Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24443Exploits
日期 标题 类型 平台 作者
2018-08-26

ManageEngine ADManager Plus 6.5.7 – Cross-Site Scripting
  • webapps
  • windows_x86-64
    		• Ismail Tasdelen
    2018-08-26

    WordPress Plugin Gift Voucher 1.0.5 – (Authenticated) ‘template_id’ SQL Injection
  • webapps
  • php
    		• Renos Nikolaou
    2018-08-25

    Apache Struts 2.3 < 2.3.34 / 2.5 < 2.5.16 - Remote Code Execution (2)
  • remote
  • multiple
    		• hook-s3c
    2018-08-25

    ManageEngine ADManager Plus 6.5.7 – HTML Injection
  • webapps
  • windows
    		• Ismail Tasdelen
    2018-08-25

    UltimatePOS 2.5 – Remote Code Execution
  • webapps
  • php
    		• Renos Nikolaou
    2018-08-24

    SkypeApp 12.8.487.0 – ‘Cuenta de Skype o Microsoft’ Denial of Service (PoC)
  • dos
  • windows_x86-64
    		• Luis Martínez
    2018-08-24

    Vox TG790 ADSL Router – Cross-Site Request Forgery (Add Admin)
  • webapps
  • hardware
    		• cakes
    2018-08-23

    StyleWriter 4 1.0 – Denial of Service (PoC)
  • dos
  • windows_x86
    		• Gionathan Reale
    2018-08-23

    Twitter-Clone 1 – ‘code’ SQL Injection
  • webapps
  • php
    		• L0RD
    2018-08-23

    PCViewer vt1000 – Directory Traversal
  • webapps
  • windows
    		• Berk Dusunur
    2018-08-23

    CuteFTP 8.3.1 – Denial of Service (PoC)
  • dos
  • windows_x86-64
    		• Ali Alipour
    2018-08-23

    Epiphany Web Browser 3.28.1 – Denial of Service (PoC)
  • dos
  • linux
    		• Dhiraj Mishra
    2018-08-22

    Geutebrueck re_porter 16 – Cross-Site Scripting
  • webapps
  • hardware
    		• Kamil Suska
    2018-08-22

    Ghostscript – Multiple Vulnerabilities
  • local
  • linux
    		• Google Security Research
    2018-08-22

    Easyboot 6.6.0 – Denial Of Service (PoC)
  • dos
  • windows_x86
    		• Gionathan Reale
    2018-08-22

    Geutebrueck re_porter 7.8.974.20 – Credential Disclosure
  • webapps
  • hardware
    		• Kamil Suska
    2018-08-22

    Softdisk 3.0.3 – Denial Of Service (PoC)
  • dos
  • windows_x86
    		• Gionathan Reale
    2018-08-22

    Microsoft Windows 10 – Diagnostics Hub Standard Collector Service Privilege Escalation
  • local
  • windows
    		• Atredis Partners
    2018-08-22

    UltraISO 9.7.1.3519 – Denial Of Service (PoC)
  • dos
  • windows_x86-64
    		• Ali Alipour
    2018-08-22

    Textpad 7.6.4 – Denial Of Service (PoC)
  • dos
  • windows_x86
    		• Gionathan Reale
    2018-08-22

    KingMedia 4.1 – File Upload
  • webapps
  • php
    		• Efrén Díaz
    2018-08-22

    ZyXEL VMG3312-B10B – Cross-Site Scripting
  • webapps
  • hardware
    		• Samet ŞAHİN
    2018-08-22

    Project64 2.3.2 – Buffer Overflow (SEH)
  • local
  • windows_x86
    		• Shubham Singh
    2018-08-21

    Twitter-Clone 1 – ‘userid’ SQL Injection
  • webapps
  • php
    		• L0RD
    2018-08-21

    Twitter-Clone 1 – Cross-Site Request Forgery (Delete Post)
  • webapps
  • php
    		• L0RD
    2018-08-21

