Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24443Exploits
日期 标题 类型 平台 作者
2017-09-12

WebKit JSC – ‘BytecodeGenerator::emitGetByVal’ Incorrect Optimization (1)
  • dos
  • multiple
    		• Google Security Research
    2017-09-12

    Jungo DriverWizard WinDriver < 12.4.0 - Kernel Pool Overflow / Local Privilege Escalation (2)
  • local
  • windows
    		• mr_me
    2017-09-12

    D-Link DIR-8xx Routers – Local Firmware Upload
  • webapps
  • hardware
    		• embedi
    2017-09-12

    inClick Cloud Server 5.0 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-09-12

    D-Link DIR-8xx Routers – Root Remote Code Execution
  • webapps
  • hardware
    		• embedi
    2017-09-12

    Gr8 Multiple Search Engine Script 1.0 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-09-12

    D-Link DIR-8xx Routers – Leak Credentials
  • webapps
  • hardware
    		• embedi
    2017-09-12

    FoodStar 1.0 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-09-12

    Consumer Review Script 1.0 – SQL Injection
  • webapps
  • php
    		• 8bitsec
    2017-09-12

    osTicket 1.10 – SQL Injection (PoC)
  • webapps
  • php
    		• Mehmet Ince
    2017-09-12

    XYZ Auto Classifieds 1.0 – SQL Injection
  • webapps
  • php
    		• 8bitsec
    2017-09-11

    iTech StockPhoto Script 2.02 – SQL Injection
  • webapps
  • php
    		• 8bitsec
    2017-09-11

    iTech Book Store Script 2.02 – SQL Injection
  • webapps
  • php
    		• 8bitsec
    2017-09-11

    JobStar Monster Clone Script 1.0 – SQL Injection
  • webapps
  • php
    		• 8bitsec
    2017-09-11

    PHP Dashboards NEW 4.4 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-09-11

    PHP Dashboards NEW 4.4 – Arbitrary File Read
  • webapps
  • php
    		• Ihsan Sencan
    2017-09-11

    tcprewrite – Heap Buffer Overflow
  • dos
  • linux
    		• FarazPajohan
    2017-09-11

    WiseGiga NAS – Multiple Vulnerabilities
  • webapps
  • hardware
    		• Pierre Kim
    2017-09-11

    Hanbanggaoke IP Camera – Arbitrary Password Change
  • webapps
  • hardware
    		• SecuriTeam
    2017-09-11

    Docker Daemon – Unprotected TCP Socket (Metasploit)
  • remote
  • Python
    		• Metasploit
    2017-09-11

    Nimble Professional 1.0 – Cross-Site Request Forgery (Update Admin)
  • webapps
  • php
    		• Ihsan Sencan
    2017-09-11

    AirStar Airbnb Clone Script 1.0 – SQL Injection
  • webapps
  • php
    		• 8bitsec
    2017-09-11

    EduStar Udemy Clone Script 1.0 – SQL Injection
  • webapps
  • php
    		• 8bitsec
    2017-09-09

    Just Dial Marketplace 1.0 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-09-09

    Job Board Software 1.0 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-09-09

    Babysitter Website Script 1.0 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-09-09

    Escort Marketplace 1.0 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-09-09

    My Builder Marketplace 1.0 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-09-09

    Topsites Script 1.0 – Cross-Site Request Forgery / PHP Code Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-09-09

    Law Firm 1.0 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-09-09

    Restaurant Website Script 1.0 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-09-09

    Professional Service Booking 1.0 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-09-09

    Online Print Business 1.0 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-09-08

    Apache Struts 2.0.1 < 2.3.33 / 2.5 < 2.5.10 - Arbitrary Code Execution
  • remote
  • multiple
    		• brianwrf
    2017-09-07

    HiSilicon DVR Devices – Remote Code Execution
  • remote
  • hardware
    		• Istvan Toth
    2017-09-07

    Huawei HG255s – Directory Traversal
  • webapps
  • hardware
    		• Ahmet Mersin
    2017-09-07

    McAfee LiveSafe 16.0.3 – Man In The Middle Registry Modification Leading to Remote Command Execution
  • webapps
  • hardware
    		• SecuriTeam
    2017-09-07

    Roteador Wireless Intelbras WRN150 – Cross-Site Scripting
  • webapps
  • hardware
    		• Elber Tavares
    2017-09-07

    EzInvoice 6.02 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-09-07

    EzBan 5.3 – ‘id’ SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-09-07

    Gh0st Client (C2 Server) – Remote Buffer Overflow (Metasploit)
  • remote
  • windows
    		• Metasploit
    2017-09-07

    Online Invoice System 3.0 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-09-06

    Pay Banner Text Link Ad 1.0.6.1 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-09-06

    Pay Banner Text Link Ad 1.0.6.1 – Cross-Site Request Forgery (Update Admin)
  • webapps
  • php
    		• Ihsan Sencan
    2017-09-06

    Advertiz PHP Script 0.2 – Cross-Site Request Forgery (Update Admin)
  • webapps
  • php
    		• Ihsan Sencan
    2017-09-06

    Cory Support – ‘pr’ SQL Injection
  • webapps
  • php
    		• v3n0m
    2017-09-06

    Apache Struts 2.5 < 2.5.12 - REST Plugin XStream Remote Code Execution
  • remote
  • linux
    		• Warflop
    2017-09-06

    Tor (Linux) – X11 Linux Sandbox Breakout
  • local
  • linux
    		• Google Security Research
    2017-09-06

    Jungo DriverWizard WinDriver < 12.4.0 - Kernel Out-of-Bounds Write Privilege Escalation
  • local
  • windows
    		• mr_me
    2017-09-06

    Jungo DriverWizard WinDriver < 12.4.0 - Kernel Pool Overflow / Local Privilege Escalation (1)
  • local
  • windows
    		• mr_me