Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2018-01-08	SonicWall NSA 6600/5600/4600/3600/2600/250M – Multiple Vulnerabilities	webapps	hardware	Vulnerability-Lab
2018-01-08	Synology Photostation < 6.7.2-3429 - Multiple Vulnerabilities	webapps	php	GulfTech Security
2018-01-08	Photos in Wifi 1.0.1 – Path Traversal	webapps	ios	Vulnerability-Lab
2018-01-08	BarcodeWiz ActiveX Control < 6.7 - Buffer Overflow (PoC)	dos	windows	hyp3rlinx
2018-01-08	Synology DiskStation Manager (DSM) < 6.1.3-15152 - 'forget_passwd.cgi' User Enumeration	webapps	cgi	Steve Kaun
2018-01-08	DiskBoss Enterprise 8.5.12 – Denial of Service	dos	windows	Ahmad Mahfouz
2018-01-08	Sync Breeze Enterprise 10.1.16 – Denial of Service	dos	windows	Ahmad Mahfouz
2018-01-05	Cisco IOS – Remote Code Execution	remote	hardware	Artem Kondratenko
2018-01-05	VMware Workstation – ALSA Config File Local Privilege Escalation (Metasploit)	local	linux	Metasploit
2018-01-05	Ayukov NFTP FTP Client 2.0 – Remote Buffer Overflow (Metasploit)	remote	windows	Metasploit
2018-01-05	Gespage 7.4.8 – SQL Injection	webapps	jsp	Sysdream
2018-01-05	Microsoft Windows win32k – Using SetClassLong to Switch Between CS_CLASSDC and CS_OWNDC Corrupts DC Cache	dos	windows	Google Security Research
2018-01-05	GetGo Download Manager 5.3.0.2712 – ‘Proxy’ Buffer Overflow	dos	windows	devcoinfet
2018-01-05	gps-server.net GPS Tracking Software < 3.1 - Multiple Vulnerabilities	webapps	php	Noman Riffat
2018-01-04	Xplico – Remote Code Execution (Metasploit)	remote	linux	Mehmet Ince
2018-01-04	Linksys WVBR0-25 – User-Agent Command Execution (Metasploit)	remote	hardware	Metasploit
2018-01-03	Kingsoft Antivirus/Internet Security 9+ – Local Privilege Escalation	local	windows	mr_me
2018-01-03	WordPress Plugin Smart Google Code Inserter < 3.5 - Authentication Bypass / SQL Injection	webapps	php	Benjamin Lim
2018-01-03	WDMyCloud < 2.30.165 - Multiple Vulnerabilities	remote	hardware	GulfTech Security
2018-01-03	D-Link DNS-320 ShareCenter < 1.06 - Backdoor Access	remote	hardware	GulfTech Security
2018-01-03	Oracle WebLogic < 10.3.6 - 'wls-wsat' Component Deserialisation Remote Command Execution	remote	multiple	Kevin Kirsche
2018-01-03	Multiple CPUs – ‘Spectre’ Information Disclosure	local	multiple	Multiple
2018-01-03	EMC xPression 4.5SP1 Patch 13 – ‘model.jobHistoryId’ SQL Injection	webapps	multiple	Pawel Gocyla
2018-01-01	Apple macOS – IOHIDSystem Kernel Read/Write	dos	macos	Siguza
2018-01-01	Cambium ePMP1000 – ‘get_chart’ Shell via Command Injection (Metasploit)	remote	cgi	Metasploit
2018-01-01	Cambium ePMP1000 – ‘ping’ Shell via Command Injection (Metasploit)	remote	unix	Metasploit
2018-01-01	HP Mercury LoadRunner Agent magentproc.exe – Remote Command Execution (Metasploit)	remote	windows	Metasploit
2017-12-31	D3DGear 5.00 Build 2175 – Buffer Overflow (PoC)	dos	windows	bzyo
2017-12-31	PHP Melody 2.7.1 – ‘playlist’ SQL Injection	webapps	php	Ahmad Mahfouz
2017-12-29	NetTransport 2.96L – Remote Buffer Overflow (DEP Bypass)	remote	windows	Aloyce J. Makalanga
2017-12-28	ALLMediaServer 0.95 – Remote Buffer Overflow (Metasploit)	remote	windows	Anurag Srivastava
2017-12-27	Telesquare SKT LTE Router SDT-CS3B1 – Information Disclosure	webapps	hardware	LiquidWorm
2017-12-27	Telesquare SKT LTE Router SDT-CS3B1 – Denial of Service	dos	hardware	LiquidWorm
2017-12-27	Telesquare SKT LTE Router SDT-CS3B1 – Cross-Site Request Forgery	webapps	hardware	LiquidWorm
2017-12-27	Easy!Appointments 1.2.1 – Cross-Site Scripting	webapps	php	LiquidWorm
2017-12-27	Xerox DC260 EFI Fiery Controller Webtools 2.0 – Arbitrary File Disclosure	webapps	php	LiquidWorm
2017-12-27	Sony Playstation 4 (PS4) 4.05 – ‘Jailbreak’ WebKit / ‘NamedObj ‘ Kernel Loader	local	hardware	Specter
2017-12-27	ALLMediaServer 0.95 – Buffer Overflow (PoC)	dos	windows	Aloyce J. Makalanga
2017-12-27	DotNetNuke DreamSlider 01.01.02 – Arbitrary File Download (Metasploit)	webapps	aspx	Glafkos Charalambous
2017-12-27	SAP BusinessObjects launch pad – Server-Side Request Forgery	webapps	multiple	Ahmad Mahfouz
2017-12-27	SysGauge Server 3.6.18 – Denial of Service	dos	windows	Ahmad Mahfouz
2017-12-26	Trustwave SWG 11.8.0.27 – SSH Unauthorized Access	remote	linux	SecuriTeam
2017-12-26	SilverStripe CMS 3.6.2 – CSV Excel Macro Injection	webapps	php	Ishaq Mohammed
2017-12-26	Sendroid < 6.5.0 - SQL Injection	webapps	php	Onwuka Gideon
2017-12-26	Biometric Shift Employee Management System 3.0 – Local File Disclosure	webapps	php	Ihsan Sencan
2017-12-26	Joomla! Component JEXTN FAQ Pro 4.0.0 – ‘id’ SQL Injection	webapps	php	Ihsan Sencan
2017-12-26	Oracle WebLogic Server 10.3.6.0.0 / 12.x – Remote Command Execution	remote	multiple	1337g
2017-12-26	GetGo Download Manager 5.3.0.2712 – Buffer Overflow	dos	windows	Aloyce J. Makalanga
2017-12-26	Ubiquiti UniFi Video 3.7.3 – Local Privilege Escalation	local	windows	Julien Ahrens
2017-12-25	Huawei Router HG532 – Arbitrary Command Execution	webapps	hardware	anonymous