    Hikvision IP Camera 5.4.0 – User Enumeration (Metasploit)
  • webapps
  • hardware
    		• Alfie
    2018-08-21

    Project64 2.3.2 – Denial Of Service (PoC)
  • dos
  • windows_x86
    		• Gionathan Reale
    2018-08-21

    OpenSSH 2.3 < 7.7 - Username Enumeration
  • remote
  • linux
    		• Justin Gardner
    2018-08-21

    WordPress Plugin Ninja Forms 3.3.13 – CSV Injection
  • webapps
  • php
    		• Mostafa Gharzi
    2018-08-20

    Easylogin Pro 1.3.0 – ‘Encryptor.php’ Unserialize Remote Code Execution
  • remote
  • php
    		• mr_me
    2018-08-20

    Countly – Cross-Site Scripting
  • webapps
  • php
    		• Sleepy
    2018-08-20

    WordPress Plugin Tagregator 0.6 – Cross-Site Scripting
  • webapps
  • php
    		• ManhNho
    2018-08-20

    MyBB Moderator Log Notes Plugin 1.1 – Cross-Site Request Forgery
  • webapps
  • php
    		• 0xB9
    2018-08-20

    Prime95 29.4b7 – Denial Of Service (PoC)
  • dos
  • windows_x86
    		• Gionathan Reale
    2018-08-20

    Restorator 1793 – Denial of Service (PoC)
  • dos
  • windows_x86-64
    		• Gionathan Reale
    2018-08-20

    Zortam MP3 Media Studio 23.95 – Denial of Service (PoC)
  • dos
  • windows_x86-64
    		• Gionathan Reale
    2018-08-20

    WordPress Plugin Chained Quiz 1.0.8 – ‘answer’ SQL Injection
  • webapps
  • php
    		• Çlirim Emini
    2018-08-20

    SEIG Modbus 3.4 – Remote Code Execution
  • remote
  • windows_x86
    		• Alejandro Parodi
    2018-08-20

    SEIG Modbus 3.4 – Denial of Service (PoC)
  • dos
  • windows_x86
    		• Alejandro Parodi
    2018-08-19

    SEIG SCADA System 9 – Remote Code Execution
  • remote
  • windows_x86
    		• Alejandro Parodi
    2018-08-17

    ADM 3.1.2RHG1 – Remote Code Execution
  • webapps
  • hardware
    		• Matthew Fulton
    2018-08-17

    Microsoft Edge Chakra JIT – Parameter Scope Parsing Type Confusion
  • dos
  • windows
    		• Google Security Research
    2018-08-17

    CEWE Photoshow 6.3.4 – Denial of Service (PoC)
  • dos
  • windows_x86-64
    		• Gionathan Reale
    2018-08-17

    Microsoft Edge Chakra JIT – ImplicitCallFlags Check Bypass with Intl
  • dos
  • windows
    		• Google Security Research
    2018-08-17

    Microsoft Edge Chakra JIT – InitializeNumberFormat and InitializeDateTimeFormat Type Confusion
  • dos
  • windows
    		• Google Security Research
    2018-08-17

    Mikrotik WinBox 6.42 – Credential Disclosure (golang)
  • webapps
  • hardware
    		• Maxim Yefimenko
    2018-08-17

    Microsoft Edge Chakra JIT – ‘InlineArrayPush’ Type Confusion
  • dos
  • windows
    		• Google Security Research
    2018-08-17

    Microsoft Edge Chakra JIT – ‘DictionaryPropertyDescriptor::CopyFrom’ Type Confusion
  • dos
  • windows
    		• Google Security Research
    2018-08-16

    Central Management Software 1.4.13 – Denial of Service (PoC)
  • dos
  • windows_x86-64
    		• Gionathan Reale
    2018-08-16

    WordPress Plugin Export Users to CSV 1.1.1 – CSV Injection
  • webapps
  • php
    		• Javier Olmedo