Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24745Exploits
日期 标题 类型 平台 作者
2018-11-05

Softros LAN Messenger 9.2 – Denial of Service (PoC)
  • dos
  • windows_x86-64
    		• Victor Mondragón
    2018-11-05

    PHP Proxy 3.0.3 – Local File Inclusion
  • webapps
  • php
    		• AkkuS
    2018-11-02

    Intel (Skylake / Kaby Lake) – ‘PortSmash’ CPU SMT Side-Channel
  • local
  • hardware
    		• Billy Brumley
    2018-11-02

    Zint Barcode Generator 2.6 – Denial of Service (PoC)
  • dos
  • windows_x86-64
    		• Ihsan Sencan
    2018-11-02

    CdCatalog 2.3.1 – Denial of Service (PoC)
  • dos
  • windows_x86-64
    		• Ihsan Sencan
    2018-11-02

    WinMTR 0.91 – Denial of Service (PoC)
  • dos
  • windows_x86-64
    		• Ihsan Sencan
    2018-11-02

    Yot CMS 3.3.1 – ‘aid’ SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-11-02

    qdPM 9.1 – ‘filter_by’ SQL Injection
  • webapps
  • php
    		• AkkuS
    2018-11-02

    Gate Pass Management System 2.1 – ‘login’ SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-11-02

    Anviz AIM CrossChex Standard 4.3 – CSV Injection
  • local
  • windows
    		• LiquidWorm
    2018-11-02

    Jelastic 5.4 – ‘host’ SQL Injection
  • webapps
  • php
    		• Procode701
    2018-11-02

    Fantastic Blog CMS 1.0 – ‘id’ SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-11-01

    Artha The Open Thesaurus 1.0.3.0 – Denial of Service (PoC)
  • dos
  • windows_x86-64
    		• Ihsan Sencan
    2018-11-01

    Arm Whois 3.11 – Denial of Service (PoC)
  • dos
  • windows_x86
    		• Yair Rodríguez Aparicio
    2018-11-01

    WebDrive 18.00.5057 – Denial of Service (PoC)
  • dos
  • windows_x86-64
    		• Victor Mondragón
    2018-10-31

    WordPress Plugin GoURL.io < 1.4.14 - File Upload
  • webapps
  • php
    		• Pouya Darabi
    2018-10-31

    SmartFTP Client 9.0.2615.0 – Denial of Service (PoC)
  • dos
  • windows_x86-64
    		• Victor Mondragón
    2018-10-31

    Loadbalancer.org Enterprise VA MAX 8.3.2 – Remote Code Execution
  • webapps
  • php
    		• Jakub Palaczynski
    2018-10-30

    Nutanix AOS & Prism < 5.5.5 (LTS) / < 5.8.1 (STS) - SFTP Authentication Bypass
  • remote
  • multiple
    		• Adam Brown
    2018-10-30

    MyBB Downloads 2.0.3 – SQL Injection
  • webapps
  • php
    		• Lucian Ioan Nitescu
    2018-10-30

    ZyXEL VMG3312-B10B < 1.00(AAPP.7) - Credential Disclosure
  • dos
  • hardware
    		• numan türle
    2018-10-30

    Any Sound Recorder 2.93 – Buffer Overflow Local (SEH) (Metasploit)
  • local
  • windows
    		• d3ckx1
    2018-10-30

    xorg-x11-server 1.20.3 – Privilege Escalation
  • local
  • openbsd
    		• Marco Ivaldi
    2018-10-30

    Netgear WiFi Router R6120 – Credential Disclosure
  • webapps
  • hardware
    		• Wadeek
    2018-10-30

    Webiness Inventory 2.9 – Arbitrary File Upload
  • webapps
  • php
    		• Boumediene KADDOUR
    2018-10-30

    CI User Login and Management 1.0 – Arbitrary File Upload
  • webapps
  • php
    		• Ihsan Sencan
    2018-10-30

    phptpoint Pharmacy Management System 1.0 – ‘username’ SQL Injection
  • webapps
  • php
    		• Boumediene KADDOUR
    2018-10-30

    Asaancart Simple PHP Shopping Cart 0.9 – Arbitrary File Upload / SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-10-30

    R 3.4.4 (Windows 10 x64) – Buffer Overflow (DEP/ASLR Bypass)
  • local
  • windows_x86-64
    		• Charles Truscott
    2018-10-30

    Microstrategy Web 7 – Cross-Site Scripting / Directory Traversal
  • webapps
  • jsp
    		• Rafael Pedrero
    2018-10-30

    Electricks eCommerce 1.0 – ‘prodid’ SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-10-30

    Instagram Clone 1.0 – Arbitrary File Upload
  • webapps
  • php
    		• Ihsan Sencan
    2018-10-30

    South Gate Inn Online Reservation System 1.0 – ‘q’ SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-10-30

    Notes Manager 1.0 – Arbitrary File Upload
  • webapps
  • php
    		• Ihsan Sencan
    2018-10-30

    University Application System 1.0 – SQL Injection / Cross-Site Request Forgery (Add Admin)
  • webapps
  • php
    		• Ihsan Sencan
    2018-10-30

    Expense Management 1.0 – Arbitrary File Upload
  • webapps
  • php
    		• Ihsan Sencan
    2018-10-30

    SIPp 3.3.990 – Local Buffer Overflow (PoC)
  • dos
  • linux
    		• Nawaf Alkeraithe
    2018-10-30

    QNAP NetBak Replicator 4.5.6.0607 – Denial of Service (PoC)
  • dos
  • windows
    		• Yair Rodríguez Aparicio
    2018-10-29

    School Attendance Monitoring System 1.0 – Cross-Site Request Forgery (Update Admin)
  • webapps
  • php
    		• Ihsan Sencan
    2018-10-29

    School Equipment Monitoring System 1.0 – ‘login’ SQL Injection
  • local
  • windows_x86-64
    		• Ihsan Sencan
    2018-10-29

    School Event Management System 1.0 – Cross-Site Request Forgery (Update Admin)
  • webapps
  • php
    		• Ihsan Sencan
    2018-10-29

    AlienIP 2.41 – Denial of Service (PoC)
  • dos
  • windows_x86-64
    		• Arturo de la Cruz Tellez
    2018-10-29

    School Event Management System 1.0 – Arbitrary File Upload
  • webapps
  • php
    		• Ihsan Sencan
    2018-10-29

    Open Faculty Evaluation System 7 – ‘batch_name’ SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-10-29

    School Event Management System 1.0 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-10-29

    Library Management System 1.0 – ‘frmListBooks’ SQL Injection
  • webapps
  • aspx
    		• Ihsan Sencan
    2018-10-29

    Point of Sales (POS) in VB.Net MySQL Database 1.0 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-10-29

    Navicat 12.0.29 – ‘SSH’ Denial of Service (PoC)
  • dos
  • windows_x86-64
    		• Rafael Alfaro
    2018-10-29

    Bakeshop Inventory System in VB.Net and MS Access Database 1.0 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-10-29

    Grapixel New Media 2 – ‘pageref’ SQL Injection
  • webapps
  • php
    		• Berk Dusunur