Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24745Exploits
日期 标题 类型 平台 作者
2018-04-09

WordPress Plugin Background Takeover < 4.1.4 - Directory Traversal
  • webapps
  • php
    		• Colette Chamberland
    2018-04-09

    Buddypress Xprofile Custom Fields Type 2.6.3 – Remote Code Execution
  • webapps
  • php
    		• Lenon Leite
    2018-04-09

    KYOCERA Net Admin 3.4 – Cross-Site Request Forgery (Add Admin)
  • webapps
  • linux
    		• LiquidWorm
    2018-04-09

    KYOCERA Multi-Set Template Editor 3.4 – Out-Of-Band XML External Entity Injection
  • webapps
  • xml
    		• LiquidWorm
    2018-04-09

    CyberArk Password Vault Web Access < 9.9.5 / < 9.10 / 10.1 - Remote Code Execution
  • webapps
  • json
    		• RedTeam Pentesting
    2018-04-09

    CyberArk Password Vault < 9.7 / < 10 - Memory Disclosure
  • dos
  • linux
    		• RedTeam Pentesting
    2018-04-09

    WebKit – WebAssembly Parsing Does not Correctly Check Section Order
  • dos
  • multiple
    		• Google Security Research
    2018-04-09

    PMS 0.42 – Local Stack-Based Overflow (ROP)
  • local
  • linux
    		• Juan Sacco
    2018-04-06

    LineageOS 14.1 Blueborne – Remote Code Execution
  • remote
  • android
    		• Marcin Kozlowski
    2018-04-06

    DotNetNuke DNNarticle Module 11 – Directory Traversal
  • webapps
  • windows
    		• Esmaeil Rahimian
    2018-04-06

    FiberHome VDSL2 Modem HG 150-UB – Authentication Bypass
  • webapps
  • hardware
    		• Noman Riffat
    2018-04-06

    Adobe Flash < 28.0.0.161 - Use-After-Free
  • remote
  • multiple
    		• SyFi
    2018-04-06

    Sophos Endpoint Protection Control Panel 10.7 – Weak Password Encryption
  • local
  • windows
    		• hyp3rlinx
    2018-04-06

    Sophos Endpoint Protection 10.7 – Tamper-Protection Bypass
  • local
  • windows
    		• hyp3rlinx
    2018-04-06

    GNU Beep 1.3 – ‘HoleyBeep’ Local Privilege Escalation
  • local
  • linux
    		• Pirhack
    2018-04-06

    Cobub Razor 0.7.2 – Cross-Site Request Forgery
  • webapps
  • php
    		• ppb
    2018-04-05

    WordPress Plugin Activity Log 2.4.0 – Cross-Site Scripting
  • webapps
  • php
    		• Stefan Broeder
    2018-04-05

    GetSimple CMS 3.3.13 – Cross-Site Scripting
  • webapps
  • php
    		• Sureshbabu Narvaneni
    2018-04-05

    Z-Blog 1.5.1.1740 – Full Path Disclosure
  • webapps
  • php
    		• zzw
    2018-04-05

    Z-Blog 1.5.1.1740 – Cross-Site Scripting
  • webapps
  • php
    		• zzw
    2018-04-05

    YzmCMS 3.6 – Cross-Site Scripting
  • webapps
  • php
    		• zzw
    2018-04-05

    Microsoft Windows – Multiple Use-After-Free Issues in jscript Array Methods
  • dos
  • windows
    		• Google Security Research
    2018-04-05

    WebRTC – Private IP Leakage (Metasploit)
  • webapps
  • multiple
    		• Dhiraj Mishra
    2018-04-05

    Microsoft Windows Defender – ‘mpengine.dll’ Memory Corruption
  • dos
  • windows
    		• Google Security Research
    2018-04-05

    Joomla! Component JS Jobs 1.2.0 – Cross-Site Scripting
  • webapps
  • php
    		• Sureshbabu Narvaneni
    2018-04-05

