Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2017-03-24	Netgear WNR2000v5 – ‘hidden_lang_avi’ Remote Stack Overflow (Metasploit)	remote	hardware	Pedro Ribeiro
2017-03-24	Miele Professional PG 8528 – Directory Traversal	remote	hardware	Jens Regel
2017-03-23	wifirxpower – Local Buffer Overflow (PoC)	dos	linux	Nassim Asrir
2017-03-23	Flippa Clone – SQL Injection	webapps	php	Ihsan Sencan
2017-03-22	Joomla! Component Modern Booking 1.0 – ‘coupon’ SQL Injection	webapps	php	Hamed Izadi
2017-03-22	Solare Datensysteme Solar-Log Devices 2.8.4-56/3.5.2-85 – Multiple Vulnerabilities	webapps	hardware	SEC Consult
2017-03-22	SpyCamLizard 1.230 – Denial of Service	dos	windows	ScrR1pTK1dd13
2017-03-22	Disk Sorter Enterprise 9.5.12 – ‘GET’ Remote Buffer Overflow (SEH)	remote	windows	Daniel Teixeira
2017-03-22	Linux Kernel 3.11 < 4.8 0 - 'SO_SNDBUFFORCE' / 'SO_RCVBUFFORCE' Local Privilege Escalation	local	linux	Andrey Konovalov
2017-03-22	GLink Word Link Script 1.2.3 – SQL Injection	webapps	php	Ihsan Sencan
2017-03-21	Joomla! Component Extra Search 2.2.8 – ‘establename’ SQL Injection	webapps	php	Ihsan Sencan
2017-03-20	Microsoft Windows – Uniscribe Heap Out-of-Bounds Read in ‘USP10!ScriptApplyLogicalWidth’ Triggered via EMF (MS17-013)	dos	windows	Google Security Research
2017-03-20	Joomla! Component jCart for OpenCart 2.0 – ‘product_id’ SQL Injection	webapps	php	Ihsan Sencan
2017-03-20	Microsoft Color Management Module ‘icm32.dll’ – ‘icm32!Fill_ushort_ELUTs_from_lut16Tag’ Out-of-Bounds Read (MS17-013)	dos	windows	Google Security Research
2017-03-20	Joomla! Component JooCart 2.x – ‘product_id’ SQL Injection	webapps	php	Ihsan Sencan
2017-03-20	Microsoft GDI+ – ‘gdiplus!GetRECTSForPlayback’ Out-of-Bounds Read (MS17-013)	dos	windows	Google Security Research
2017-03-20	ExtraPuTTY 0.29-RC2 – Denial of Service	dos	windows	hyp3rlinx
2017-03-20	Microsoft Windows – Uniscribe Font Processing Multiple Heap Out-of-Bounds and Wild Reads (MS17-011)	dos	windows	Google Security Research
2017-03-20	Microsoft Windows – Uniscribe Font Processing Buffer Overflow in ‘USP10!FillAlternatesList’ (MS17-011)	dos	windows	Google Security Research
2017-03-20	Microsoft Windows – Uniscribe Font Processing Heap Memory Corruption Around ‘USP10!BuildFSM’ (MS17-011)	dos	windows	Google Security Research
2017-03-20	Microsoft Windows – Uniscribe Font Processing Heap Out-of-Bounds Write in ‘USP10!UpdateGlyphFlags’ (MS17-011)	dos	windows	Google Security Research
2017-03-20	Microsoft Windows – Uniscribe Font Processing Heap Buffer Overflow in ‘USP10!ttoGetTableData’ (MS17-011)	dos	windows	Google Security Research
2017-03-20	Microsoft Windows – Uniscribe Font Processing Heap Memory Corruption in ‘USP10!MergeLigRecords’ (MS17-011)	dos	windows	Google Security Research
2017-03-20	Microsoft Windows – Uniscribe Font Processing Heap Memory Corruption in ‘USP10!otlCacheManager::GlyphsSubstituted’ (MS17-011)	dos	windows	Google Security Research
