Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24443Exploits
日期 标题 类型 平台 作者
2018-07-13

Microsoft Windows – POP/MOV SS Local Privilege Elevation (Metasploit)
  • local
  • windows
    		• Metasploit
    2018-07-13

    Grundig Smart Inter@ctive 3.0 – Cross-Site Request Forgery
  • webapps
  • hardware
    		• t4rkd3vilz
    2018-07-13

    Apache CouchDB – Arbitrary Command Execution (Metasploit)
  • remote
  • linux
    		• Metasploit
    2018-07-13

    Manage Engine Exchange Reporter Plus – Remote Code Execution (Metasploit)
  • remote
  • java
    		• Metasploit
    2018-07-13

    G DATA Total Security 25.4.0.3 – Activex Buffer Overflow
  • dos
  • windows
    		• Filipe Xavier Oliveira
    2018-07-12

    Microsoft Edge Chakra JIT – BoundFunction::NewInstance Out-of-Bounds Read
  • dos
  • windows
    		• Google Security Research
    2018-07-12

    Microsoft Edge Chakra JIT – Type Confusion with Hoisted SetConcatStrMultiItemBE Instructions
  • dos
  • windows
    		• Google Security Research
    2018-07-12

    Microsoft Edge Chakra JIT – Out-of-Bounds Reads/Writes
  • dos
  • windows
    		• Google Security Research
    2018-07-11

    JavaScript Core – Arbitrary Code Execution
  • local
  • multiple
    		• ret2
    2018-07-11

    Awk to Perl 1.007-5 – Buffer Overflow (PoC)
  • local
  • linux
    		• Todor Donev
    2018-07-11

    Dicoogle PACS 2.5.0 – Directory Traversal
  • webapps
  • multiple
    		• Carlos Avila
    2018-07-11

    IBM QRadar SIEM – Remote Code Execution (Metasploit)
  • remote
  • unix
    		• Metasploit
    2018-07-11

    Instagram-Clone Script 2.0 – Cross-Site Scripting
  • webapps
  • php
    		• L0RD
    2018-07-10

    WolfSight CMS 3.2 – SQL Injection
  • webapps
  • php
    		• Berk Dusunur
    2018-07-10

    D-Link DIR601 2.02 – Credential Disclosure
  • webapps
  • hardware
    		• Thomas Zuk
    2018-07-10

    Linux Kernel < 4.13.9 (Ubuntu 16.04 / Fedora 27) - Local Privilege Escalation
  • local
  • linux
    		• rlarabee
    2018-07-10

    Elektronischer Leitz-Ordner 10 – SQL Injection
  • webapps
  • linux
    		• Jens Regel
    2018-07-09

    Tor Browser < 0.3.2.10 - Use After Free (PoC)
  • dos
  • linux
    		• t4rkd3vilz
    2018-07-09

    GitList 0.6.0 – Argument Injection (Metasploit)
  • remote
  • php
    		• Metasploit
    2018-07-09

    HID discoveryd – ‘command_blink_on’ Remote Code Execution (Metasploit)
  • remote
  • linux
    		• Metasploit
    2018-07-09

    HP VAN SDN Controller – Root Command Injection (Metasploit)
  • remote
  • linux
    		• Metasploit
    2018-07-09

    Boxoft WAV to WMA Converter 1.0 – Local Buffer Overflow (SEH)
  • local
  • windows
    		• Achilles
    2018-07-09

    Umbraco CMS SeoChecker Plugin 1.9.2 – Cross-Site Scripting
  • webapps
  • php
    		• Ahmed Elhady Mohamed
    2018-07-09

    Activision Infinity Ward Call of Duty Modern Warfare 2 – Buffer Overflow
  • remote
  • windows
    		• Maurice Heumann
    2018-07-07

    Oracle WebLogic 12.1.2.0 – RMI Registry UnicastRef Object Java Deserialization Remote Code Execution
  • webapps
  • multiple
    		• bobsecq
    2018-07-06

