Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2017-11-27	ZTE ZXDSL 831CII – Improper Access Restrictions	webapps	hardware	Ibad Shah
2017-11-27	Diving Log 6.0 – XML External Entity Injection	local	windows	Trent Gordon
2017-11-27	Exim 4.89 – ‘BDAT’ Denial of Service	dos	multiple	meh
2017-11-27	Microsoft Edge Chakra JIT – ‘GlobOpt::OptTagChecks’ Must Consider IsLoopPrePass Properly	dos	windows	Google Security Research
2017-11-27	Microsoft Edge Chakra JIT – Incorrect Function Declaration Scope	dos	windows	Google Security Research
2017-11-25	ALLPlayer 7.5 – Local Buffer Overflow (SEH Unicode)	local	windows	sickness
2017-11-24	Linux Kernel – ‘mincore()’ Uninitialized Kernel Heap Page Disclosure	dos	linux	Google Security Research
2017-11-23	Linux Kernel (Ubuntu 17.04) – ‘XFRM’ Local Privilege Escalation	local	linux	SecuriTeam
2017-11-22	WebKit – ‘WebCore::FormSubmission::create’ Use-After-Free	dos	multiple	Google Security Research
2017-11-22	WebKit – ‘WebCore::RenderObject::previousSibling’ Use-After-Free	dos	multiple	Google Security Research
2017-11-22	WebKit – ‘WebCore::DocumentLoader::frameLoader’ Use-After-Free	dos	multiple	Google Security Research
2017-11-22	WebKit – ‘WebCore::Style::TreeResolver::styleForElement’ Use-After-Free	dos	multiple	Google Security Research
2017-11-22	WebKit – ‘WebCore::SVGPatternElement::collectPatternAttributes’ Out-of-Bounds Read	dos	multiple	Google Security Research
2017-11-22	WebKit – ‘WebCore::SimpleLineLayout::RunResolver::runForPoint’ Out-of-Bounds Read	dos	multiple	Google Security Research
2017-11-22	Winamp Pro 5.66.Build.3512 – Denial of Service	dos	windows	R.Yavari
2017-11-22	WebKit – ‘WebCore::RenderText::localCaretRect’ Out-of-Bounds Read	dos	multiple	Google Security Research
2017-11-22	KMPlayer 4.2.2.4 – Denial of Service	dos	windows	R.Yavari
2017-11-22	WebKit – ‘WebCore::AXObjectCache::performDeferredCacheUpdate’ Use-After-Free	dos	multiple	Google Security Research
2017-11-22	WebKit – ‘WebCore::PositionIterator::decrement’ Use-After-Free	dos	multiple	Google Security Research
2017-11-22	WebKit – ‘WebCore::InputType::element’ Use-After-Free (2)	dos	multiple	Google Security Research
2017-11-22	WebKit – ‘WebCore::TreeScope::documentScope’ Use-After-Free	dos	multiple	Google Security Research
2017-11-21	Microsoft Windows 10 – ‘nt!NtQueryDirectoryFile (luafv!LuafvCopyDirectoryEntry)’ Pool Memory Disclosure	dos	windows	Google Security Research
2017-11-21	Vonage VDV-23 – Denial of Service	dos	hardware	Nu11By73
2017-11-21	DblTek – Multiple Vulnerabilities	webapps	linux	SecuriTeam
2017-11-20	Microsoft Office – OLE Remote Code Execution	remote	windows	embedi
2017-11-20	Microsoft Windows 10 – CiSetFileCache TOCTOU Security Feature Bypass	local	windows	Google Security Research
2017-11-20	iOS < 11.1 / tvOS < 11.1 / watchOS < 4.1 - Denial of Service	dos	ios	Russian Otter
2017-11-17	Icon Time Systems RTC-1000 Firmware 2.5.7458 – Cross-Site Scripting	webapps	hardware	Keith Thome
2017-11-16	VX Search 10.2.14 – ‘Proxy’ Local Buffer Overflow (SEH)	local	windows	wetw0rk
2017-11-16	Zeta Components Mail 1.8.1 – Remote Code Execution	webapps	php	MalwareBenchmark
2017-11-16	Microsoft Edge Chakra: JIT – ‘OP_Memset’ Type Confusion	dos	windows	Google Security Research
2017-11-16	Microsoft Edge Chakra: JIT – ‘Lowerer::LowerBoundCheck’ Incorrect Integer Overflow Check	dos	windows	Google Security Research
2017-11-16	Microsoft Edge Chakra JIT – Type Confusion with switch Statements	dos	windows	Google Security Research
2017-11-16	Microsoft Edge – ‘Object.setPrototypeOf’ Memory Corruption	dos	windows	Google Security Research
2017-11-16	Vonage VDV23 – Cross-Site Scripting	webapps	hardware	Nu11By73
2017-11-16	LanSweeper 6.0.100.75 – Cross-Site Scripting	webapps	aspx	Miguel Mendez Z
2017-11-16	TP-Link TL-WR740N – Cross-Site Scripting	webapps	hardware	bl00dy
2017-11-15	CommuniGatePro 6.1.16 – Cross-Site Scripting	webapps	multiple	Boumediene KADDOUR
2017-11-14	Dup Scout Enterprise 10.0.18 – ‘Login’ Remote Buffer Overflow	remote	windows	sickness
2017-11-14	PSFTPd Windows FTP Server 10.0.4 Build 729 – Log Injection / Use-After-Free	dos	windows	X41 D-Sec GmbH
2017-11-14	D-Link DIR-850L – OS Command Execution (Metasploit)	remote	linux_mips	Metasploit
2017-11-14	D-Link DIR-605L < 2.08 - Denial of Service	dos	hardware	Enrique Castillo
2017-11-13	Ulterius Server < 1.9.5.0 - Directory Traversal	remote	windows	Rick Osgood
2017-11-13	Kirby CMS < 2.5.7 - Cross-Site Scripting	webapps	php	Ishaq Mohammed
2017-11-13	IKARUS anti.virus 2.16.7 – ‘ntguard_x64’ Local Privilege Escalation	local	windows_x86-64	Parvez Anwar
2017-11-13	Web Viewer 1.0.0.193 (Samsung SRN-1670D) – Unrestricted File Upload	webapps	php	0xFFFFFF
2017-11-11	osCommerce 2.3.4.1 – Arbitrary File Upload	webapps	php	Simon Scannell
2017-11-11	MyBB 1.8.13 – Cross-Site Scripting	webapps	php	Pabstersac
2017-11-11	MyBB 1.8.13 – Remote Code Execution	webapps	php	Pabstersac
2017-11-10	Symantec Endpoint Protection 12.1 – Tamper-Protection Bypass	local	windows	hyp3rlinx