Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24443Exploits
日期 标题 类型 平台 作者
2018-10-09

Seqrite End Point Security 7.4 – Privilege Escalation
  • local
  • windows
    		• Hashim Jawad
    2018-10-08

    Imperva SecureSphere 13 – Remote Command Execution
  • webapps
  • linux
    		• rsp3ar
    2018-10-08

    net-snmp 5.7.3 – (Unauthenticated) Denial of Service (PoC)
  • dos
  • linux
    		• Magnus Klaaborg Stubman
    2018-10-08

    Microsoft Windows – Net-NTLMv2 Reflection DCOM/RPC (Metasploit)
  • local
  • windows
    		• Metasploit
    2018-10-08

    Linux – Kernel Pointer Leak via BPF
  • dos
  • linux
    		• Google Security Research
    2018-10-08

    Navigate CMS – (Unauthenticated) Remote Code Execution (Metasploit)
  • remote
  • php
    		• Metasploit
    2018-10-08

    net-snmp 5.7.3 – (Authenticated) Denial of Service (PoC)
  • dos
  • linux
    		• Magnus Klaaborg Stubman
    2018-10-08

    Android – sdcardfs Changes current->fs Without Proper Locking
  • dos
  • android
    		• Google Security Research
    2018-10-08

    FLIR Thermal Traffic Cameras 1.01-0bb5b27 – Information Disclosure
  • webapps
  • hardware
    		• LiquidWorm
    2018-10-08

    Unitrends UEB – HTTP API Remote Code Execution (Metasploit)
  • remote
  • linux
    		• Metasploit
    2018-10-08

    Zahir Enterprise Plus 6 – Stack Buffer Overflow (Metasploit)
  • local
  • windows
    		• Metasploit
    2018-10-06

    Chamilo LMS 1.11.8 – ‘firstname’ Cross-Site Scripting
  • webapps
  • php
    		• cakes
    2018-10-06

    FLIR Thermal Traffic Cameras 1.01-0bb5b27 – RTSP Stream Disclosure
  • webapps
  • hardware
    		• LiquidWorm
    2018-10-05

    Netis ADSL Router DL4322D RTK 2.1.1 – Cross-Site Request Forgery (Add Admin)
  • webapps
  • hardware
    		• cakes
    2018-10-05

    ISPConfig < 3.1.13 - Remote Command Execution
  • webapps
  • php
    		• 0x09AL
    2018-10-05

    Git Submodule – Arbitrary Code Execution (PoC)
  • local
  • linux
    		• Junio C Hamano
    2018-10-05

    Chamilo LMS 1.11.8 – Cross-Site Scripting
  • webapps
  • php
    		• cakes
    2018-10-05

    D-Link Central WiFiManager Software Controller 1.03 – Multiple Vulnerabilities
  • webapps
  • php
    		• Core Security
    2018-10-04

    Cisco Prime Infrastructure – (Unauthenticated) Remote Code Execution
  • remote
  • multiple
    		• SecuriTeam
    2018-10-04

    virtualenv 16.0.0 – Sandbox Escape
  • local
  • linux
    		• vr_system
    2018-10-04

    NICO-FTP 3.0.1.19 – Buffer Overflow (SEH) (ASLR Bypass)
  • local
  • windows_x86
    		• Miguel Mendez Z
    2018-10-04

    LayerBB Forum 1.1.1 – ‘search_query’ SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-10-03

    Zechat 1.5 – ‘uname’ SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-10-03

    Joomla! Component Jimtawl 2.2.7 – ‘id’ SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-10-03

    Airties AIR5342 1.0.0.18 – Cross-Site Scripting
  • webapps
  • hardware
    		• Ismail Tasdelen
    2018-10-03

    RICOH MP C1803 JPN Printer – Cross-Site Scripting
  • webapps
  • hardware
    		• Ismail Tasdelen
    2018-10-03

    FTP Voyager 16.2.0 – Denial of Service (PoC)
  • dos
  • windows_x86
    		• Abdullah Alıç
    2018-10-02

    Coaster CMS 5.5.0 – Cross-Site Scripting
  • webapps
  • php
    		• Ismail Tasdelen
    2018-10-02

    OPAC EasyWeb Five 5.7 – ‘nome’ SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-10-02

    OPAC EasyWeb Five 5.7 – ‘biblio’ SQL Injection
  • webapps
  • php
    		• Dino Barlattani
    2018-10-02

    Linux Kernel < 4.11.8 - 'mq_notify: double sock_put()' Local Privilege Escalation
  • local
  • linux
    		• Lexfo
    2018-10-01

    H2 Database 1.4.196 – Remote Code Execution
  • webapps
  • java
    		• h4ckNinja
    2018-10-01

    ManageEngine AssetExplorer 6.2.0 – Cross-Site Scripting
  • webapps
  • java
    		• Ismail Tasdelen
    2018-10-01

    Snes9K 0.0.9z – Denial of Service (PoC)
  • dos
  • windows_x86
    		• crash_manucoot
    2018-10-01

    Billion ADSL Router 400G 20151105641 – Cross-Site Scripting
  • webapps
  • hardware
    		• cakes
    2018-10-01

    WUZHICMS 2.0 – Cross-Site Scripting
  • webapps
  • php
    		• Renzi
    2018-10-01

    Flippa Marketplace Clone 1.0 – ‘date_started’ SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-10-01

    Education Website 1.0 – ‘subject’ SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-10-01

    Fork CMS 5.4.0 – Cross-Site Scripting
  • webapps
  • php
    		• Ismail Tasdelen
    2018-10-01

    Hotel Booking Engine 1.0 – ‘h_room_type’ SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-10-01

    Singleleg MLM Software 1.0 – ‘msg_id’ SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-10-01

    Binary MLM Software 1.0 – ‘pid’ SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-10-01

    Zahir Enterprise Plus 6 build 10b – Buffer Overflow (SEH)
  • local
  • windows_x86
    		• SPARC
    2018-09-28

    PCProtect 4.8.35 – Privilege Escalation
  • local
  • windows_x86-64
    		• Hashim Jawad
    2018-09-27

    Microsoft Edge – Sandbox Escape
  • remote
  • windows
    		• Google Security Research
    2018-09-27

    EE 4GEE Mini EE40_00_02.00_44 – Privilege Escalation
  • local
  • windows
    		• Osanda Malith Jayathissa
    2018-09-27

    ManageEngine Desktop Central 10.0.271 – Cross-Site Scripting
  • webapps
  • java
    		• Ismail Tasdelen
    2018-09-27

    Rausoft ID.prove 2.95 – ‘Username’ SQL injection
  • webapps
  • windows_x86-64
    		• Ilya Timchenko
    2018-09-27

    iWay Data Quality Suite Web Console 10.6.1.ga – XML External Entity Injection
  • webapps
  • windows
    		• Sureshbabu Narvaneni
    2018-09-26

    CrossFont 7.5 – Denial of Service (PoC)
  • dos
  • windows_x86
    		• Gionathan Reale