Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2023-04-06	Osprey Pump Controller 1.0.1 – Authentication Bypass Credentials Modification	remote	hardware	LiquidWorm
2023-04-06	Employee Task Management System v1.0 – SQL Injection on edit-task.php	webapps	php	Muhammad Navaid Zafar Ansari
2023-04-06	atrocore 1.5.25 User interaction – Unauthenticated File upload – RCE	webapps	php	nu11secur1ty
2023-04-06	Osprey Pump Controller v1.0.1 – Unauthenticated Reflected XSS	remote	hardware	LiquidWorm
2023-04-06	Employee Task Management System v1.0 – SQL Injection on (task-details.php?task_id=?)	webapps	php	Muhammad Navaid Zafar Ansari
2023-04-06	Dompdf 1.2.1 – Remote Code Execution (RCE)	webapps	php	Ravindu Wickramasinghe
2023-04-06	Osprey Pump Controller 1.0.1 – (userName) Blind Command Injection	remote	hardware	LiquidWorm
2023-04-06	Employee Task Management System v1.0 – Broken Authentication	webapps	php	Muhammad Navaid Zafar Ansari
2023-04-06	Arris Router Firmware 9.1.103 – Remote Code Execution (RCE) (Authenticated)	remote	hardware	Yerodin Richards
2023-04-06	Osprey Pump Controller 1.0.1 – (pseudonym) Semi-blind Command Injection	remote	hardware	LiquidWorm
2023-04-06	Auto Dealer Management System v1.0 – SQL Injection on manage_user.php	webapps	php	Muhammad Navaid Zafar Ansari
2023-04-06	TitanFTP 2.0.1.2102 – Path traversal to Remote Code Execution (RCE)	remote	windows	Andreas Finstad
2023-04-06	Osprey Pump Controller 1.0.1 – Administrator Backdoor Access	remote	hardware	LiquidWorm
2023-04-06	Auto Dealer Management System v1.0 – SQL Injection in sell_vehicle.php	webapps	php	Muhammad Navaid Zafar Ansari
2023-04-06	FileZilla Client 3.63.1 – ‘TextShaping.dl’ DLL Hijacking	local	windows	Bilal Qureshi
2023-04-06	Osprey Pump Controller 1.0.1 – Unauthenticated File Disclosure	remote	hardware	LiquidWorm
2023-04-06	Auto Dealer Management System v1.0 – SQL Injection	webapps	php	Muhammad Navaid Zafar Ansari
2023-04-06	EasyNas 1.1.0 – OS Command Injection	remote	hardware	Ivan Spiridonov
2023-04-06	craftercms 4.x.x – CORS	webapps	multiple	nu11secur1ty
2023-04-06	Osprey Pump Controller 1.0.1 – Predictable Session Token / Session Hijack	remote	hardware	LiquidWorm
2023-04-06	Auto Dealer Management System 1.0 – Broken Access Control Exploit	webapps	php	Muhammad Navaid Zafar Ansari
2023-04-06	Purchase Order Management-1.0 – Local File Inclusion	webapps	php	nu11secur1ty
2023-04-06	ChurchCRM v4.5.3-121fcc1 – SQL Injection	webapps	php	nu11secur1ty
2023-04-06	Best pos Management System v1.0 – Remote Code Execution (RCE) on File Upload	webapps	php	Ahmed Ismail
2023-04-06	WIMAX SWC-5100W Firmware V(1.11.0.1 :1.9.9.4) – Authenticated RCE	remote	hardware	Momen Eldawakhly
2023-04-06	flatnux 2021-03.25 – Remote Code Execution (Authenticated)	webapps	php	Ömer Hasan Durmuş
2023-04-06	Best pos Management System v1.0 – SQL Injection	webapps	php	Ahmed Ismail
2023-04-06	HospitalRun 1.0.0-beta – Local Root Exploit for macOS	local	macos	Jean Pereira
2023-04-06	ABUS Security Camera TVIP 20000-21150 – LFI, RCE and SSH Root Access	remote	hardware	d1g@segfault.net
2023-04-06	Kimai-1.30.10 – SameSite Cookie-Vulnerability session hijacking	webapps	php	nu11secur1ty
2023-04-06	Unified Remote 3.13.0 – Remote Code Execution (RCE)	remote	windows	H4rk3nz0
2023-04-06	pdfkit v0.8.7.2 – Command Injection	local	ruby	UNICORD
2023-04-06	POLR URL 2.3.0 – Shortener Admin Takeover	webapps	php	p4kl0nc4t
2023-04-05	CKEditor 5 35.4.0 – Cross-Site Scripting (XSS)	webapps	php	Manish Pathak
2023-04-05	D-Link DIR-846 – Remote Command Execution (RCE) vulnerability	remote	hardware	Françoa Taffarel
2023-04-05	SOUND4 LinkAndShare Transmitter 1.1.2 – Format String Stack Buffer Overflow	remote	hardware	LiquidWorm
2023-04-05	Bus Pass Management System 1.0 – Stored Cross-Site Scripting (XSS)	webapps	php	Matteo Conti
2023-04-05	Answerdev 1.0.3 – Account Takeover	webapps	go	Eduardo Pérez-Malumbres Cervera
2023-04-05	Calendar Event Multi View 1.4.07 – Unauthenticated Arbitrary Event Creation to Cross-Site Scripting (XSS)	webapps	php	Mostafa Farzaneh
2023-04-05	ImageMagick 7.1.0-49 – DoS	dos	php	nu11secur1ty
2023-04-05	zstore 6.6.0 – Cross-Site Scripting (XSS)	webapps	php	nu11secur1ty
2023-04-05	ERPNext 12.29 – Cross-Site Scripting (XSS)	webapps	java	Patrick Dean Ramos / Nathu Nandwani / Junnair Manla
2023-04-05	Kardex Mlog MCC 5.7.12 – RCE (Remote Code Execution)	remote	windows	Patrick Hener
2023-04-05	BTCPay Server v1.7.4 – HTML Injection	webapps	multiple	Manojkumar J
2023-04-05	projectSend r1605 – Remote Code Exectution RCE	webapps	php	Mirabbas Ağalarov
2023-04-05	itech TrainSmart r1044 – SQL injection	webapps	php	Adrian Bondocea
2023-04-05	Secure Web Gateway 10.2.11 – Cross-Site Scripting (XSS)	webapps	multiple	RedTeam Pentesting GmbH
2023-04-05	GNU screen v4.9.0 – Privilege Escalation	local	linux	Manuel Andreas
2023-04-05	PhotoShow 3.0 – Remote Code Execution	webapps	php	LSCP Responsible Disclosure Lab
2023-04-05	Responsive FileManager 9.9.5 – Remote Code Execution (RCE)	webapps	php	Galoget Latorre