2017-03-20	Microsoft Windows – Uniscribe Font Processing Heap Out-of-Bounds Read/Write in ‘USP10!AssignGlyphTypes’ (MS17-011)	dos	windows	Google Security Research
2017-03-20	Microsoft Windows – ‘USP10!otlList::insertAt’ Uniscribe Font Processing Heap Buffer Overflow (MS17-011)	dos	windows	Google Security Research
2017-03-20	D-Link DGS-1510 – Multiple Vulnerabilities	webapps	hardware	Varang Amin
2017-03-20	Microsoft Windows – Uniscribe Font Processing Out-of-Bounds Read in usp10!otlChainRuleSetTable::rule (MS17-011)	dos	windows	Google Security Research
2017-03-20	Microsoft Internet Explorer 11 – ‘textarea.defaultValue’ Memory Disclosure (MS17-006)	dos	windows	Google Security Research
2017-03-20	Microsoft Windows Kernel – Registry Hive Loading Crashes in nt!nt!HvpGetBinMemAlloc / nt!ExpFindAndRemoveTagBigPages (MS17-017)	dos	windows	Google Security Research
2017-03-20	Mozilla Firefox – ‘table’ Use-After-Free	dos	multiple	Google Security Research
2017-03-20	phplist 3.2.6 – SQL Injection	webapps	php	Curesec Research Team
2017-03-20	Microsoft Color Management Module ‘icm32.dll’ – ‘icm32!LHCalc3toX_Di16_Do16_Lut8_G32’ Out-of-Bounds Read (MS17-013)	dos	windows	Google Security Research
2017-03-20	Google Nest Cam 5.2.1  – Buffer Overflow Conditions Over Bluetooth LE	dos	hardware	Jason Doyle
2017-03-19	HttpServer 1.0 – Directory Traversal	remote	windows	malwrforensics
2017-03-19	FTPShell Server 6.56 – ‘ChangePassword’ Buffer Overflow	dos	windows	ScrR1pTK1dd13
2017-03-19	Secure Download Links – ‘dc’ SQL Injection	webapps	php	Ihsan Sencan
2017-03-18	Omegle Clone – SQL Injection	webapps	php	Ihsan Sencan
2017-03-18	DIGISOL DG-HR1400 1.00.02 Wireless Router – Privilege Escalation	webapps	hardware	Indrajith.A.N
2017-03-18	iFdate Social Dating Script 2.0 – SQL Injection	webapps	php	Ihsan Sencan
2017-03-17	Oracle Knowledge Management 12.1.1 < 12.2.5 - XML External Entity Leading To Remote Code Execution	webapps	multiple	SecuriTeam
2017-03-17	FTPShell Client 6.53 – ‘Session name’ Local Buffer Overflow	dos	windows	ScrR1pTK1dd13
2017-03-17	SolarWinds LEM 6.3.1 – Remote Code Execution (Metasploit)	remote	linux	Mehmet Ince
2017-03-17	Departmental Store Management System 1.2 – SQL Injection	webapps	php	Ihsan Sencan
2017-03-17	AXIS (Multiple Products) – Cross-Site Request Forgery	webapps	hardware	Orwelllabs
2017-03-17	Cisco IOS 12.2 < 12.4 / 15.0 < 15.6 - Security Association Negotiation Request Device Memory	remote	hardware	nixawk
2017-03-17	AXIS Communications – Cross-Site Scripting / Content Injection	webapps	hardware	Orwelllabs
2017-03-16	Cerberus FTP Server 8.0.10.3 – ‘MLST’ Buffer Overflow (PoC)	dos	windows	Nassim Asrir
2017-03-16	Microsoft Windows DVD Maker 6.1.7 – XML External Entity Injection	local	windows	hyp3rlinx
2017-03-16	Cobbler 2.8.0 – (Authenticated) Remote Code Execution	webapps	linux	Dolev Farhi