Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2016-12-29	PHPMailer < 5.2.18 - Remote Code Execution	webapps	php	anarc0der
2016-12-28	SapLPD 7.40 – Denial of Service	dos	windows	Peter Baris
2016-12-28	Joomla! Component aWeb Cart Watching System for Virtuemart 2.6.0 – SQL Injection	webapps	php	qemm
2016-12-28	SwiftMailer < 5.4.5-DEV - Remote Code Execution	webapps	php	Dawid Golunski
2016-12-28	WordPress Plugin Simply Poll 1.4.1 – SQL Injection	webapps	php	TAD GROUP
2016-12-27	PHPMailer < 5.2.20 - Remote Code Execution	webapps	php	Dawid Golunski
2016-12-26	PHPMailer < 5.2.18 - Remote Code Execution	webapps	php	Dawid Golunski
2016-12-26	Wampserver 3.0.6 – Insecure File Permissions Privilege Escalation	local	windows	Heliand Dema
2016-12-26	Joomla! Component Blog Calendar – SQL Injection	webapps	php	X-Cisadane
2016-12-26	FTPShell Server 6.36 – ‘.csv’ Local Denial of Service	dos	windows	sultan albalawi
2016-12-26	PHPMailer < 5.2.19 - Sendmail Argument Injection (Metasploit)	webapps	multiple	Metasploit
2016-12-26	Shutter 0.93.1 – Code Execution	local	linux	Prajith
2016-12-25	XAMPP Control Panel – Denial Of Service	dos	windows	hyp3rlinx
2016-12-25	Sonicwall 8.1.0.2-14sv – ‘extensionsettings.cgi’ Remote Command Injection (Metasploit)	webapps	hardware	xort
2016-12-25	PHPMailer < 5.2.18 - Remote Code Execution	webapps	php	Dawid Golunski
2016-12-24	Sonicwall 8.1.0.2-14sv – ‘viewcert.cgi’ Remote Command Injection (Metasploit)	webapps	hardware	xort
2016-12-23	Freepbx < 2.11.1.5 - Remote Code Execution	webapps	php	inj3ctor3
2016-12-23	OpenSSH < 7.4 - agent Protocol Arbitrary Library Loading	remote	linux	Google Security Research
2016-12-23	OpenSSH < 7.4 - 'UsePrivilegeSeparation Disabled' Forwarded Unix Domain Sockets Privilege Escalation	local	linux	Google Security Research
2016-12-23	Apache mod_session_crypto – Padding Oracle	webapps	multiple	RedTeam Pentesting GmbH
2016-12-22	Vesta Control Panel 0.9.8-16 – Local Privilege Escalation	local	linux	Jaka Hudoklin
2016-12-22	Apple macOS 10.12.1 Kernel – Writable Privileged IOKit Registry Properties Code Execution	dos	macos	Google Security Research
2016-12-22	IBM AIX 6.1/7.1/7.2 – ‘Bellmail’ Local Privilege Escalation	local	aix	Hector X. Monsegur
2016-12-22	Microsoft Internet Explorer 11 – MSHTML CPasteCommand::ConvertBitmaptoPng Heap Buffer Overflow (MS14-056)	dos	windows	Skylined
2016-12-22	Apple macOS 10.12.1 / iOS < 10.2 - syslogd Arbitrary Port Replacement	dos	multiple	Google Security Research
2016-12-22	Apple macOS 10.12.1 / iOS < 10.2 - powerd Arbitrary Port Replacement	dos	multiple	Google Security Research
2016-12-22	Apple macOS < 10.12.2 / iOS < 10.2 - Broken Kernel Mach Port Name uref Handling Privileged Port Name Replacement Privilege Escalation	local	macos	Google Security Research
2016-12-22	Apple macOS < 10.12.2 / iOS < 10.2 - '_kernelrpc_mach_port_insert_right_trap' Kernel Reference Count Leak / Use-After-Free	local	macos	Google Security Research
2016-12-22	Apple macOS < 10.12.2 / iOS < 10.2 Kernel - ipc_port_t Reference Count Leak Due to Incorrect externalMethod Overrides Use-After-Free	dos	multiple	Google Security Research
2016-12-22	Apple macOS 10.12 – Double vm_deallocate in Userspace MIG Code Use-After-Free	dos	macos	Google Security Research
2016-12-21	Netgear WNR2000v5 – Remote Code Execution	remote	cgi	Pedro Ribeiro
2016-12-21	Microsoft Edge – Internationalization Initialization Type Confusion (MS16-144)	dos	windows	Google Security Research
2016-12-21	Microsoft Edge – SIMD.toLocaleString Uninitialized Memory (MS16-145)	dos	windows	Google Security Research
2016-12-20	Java Debug Wire Protocol (JDWP) – Remote Code Execution	remote	java	IOactive
2016-12-20	Microsoft Internet Explorer 11 – MSHTML CSpliceTreeEngine::RemoveSplice Use-After-Free (MS14-035)	dos	windows	Skylined
2016-12-20	Google Android – WifiNative::setHotlist Stack Overflow	dos	android	Google Security Research
2016-12-19	Google Chrome < 31.0.1650.48 - HTTP 1xx base::StringTokenizerT<...>::QuickGetNext Out-of-Bounds Read	dos	multiple	Skylined
2016-12-19	WordPress Plugin 404 Redirection Manager 1.0 – SQL Injection	webapps	php	Ahmed Sherif
2016-12-18	Naenara Browser 3.5 (RedStar 3.0 Desktop) – ‘JACKRABBIT’ Client-Side Command Execution	local	linux	Hacker Fantastic
2016-12-18	RedStar 3.0 Server – ‘Shellshock’ ‘BEAM’ / ‘RSSMON’ Command Injection	local	linux	Hacker Fantastic
2016-12-16	Microsoft Internet Explorer 9 – IEFRAME CView::EnsureSize Use-After-Free (MS13-021)	dos	windows	Skylined
2016-12-16	WordPress Plugin Quiz And Survey Master 4.5.4/4.7.8 – Cross-Site Request Forgery	webapps	php	dxw
2016-12-16	Microsoft Internet Explorer 9 – IEFRAME CMarkupPointer::MoveToGap Use-After-Free	dos	windows	Skylined
2016-12-16	WHMCompleteSolution (WHMCS) Addon VMPanel 2.7.4 – SQL Injection	webapps	php	ZwX
2016-12-16	Apple macOS 10.12 16A323 XNU Kernel / iOS 10.1.1 – ‘set_dp_control_port’ Lack of Locking Use-After-Free	local	multiple	Google Security Research
2016-12-16	Horos 2.1.0 Web Portal – Directory Traversal	remote	osx	LiquidWorm
2016-12-16	Horos 2.1.0 DICOM Medical Image Viewer – Denial of Service	dos	osx	LiquidWorm
2016-12-16	DCMTK 3.6.0 storescp – Stack Buffer Overflow	dos	linux	LiquidWorm
2016-12-16	ConQuest DICOM Server 1.4.17d – Stack Buffer (PoC)	dos	windows	LiquidWorm
2016-12-16	OsiriX DICOM Viewer 8.0.1 – Memory Corruption	dos	windows	LiquidWorm