    PolarisOffice 2017 8 – Remote Code Execution
  • remote
  • windows
    		• hyp3rlinx
    2018-07-06

    Airties AIR5444TT – Cross-Site Scripting
  • webapps
  • windows
    		• Raif Berkay Dincel
    2018-07-05

    VLC media player 2.2.8 – Arbitrary Code Execution (PoC)
  • local
  • windows
    		• Eugene Ng
    2018-07-05

    SoftExpert Excellence Suite 2.0 – ‘cddocument’ SQL Injection
  • webapps
  • php
    		• Seren PORSUK
    2018-07-05

    ADB Broadband Gateways / Routers – Authorization Bypass
  • webapps
  • hardware
    		• SEC Consult
    2018-07-05

    ADB Broadband Gateways / Routers – Privilege Escalation
  • local
  • hardware
    		• SEC Consult
    2018-07-05

    ADB Broadband Gateways / Routers – Local Root Jailbreak
  • local
  • hardware
    		• SEC Consult
    2018-07-04

    Gitea 1.4.0 – Remote Code Execution
  • webapps
  • multiple
    		• Kacper Szurek
    2018-07-04

    CMS Made Simple 2.2.5 – (Authenticated) Remote Code Execution
  • webapps
  • php
    		• Mustafa Hasan
    2018-07-04

    ManageEngine Exchange Reporter Plus < Build 5311 - Remote Code Execution
  • webapps
  • java
    		• Kacper Szurek
    2018-07-04

    Online Trade – Information Disclosure
  • webapps
  • php
    		• L0RD
    2018-07-04

    ShopNx – Arbitrary File Upload
  • webapps
  • php
    		• L0RD
    2018-07-03

    ntop-ng < 3.4.180617 - Authentication Bypass
  • webapps
  • lua
    		• Ioannis Profetis
    2018-07-03

    OpenSLP 2.0.0 – Double-Free
  • dos
  • linux
    		• Magnus Klaaborg Stubman
    2018-07-03

    Boxoft WAV to MP3 Converter 1.1 – Buffer Overflow (Metasploit)
  • local
  • windows
    		• Metasploit
    2018-07-02

    Nagios XI 5.2.6-5.4.12 – Chained Remote Code Execution (Metasploit)
  • remote
  • linux
    		• Metasploit
    2018-07-02

    Geutebruck 5.02024 G-Cam/EFD-2250 – ‘simple_loglistjs.cgi’ Remote Command Execution (Metasploit)
  • webapps
  • hardware
    		• RandoriSec
    2018-07-02

    FTPShell Client 6.70 (Enterprise Edition) – Stack Buffer Overflow (Metasploit)
  • remote
  • windows
    		• Metasploit
    2018-07-02

    Core FTP LE 2.2 – Buffer Overflow (PoC)
  • dos
  • windows
    		• Berk Cem Göksel
    2018-07-02

    VMware NSX SD-WAN Edge < 3.1.2 - Command Injection
  • webapps
  • hardware
    		• ParagonSec
    2018-07-02

    Delta Industrial Automation COMMGR 1.08 – Stack Buffer Overflow (PoC)
  • dos
  • hardware
    		• t4rkd3vilz
    2018-07-02

    Dolibarr ERP/CRM < 7.0.3 - PHP Code Injection
  • webapps
  • php
    		• om3rcitak
    2018-07-02

    SIPp 3.6 – Local Buffer Overflow (PoC)
  • dos
  • linux
    		• Fakhri Zulkifli
    2018-07-02

    Enhanced Mitigation Experience Toolkit (EMET) – XML External Entity Injection
  • local
  • windows
    		• hyp3rlinx
    2018-07-02

    DAMICMS 6.0.0 – Cross-Site Request Forgery (Add Admin)
  • webapps
  • php
    		• bay0net