Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2018-08-06	CMS ISWEB 3.5.3 – Directory Traversal	webapps	php	Thiago Sena
2018-08-06	onArcade 2.4.2 – Cross-Site Request Forgery (Add Admin)	webapps	php	r3m0t3nu11
2018-08-05	Fortinet FortiClient 5.2.3 (Windows 10 x64 Creators) – Local Privilege Escalation	local	windows_x86-64	sickness & mschenk
2018-08-03	cgit < 1.2.1 - 'cgit_clone_objects()' Directory Traversal	webapps	cgi	Google Security Research
2018-08-03	Linux Kernel – UDP Fragmentation Offset ‘UFO’ Privilege Escalation (Metasploit)	local	linux	Metasploit
2018-08-03	Vuze Bittorrent Client 5.7.6.0 – SSDP Processing XML External Entity Injection	webapps	xml	Chris Moberly
2018-08-03	PHP Template Store Script 3.0.6 – Cross-Site Scripting	webapps	php	Sarafraz Khan
2018-08-03	Wedding Slideshow Studio 1.36 – Buffer Overflow	local	windows	Achilles
2018-08-03	Plex Media Server 1.13.2.5154 – SSDP Processing XML External Entity Injection	webapps	xml	Chris Moberly
2018-08-02	Imperva SecureSphere 11.5 / 12.0 / 13.0 – Privilege Escalation	local	linux	0x09AL
2018-08-02	Seq 4.2.476 – Authentication Bypass	webapps	windows	Daniel Chactoura
2018-08-02	ASUS DSL-N12E_C1 1.1.2.3_345 – Remote Command Execution	webapps	hardware	Fakhri Zulkifli
2018-08-02	Universal Media Server 7.1.0 – SSDP Processing XML External Entity Injection	webapps	xml	Chris Moberly
2018-08-02	SecureSphere 12.0.0.50 – SealMode Shell Escape (Metasploit)	local	linux	0x09AL
2018-08-02	CoSoSys Endpoint Protector 4.5.0.1 – (Authenticated) Remote Root Command Injection	webapps	php	0x09AL
2018-08-02	AgataSoft Auto PingMaster 1.5 – ‘Host name’ Denial of Service (PoC)	dos	windows	Luis Martínez
2018-08-02	WityCMS 0.6.2 – Cross-Site Request Forgery (Password Change)	webapps	php	Porhai Eung
2018-08-02	Sun Solaris 11.3 AVS Kernel – Local Privilege Escalation	local	solaris	mu-b
2018-08-02	PageResponse FB Inboxer Add-on 1.2 – ‘search_field’ SQL Injection	webapps	php	AkkuS
2018-08-02	TI Online Examination System v2 – Arbitrary File Download	webapps	php	AkkuS
2018-08-01	SonicWall Global Management System – XMLRPC set_time_zone Command Injection (Metasploit)	remote	linux	Metasploit
2018-08-01	WebRTC – H264 NAL Packet Processing Type Confusion	dos	multiple	Google Security Research
2018-08-01	WebRTC – FEC Processing Overflow	dos	multiple	Google Security Research
2018-08-01	WebRTC – VP8 Block Decoding Use-After-Free	dos	multiple	Google Security Research
2018-08-01	Allok Fast AVI MPEG Splitter 1.2 – Buffer Overflow (PoC)	local	windows	Shubham Singh
2018-07-31	LG NAS 3718.510.a0 – Remote Command Execution	webapps	hardware	0x616163
2018-07-31	Craft CMS SEOmatic plugin 3.1.4 – Server-Side Template Injection	webapps	linux	0xB455
2018-07-31	Switch Port Mapping Tool 2.81 – ‘SNMP Community Name’ Denial of Service (PoC)	dos	windows	Luis Martínez
2018-07-31	ipPulse 1.92 – ‘Licence Key’ Denial of Service (PoC)	dos	windows	Shubham Singh
2018-07-30	Charles Proxy 4.2 – Local Privilege Escalation	local	macos	Mark Wadham
2018-07-30	fusermount – user_allow_other Restriction Bypass and SELinux Label Control	dos	linux	Google Security Research
2018-07-30	H2 Database 1.4.197 – Information Disclosure	webapps	linux	owodelta
2018-07-30	Microsoft Windows Kernel – ‘win32k!NtUserConsoleControl’ Denial of Service (PoC)	dos	windows	vportal
2018-07-30	Responsive Filemanager 9.13.1 – Server-Side Request Forgery	webapps	linux	GUIA BRAHIM FOUAD
2018-07-30	ipPulse 1.92 – ‘IP Address/HostName-Comment’ Denial of Service (PoC)	dos	windows	Luis Martínez
2018-07-30	Allok MOV Converter 4.6.1217 – Buffer Overflow (SEH)	local	windows	Shubham Singh
2018-07-27	QNap QVR Client 5.1.1.30070 – ‘Password’ Denial of Service (PoC)	dos	windows	Luis Martínez
2018-07-27	Axis Network Camera – .srv to parhand Remote Code Execution (Metasploit)	remote	linux	Metasploit
2018-07-27	WordPress Plugin Responsive Thumbnail Slider – Arbitrary File Upload (Metasploit)	remote	php	Metasploit
2018-07-27	Skia – Heap Overflow in SkScan::FillPath due to Precision Error	dos	multiple	Google Security Research
2018-07-27	SoftNAS Cloud < 4.0.3 - OS Command Injection	webapps	php	Core Security
2018-07-27	NetScanTools Basic Edition 2.5 – ‘Hostname’ Denial of Service (PoC)	dos	windows	Luis Martínez
2018-07-27	Online Trade 1 – Information Disclosure	webapps	linux	Dhamotharan
2018-07-26	Core FTP 2.0 – ‘XRMD’ Denial of Service (PoC)	dos	windows	Erik David Martin
2018-07-26	Trivum Multiroom Setup Tool 8.76 – Corss-Site Request Forgery (Admin Bypass)	webapps	hardware	vulnc0d3
2018-07-26	Kirby CMS 2.5.12 – Cross-Site Request Forgery (Delete Page)	webapps	linux	Zaran Shaikh
2018-07-25	10-Strike Bandwidth Monitor 3.7 – Local Buffer Overflow (SEH)	local	windows	absolomb
2018-07-25	GetGo Download Manager 6.2.1.3200 – Denial of Service (PoC)	dos	windows	Nathu Nandwani
2018-07-25	10-Strike LANState 8.8 – Local Buffer Overflow (SEH)	local	windows	absolomb
2018-07-24	D-link DAP-1360 – Path Traversal / Cross-Site Scripting	webapps	hardware	r3m0t3nu11