Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24745Exploits
日期 标题 类型 平台 作者
2017-08-03

DNSTracer 1.9 – Local Buffer Overflow
  • local
  • linux
    		• j0lama
    2017-08-03

    Joomla! Component StreetGuessr Game 1.1.8 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-08-02

    Joomla! Component LMS King Professional 3.2.4.0 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-08-02

    Joomla! Component PHP-Bridge 1.2.3 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-08-02

    Joomla! Component SIMGenealogy 2.1.5 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-08-02

    Entrepreneur B2B Script – ‘pid’ SQL Injection
  • webapps
  • php
    		• Meisam Monsef
    2017-08-02

    Muviko 1.0 – ‘q’ SQL Injection
  • webapps
  • php
    		• Kaan KAMIS
    2017-08-02

    EDUMOD Pro 1.3 – SQL Injection
  • webapps
  • php
    		• Kaan KAMIS
    2017-08-02

    Premium Servers List Tracker 1.0 – SQL Injection
  • webapps
  • php
    		• Kaan KAMIS
    2017-08-02

    Nitro Pro PDF Reader 11.0.3.173 – Javascript API Code Execution (Metasploit)
  • local
  • windows
    		• Metasploit
    2017-08-02

    Joomla! Component Ultimate Property Listing 1.0.2 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-08-02

    Joomla! Component Event Registration Pro Calendar 4.1.3 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-08-01

    Solarwinds Kiwi Syslog 9.6.1.6 – Denial of Service
  • dos
  • windows
    		• Guillaume Kaddouch
    2017-08-01

    JoySale 2.2.1 – Arbitrary File Upload
  • webapps
  • php
    		• Mutlu Benmutlu
    2017-08-01

    libmad 0.15.1b – ‘mp3’ Memory Corruption
  • dos
  • linux
    		• qflb.wu
    2017-08-01

    SOL.Connect ISET-mpp meter 1.2.4.2 – SQL Injection
  • webapps
  • hardware
    		• Andy Tan
    2017-08-01

    VehicleWorkshop – Arbitrary File Upload
  • webapps
  • php
    		• Touhid M.Shaikh
    2017-08-01

    VehicleWorkshop – Authentication Bypass
  • webapps
  • php
    		• Touhid M.Shaikh
    2017-08-01

    Advantech SUSIAccess < 3.0 - 'RecoveryMgmt' File Upload
  • webapps
  • jsp
    		• James Fitts
    2017-08-01

    Advantech SUSIAccess < 3.0 - Directory Traversal / Information Disclosure (Metasploit)
  • webapps
  • jsp
    		• James Fitts
    2017-08-01

    Apple macOS/iOS – ‘xpc_data’ Objects Sandbox Escape Privilege Escalation
  • local
  • multiple
    		• Google Security Research
    2017-07-31

    DivFix++ 0.34 – Denial of Service
  • dos
  • linux
    		• qflb.wu
    2017-07-31

    libao 1.2.0 – Denial of Service
  • dos
  • linux
    		• qflb.wu
    2017-07-31

    libvorbis 1.3.5 – Multiple Vulnerabilities
  • dos
  • linux
    		• qflb.wu
    2017-07-31

    Sound eXchange (SoX) 14.4.2 – Multiple Vulnerabilities
  • dos
  • linux
    		• qflb.wu
    2017-07-31

    Vorbis Tools oggenc 1.4.0 – ‘.wav’ Denial of Service
  • dos
  • linux
    		• qflb.wu
    2017-07-30

    McAfee Security Scan Plus – Remote Command Execution
  • remote
  • windows
    		• SecuriTeam
    2017-07-30

    DiskBoss Enterprise 8.2.14 – Remote Buffer Overflow
  • remote
  • windows
    		• Ahmad Mahfouz
    2017-07-30

    Jenkins < 1.650 - Java Deserialization
  • remote
  • java
    		• Janusz Piechówka
    2017-07-28

    VehicleWorkshop – SQL Injection
  • webapps
  • php
    		• Shahab Shamsi
    2017-07-28

    libjpeg-turbo 1.5.1 – Denial of Service
  • dos
  • linux
    		• qflb.wu
    2017-07-28

    LAME 3.99.5 – Multiple Vulnerabilities
  • dos
  • linux
    		• qflb.wu
    2017-07-28

    SoundTouch 1.9.2 – Multiple Vulnerabilities
  • dos
  • linux
    		• qflb.wu
    2017-07-28

    Fortinet FortiOS < 5.6.0 - Cross-Site Scripting
  • webapps
  • hardware
    		• patryk_bogdan
    2017-07-27

    Joomla! Component CCNewsLetter 2.1.9 – ‘sbid’ SQL Injection
  • webapps
  • php
    		• Shahab Shamsi
    2017-07-27

    GNU libiberty – Buffer Overflow
  • dos
  • linux
    		• Marcel Böhme
    2017-07-26

    Microsoft Windows – ‘.LNK’ Shortcut File Code Execution (Metasploit)
  • local
  • windows
    		• Yorick Koster
    2017-07-26

    Friends in War Make or Break 1.7 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-07-26

    AudioCoder 0.8.46 – Local Buffer Overflow (SEH)
  • local
  • windows
    		• Muhann4d
    2017-07-26

    Friends in War Make or Break 1.7 – Cross-Site Request Forgery (Change Admin Password)
  • webapps
  • php
    		• shinnai
    2017-07-25

    WordPress Plugin Ads Pro < 3.4 - Cross-Site Scripting / SQL Injection
  • webapps
  • php
    		• 8bitsec
    2017-07-25

    Friends in War Make or Break 1.7 – Authentication Bypass
  • webapps
  • php
    		• Adam
    2017-07-25

    WebKit JSC – ‘JSObject::putInlineSlow’ / ‘JSValue::putToPrimitive’ Universal Cross-Site Scripting
  • webapps
  • multiple
    		• Google Security Research
    2017-07-25

    WebKit JSC – ‘ObjectPatternNode::appendEntry’ Stack Use-After-Free
  • dos
  • multiple
    		• Google Security Research
    2017-07-25

    WebKit JSC – ‘ArgumentsEliminationPhase::transform’ Incorrect LoadVarargs Handling
  • dos
  • multiple
    		• Google Security Research
    2017-07-25

    WebKit JSC – ‘JSArray::appendMemcpy’ Uninitialized Memory Copy
  • dos
  • multiple
    		• Google Security Research
    2017-07-25

    WebKit JSC – ‘arrayProtoFuncSplice’ Uninitialized Memory Reference
  • dos
  • multiple
    		• Google Security Research
    2017-07-25

    WebKit JSC – ‘DFG::ByteCodeParser::flush(InlineStackEntry* inlineStackEntry)’ Incorrect Scope Register Handling
  • dos
  • multiple
    		• Google Security Research
    2017-07-24

    PaulShop – SQL Injection / Cross-Site Scripting
  • webapps
  • php
    		• BTIS Team
    2017-07-24

    Linux Kernel – ‘BadIRET’ Local Privilege Escalation
  • local
  • linux
    		• Ren Kimura