Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2017-06-02	Disk Sorter 9.7.14 – ‘Input Directory’ Local Buffer Overflow (PoC)	dos	windows	n3ckD_
2017-06-01	WebKit – ‘Element::setAttributeNodeNS’ Use-After-Free	dos	multiple	Google Security Research
2017-06-01	CMS Web-Gooroo < 1.141 - Multiple Vulnerabilities	webapps	php	Kaimi
2017-06-01	WebKit – ‘Document::prepareForDestruction’ / ‘CachedFrame’ Universal Cross-Site Scripting	webapps	multiple	Google Security Research
2017-06-01	WebKit – ‘CachedFrameBase::restore’ Universal Cross-Site Scripting	webapps	multiple	Google Security Research
2017-06-01	WebKit – CachedFrame does not Detach Openers Universal Cross-Site Scripting	webapps	multiple	Google Security Research
2017-06-01	WebKit JSC – Incorrect Check in emitPutDerivedConstructorToArrowFunctionContextScope	dos	multiple	Google Security Research
2017-06-01	WebKit JSC – ‘JSObject::ensureLength’ ensureLengthSlow Check Failure	dos	linux	Google Security Research
2017-06-01	Riverbed SteelHead VCX 9.6.0a – Arbitrary File Read	webapps	linux	Gregory Draperi
2017-05-31	Piwigo Plugin Facetag 0.0.3 – Cross-Site Scripting	webapps	php	Touhid M.Shaikh
2017-05-31	OV3 Online Administration 3.0 – SQL Injection	webapps	php	LiquidWorm
2017-05-31	OV3 Online Administration 3.0 – Remote Code Execution	webapps	php	LiquidWorm
2017-05-31	OV3 Online Administration 3.0 – Directory Traversal	webapps	php	LiquidWorm
2017-05-30	IBM Informix Dynamic Server / Informix Open Admin Tool – DLL Injection / Remote Code Execution / Heap Buffer Overflow	webapps	windows	SecuriTeam
2017-05-30	KEMP LoadMaster 7.135.0.13245 – Persistent Cross-Site Scripting / Remote Code Execution	webapps	multiple	SecuriTeam
2017-05-30	Trend Micro Deep Security 6.5 – XML External Entity Injection / Local Privilege Escalation / Remote Code Execution	webapps	xml	SecuriTeam
2017-05-30	Microsoft MsMpEng – Remote Use-After-Free Due to Design Issue in GC Engine	dos	windows	Google Security Research
2017-05-30	TiEmu 2.08 – Local Buffer Overflow	local	windows	Juan Sacco
2017-05-30	uc-http Daemon – Local File Inclusion / Directory Traversal	webapps	hardware	Project Insecurity
2017-05-30	Piwigo Plugin Facetag 0.0.3 – SQL Injection	webapps	php	Touhid M.Shaikh
2017-05-30	TerraMaster F2-420 NAS TOS 3.0.30 – Root Remote Code Execution	webapps	php	Simone Margaritelli
2017-05-30	Microsoft MsMpEng – Use-After-Free via Saved Callers	dos	windows	Google Security Research
2017-05-29	Samba 3.5.0 < 4.4.14/4.5.10/4.6.4 - 'is_known_pipename()' Arbitrary Module Load (Metasploit)	remote	linux	Metasploit
2017-05-29	Octopus Deploy – (Authenticated) Code Execution (Metasploit)	remote	windows	Metasploit
2017-05-29	WordPress Plugin Huge-IT Video Gallery 2.0.4 – SQL Injection	webapps	php	defensecode
2017-05-29	Microsoft MsMpEng – Multiple Crashes While Scanning Malformed Files	dos	windows	Google Security Research
2017-05-28	CERIO DT-100G-N/DT-300N/CW-300N – Multiple Vulnerabilities	remote	hardware	LiquidWorm
2017-05-26	Home Web Server 1.9.1 (build 164) – Remote Code Execution	remote	windows	Guillaume Kaddouch
2017-05-26	Google Chrome 60.0.3080.5 V8 JavaScript Engine – Out-of-Bounds Write	remote	linux	halbecaf
2017-05-26	Microsoft MsMpEng – Multiple Problems Handling ntdll!NtControlChannel Commands	local	windows	Google Security Research
2017-05-26	JAD Java Decompiler 1.5.8e – Local Buffer Overflow	local	linux	Juan Sacco
2017-05-26	QWR-1104 Wireless-N Router – Cross-Site Scripting	webapps	hardware	Touhid M.Shaikh
2017-05-25	Sandboxie 5.18 – Local Denial of Service	dos	windows	ScrR1pTK1dd13
2017-05-25	Mozilla Firefox < 53 - 'ConvolvePixel' Memory Disclosure	dos	multiple	Google Security Research
2017-05-25	Mozilla Firefox < 53 - 'gfxTextRun' Out-of-Bounds Read	dos	multiple	Google Security Research
2017-05-25	Skia Graphics Library – Heap Overflow due to Rounding Error in SkEdge::setLine	dos	multiple	Google Security Research
2017-05-25	Apple Safari 10.0.3(12602.4.8) / WebKit – ‘HTMLObjectElement::updateWidget’ Universal Cross-Site Scripting	webapps	multiple	Google Security Research
2017-05-25	WebKit – ‘FrameLoader::clear’ Stealing Variables via Page Navigation	webapps	multiple	Google Security Research
2017-05-25	WebKit – ‘enqueuePageshowEvent’ / ‘enqueuePopstateEvent’ Universal Cross-Site Scripting	webapps	multiple	Google Security Research
2017-05-25	WebKit – ‘ContainerNode::parserInsertBefore’ Universal Cross-Site Scripting	webapps	multiple	Google Security Research
2017-05-25	WebKit – ‘ContainerNode::parserRemoveChild’ Universal Cross-Site Scripting	webapps	multiple	Google Security Research
2017-05-25	Apple WebKit / Safari 10.0.3(12602.4.8) – ‘Editor::Command::execute’ Universal Cross-Site Scripting	webapps	multiple	Google Security Research
2017-05-25	Apple WebKit / Safari 10.0.3(12602.4.8) – ‘WebCore::FrameView::scheduleRelayout’ Use-After-Free	dos	multiple	Google Security Research
2017-05-25	Sophos Cyberoam – Cross-site scripting	webapps	hardware	Bhadresh Patel
2017-05-24	Samba 3.5.0 – Remote Code Execution	remote	linux	steelo
2017-05-24	Dup Scout Enterprise 9.7.18 – ‘.xml’ Local Buffer Overflow	local	windows	ScrR1pTK1dd13
2017-05-24	NetGain EM 7.2.647 build 941 – Authentication Bypass / Local File Inclusion	webapps	jsp	f3ci
2017-05-23	Apple macOS – Lack of Bounds Checking in HIServices Custom CFObject Serialization Local Privilege Escalation	dos	macos	Google Security Research
2017-05-23	Apple macOS/iOS Kernel – Memory Disclosure Due to Lack of Bounds Checking in netagent Socket Option Handling	dos	multiple	Google Security Research
2017-05-23	Apple macOS/iOS Kernel – Use-After-Free Due to Bad Locking in Unix Domain Socket File Descriptor Externalization	dos	multiple	Google Security Research