Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24443Exploits
日期 标题 类型 平台 作者
2018-04-25

Shopy Point of Sale 1.0 – CSV Injection
  • webapps
  • php
    		• 8bitsec
    2018-04-25

    Chrome V8 JIT – ‘AwaitedPromise’ Update Bug
  • dos
  • multiple
    		• Google Security Research
    2018-04-25

    HRSALE The Ultimate HRM 1.0.2 – Local File Inclusion
  • webapps
  • php
    		• 8bitsec
    2018-04-25

    HRSALE The Ultimate HRM 1.0.2 – (Authenticated) Cross-Site Scripting
  • webapps
  • php
    		• 8bitsec
    2018-04-25

    Chrome V8 JIT – Arrow Function Scope Fixing Bug
  • dos
  • multiple
    		• Google Security Research
    2018-04-24

    gif2apng 1.9 – ‘.gif’ Stack Buffer Overflow
  • dos
  • linux
    		• Hamm3r.py
    2018-04-24

    Allok Video to DVD Burner 2.6.1217 – Buffer Overflow (SEH)
  • local
  • windows
    		• T3jv1l
    2018-04-24

    Kaspersky KSN for Linux 5.2 – Memory Corruption
  • dos
  • linux
    		• Juan Sacco
    2018-04-24

    lastore-daemon D-Bus – Privilege Escalation (Metasploit)
  • local
  • linux
    		• Metasploit
    2018-04-24

    Microsoft Windows – Local Privilege Escalation
  • local
  • windows
    		• XPN
    2018-04-24

    Easy File Sharing Web Server 7.2 – ‘UserID’ Remote Buffer Overflow (DEP Bypass)
  • remote
  • windows
    		• Hashim Jawad
    2018-04-24

    WUZHI CMS 4.1.0 – Cross-Site Request Forgery
  • webapps
  • php
    		• jiguang
    2018-04-24

    ASUS infosvr – Authentication Bypass Command Execution (Metasploit)
  • remote
  • hardware
    		• Metasploit
    2018-04-24

    Open-AudIT 2.1 – CSV Macro Injection
  • webapps
  • windows
    		• Sureshbabu Narvaneni
    2018-04-24

    VLC Media Player/Kodi/PopcornTime ‘Red Chimera’ < 2.2.5 - Memory Corruption (PoC)
  • dos
  • windows
    		• SivertPL
    2018-04-24

    Interspire Email Marketer < 6.1.6 - Remote Admin Authentication Bypass
  • webapps
  • php
    		• devcoinfet
    2018-04-24

    WSO2 Carbon / WSO2 Dashboard Server 5.3.0 – Persistent Cross-Site Scripting
  • webapps
  • java
    		• SEC Consult
    2018-04-24

    Monstra CMS 3.0.4 – Arbitrary Folder Deletion
  • webapps
  • php
    		• Wenming Jiang
    2018-04-24

    Chrome V8 JIT – ‘NodeProperties::InferReceiverMaps’ Type Confusion
  • dos
  • multiple
    		• Google Security Research
    2018-04-24

    UK Cookie Consent – Persistent Cross-Site Scripting
  • webapps
  • php
    		• B0UG
    2018-04-24

    Adobe Flash – Out-of-Bounds Write in blur Filtering
  • dos
  • multiple
    		• Google Security Research
    2018-04-24

    Ericsson-LG iPECS NMS A.1Ac – Cleartext Credential Disclosure
  • webapps
  • php
    		• Berk Cem Göksel
    2018-04-24

    Adobe Flash – Info Leak in Image Inflation
  • dos
  • multiple
    		• Google Security Research
    2018-04-24

    Microsoft Internet Explorer 11.371.16299.0 (Windows 10) – Denial Of Service
  • dos
  • windows
    		• hyp3rlinx
    2018-04-24

    Adobe Flash – Overflow in Slab Rendering
  • dos
  • multiple
    		• Google Security Research
    2018-04-24

