Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24745Exploits

日期	标题	类型	平台	作者
2019-01-08	CF Image Hosting Script 1.6.5 – (Delete all Pictures) Privilege Escalation	webapps	php	David Tavarez
2019-01-07	Roxy Fileman 1.4.5 – Unrestricted File Upload / Directory Traversal	webapps	php	Pongtorn Angsuchotmetee, Vittawat Masaree
2019-01-07	MyT Project Management 1.5.1 – ‘Charge[group_total]’ SQL Injection	webapps	php	Mehmet Onder
2019-01-07	WordPress Plugin UserPro < 4.9.21 - User Registration Privilege Escalation	webapps	php	Noman Riffat
2019-01-07	phpMoAdmin MongoDB GUI 1.1.5 – Cross-Site Request Forgery / Cross-Site Scripting	webapps	php	Ozer Goker
2019-01-07	PLC Wireless Router GPN2.4P21-C-CN – Cross-Site Scripting	webapps	cgi	Kumar Saurav
2019-01-07	MyBB OUGC Awards Plugin 1.8.3 – Persistent Cross-Site Scripting	webapps	php	0xB9
2019-01-07	LayerBB 1.1.1 – Persistent Cross-Site Scripting	webapps	php	0xB9
2019-01-07	Microsoft Edge 44.17763.1.0 – NULL Pointer Dereference	dos	windows	Bogdan Kurinnoy
2019-01-07	KioWare Server Version 4.9.6 – Weak Folder Permissions Privilege Escalation	local	windows	Hashim Jawad
2019-01-07	All in One Video Downloader 1.2 – (Authenticated) SQL Injection	webapps	php	Deyaa Muhammad
2019-01-07	Huawei E5330 21.210.09.00.158 – Cross-Site Request Forgery (Send SMS)	webapps	hardware	Nathu Nandwani
2019-01-07	Embed Video Scripts – Persistent Cross-Site Scripting	webapps	php	Deyaa Muhammad
2019-01-07	Leica Geosystems GR10/GR25/GR30/GR50 GNSS 4.30.063 – JS/HTML Code Injection	webapps	windows	LiquidWorm
2019-01-07	Mailcleaner – (Authenticated) Remote Code Execution (Metasploit)	remote	Python	Mehmet Ince
2019-01-07	Leica Geosystems GR10/GR25/GR30/GR50 GNSS 4.30.063 – Cross-Site Request Forgery	webapps	windows	LiquidWorm
2019-01-07	Foscam Video Management System 1.1.4.9 – ‘Username’ Denial of Service (PoC)	dos	windows	Luis Martínez
2019-01-07	SpotFTP Password Recover 2.4.2 – ‘Name’ Denial of Service (PoC)	dos	windows	Luis Martínez
2019-01-07	BlueAuditor 1.7.2.0 – ‘Key’ Denial of Service (PoC)	dos	windows	Luis Martínez
2019-01-07	Ajera Timesheets 9.10.16 – Deserialization of Untrusted Data	webapps	windows	Anthony Cole
2019-01-04	Linux Kernel 4.15.x < 4.19.2 - 'map_write() CAP_SYS_ADMIN' Local Privilege Escalation (polkit Method)	local	linux	bcoles
2019-01-04	Linux Kernel 4.15.x < 4.19.2 - 'map_write() CAP_SYS_ADMIN' Local Privilege Escalation (dbus Method)	local	linux	bcoles
2019-01-02	NetworkSleuth 3.0.0.0 – ‘Key’ Denial of Service (PoC)	dos	windows_x86-64	Luis Martínez
2019-01-02	EZ CD Audio Converter 8.0.7 – Denial of Service (PoC)	dos	windows_x86-64	Achilles
2019-01-02	Frog CMS 0.9.5 – Cross-Site Scripting	webapps	php	WangDudu
2019-01-02	WordPress Plugin Adicon Server 1.2 – ‘selectedPlace’ SQL Injection	webapps	php	Kaimi
2019-01-02	Vtiger CRM 7.1.0 – Remote Code Execution	webapps	php	AkkuS
2019-01-02	NBMonitor Network Bandwidth Monitor 1.6.5.0 – ‘Name’ Denial of Service (PoC)	dos	windows_x86-64	Luis Martínez
2019-01-02	Microsoft Windows – Windows Error Reporting Local Privilege Escalation	local	windows	SandboxEscaper
2019-01-02	Hashicorp Consul – Remote Command Execution via Services API (Metasploit)	remote	linux	Metasploit
2019-01-02	Hashicorp Consul – Remote Command Execution via Rexec (Metasploit)	remote	linux	Metasploit
2019-01-02	WebKit JSC – ‘JSArray::shiftCountWithArrayStorage’ Out-of-Bounds Read/Write	dos	multiple	Google Security Research
2019-01-02	WebKit JSC – ‘AbstractValue::set’ Use-After-Free	dos	multiple	Google Security Research
2019-01-02	Ayukov NFTP FTP Client 2.0 – Buffer Overflow	local	windows_x86	Uday Mittal
2018-12-30	Deepin Linux 15 – ‘lastore-daemon’ Local Privilege Escalation	local	multiple	bcoles
2018-12-30	VMware Workstation/Player < 12.5.5 - Local Privilege Escalation	local	multiple	bcoles
2018-12-29	Linux Kernel 4.4.0-21 < 4.4.0-51 (Ubuntu 14.04/16.04 x64) - 'AF_PACKET' Race Condition Privilege Escalation	local	windows_x86-64	bcoles
2018-12-29	Linux Kernel < 4.4.0/ < 4.8.0 (Ubuntu 14.04/16.04 / Linux Mint 17/18 / Zorin) - Local Privilege Escalation (KASLR / SMEP)	local	linux	bcoles
2018-12-29	Linux Kernel 4.8.0-34 < 4.8.0-45 (Ubuntu / Linux Mint) - Packet Socket Local Privilege Escalation	local	linux	bcoles
2018-12-27	Terminal Services Manager 3.1 – Local Buffer Overflow (SEH)	local	windows_x86	bzyo
2018-12-27	Product Key Explorer 4.0.9 – Denial of Service (PoC)	dos	windows_x86	T3jv1l
2018-12-27	MAGIX Music Editor 3.1 – Buffer Overflow (SEH)	local	windows_x86	bzyo
2018-12-27	WordPress Plugin Audio Record 1.0 – Arbitrary File Upload	webapps	php	Kaimi
2018-12-27	Craft CMS 3.0.25 – Cross-Site Scripting	webapps	php	Raif Berkay Dincel
2018-12-27	ShareAlarmPro 2.1.4 – Denial of Service (PoC)	dos	windows_x86	T3jv1l
2018-12-27	NetShareWatcher 1.5.8 – Denial of Service (PoC)	dos	windows_x86	T3jv1l
2018-12-27	WordPress Plugin Baggage Freight Shipping Australia 0.1.0 – Arbitrary File Upload	webapps	php	Kaimi
2018-12-27	bludit Pages Editor 3.0.0 – Arbitrary File Upload	webapps	php	BouSalman
2018-12-27	Iperius Backup 5.8.1 – Buffer Overflow (SEH)	local	windows_x86	bzyo
2018-12-24	Adobe Flash ActiveX Plugin 28.0.0.137 – Remote Code Execution (PoC)	local	windows	smgorelik