Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24443Exploits
日期 标题 类型 平台 作者
2018-06-05

10-Strike Network Inventory Explorer 8.54 – Local Buffer Overflow (SEH)
  • local
  • windows_x86
    		• Hashim Jawad
    2018-06-05

    Pagekit < 1.0.13 - Cross-Site Scripting Code Generator
  • webapps
  • php
    		• DEEPIN2
    2018-06-05

    MyBB Recent Threads Plugin 1.0 – Cross-Site Scripting
  • webapps
  • php
    		• 0xB9
    2018-06-05

    Linux Kernel < 4.16.11 - 'ext4_read_inline_data()' Memory Corruption
  • dos
  • linux
    		• Google Security Research
    2018-06-05

    10-Strike Network Inventory Explorer 8.54 – ‘Registration Key’ Buffer Overflow (SEH)
  • local
  • windows_x86
    		• Hashim Jawad
    2018-06-05

    10-Strike Network Scanner 3.0 – Local Buffer Overflow (SEH)
  • local
  • windows_x86
    		• Hashim Jawad
    2018-06-05

    WebKitGTK+ < 2.21.3 - Crash (PoC)
  • local
  • linux
    		• Dhiraj Mishra
    2018-06-04

    Zip-n-Go 4.9 – Buffer Overflow (SEH)
  • local
  • windows
    		• Hashim Jawad
    2018-06-04

    Microsoft Windows – UAC Protection Bypass (Via Slui File Handler Hijack) (Metasploit)
  • local
  • windows
    		• Metasploit
    2018-06-04

    EMS Master Calendar < 8.0.0.20180520 - Cross-Site Scripting
  • webapps
  • aspx
    		• Chris Barretto
    2018-06-04

    Brother HL Series Printers 1.15 – Cross-Site Scripting
  • webapps
  • hardware
    		• Huy Kha
    2018-06-04

    SearchBlox 8.6.7 – XML External Entity Injection
  • webapps
  • java
    		• Ahmet Gurel
    2018-06-04

    CyberArk < 10 - Memory Disclosure
  • remote
  • linux
    		• Thomas Zuk
    2018-06-03

    GreenCMS 2.3.0603 – Cross-Site Request Forgery (Add Admin)
  • webapps
  • php
    		• xichao
    2018-06-03

    GreenCMS 2.3.0603 – Cross-Site Request Forgery / Remote Code Execution
  • webapps
  • php
    		• xichao
    2018-06-03

    Smartshop 1 – Cross-Site Request Forgery
  • webapps
  • php
    		• L0RD
    2018-06-03

    Smartshop 1 – ‘id’ SQL Injection
  • webapps
  • php
    		• L0RD
    2018-06-01

    Epiphany 3.28.2.1 – Denial of Service
  • dos
  • multiple
    		• Dhiraj Mishra
    2018-05-31

    TAC Xenta 511/911 – Directory Traversal
  • webapps
  • hardware
    		• Marek Cybul
    2018-05-31

    New STAR 2.1 – SQL Injection / Cross-Site Scripting
  • webapps
  • php
    		• Kağan Çapar
    2018-05-31

    PHP Dashboards NEW 5.5 – ’email’ SQL Injection
  • webapps
  • php
    		• Kağan Çapar
    2018-05-31

    CSV Import & Export 1.1.0 – SQL Injection / Cross-Site Scripting
  • webapps
  • php
    		• Kağan Çapar
    2018-05-31

    Grid Pro Big Data 1.0 – SQL Injection
  • webapps
  • php
    		• Kağan Çapar
    2018-05-31

    Microsoft Edge Chakra – EntrySimpleObjectSlotGetter Type Confusion
  • dos
  • windows
    		• Google Security Research
    2018-05-30

    SearchBlox 8.6.6 – Cross-Site Request Forgery
  • webapps
  • java
    		• Ahmet Gurel
    2018-05-30

    Dolibarr ERP/CRM 7.0.0 – (Authenticated) SQL Injection
  • webapps
  • php
    		• Sysdream
    2018-05-30

    Yosoro 1.0.4 – Remote Code Execution
  • webapps
  • macos
    		• Carlo Pelliccioni
    2018-05-30

    MachForm < 4.2.3 - SQL Injection / Path Traversal / Upload Bypass
  • webapps
  • php
    		• Amine Taouirsa
    2018-05-30

    Siemens SIMATIC S7-300 CPU – Remote Denial of Service
  • dos
  • linux
    		• t4rkd3vilz
    2018-05-30

    Procps-ng – Multiple Vulnerabilities
  • local
  • linux
    		• Qualys Corporation
    2018-05-29

    NUUO NVRmini2 / NVRsolo – Arbitrary File Upload
  • webapps
  • hardware
    		• M3@Pandas
    2018-05-29

    MyBB ChangUonDyU Plugin 1.0.2 – Cross-Site Scripting
  • webapps
  • php
    		• 0xB9
    2018-05-29

    GNU Barcode 0.99 – Buffer Overflow
  • local
  • linux
    		• LiquidWorm
    2018-05-29

    Facebook Clone Script 1.0.5 – Cross-Site Request Forgery
  • webapps
  • php
    		• L0RD
    2018-05-29

    IssueTrak 7.0 – SQL Injection
  • webapps
  • asp
    		• Chris Anastasio
    2018-05-29

    Facebook Clone Script 1.0.5 – ‘search’ SQL Injection
  • webapps
  • php
    		• L0RD
    2018-05-29

    Sitemakin SLAC 1.0 – ‘my_item_search’ SQL Injection
  • webapps
  • php
    		• Divya Jain
    2018-05-29

    GNU Barcode 0.99 – Memory Leak
  • local
  • linux
    		• LiquidWorm
    2018-05-28

    Joomla! Component Full Social 1.1.0 – ‘search_query’ SQL Injection
  • webapps
  • php
    		• L0RD
    2018-05-28

    WordPress Plugin Events Calendar – SQL Injection
  • webapps
  • php
    		• AkkuS
    2018-05-28

    CloudMe Sync < 1.11.0 - Buffer Overflow (SEH) (DEP Bypass)
  • remote
  • windows_x86-64
    		• Juan Prescotto
    2018-05-28

    ALFTP 5.31 – Local Buffer Overflow (SEH Bypass)
  • local
  • windows_x86
    		• Gokul Babu
    2018-05-28

    Sony Playstation 4 (PS4) 5.1 – Kernel (PoC)
  • local
  • hardware
    		• qwertyoruiop
    2018-05-28

    wityCMS 0.6.1 – Cross-Site Scripting
  • webapps
  • php
    		• Nathu Nandwani
    2018-05-28

    Joomla! Component JoomOCShop 1.0 – Cross-Site Request Forgery
  • webapps
  • php
    		• L0RD
    2018-05-28

    Joomla! Component jCart for OpenCart 2.3.0.2 – Cross-Site Request Forgery
  • webapps
  • php
    		• L0RD
    2018-05-28

    Sony Playstation 4 (PS4) 5.07 – ‘Jailbreak’ WebKit / ‘bpf v2’ Kernel Loader
  • local
  • hardware
    		• Specter
    2018-05-28

    TP-Link TL-WR840N/TL-WR841N – Authenticaton Bypass
  • webapps
  • hardware
    		• BlackFog Team
    2018-05-28

    DomainMod 4.09.03 – ‘oid’ Cross-Site Scripting
  • webapps
  • php
    		• longer
    2018-05-28

    DomainMod 4.09.03 – ‘sslpaid’ Cross-Site Scripting
  • webapps
  • php
    		• longer