Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2017-04-18	Microsoft Word – ‘.RTF’ Remote Code Execution	remote	windows	Bhadresh Patel
2017-04-17	Microsoft Windows – SMB Remote Code Execution Scanner (MS17-010) (Metasploit)	dos	windows	Sean Dillon
2017-04-16	Mantis Bug Tracker 1.3.0/2.3.0 – Password Reset	webapps	php	hyp3rlinx
2017-04-16	WinSCP 5.9.4 – ‘LIST’ Denial of Service (Metasploit)	dos	windows	mohammed Mohammed
2017-04-15	Linux Kernel 4.8.0 UDEV < 232 - Local Privilege Escalation	local	linux	Nassim Asrir
2017-04-14	VirusChaser 8.0 – Local Buffer Overflow (SEH)	local	windows	0x41Li
2017-04-14	Concrete5 CMS 8.1.0 – ‘Host’ Header Injection	webapps	php	hyp3rlinx
2017-04-14	Mozilla Firefox – Address Bar Spoofing	local	multiple	649
2017-04-13	GNS3 Mac OS-X 1.5.2 – ‘ubridge’ Local Privilege Escalation	local	osx	Hacker Fantastic
2017-04-13	Alienvault OSSIM/USM 5.3.4/5.3.5 – Remote Command Execution (Metasploit)	webapps	php	Peter Lapp
2017-04-13	agorum core Pro 7.8.1.4-251 – Persistent Cross-Site Scripting	webapps	multiple	SySS GmbH
2017-04-13	agorum core Pro 7.8.1.4-251 – Cross-Site Request Forgery	webapps	multiple	SySS GmbH
2017-04-13	Microsoft Windows Kernel – ‘win32kfull!SfnINLPUAHDRAWMENUITEM’ Stack Memory Disclosure	dos	windows	Google Security Research
2017-04-13	Microsoft Windows Kernel – ‘win32k.sys’ Multiple ‘NtGdiGetDIBitsInternal’ System Call	dos	windows	Google Security Research
2017-04-13	Adobe Creative Cloud Desktop Application < 4.0.0.185 - Local Privilege Escalation	local	windows	hyp3rlinx
2017-04-12	Cisco Catalyst 2960 IOS 12.2(55)SE11 – ‘ROCEM’ Remote Code Execution	remote	hardware	Artem Kondratenko
2017-04-12	Solaris 7 < 11 (SPARC/x86) - 'EXTREMEPARR' dtappgather Privilege Escalation	local	solaris	Hacker Fantastic
2017-04-12	Cisco Catalyst 2960 IOS 12.2(55)SE1 – ‘ROCEM’ Remote Code Execution	remote	hardware	Artem Kondratenko
2017-04-11	Social Directory Script 2.0 – SQL Injection	webapps	php	Ihsan Sencan
2017-04-11	WordPress Plugin Spider Event Calendar 1.5.51 – Blind SQL Injection	webapps	php	Manuel García Cárdenas
2017-04-11	MyClassifiedScript 5.1 – SQL Injection	webapps	php	Ihsan Sencan
2017-04-11	Xen – Broken Check in ‘memory_exchange()’ Permits PV Guest Breakout	local	multiple	Google Security Research
2017-04-11	Proxifier for Mac 2.17/2.18 – Privesc Escalation	local	macos	Mark Wadham
2017-04-11	Apple WebKit – ‘JSC::SymbolTableEntry::isWatchable’ Heap Buffer Overflow	dos	multiple	Google Security Research
2017-04-11	Proxifier for Mac 2.18 – Multiple Vulnerabilities	local	macos	Securify
2017-04-11	Apple WebKit – ‘Document::adoptNode’ Use-After-Free	dos	multiple	Google Security Research
2017-04-11	Apple WebKit – ‘JSC::B3::Procedure::resetReachability’ Use-After-Free	dos	multiple	Google Security Research
2017-04-11	Apple WebKit / Safari 10.0.3 (12602.4.8) – Universal Cross-Site Scripting via a Focus Event and a Link Element	webapps	multiple	Google Security Research
2017-04-11	Apple WebKit / Safari 10.0.3 (12602.4.8) – Synchronous Page Load Universal Cross-Site Scripting	webapps	multiple	Google Security Research
2017-04-11	Horde Groupware Webmail 3/4/5 – Multiple Remote Code Executions	webapps	php	SecuriTeam
2017-04-11	Brother MFC-J6520DW – Authentication Bypass / Password Change	webapps	hardware	Patryk Bogdan
2017-04-11	MyBB smilie Module < 1.8.11 - 'pathfolder' Directory Traversal	webapps	php	Zhiyang Zeng
2017-04-11	MyBB < 1.8.11 - 'email' MyCode Cross-Site Scripting	webapps	php	Zhiyang Zeng
2017-04-11	FAQ Script 3.1.3 – ‘category_id’ SQL Injection	webapps	php	Ihsan Sencan
2017-04-10	Moxa MX AOPC-Server 1.5 – XML External Entity Injection	remote	windows	hyp3rlinx
2017-04-10	Moxa MXview 2.8 – Denial of Service	dos	windows	hyp3rlinx
2017-04-10	Moxa MXview 2.8 – Private Key Disclosure	remote	windows	hyp3rlinx
2017-04-10	Quest Privilege Manager 6.0.0 – Arbitrary File Write	remote	linux	m0t
2017-04-08	Jobscript4Web 4.5 – Authentication Bypass	webapps	php	TurkCyberArmy
2017-04-08	Sony Playstation 4 (PS4) 3.50 < 4.07 - WebKit Code Execution (PoC)	local	hardware	Specter
2017-04-07	Ladder System 6.0 – ‘faqid’ SQL Injection	webapps	php	Ihsan Sencan
2017-04-07	My Gaming Ladder Combo System 7.5 – SQL Injection	webapps	php	Ihsan Sencan
2017-04-07	Survey Template 1.1 – ‘masterkey1’ SQL Injection	webapps	php	Ihsan Sencan
2017-04-07	Adobe (Multiple Products) – XML Injection File Content Disclosure	webapps	xml	Tess Sluyter
2017-04-07	Quiz Template 1.0 – ‘testid’ SQL Injection	webapps	php	Ihsan Sencan
2017-04-07	Forum Template 1.0 – SQL Injection	webapps	php	Ihsan Sencan
2017-04-07	Calendar Template 2.0 – ‘editid1’ SQL Injection	webapps	php	Ihsan Sencan
2017-04-07	Shopping Cart Template – ‘item’ SQL Injection	webapps	php	Ihsan Sencan
2017-04-07	Document Management Template – ‘hash’ SQL Injection	webapps	php	Ihsan Sencan
2017-04-07	Invoice Template – ‘hash’ SQL Injection	webapps	php	Ihsan Sencan