Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24443Exploits
日期 标题 类型 平台 作者
2018-03-30

Tenda FH303/A300 Firmware v5.07.68_EN – Remote DNS Change

  • webapps
  • asp
  • Todor Donev
    2018-03-30

    Allok AVI DivX MPEG to DVD Converter 2.6.1217 – Buffer Overflow (SEH)

  • local
  • windows
  • wetw0rk
    2018-03-30

    Systematic SitAware – NVG Denial of Service

  • dos
  • xml
  • 2u53
    2018-03-30

    Vtiger CRM 6.3.0 – (Authenticated) Arbitrary File Upload (Metasploit)

  • webapps
  • php
  • Touhid M.Shaikh
    2018-03-30

    Open-AuditIT Professional 2.1 – Cross-Site Request Forgery

  • webapps
  • multiple
  • Nilesh Sapariya
    2018-03-30

    D-Link DIR-850L Wireless AC1200 Dual Band Gigabit Cloud Router – Authentication Bypass

  • webapps
  • php
  • Gem George
    2018-03-30

    Homematic CCU2 2.29.23 – Arbitrary File Write

  • webapps
  • cgi
  • Patrick Muench and Gregor Kopf
    2018-03-30

    Tenda W316R Wireless Router 5.07.50 – Remote DNS Change

  • webapps
  • asp
  • Todor Donev
    2018-03-30

    MiniCMS 1.10 – Cross-Site Request Forgery

  • webapps
  • php
  • zixian
    2018-03-30

    Advantech WebAccess < 8.1 - webvrpcs DrawSrv.dll Path BwBuildPath Stack-Based Buffer Overflow

  • remote
  • windows
  • Chris Lyne
    2018-03-30

    WordPress Plugin WP Security Audit Log 3.1.1 – Sensitive Information Disclosure

  • webapps
  • php
  • Colette Chamberland
    2018-03-30

    Tenda W3002R/A302/w309r Wireless Router v5.07.64_en – Remote DNS Change (PoC)

  • webapps
  • asp
  • Todor Donev
    2018-03-30

    Allok WMV to AVI MPEG DVD WMV Converter 4.6.1217 – Buffer Overflow

  • local
  • windows
  • Mohan Ravichandran and Velayutham Selvaraj
    2018-03-30

    WordPress Plugin Contact Form 7 to Database Extension 2.10.32 – CSV Injection

  • webapps
  • php
  • Stefan Broeder
    2018-03-30

    Joomla! Component AcySMS 3.5.0 – CSV Macro Injection

  • webapps
  • php
  • Sureshbabu Narvaneni
    2018-03-29

    GitStack – Unsanitized Argument Remote Code Execution (Metasploit)

  • remote
  • windows
  • Metasploit
    2018-03-29

    Cisco Smart Install – Crash (PoC)

  • dos
  • hardware
  • embedi
    2018-03-29

    Joomla! Component Fields – SQLi Remote Code Execution (Metasploit)

  • webapps
  • php
  • Metasploit
    2018-03-29

    Exodus Wallet (ElectronJS Framework) – Remote Code Execution (Metasploit)

  • remote
  • windows
  • Metasploit
    2018-03-28

    TwonkyMedia Server 7.0.11-8.5 – Persistent Cross-Site Scripting

  • webapps
  • multiple
  • Sven Fassbender
    2018-03-28

    Open-AuditIT Professional 2.1 – Cross-Site Scripting

  • webapps
  • php
  • Nilesh Sapariya
    2018-03-28

    TeamCity < 9.0.2 - Disabled Registration Bypass

  • remote
  • multiple
  • allyshka
    2018-03-28

    Tenda N11 Wireless Router 5.07.43_en_NEX01 – Remote DNS Change

  • webapps
  • hardware
  • Todor Donev
    2018-03-28

    Microsoft Windows Remote Assistance – XML External Entity Injection

  • webapps
  • windows
  • Nabeel Ahmed
    2018-03-28

    TwonkyMedia Server 7.0.11-8.5 – Directory Traversal

  • webapps
  • multiple
  • Sven Fassbender
    2018-03-27

    DLINK DCS-5020L – Remote Code Execution (PoC)

