Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24745Exploits

日期	标题	类型	平台	作者
2018-12-03	PHP Server Monitor 3.3.1 – Cross-Site Request Forgery	webapps	php	Javier Olmedo
2018-12-03	Mozilla Firefox 63.0.1 – Denial of Service (PoC)	dos	windows	SAIKUMAR CHEBROLU
2018-12-03	Joomla! Component JE Photo Gallery 1.1 – ‘categoryid’ SQL Injection	webapps	php	Ihsan Sencan
2018-12-03	PaloAlto Networks Expedition Migration Tool 1.0.106 – Information Disclosure	webapps	linux	ParagonSec
2018-12-03	Rockwell Automation Allen-Bradley PowerMonitor 1000 – Cross-Site Scripting	webapps	hardware	Luca.Chiou
2018-12-03	Fleetco Fleet Maintenance Management 1.2 – Remote Code Execution	webapps	php	AkkuS
2018-12-03	CyberArk 9.7 – Memory Disclosure	remote	windows	Thomas Zuk
2018-11-30	Linux Kernel 4.8 (Ubuntu 16.04) – Leak sctp Kernel Pointer	dos	linux	Jinbum Park
2018-11-30	Schneider Electric PLC – Session Calculation Authentication Bypass	webapps	hardware	Photubias
2018-11-30	PhpSpreadsheet < 1.5.0 - XML External Entity (XXE)	webapps	php	Alex Leahu
2018-11-30	Apache Spark – (Unauthenticated) Command Execution (Metasploit)	remote	java	Metasploit
2018-11-30	VBScript – ‘rtFilter’ Out-of-Bounds Read	dos	windows	Google Security Research
2018-11-30	VBScript – ‘OLEAUT32!VariantClear’ and ‘scrrun!VBADictionary::put_Item’ Use-After-Free	dos	windows	Google Security Research
2018-11-30	xorg-x11-server < 1.20.3 - 'modulepath' Local Privilege Escalation	local	multiple	Marco Ivaldi
2018-11-30	HTML5 Video Player 1.2.5 – Buffer Overflow (Metasploit)	local	windows	d3ckx1
2018-11-30	Synaccess netBooter NP-02x/NP-08x 6.8 – Authentication Bypass	webapps	cgi	LiquidWorm
2018-11-29	TeamCity Agent – XML-RPC Command Execution (Metasploit)	remote	multiple	Metasploit
2018-11-29	Mac OS X – libxpc MITM Privilege Escalation (Metasploit)	local	macos	Metasploit
2018-11-29	Linux – Nested User Namespace idmap Limit Local Privilege Escalation (Metasploit)	local	linux	Metasploit
2018-11-29	PHP imap_open – Remote Code Execution (Metasploit)	remote	linux	Metasploit
2018-11-29	Unitrends Enterprise Backup – bpserverd Privilege Escalation (Metasploit)	local	linux	Metasploit
2018-11-29	WebKit JSC – BytecodeGenerator::hoistSloppyModeFunctionIfNecessary Does not Invalidate the ‘ForInContext’ Object	dos	multiple	Google Security Research
2018-11-29	WebKit JIT – ‘ByteCodeParser::handleIntrinsicCall’ Type Confusion	dos	multiple	Google Security Research
2018-11-29	WebKit JSC JIT – ‘JSPropertyNameEnumerator’ Type Confusion	dos	multiple	Google Security Research
2018-11-27	Netgear Devices – (Unauthenticated) Remote Command Execution (Metasploit)	remote	hardware	Metasploit
2018-11-26	Xorg X11 Server – SUID privilege escalation (Metasploit)	local	multiple	Metasploit
2018-11-26	Arm Whois 3.11 – Buffer Overflow (ASLR)	local	windows_x86	zephyr
2018-11-26	ELBA5 5.8.0 – Remote Code Execution	remote	windows	Florian Bogner
2018-11-26	Zyxel VMG1312-B10D 5.13AAXA.8 – Directory Traversal	webapps	hardware	numan türle
2018-11-26	No-Cms 1.0 – ‘order_by’ SQL Injection	webapps	php	Loading Kura Kura
2018-11-26	Ticketly 1.0 – ‘kind_id’ SQL Injection	webapps	php	Javier Olmedo
2018-11-26	MariaDB Client 10.1.26 – Denial of Service (PoC)	dos	linux	strider
2018-11-26	WordPress Plugin Easy Testimonials 3.2 – Cross-Site Scripting	webapps	php	En_dust
2018-11-26	Ricoh myPrint 2.9.2.4 – Hard-Coded Credentials	webapps	hardware	Hodorsec
2018-11-21	Linux Kernel 4.15.x < 4.19.2 - 'map_write() CAP_SYS_ADMIN' Local Privilege Escalation (ldpreload Method)	local	linux	bcoles
2018-11-21	Linux Kernel 4.15.x < 4.19.2 - 'map_write() CAP_SYS_ADMIN' Local Privilege Escalation (cron Method)	local	linux	bcoles
2018-11-21	WebOfisi E-Ticaret V4 – ‘urun’ SQL Injection	webapps	php	AkkuS
2018-11-21	WordPress Theme CherryFramework 3.1.4 – Backup File Download	webapps	php	b1p0l4r
2018-11-21	Ticketly 1.0 – ‘name’ SQL Injection	webapps	php	Javier Olmedo
2018-11-21	Synaccess netBooter NP-0801DU 7.4 – Cross-Site Request Forgery (Add Admin)	webapps	hardware	LiquidWorm
2018-11-20	Apple macOS 10.13 – ‘workq_kernreturn’ Denial of Service (PoC)	dos	macos	Fabiano Anemone
2018-11-20	Microsoft Windows – DfMarshal Unsafe Unmarshaling Privilege Escalation	local	windows	Google Security Research
2018-11-20	Ticketly 1.0 – Cross-Site Request Forgery (Add Admin)	webapps	php	Javier Olmedo
2018-11-19	ImageMagick – Memory Leak	local	multiple	ttffdd
2018-11-19	Microsoft Edge Chakra – OP_Memset Type Confusion	dos	windows	Google Security Research
2018-11-19	HTML Video Player 1.2.5 – Buffer-Overflow (SEH)	local	windows_x86	Kağan Çapar
2018-11-19	XMPlay 3.8.3 – ‘.m3u’ Denial of Service (PoC)	dos	windows	s7acktrac3
2018-11-16	Linux – Broken uid/gid Mapping for Nested User Namespaces	local	linux	Google Security Research
2018-11-16	Easy Outlook Express Recovery 2.0 – Denial of Service (PoC)	dos	windows_x86-64	Ihsan Sencan
2018-11-16	Mumsoft Easy Software 2.0 – Denial of Service (PoC)	dos	windows_x86-64	Ihsan Sencan