Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24443Exploits
日期 标题 类型 平台 作者
2018-02-07

Cisco ASA – Crash (PoC)
  • dos
  • hardware
    		• Sean Dillon
    2018-02-07

    Android – ‘getpidcon’ Permission Bypass in KeyStore Service
  • dos
  • android
    		• Google Security Research
    2018-02-07

    Entrepreneur Dating Script 2.0.2 – Authentication Bypass
  • webapps
  • php
    		• L0RD
    2018-02-07

    Online Test Script 2.0.7 – ‘cid’ SQL Injection
  • webapps
  • php
    		• L0RD
    2018-02-07

    Adobe Coldfusion 11.0.03.292866 – BlazeDS Java Object Deserialization Remote Code Execution
  • remote
  • windows
    		• Faisal Tameesh
    2018-02-06

    Marked2 – Local File Disclosure
  • local
  • multiple
    		• Corben Leo
    2018-02-05

    Claymore Dual GPU Miner 10.5 – Format String
  • dos
  • multiple
    		• res1n
    2018-02-05

    Apport/ABRT – ‘chroot’ Local Privilege Escalation (Metasploit)
  • local
  • linux
    		• Metasploit
    2018-02-05

    Microsoft Windows – ‘EternalRomance’/’EternalSynergy’/’EternalChampion’ SMB Remote Code Execution (Metasploit) (MS17-010)
  • remote
  • windows
    		• Metasploit
    2018-02-05

    WordPress Core – ‘load-scripts.php’ Denial of Service
  • dos
  • php
    		• Barak Tawily
    2018-02-05

    HPE iLO 4 < 2.53 - Add New Administrator User
  • remote
  • multiple
    		• skelsec
    2018-02-05

    Online Voting System – Authentication Bypass
  • webapps
  • php
    		• Giulio Comi
    2018-02-05

    NixCMS 1.0 – ‘category_id’ SQL Injection
  • webapps
  • php
    		• Bora Bozdogan
    2018-02-05

    Matrimonial Website Script 2.1.6 – ‘uid’ SQL Injection
  • webapps
  • php
    		• L0RD
    2018-02-05

    Netis WF2419 Router – Cross-Site Scripting
  • webapps
  • hardware
    		• Sajibe Kanti
    2018-02-05

    Wonder CMS 2.3.1 – ‘Host’ Header Injection
  • webapps
  • php
    		• Samrat Das
    2018-02-05

    Student Profile Management System Script 2.0.6 – Authentication Bypass
  • webapps
  • php
    		• L0RD
    2018-02-05

    Wonder CMS 2.3.1 – Unrestricted File Upload
  • webapps
  • php
    		• Samrat Das
    2018-02-05

    BOCHS 2.6-5 – Local Buffer Overflow
  • local
  • linux
    		• Juan Sacco
    2018-02-05

    Joomla! Component JSP Tickets 1.1 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-02-05

    Joomla! Component jLike 1.0 – Information Leak
  • webapps
  • php
    		• Ihsan Sencan
    2018-02-05

    Joomla! Component Zh GoogleMap 8.4.0.0 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-02-05

    Joomla! Component Zh YandexMap 6.2.1.0 – ‘id’ SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-02-05

    Joomla! Component Zh BaiduMap 3.0.0.1 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-02-05

    MalwareFox AntiMalware 2.74.0.150 – Local Privilege Escalation
  • local
  • windows
    		• Souhail Hammou
    2018-02-02

    Event Manager 1.0 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-02-02

    Joomla! Component JE PayperVideo 3.0.0 – ‘usr_plan’ SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-02-02

    IPSwitch MOVEit 8.1 < 9.4 - Cross-Site Scripting
  • webapps
  • aspx
    		• 1n3
    2018-02-02

    Advance Loan Management System – ‘id’ SQL Injection
  • webapps
  • php
    		• 8bitsec
    2018-02-02

    Real Estate Custom Script – ‘route’ SQL Injection
  • webapps
  • php
    		• 8bitsec
    2018-02-02

    Fancy Clone Script – ‘search_browse_product’ SQL Injection
  • webapps
  • php
    		• 8bitsec
    2018-02-02

    Joomla! Component JEXTN Membership 3.1.0 – ‘usr_plan’ SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-02-02

    Microsoft Windows Subsystem for Linux – ‘execve()’ Local Privilege Escalation
  • local
  • windows
    		• Saar Amar
    2018-02-02

    FiberHome AN5506 – Remote DNS Change
  • webapps
  • hardware
    		• r0ots3c
    2018-02-02

    Oracle Hospitality Simphony (MICROS) 2.7 < 2.9 - Directory Traversal
  • webapps
  • multiple
    		• Dmitry Chastuhin
    2018-02-02

    Joomla! Component JMS Music 1.1.1 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-02-02

    Joomla! Component Jimtawl 2.1.6 – Arbitrary File Upload
  • webapps
  • php
    		• Ihsan Sencan
    2018-02-02

    Joomla! Component JEXTN Classified 1.0.0 – ‘sid’ SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-02-02

    Joomla! Component JEXTN Reverse Auction 3.1.0 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2018-02-01

    Geovision Inc. IP Camera & Video – Remote Command Execution
  • remote
  • hardware
    		• bashis
    2018-02-01

    Geovision Inc. IP Camera/Video/Access Control – Multiple Remote Command Execution / Stack Overflow / Double Free / Unauthorized Access
  • remote
  • hardware
    		• bashis
    2018-02-01

    BMC Server Automation RSCD Agent – NSH Remote Command Execution (Metasploit)
  • remote
  • multiple
    		• Metasploit
    2018-02-01

    WebKit – ‘WebCore::FrameView::clientToLayoutViewportPoint’ Use-After-Free
  • dos
  • multiple
    		• Google Security Research
    2018-02-01

    WebKit – ‘detachWrapper’ Use-After-Free
  • dos
  • multiple
    		• Google Security Research
    2018-02-01

    Sync Breeze Enterprise 10.4.18 – Remote Buffer Overflow (SEH)
  • remote
  • windows
    		• Daniel Teixeira
    2018-01-30

    LabF nfsAxe 3.7 TFTP Client – Local Buffer Overflow
  • dos
  • windows
    		• Miguel Mendez Z
    2018-01-30

    System Shield 5.0.0.136 – Privilege Escalation
  • local
  • windows
    		• Parvez Anwar
    2018-01-30

    Advantech WebAccess < 8.3 - SQL Injection
  • webapps
  • windows
    		• Chris Lyne
    2018-01-30

    HPE iMC 7.3 – RMI Java Deserialization
  • remote
  • windows
    		• Chris Lyne
    2018-01-30

    Hotspot Shield – Information Disclosure
  • local
  • windows
    		• SecuriTeam