Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24443Exploits
日期 标题 类型 平台 作者
2017-01-11

Adobe Flash Player 24.0.0.186 – ‘ActionGetURL2’ Out-of-Bounds Memory Corruption (2)
  • dos
  • multiple
    		• COSIG
    2017-01-11

    My Link Trader 1.1 – ‘id’ SQL Injection
  • webapps
  • php
    		• Dawid Morawski
    2017-01-11

    Starting Page 1.3 – ‘category’ SQL Injection
  • webapps
  • php
    		• Ben Lee
    2017-01-11

    Dating Script 3.25 – SQL Injection
  • webapps
  • php
    		• Dawid Morawski
    2017-01-11

    Adobe Flash Player 24.0.0.186 – ‘ActionGetURL2’ Out-of-Bounds Memory Corruption (1)
  • dos
  • multiple
    		• COSIG
    2017-01-11

    Itech Movie Portal Script 7.35 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-01-11

    Itech Travel Portal Script 9.33 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-01-11

    ECommerce-Multi-Vendor Software – Arbitrary File Upload
  • webapps
  • php
    		• Ihsan Sencan
    2017-01-11

    ECommerce-TIBSECART – Arbitrary File Upload
  • webapps
  • php
    		• Ihsan Sencan
    2017-01-11

    Penny Auction Script – Arbitrary File Upload
  • webapps
  • php
    		• Ihsan Sencan
    2017-01-11

    Boxoft Wav 1.0 – Buffer Overflow
  • dos
  • windows
    		• Vulnerability-Lab
    2017-01-11

    Airbnb Clone Script – Arbitrary File Upload
  • webapps
  • php
    		• Ihsan Sencan
    2017-01-11

    School Management Software 2.75 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-01-10

    FMyLife Clone Script (Pro Edition) 1.1 – Cross-Site Request Forgery (Add Admin)
  • webapps
  • php
    		• Ihsan Sencan
    2017-01-10

    WordPress Plugin WP Support Plus Responsive Ticket System 7.1.3 – Privilege Escalation
  • webapps
  • php
    		• Kacper Szurek
    2017-01-10

    Starting Page 1.3 – ‘linkid’ SQL Injection
  • webapps
  • php
    		• JaMbA
    2017-01-10

    DiskBoss Enterprise 7.5.12 – ‘POST’ Remote Buffer Overflow (SEH)
  • remote
  • windows
    		• Wyndell Bibera
    2017-01-10

    Huawei Flybox B660 – Cross-Site Request Forgery (1)
  • webapps
  • hardware
    		• Vulnerability-Lab
    2017-01-10

    Apple OS X Yosemite – ‘flow_divert-heap-overflow’ Kernel Panic
  • dos
  • osx
    		• Brandon Azad
    2017-01-10

    D-Link DIR-615 – Multiple Vulnerabilities
  • webapps
  • hardware
    		• Osanda Malith Jayathissa
    2017-01-09

    Ansible 2.1.4/2.2.1 – Command Execution
  • remote
  • linux
    		• Computest
    2017-01-09

    Firejail – Local Privilege Escalation
  • local
  • linux
    		• Daniel Hodson
    2017-01-09

    Cemu 1.6.4b – Information Leak / Buffer Overflow (Emulator Breakout)
  • local
  • multiple
    		• Wack0
    2017-01-09

    Friends in War Make or Break 1.7 – ‘imgid’ SQL Injection
  • webapps
  • php
    		• v3n0m
    2017-01-09

    My PHP Dating 2.0 – ‘id’ SQL Injection
  • webapps
  • php
    		• Sniper Pex
    2017-01-09

    My PHP Dating 2.0 – ‘path’ SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2017-01-09

    Blackboard LMS 9.1 SP14 – Cross-Site Scripting
  • webapps
  • java
    		• Vulnerability-Lab
    2017-01-08

    DirectAdmin 1.50.1 – Denial of Service
  • dos
  • php
    		• IeDb ir
    2017-01-08

    Advanced Desktop Locker 6.0.0 – Lock Screen Bypass
  • local
  • windows
    		• Squnity
    2017-01-08

    ManagEnegine ADManager Plus 6.5.40 – Multiple Vulnerabilities
  • webapps
  • java
    		• Mehmet Ince
    2017-01-08

    Brave Browser 1.2.16/1.9.56 – Address Bar URL Spoofing
  • dos
  • multiple
    		• Aaditya Purani
    2017-01-08

    Microsoft Windows Kernel – ‘win32k.sys NtSetWindowLongPtr’ Local Privilege Escalation (MS16-135) (2)
  • local
  • windows
    		• Rick Larabee
    2017-01-07

    My Link Trader 1.1 – Authentication Bypass
  • webapps
  • php
    		• Ihsan Sencan
    2017-01-07

    Splunk 6.1.1 – ‘Referer’ Header Cross-Site Scripting
  • webapps
  • php
    		• justpentest
    2017-01-06

    Google Android max86902 Driver – ‘sysfs’ Interfaces Race Condition
  • dos
  • android
    		• Google Security Research
    2017-01-05

    Microsoft Edge (Windows 10) – ‘chakra.dll’ Information Leak / Type Confusion Remote Code Execution
  • remote
  • windows
    		• Brian Pak
    2017-01-04

    Atlassian Confluence < 5.10.6 - Persistent Cross-Site Scripting
  • webapps
  • jsp
    		• Jodson Santos
    2017-01-04

    Kaspersky 17.0.0 – Local CA Root Incorrectly Protected
  • local
  • windows
    		• Google Security Research
    2017-01-04

    Firejail < 0.9.44.4 / < 0.9.38.8 LTS - Local Sandbox Escape
  • local
  • linux
    		• Sebastian Krahmer
    2017-01-03

    My Click Counter 1.0 – Authentication Bypass
  • webapps
  • php
    		• Adam
    2017-01-03

    Microsoft Windows 8.1 (x64) – ‘RGNOBJ’ Integer Overflow (MS16-098)
  • local
  • windows_x86-64
    		• Saif
    2017-01-02

    PHPMailer < 5.2.20 / SwiftMailer < 5.4.5-DEV / Zend Framework / zend-mail < 2.4.11 - 'AIO' 'PwnScriptum' Remote Code Execution
  • webapps
  • php
    		• Dawid Golunski
    2017-01-02

    QNAP NAS Devices – Heap Overflow
  • dos
  • hardware
    		• bashis
    2017-01-02

    Internet Download Accelerator 6.10.1.1527 – FTP Buffer Overflow (SEH)
  • remote
  • windows
    		• Fady Mohammed Osman
    2016-12-30

    Zend Framework / zend-mail < 2.4.11 - Remote Code Execution
  • webapps
  • php
    		• Dawid Golunski
    2016-12-29

    WordPress Plugin Slider Templatic Tevolution < 2.3.6 - Arbitrary File Upload
  • webapps
  • php
    		• r3m1ck
    2016-12-29

    Google Android – get_user/put_user (Metasploit)
  • local
  • android
    		• Metasploit
    2016-12-29

    b2evolution 6.8.2 – Arbitrary File Upload
  • webapps
  • php
    		• Li Fei
    2016-12-29

    PHPMailer < 5.2.18 - Remote Code Execution
  • webapps
  • php
    		• anarc0der
    2016-12-29

    Dell SonicWALL Secure Mobile Access SMA 8.1 – Cross-Site Scripting / Cross-Site Request Forgery
  • webapps
  • hardware
    		• LiquidWorm