    MyBB Plugin Downloads 2.0.3 – Cross-Site Scripting
  • webapps
  • php
    		• 0xB9
    2018-04-04

    ProcessMaker – Plugin Upload (Metasploit)
  • webapps
  • php
    		• Metasploit
    2018-04-03

    Microsoft Edge Chakra JIT – Stack-to-Heap Copy (Incomplete Fix) (1)
  • dos
  • windows
    		• Google Security Research
    2018-04-03

    Google Chrome V8 – ‘Genesis::InitializeGlobal’ Out-of-Bounds Read/Write
  • dos
  • multiple
    		• Google Security Research
    2018-04-03

    Google Chrome V8 – ‘ElementsAccessorBase::CollectValuesOrEntriesImpl’ Type Confusion
  • dos
  • multiple
    		• Google Security Research
    2018-04-03

    Microsoft Edge Chakra JIT – Stack-to-Heap Copy (Incomplete Fix) (2)
  • dos
  • windows
    		• Google Security Research
    2018-04-02

    Secutech RiS-11/RiS-22/RiS-33 – Remote DNS Change
  • webapps
  • hardware
    		• Todor Donev
    2018-04-02

    OpenCMS 10.5.3 – Cross-Site Scripting
  • webapps
  • php
    		• Sureshbabu Narvaneni
    2018-04-02

    OpenCMS 10.5.3 – Cross-Site Request Forgery
  • webapps
  • php
    		• Sureshbabu Narvaneni
    2018-04-02

    LifeSize ClearSea 3.1.4 – Directory Traversal
  • webapps
  • windows
    		• rsp3ar
    2018-04-02

    WebLog Expert Enterprise 9.4 – Privilege Escalation
  • local
  • windows
    		• bzyo
    2018-04-02

    DLink DIR-601 – Admin Password Disclosure
  • webapps
  • hardware
    		• Kevin Randall
    2018-04-02

    VideoFlow Digital Video Protection (DVP) 2.10 – Hard-Coded Credentials
  • webapps
  • hardware
    		• LiquidWorm
    2018-04-02

    VideoFlow Digital Video Protection (DVP) 2.10 – Directory Traversal
  • webapps
  • perl
    		• LiquidWorm
    2018-04-02

    WampServer 3.1.2 – Cross-Site Request Forgery
  • webapps
  • php
    		• Vipin Chaudhary
    2018-04-02

    WampServer 3.1.1 – Cross-Site Scripting / Cross-Site Request Forgery
  • webapps
  • php
    		• Vipin Chaudhary
    2018-04-02

    Frog CMS 0.9.5 – Cross-Site Request Forgery (Add User)
  • webapps
  • php
    		• Samrat Das
    2018-04-01

    Sync Breeze Enterprise 10.4.18 – Denial of-Service (PoC)
  • dos
  • windows
    		• Mr Bruce
    2018-03-30

    D-Link DIR-850L Wireless AC1200 Dual Band Gigabit Cloud Router – Authentication Bypass
  • webapps
  • php
    		• Gem George
    2018-03-30

    MiniCMS 1.10 – Cross-Site Request Forgery
  • webapps
  • php
    		• zixian
    2018-03-30

    Tenda W316R Wireless Router 5.07.50 – Remote DNS Change
  • webapps
  • asp
    		• Todor Donev
    2018-03-30

    Homematic CCU2 2.29.23 – Arbitrary File Write
  • webapps
  • cgi
    		• Patrick Muench and Gregor Kopf
    2018-03-30

    Advantech WebAccess < 8.1 - webvrpcs DrawSrv.dll Path BwBuildPath Stack-Based Buffer Overflow
  • remote
  • windows
    		• Chris Lyne
    2018-03-30

    Open-AuditIT Professional 2.1 – Cross-Site Request Forgery
  • webapps
  • multiple
    		• Nilesh Sapariya
    2018-03-30

    Systematic SitAware – NVG Denial of Service
  • dos
  • xml
    		• 2u53