    Adobe Flash – Overflow when Playing Sound
  • dos
  • multiple
    		• Google Security Research
    2018-04-24

    WordPress Plugin Woo Import Export 1.0 – Arbitrary File Deletion
  • webapps
  • php
    		• Lenon Leite
    2018-04-24

    RGui 3.4.4 – Local Buffer Overflow
  • local
  • windows
    		• bzyo
    2018-04-23

    Apache CouchDB 1.7.0 / 2.x < 2.1.1 - Remote Privilege Escalation
  • webapps
  • linux
    		• r4wd3r
    2018-04-23

    Monstra cms 3.0.4 – Persitent Cross-Site Scripting
  • webapps
  • php
    		• Wenming Jiang
    2018-04-23

    Drupal avatar_uploader v7.x-1.0-beta8 – Arbitrary File Disclosure
  • webapps
  • php
    		• Larry W. Cashdollar
    2018-04-23

    PRTG Network Monitor < 18.1.39.1648 - Stack Overflow (Denial of Service)
  • dos
  • windows_x86
    		• luriel
    2018-04-23

    Free Download Manager 2.0 Built 417 – Local Buffer Overflow (SEH)
  • local
  • windows_x86
    		• Marwan Shamel
    2018-04-23

    VMware Workstation 12.5.2 – Drag n Drop Use-After-Free (Pwn2Own 2017) (PoC)
  • dos
  • windows
    		• keenlab
    2018-04-23

    phpMyAdmin 4.8.0 < 4.8.0-1 - Cross-Site Request Forgery
  • webapps
  • php
    		• revengsh
    2018-04-23

    Ncomputing vSpace Pro 10/11 – Directory Traversal
  • webapps
  • windows
    		• Javier Bernardo
    2018-04-22

    Oracle Weblogic Server 10.3.6.0 / 12.1.3.0 / 12.2.1.2 / 12.2.1.3 – Deserialization Remote Command Execution
  • remote
  • multiple
    		• brianwrf
    2018-04-20

    Cobub Razor 0.8.0 – Physical Path Leakage
  • webapps
  • php
    		• Kyhvedn
    2018-04-18

    Lutron Quantum 2.0 – 3.2.243 – Information Disclosure
  • webapps
  • hardware
    		• SadFud
    2018-04-18

    Kodi 17.6 – Persistent Cross-Site Scripting
  • webapps
  • multiple
    		• Manuel García Cárdenas
    2018-04-18

    Match Clone Script 1.0.4 – Cross-Site Scripting
  • webapps
  • php
    		• ManhNho
    2018-04-18

    Easy File Sharing Web Server 7.2 – Stack Buffer Overflow
  • remote
  • windows
    		• rebeyond
    2018-04-18

    Rvsitebuilder CMS – Database Backup Download
  • webapps
  • php
    		• Hesam Bazvand
    2018-04-18

    MySQL Squid Access Report 2.1.4 – SQL Injection / Cross-Site Scripting
  • webapps
  • php
    		• Keerati T.
    2018-04-18

    WordPress Plugin Caldera Forms 1.5.9.1 – Cross-Site Scripting
  • webapps
  • php
    		• Federico Scalco
    2018-04-18

    RSVG 2.40.13 / 2.42.2 – ‘.svg’ Buffer Overflow
  • dos
  • multiple
    		• Hamm3r.py
    2018-04-18

    PDFunite 0.41.0 – ‘.pdf’ Local Buffer Overflow
  • dos
  • linux
    		• Hamm3r.py
    2018-04-18

    Joomla! Component JS Jobs 1.2.0 – Cross-Site Request Forgery
  • webapps
  • php
    		• Sureshbabu Narvaneni
    2018-04-18

    Geist WatchDog Console 3.2.2 – Multiple Vulnerabilities
  • webapps
  • xml
    		• bzyo
    2018-04-18

    VX Search 10.6.18 – ‘directory’ Local Buffer Overflow
  • dos
  • windows
    		• Kevin McGuigan