Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2017-05-14	PlaySMS 1.4 – ‘/sendfromfile.php’ Remote Code Execution / Unrestricted File Upload	webapps	php	Touhid M.Shaikh
2017-05-14	Larson VizEx Reader 9.7.5 – Local Buffer Overflow (SEH)	dos	windows	Muhann4d
2017-05-14	Halliburton LogView Pro 10.0.1 – Local Buffer Overflow (SEH)	dos	windows	Muhann4d
2017-05-12	Dive Assistant Template Builder 8.0 – XML External Entity Injection	local	windows	Trent Gordon
2017-05-11	MiniUPnP MiniUPnPc < 2.0 - Remote Denial of Service	dos	multiple	tintinweb
2017-05-11	Vanilla Forums < 2.3 - Remote Code Execution	remote	php	Dawid Golunski
2017-05-11	Linux Kernel 4.8.0-41-generic (Ubuntu) – Packet Socket Local Privilege Escalation	local	linux	Andrey Konovalov
2017-05-11	OpenVPN 2.4.0 – Denial of Service	dos	multiple	QuarksLab
2017-05-11	Microsoft IIS – WebDav ‘ScStoragePathFromUrl’ Remote Overflow (Metasploit)	remote	windows	Metasploit
2017-05-10	Gongwalker API Manager 1.1 – Cross-Site Request Forgery	webapps	php	HaHwul
2017-05-10	BanManager WebUI 1.5.8 – PHP Code Injection	webapps	php	HaHwul
2017-05-10	QNAP PhotoStation 5.2.4 / MusicStation 4.8.4 – Authentication Bypass	webapps	php	Kacper Szurek
2017-05-10	Microsoft Windows Server 2008 R2 (x64) – ‘SrvOs2FeaToNt’ SMB Remote Code Execution (MS17-010)	remote	windows_x86-64	Juan Sacco
2017-05-10	Cisco DPC3928 Router – Arbitrary File Disclosure	webapps	hardware	SecuriTeam
2017-05-10	CMS Made Simple 2.1.6 – Multiple Vulnerabilities	webapps	php	Osanda Malith Jayathissa
2017-05-10	Intel Active Management Technology – System Privileges	remote	multiple	nixawk
2017-05-10	SAP SAPCAR 721.510 – Heap Buffer Overflow	dos	linux	Core Security
2017-05-09	Personify360 7.5.2/7.6.1 – Improper Database Schema Access Restrictions	webapps	aspx	Pesach Zirkind
2017-05-09	Personify360 7.5.2/7.6.1 – Improper Access Restrictions	webapps	aspx	Pesach Zirkind
2017-05-09	wolfSSL 3.10.2 – x509 Certificate Text Parsing Off-by-One	dos	multiple	Talos
2017-05-09	LG G4 MRA58K – ‘mkvparser::Block::Block’ Heap Buffer Overflow	dos	android	Google Security Research
2017-05-09	LG G4 MRA58K – ‘mkvparser::Tracks constructor’ Failure to Initialise Pointers	dos	android	Google Security Research
2017-05-09	LG G4 MRA58K – ‘liblg_parser_mkv.so’ Bad Allocation Calls	dos	android	Google Security Research
2017-05-09	Crypttech CryptoLog – Remote Code Execution (Metasploit)	remote	Python	Mehmet Ince
2017-05-09	I, Librarian 4.6/4.7 – Command Injection / Server Side Request Forgery / Directory Enumeration / Cross-Site Scripting	webapps	php	SEC Consult
2017-05-09	Oracle GoldenGate 12.1.2.0.0 – Remote Code Execution	remote	multiple	Silent Signal
2017-05-09	Microsoft Security Essentials / SCEP (Microsoft Windows 8/8.1/10 / Windows Server) – ‘MsMpEng’ Remote Type Confusion	remote	windows	Google Security Research
2017-05-08	Xen 64bit PV Guest – pagetable use-after-type-change Breakout	local	linux	Google Security Research
2017-05-08	Gemalto SmartDiag Diagnosis Tool < 2.5 - Local Buffer Overflow (SEH)	local	windows	Majid Alqabandi
2017-05-08	MediaCoder 0.8.48.5888 – Local Buffer Overflow (SEH)	local	windows	Muhann4d
2017-05-08	RPCBind / libtirpc – Denial of Service	dos	linux	Guido Vranken
2017-05-05	ViMbAdmin 3.0.15 – Multiple Cross-Site Request Forgery Vulnerabilities	webapps	php	Sysdream
2017-05-05	WordPress Plugin WebDorado Gallery 1.3.29 – SQL Injection	webapps	php	defensecode
2017-05-05	CloudBees Jenkins 2.32.1 – Java Deserialization	dos	java	SecuriTeam
2017-05-05	Sitecore CMS 8.2 – Cross-Site Scripting / Arbitrary File Disclosure	webapps	aspx	Usman Saeed
2017-05-05	Technicolor DPC3928SL – SNMP Authentication Bypass	remote	hardware	nixawk
2017-05-04	Apple Safari 10.0.3 – ‘JSC::CachedCall’ Use-After-Free	remote	macos	saelo & niklasb
2017-05-03	WordPress Core < 4.7.4 - Unauthorized Password Reset	webapps	linux	Dawid Golunski
2017-05-03	WordPress Core 4.6 – Remote Code Execution	webapps	linux	Dawid Golunski
2017-05-03	Serviio PRO 1.8 DLNA Media Streaming Server – REST API Arbitrary Code Execution	webapps	windows	LiquidWorm
2017-05-03	Serviio PRO 1.8 DLNA Media Streaming Server – REST API Arbitrary Password Change	webapps	java	LiquidWorm
2017-05-03	Serviio PRO 1.8 DLNA Media Streaming Server – Local Privilege Escalation	local	windows	LiquidWorm
2017-05-03	Serviio PRO 1.8 DLNA Media Streaming Server – REST API Information Disclosure	webapps	java	LiquidWorm
2017-05-03	Microsoft Internet Explorer 11 – ‘CMarkup::DestroySplayTree’ Use-After-Free	dos	windows	Marcin Ressel
2017-05-02	Zyxel P-660HW-61 Firmware < 3.40(PE.11)C0 Router - Local File Inclusion	webapps	hardware	ReverseBrain
2017-05-02	Ghostscript 9.21 – Type Confusion Arbitrary Command Execution (Metasploit)	local	linux	Metasploit
2017-05-02	Dahua Generation 2/3 – Backdoor Access	remote	multiple	bashis
2017-05-01	Tuleap Project Wiki 8.3 < 9.6.99.86 - Command Injection	webapps	php	Ben Nott
2017-05-01	HideMyAss Pro VPN Client for macOS 3.x – Local Privilege Escalation	local	macos	Han Sahin
2017-05-01	HideMyAss Pro VPN Client for OS X 2.2.7.0 – Local Privilege Escalation	local	osx	Han Sahin