	41!kh4224rDz
2019-01-28	R 3.4.4 XP SP3 – Buffer Overflow (Non SEH)	local	windows	Dino Covotsos
2019-01-28	Rundeck Community Edition < 3.0.13 - Persistent Cross-Site Scripting	webapps	java	Ishaq Mohammed
2019-01-28	Smart VPN 1.1.3.0 – Denial of Service (PoC)	dos	windows	0xB9
2019-01-28	CloudMe Sync 1.11.2 Buffer Overflow – WoW64 (DEP Bypass)	remote	windows_x86-64	Matteo Malvica
2019-01-28	MyBB IP History Logs Plugin 1.0.2 – Cross-Site Scripting	webapps	php	0xB9
2019-01-28	MySQL User-Defined (Linux) (x86) – ‘sys_exec’ Local Privilege Escalation	local	linux_x86	d7x
2019-01-28	Faleemi Desktop Software 1.8 – Local Buffer Overflow (SEH) (DEP Bypass)	local	windows	bzyo
2019-01-28	CMSsite 1.0 – ‘search’ SQL Injection	webapps	php	Majid kalantari
2019-01-28	Care2x 2.7 (HIS) Hospital Information System – Multiple SQL Injection	webapps	php	Carlos Avila
2019-01-28	Cisco Firepower Management Center 6.2.2.2 / 6.2.3 – Cross-Site Scripting	webapps	hardware	Bhushan B. Patil
2019-01-28	Mess Management System 1.0 – SQL Injection	webapps	php	Ihsan Sencan
2019-01-25	iOS/macOS – ‘task_swap_mach_voucher()’ Use-After-Free	dos	multiple	Google Security Research