Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24745Exploits

日期	标题	类型	平台	作者
2018-07-24	D-link DAP-1360 – Path Traversal / Cross-Site Scripting	webapps	hardware	r3m0t3nu11
2018-07-24	Micro Focus Secure Messaging Gateway (SMG) < 471 - Remote Code Execution (Metasploit)	webapps	php	Mehmet Ince
2018-07-24	Nagios Core 4.4.1 – Denial of Service	dos	linux	Fakhri Zulkifli
2018-07-23	Tenda Wireless N150 Router 5.07.50 – Cross-Site Request Forgery (Reboot Router)	webapps	hardware	Nathu Nandwani
2018-07-23	Microsoft Windows Speech Recognition – Buffer Overflow (PoC)	dos	windows	Nassim Asrir
2018-07-23	Davolink DVW 3200 Router – Password Disclosure	webapps	hardware	Ankit Anubhav
2018-07-23	Synology DiskStation Manager 4.1 – Directory Traversal	webapps	linux	Berk Dusunur
2018-07-23	Splinterware System Scheduler Pro 5.12 – Privilege Escalation	local	windows	bzyo
2018-07-23	Splinterware System Scheduler Pro 5.12 – Buffer Overflow (SEH)	local	windows	bzyo
2018-07-23	NUUO NVRmini – ‘upgrade_handle.php’ Remote Command Execution	webapps	hardware	Berk Dusunur
2018-07-23	Kirby CMS 2.5.12 – Cross-Site Scripting	webapps	php	Zaran Shaikh
2018-07-23	Microsoft Windows – ‘dnslint.exe’ Drive-By Download	remote	windows	hyp3rlinx
2018-07-22	GeoVision GV-SNVR0811 – Directory Traversal	webapps	hardware	Berk Dusunur
2018-07-21	Inteno’s IOPSYS – (Authenticated) Local Privilege Escalation	local	linux	neonsea
2018-07-20	TP-Link TL-WR840N – Denial of Service	dos	hardware	Aniket Dinda
2018-07-20	Touchpad / Trivum WebTouch Setup 2.53 build 13163 – Authentication Bypass	webapps	hardware	vulnc0d3
2018-07-20	MSVOD 10 – ‘cid’ SQL Injection	webapps	php	Hzllaga
2018-07-19	Google Chrome – SwiftShader OpenGL Texture Bindings Reference Count Leak	dos	multiple	Google Security Research
2018-07-19	Google Chrome – Swiftshader Blitting Floating-Point Precision Errors	dos	multiple	Google Security Research
2018-07-19	Google Chrome – Swiftshader Texture Allocation Integer Overflow	dos	multiple	Google Security Research
2018-07-19	Linux – BPF Sign Extension Local Privilege Escalation (Metasploit)	local	linux	Metasploit
2018-07-19	MyBB New Threads Plugin 1.1 – Cross-Site Scripting	webapps	php	0xB9
2018-07-19	WordPress Plugin All In One Favicon 4.6 – (Authenticated) Cross-Site Scripting	webapps	php	Javier Olmedo
2018-07-18	FTP2FTP 1.0 – Arbitrary File Download	webapps	php	AkkuS
2018-07-18	Open-AudIT Community 2.1.1 – Cross-Site Scripting	webapps	multiple	Ranjeet Jaiswal
2018-07-18	HomeMatic Zentrale CCU2 – Remote Code Execution	remote	hardware	Kacper Szurek
2018-07-18	Smart SMS & Email Manager 3.3 – ‘contact_type_id’ SQL Injection	webapps	php	AkkuS
2018-07-18	Modx Revolution < 2.6.4 - Remote Code Execution	webapps	php	Vitalii Rudnykh
2018-07-17	Nanopool Claymore Dual Miner – APIs Remote Code Execution (Metasploit)	remote	multiple	Metasploit
2018-07-17	QNAP Q’Center – ‘change_passwd’ Command Execution (Metasploit)	remote	linux	Metasploit
2018-07-17	Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway – Restricted Shell Escape	local	hardware	LiquidWorm
2018-07-17	Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway – Default Credentials	remote	hardware	LiquidWorm
2018-07-17	Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway – Remote Root	webapps	hardware	LiquidWorm
2018-07-17	Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway – File Manipulation	webapps	hardware	LiquidWorm
2018-07-17	Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway – Configuration Download	webapps	hardware	LiquidWorm
2018-07-17	Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway – Denial of Service	dos	hardware	LiquidWorm
2018-07-17	Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway – Cross-Site Request Forgery	webapps	hardware	LiquidWorm
2018-07-16	Linux (Ubuntu) – Other Users coredumps Can Be Read via setgid Directory and killpriv Bypass	dos	linux	Google Security Research
2018-07-16	macOS/iOS – JavaScript Injection Bug in OfficeImporter	dos	multiple	Google Security Research
2018-07-16	WordPress Plugin Job Manager 4.1.0 – Cross-Site Scripting	webapps	php	Berk Dusunur
2018-07-16	VelotiSmart WiFi B-380 Camera – Directory Traversal	webapps	hardware	Miguel Mendez Z
2018-07-16	Fortify Software Security Center (SSC) 17.x/18.1 – XML External Entity Injection	webapps	java	alt3kx
2018-07-16	Microsoft Enterprise Mode Site List Manager – XML External Entity Injection	local	windows	hyp3rlinx
2018-07-16	PrestaShop < 1.6.1.19 - 'BlowFish ECD' Privilege Escalation	webapps	php	Charles Fol
2018-07-16	PrestaShop < 1.6.1.19 - 'AES CBC' Privilege Escalation	webapps	php	Charles Fol
2018-07-13	Hadoop YARN ResourceManager – Command Execution (Metasploit)	remote	linux	Metasploit
2018-07-13	Microsoft Windows – POP/MOV SS Local Privilege Elevation (Metasploit)	local	windows	Metasploit
2018-07-13	Grundig Smart Inter@ctive 3.0 – Cross-Site Request Forgery	webapps	hardware	t4rkd3vilz
2018-07-13	Cela Link CLR-M20 2.7.1.6 – Arbitrary File Upload	webapps	hardware	Safak Aslan
2018-07-13	phpMyAdmin – (Authenticated) Remote Code Execution (Metasploit)	remote	php	Metasploit