  • webapps
  • hardware
  • Fidus InfoSecurity
    2018-03-27

    ClipBucket – ‘beats_uploader’ Arbitrary File Upload (Metasploit)

  • webapps
  • php
  • Metasploit
    2018-03-26

    LabF nfsAxe 3.7 – Privilege Escalation

  • local
  • windows
  • bzyo
    2018-03-26

    Fast AVI MPEG Splitter 1.2 – Stack-Based Buffer Overflow

  • local
  • windows
  • Mohan Ravichandran and Velayutham Selvaraj
    2018-03-26

    Microsoft Windows Manager (7 x86) – Menu Management Component UAF Privilege Elevation

  • local
  • windows_x86
  • xiaodaozhi
    2018-03-26

    Acrolinx Server < 5.2.5 - Directory Traversal

  • remote
  • windows
  • Berk Dusunur
    2018-03-26

    Laravel Log Viewer < 0.13.0 - Local File Download

  • webapps
  • php
  • Haboob Team
    2018-03-23

    Dell EMC NetWorker – Denial of Service

  • dos
  • linux
  • Marek Cybul
    2018-03-23

    Crashmail 1.6 – Stack-Based Buffer Overflow (ROP)

  • local
  • linux
  • Juan Sacco
    2018-03-23

    Allok Quicktime to AVI MPEG DVD Converter 4.6.1217 – Stack-Based Buffer Overflow

  • local
  • windows
  • Mohan Ravichandran and Velayutham Selvaraj
    2018-03-23

    WM Recorder 16.8.1 – Denial of Service

  • dos
  • windows
  • bzyo
    2018-03-23

    XenForo 2 – CSS Loader Denial of Service

  • dos
  • php
  • LockedByte
    2018-03-23

    Hikvision IP Camera versions 5.2.0 – 5.3.9 (Builds 140721 < 170109) - Access Control Bypass

  • webapps
  • xml
  • Matamorphosis
    2018-03-23

    Easy Avi Divx Xvid to DVD Burner 2.9.11 – ‘.avi’ Denial of Service

  • dos
  • windows
  • Hashim Jawad
    2018-03-23

    MyBB Plugin Last User’s Threads in Profile Plugin 1.2 – Persistent Cross-Site Scripting

  • webapps
  • php
  • 0xB9
    2018-03-23

    Easy CD DVD Copy 1.3.24 – Local Buffer Overflow (SEH)

  • local
  • windows
  • Hashim Jawad
    2018-03-23

    WordPress Plugin Site Editor 1.1.1 – Local File Inclusion

  • webapps
  • php
  • Nicolas Buzy-Debat
    2018-03-23

    TL-WR720N 150Mbps Wireless N Router – Cross-Site Request Forgery

  • webapps
  • hardware
  • Mans van Someren
    2018-03-23

    Android Bluetooth – BNEP BNEP_SETUP_CONNECTION_REQUEST_MSG Out-of-Bounds Read

  • dos
  • android
  • QuarksLab
    2018-03-23

    Android Bluetooth – BNEP bnep_data_ind() Remote Heap Disclosure

  • dos
  • android
  • QuarksLab
    2018-03-22

    Linux Kernel < 4.15.4 - 'show_floppy' KASLR Address Leak

  • local
  • linux
  • Gregory Draperi
    2018-03-20

    Google Software Updater macOS – Unsafe use of Distributed Objects Privilege Escalation

  • local
  • macos
  • Google Security Research
    2018-03-20

    Microsoft Windows Kernel – ‘NtQueryVirtualMemory(MemoryMappedFilenameInformation)’ 64-bit Pool Memory Disclosure

  • dos
  • windows_x86-64
  • Google Security Research
    2018-03-20

    Coship RT3052 Wireless Router – Persistent Cross-Site Scripting

  • webapps
  • hardware
  • Sayan Chatterjee
    2018-03-20

    Microsoft Windows Kernel – ‘nt!NtWaitForDebugEvent’ 64-bit Stack Memory Disclosure

  • dos
  • windows_x86-64
  • Google Security Research