Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24443Exploits
日期 标题 类型 平台 作者
2018-05-23

Wecodex Hotel CMS 1.0 – ‘Admin Login’ SQL Injection

  • webapps
  • php
  • AkkuS
    2018-05-23

    Mobile Card Selling Platform 1 – Cross-Site Request Forgery

  • webapps
  • php
  • L0RD
    2018-05-23

    Honeywell Scada System – Information Disclosure

  • webapps
  • linux
  • t4rkd3vilz
    2018-05-23

    PHP Dashboards 4.5 – SQL Injection

  • webapps
  • php
  • AkkuS
    2018-05-23

    SKT LTE Wi-Fi SDT-CW3B1 – Unauthorized Admin Credential Change

  • webapps
  • hardware
  • Safak Aslan
    2018-05-23

    PHP Dashboards 4.5 – ’email’ SQL Injection

  • webapps
  • php
  • AkkuS
    2018-05-23

    Mcard Mobile Card Selling Platform 1 – SQL Injection

  • webapps
  • php
  • L0RD
    2018-05-23

    Gigs 2.0 – ‘username’ SQL Injection

  • webapps
  • php
  • AkkuS
    2018-05-23

    eWallet Online Payment Gateway 2 – Cross-Site Request Forgery

  • webapps
  • php
  • L0RD
    2018-05-23

    Online Store System CMS 1.0 – SQL Injection

  • webapps
  • php
  • AkkuS
    2018-05-23

    WordPress Plugin Peugeot Music – Arbitrary File Upload

  • webapps
  • php
  • Mr.7z
    2018-05-22

    WebSocket Live Chat – Cross-Site Scripting

  • webapps
  • php
  • Alireza Norkazemi
    2018-05-22

    Feedy RSS News Ticker 2.0 – ‘cat’ SQL Injection

  • webapps
  • php
  • AkkuS
    2018-05-22

    Zechat 1.5 – SQL Injection / Cross-Site Request Forgery

  • webapps
  • php
  • L0RD
    2018-05-22

    Nordex N149/4.0-4.5 – SQL Injection

  • webapps
  • hardware
  • t4rkd3vilz
    2018-05-22

    Siemens SIMATIC S7-1500 CPU – Remote Denial of Service

  • dos
  • linux
  • t4rkd3vilz
    2018-05-22

    Microsoft Edge Chakra JIT – Magic Value Type Confusion

  • dos
  • windows
  • Google Security Research
    2018-05-22

    iSocial 1.2.0 – Cross-Site Scripting / Cross-Site Request Forgery

  • webapps
  • php
  • L0RD
    2018-05-22

    Linux 4.4.0 < 4.4.0-53 - 'AF_PACKET chocobo_root' Local Privilege Escalation (Metasploit)

  • local
  • linux
  • Metasploit
    2018-05-22

    Easy File Uploader 1.7 – SQL Injection / Cross-Site Scripting

  • webapps
  • php
  • AkkuS
    2018-05-22

    ERPnext 11 – Cross-Site Scripting

  • webapps
  • java
  • Veerababu Penugonda
    2018-05-22

    AMD / ARM / Intel – Speculative Execution Variant 4 Speculative Store Bypass

  • dos
  • hardware
  • Google Security Research
    2018-05-22

    Microsoft Windows – ‘POP/MOV SS’ Privilege Escalation

  • local
  • windows
  • Can Bölük
    2018-05-22

    MakeMyTrip 7.2.4 – Information Disclosure

  • local
  • android
  • Divya Jain
    2018-05-22

    NewsBee CMS 1.4 – ‘home-text-edit.php’ SQL Injection

  • webapps
  • php
  • AkkuS
    2018-05-22

    PaulPrinting CMS Printing 1.0 – SQL Injection

  • webapps
  • php
  • Mehmet Onder
    2018-05-22

    Auto Car 1.2 – ‘car_title’ SQL Injection / Cross-Site Scripting

  • webapps
  • php
  • L0RD
    2018-05-22

    Dell EMC RecoverPoint boxmgmt CLI < 5.1.2 - Arbitrary File Read

  • local
  • linux
  • Paul Taylor
    2018-05-22

    NewsBee CMS 1.4 – ‘home-text-edit.php’ SQL Injection

  • webapps
  • linux
  • AkkuS
    2018-05-22

    Siemens SIMATIC S7-1200 CPU – Cross-Site Scripting

  • webapps
  • linux
  • t4rkd3vilz
    2018-05-22

    NewsBee CMS 1.4 – ‘download.php’ SQL Injection

  • webapps
  • php
  • AkkuS
    2018-05-21

    Microsoft Internet Explorer 11 (Windows 7 x86/x64) – vbscript Code Execution

  • local
  • windows
  • smgorelik
    2018-05-21

    Superfood 1.0 – Multiple Vulnerabilities

  • webapps
  • php
  • L0RD
    2018-05-21

    Siemens SIMATIC S7-1200 CPU – Cross-Site Request Forgery

  • webapps
  • linux
  • t4rkd3vilz
    2018-05-21

    Private Message PHP Script 2.0 – Cross-Site Scripting

  • webapps
  • php
  • L0RD
    2018-05-21

    Wchat PHP AJAX Chat Script 1.5 – Cross-Site Scripting

  • webapps
  • php
  • L0RD
    2018-05-21

    GitBucket 4.23.1 – Remote Code Execution

  • webapps
  • java
  • Kacper Szurek
    2018-05-21

    Model Agency Media House & Model Gallery 1.0 – Multiple Vulnerabilities

  • webapps
  • php
  • L0RD
    2018-05-21

    Teradek Cube 7.3.6 – Cross-Site Request Forgery

  • webapps
  • hardware
  • LiquidWorm
    2018-05-21

    Merge PACS 7.0 – Cross-Site Request Forgery

  • webapps
  • linux
  • Safak Aslan
    2018-05-21

    R 3.4.4 – Local Buffer Overflow (DEP Bypass)

  • local
  • windows_x86
  • Hashim Jawad
    2018-05-21

    Teradek VidiU Pro 3.0.3 – Server-Side Request Forgery

  • webapps
  • hardware
  • LiquidWorm
    2018-05-21

    Teradek VidiU Pro 3.0.3 – Cross-Site Request Forgery

  • webapps
  • hardware
  • LiquidWorm
    2018-05-21

    Teradek Slice 7.3.15 – Cross-Site Request Forgery

  • webapps
  • hardware
  • LiquidWorm
    2018-05-21

    Schneider Electric PLCs – Cross-Site Request Forgery

  • webapps
  • windows
  • t4rkd3vilz
    2018-05-21

    Flippy DamnFacts – Viral Fun Facts Sharing Script 1.1.0 – Cross-Site Scripting / Cross-Site Request Forgery

  • webapps
  • php
  • L0RD
    2018-05-21

    Linux 2.6.30 < 2.6.36-rc8 - Reliable Datagram Sockets (RDS) Privilege Escalation (Metasploit)

  • local
  • linux
  • Metasploit
    2018-05-21

    ManageEngine Recovery Manager Plus 5.3 – Cross-Site Scripting

  • webapps
  • java
  • Ahmet Gurel
    2018-05-21

    Auto Dealership & Vehicle Showroom WebSys 1.0 – Multiple Vulnerabilities

  • webapps
  • php
  • L0RD
    2018-05-21

    Zenar Content Management System – Cross-Site Scripting

  • webapps
  • php
  • Berk Dusunur