Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2018-05-20	Easy MPEG to DVD Burner 1.7.11 – Local Buffer Overflow (SEH) (DEP Bypass)	local	windows	Juan Prescotto
2018-05-20	Joomla! Component EkRishta 2.10 – Cross-Site Scripting / SQL Injection	webapps	php	Sina Kheirkhah
2018-05-20	D-Link DSL-3782 – Authentication Bypass	webapps	hardware	Giulio Comi
2018-05-18	Linux 4.8.0 < 4.8.0-46 - AF_PACKET packet_set_ring Privilege Escalation (Metasploit)	local	linux	Metasploit
2018-05-18	SAP B2B / B2C CRM 2.x < 4.x - Local File Inclusion	webapps	linux	Richard Alviarez
2018-05-18	Cisco SA520W Security Appliance – Path Traversal	webapps	hardware	Nassim Asrir
2018-05-18	Healwire Online Pharmacy 3.0 – Cross-Site Scripting / Cross-Site Request Forgery	webapps	php	L0RD
2018-05-18	Prime95 29.4b8 – Stack Buffer Overflow (SEH)	local	windows	crash_manucoot
2018-05-18	HPE iMC 7.3 – Remote Code Execution (Metasploit)	remote	windows	TrendyTofu
2018-05-18	Infinity Market Classified Ads Script 1.6.2 – Cross-Site Request Forgery	webapps	php	L0RD
2018-05-18	SAP NetWeaver Web Dynpro 6.4 < 7.5 - Information Disclosure	webapps	linux	Richard Alviarez
2018-05-18	DynoRoot DHCP Client – Command Injection	local	linux	Kevin Kirsche
2018-05-18	Monstra CMS < 3.0.4 - Cross-Site Scripting (2)	webapps	php	Berk Dusunur
2018-05-18	Microsoft Edge Chakra JIT – Bound Check Elimination Bug	dos	windows	Google Security Research
2018-05-17	Powerlogic/Schneider Electric IONXXXX Series – Cross-Site Request Forgery	webapps	linux	t4rkd3vilz
2018-05-17	Nanopool Claymore Dual Miner 7.3 – Remote Code Execution	remote	windows	ReverseBrain
2018-05-17	SuperCom Online Shopping Ecommerce Cart 1 – Persistent Cross-Site scripting / Cross site request forgery / Authentication bypass	webapps	php	L0RD
2018-05-17	Intelbras NCLOUD 300 1.0 – Authentication bypass	webapps	hardware	Pedro Aguiar
2018-05-17	NodAPS 4.0 – SQL injection / Cross-Site Request Forgery	webapps	php	L0RD
2018-05-17	Linux < 4.16.9 / < 4.14.41 - 4-byte Infoleak via Uninitialized Struct Field in compat adjtimex Syscall	dos	linux	Google Security Research
2018-05-17	Jenkins CLI – HTTP Java Deserialization (Metasploit)	remote	linux	Metasploit
2018-05-17	Apache Struts 2 – Struts 1 Plugin Showcase OGNL Code Execution (Metasploit)	remote	multiple	Metasploit
2018-05-16	WhatsApp 2.18.31 – Memory Corruption	dos	ios	Juan Sacco
2018-05-16	Horse Market Sell & Rent Portal Script 1.5.7 – Cross-Site Request Forgery	webapps	linux	L0RD
2018-05-16	WordPress Plugin Metronet Tag Manager 1.2.7 – Cross-Site Request Forgery	webapps	php	dxw
2018-05-16	Multiplayer BlackJack Online Casino Game 2.5 – Cross-Site Scripting	webapps	php	L0RD
2018-05-16	Libuser – ‘roothelper’ Local Privilege Escalation (Metasploit)	local	linux	Metasploit
2018-05-16	totemomail Encryption Gateway 6.0.0 Build 371 – Cross-Site Request Forgery	webapps	asp	Compass Security
2018-05-16	Rockwell Scada System 27.011 – Cross-Site Scripting	webapps	windows	t4rkd3vilz
2018-05-16	RSA Authentication Manager 8.2.1.4.0-build1394922 / < 8.3 P1 - XML External Entity Injection / Cross-Site Flashing / DOM Cross-Site Scripting	webapps	java	SEC Consult
2018-05-16	Inteno IOPSYS 2.0 < 4.2.0 - 'p910nd' Remote Command Execution	remote	hardware	neonsea
2018-05-16	VirtueMart 3.1.14 – Persistent Cross-Site Scripting	webapps	php	Mattia Furlani
2018-05-16	MyBB Admin Notes Plugin 1.1 – Cross-Site Request Forgery	webapps	php	0xB9
2018-05-16	Microsoft Windows – Token Process Trust SID Access Check Bypass Privilege Escalation	local	windows	Google Security Research
2018-05-14	XATABoost 1.0.0 – SQL Injection	webapps	php	MgThuraMoeMyint
2018-05-14	2345 Security Guard 3.7 – ‘2345NsProtect.sys’ Denial of Service	dos	windows	anhkgg
2018-05-13	WUZHI CMS 4.1.0 – ‘form[qq_10]’ Cross-Site Scripting	webapps	php	jiguang
2018-05-13	Microsoft Windows 2003 SP2 – ‘RRAS’ SMB Remote Code Execution	remote	windows	vportal
2018-05-13	WUZHI CMS 4.1.0 – ‘tag[pinyin]’ Cross-Site Scripting	webapps	php	jiguang
2018-05-11	Open-AudIT Professional – 2.1.1 – Cross-Site Scripting	webapps	windows	Tejesh Kolisetty
2018-05-11	Open-AudIT Community 2.2.0 – Cross-Site Scripting	webapps	windows	Tejesh Kolisetty
2018-05-11	EMC RecoverPoint 4.3 – ‘Admin CLI’ Command Injection	local	windows	Paul Taylor
2018-05-11	2345 Security Guard 3.7 – ‘2345BdPcSafe.sys’ Denial of Service	dos	windows	anhkgg
2018-05-10	Fastweb FASTGate 0.00.47 – Cross-Site Request Forgery	webapps	hardware	Raffaele Sabato
2018-05-10	ModbusPal 1.6b – XML External Entity Injection	webapps	java	Trent Gordon
2018-05-10	MyBB Latest Posts on Profile Plugin 1.1 – Cross-Site Scripting	webapps	php	0xB9
2018-05-10	Mantis Bug Tracker 1.1.3 – ‘manage_proj_page’ PHP Code Execution (Metasploit)	remote	php	Metasploit
2018-05-10	Dell Touchpad – ‘ApMsgFwd.exe’ Denial of Service	dos	windows	Souhail Hammou
2018-05-09	Microsoft Windows FxCop 10/12 – XML External Entity Injection	local	windows	hyp3rlinx
2018-05-09	Allok Video Splitter 3.1.12.17 – Denial of Service	dos	windows	Achilles