Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2016-12-16	Microsoft Internet Explorer 9 – IEFRAME CMarkupPointer::MoveToGap Use-After-Free	dos	windows	Skylined
2016-12-16	WHMCompleteSolution (WHMCS) Addon VMPanel 2.7.4 – SQL Injection	webapps	php	ZwX
2016-12-16	Apple macOS 10.12 16A323 XNU Kernel / iOS 10.1.1 – ‘set_dp_control_port’ Lack of Locking Use-After-Free	local	multiple	Google Security Research
2016-12-15	Netcore / Netis Routers – UDP Backdoor Access	remote	hardware	nixawk
2016-12-15	Microsoft Internet Explorer 9 – IEFRAME CMarkup::RemovePointerPos Use-After-Free (MS13-055)	dos	windows	Skylined
2016-12-15	Microsoft Internet Explorer 9 – MSHTML CMarkup::ReloadInCompatView Use-After-Free	dos	windows	Skylined
2016-12-15	Nagios < 4.2.4 - Local Privilege Escalation	local	linux	Dawid Golunski
2016-12-15	Nagios < 4.2.2 - Arbitrary Code Execution	remote	linux	Dawid Golunski
2016-12-15	Nidesoft MP3 Converter 2.6.18 – Local Buffer Overflow (SEH)	local	windows	malwrforensics
2016-12-14	Apport 2.x (Ubuntu Desktop 12.10 < 16.04) - Local Code Execution	local	linux	Donncha OCearbhaill
2016-12-14	APT – Repository Signing Bypass via Memory Allocation Failure	remote	linux	Google Security Research
2016-12-14	Adobe Animate 15.2.1.95 – Memory Corruption	dos	windows	hyp3rlinx
2016-12-13	McAfee Virus Scan Enterprise for Linux 1.9.2 < 2.0.2 - Remote Code Execution	remote	linux	Andrew Fasano
2016-12-13	TP-LINK TD-W8151N – Denial of Service	dos	hardware	Persian Hack Team
2016-12-13	Google Chrome (Fedora 25 / Ubuntu 16.04) – ‘tracker-extract’ / ‘gnome-video-thumbnailer’ + ‘totem’ Drive-By Download	local	linux	Chris Evans
2016-12-13	Samsung Devices KNOX Extensions – OTP TrustZone Trustlet Stack Buffer Overflow	dos	android	Google Security Research
2016-12-13	Samsung Devices KNOX Extensions – OTP Service Heap Overflow	dos	android	Google Security Research
2016-12-13	Joomla! Component DT Register – ‘cat’ SQL Injection	webapps	php	Elar Lang
2016-12-12	Apache 2.4.23 mod_http2 – Denial of Service	dos	linux	Jungun Baek
2016-12-12	WordPress Plugin Multisite Post Duplicator 0.9.5.1 – Cross-Site Request Forgery	webapps	php	dxw
2016-12-12	Microsoft Internet Explorer 9 – IEFRAME CSelectionInteractButtonBehavior::_UpdateButtonLocation Use-After-Free (MS13-047)	dos	windows	Skylined
2016-12-12	iOS 10.1.x – Certificate File Memory Corruption	dos	ios	Maksymilian Arciemowicz
2016-12-12	Serva 3.0.0 – HTTP Server Denial of Service	dos	windows	LiquidWorm
2016-12-12	Sophos Web Appliance 4.2.1.3 – DiagnosticTools Remote Command Injection (Metasploit)	webapps	linux	xort
2016-12-12	Sophos Web Appliance 4.2.1.3 – block/unblock Remote Command Injection (Metasploit)	webapps	php	xort
2016-12-11	EasyPHP Devserver 16.1.1 – Insecure File Permissions Privilege Escalation	local	windows	Ashiyane Digital Security Team
2016-12-11	ARG-W4 ADSL Router – Multiple Vulnerabilities	webapps	hardware	Persian Hack Team
2016-12-11	OpenSSL 1.1.0a/1.1.0b – Denial of Service	dos	linux	Silverfox
2016-12-11	Netgear R7000 – Cross-Site Scripting	webapps	hardware	Vincent Yiu
2016-12-10	10-Strike Network File Search Pro 2.3 – Local Buffer Overflow (SEH)	local	windows	malwrforensics
2016-12-09	Microsoft Internet Explorer 9 – MSHTML CDispNode::InsertSiblingNode Use-After-Free (MS13-037) (1)	dos	windows	Skylined
2016-12-09	Roundcube 1.2.2 – Remote Code Execution	webapps	php	Robin Peraglie
2016-12-09	Microsoft Internet Explorer 9 – MSHTML CElement::HasFlag Memory Corruption	dos	windows	Skylined
2016-12-09	D-Link DI-524 – Cross-Site Request Forgery	webapps	hardware	Felipe Soares de Souza
2016-12-09	Splunk Enterprise 6.4.3 – Server-Side Request Forgery	webapps	multiple	Security-Assessment.com
2016-12-09	Microsoft Internet Explorer 9 – MSHTML CDispNode::InsertSiblingNode Use-After-Free (MS13-037) (2)	dos	windows	Skylined
2016-12-07	Netgear R7000 – Command Injection	webapps	cgi	Acew0rm
2016-12-07	OpenSSH 7.2 – Denial of Service	dos	linux	SecPod Research
2016-12-07	Cisco Unified Communications Manager 7/8/9 – Directory Traversal	webapps	hardware	justpentest
2016-12-07	TP-LINK TD-W8951ND – Denial of Service	dos	hardware	Persian Hack Team
2016-12-07	Dual DHCP DNS Server 7.29 – Denial of Service	dos	windows	R-73eN
2016-12-06	Google Android – Inter-Process munmap with User-Controlled Size in android.graphics.Bitmap	remote	android	Google Security Research
2016-12-06	Microsoft PowerShell – XML External Entity Injection	local	windows	hyp3rlinx
2016-12-06	Linux Kernel 4.4.0 (Ubuntu 14.04/16.04 x86-64) – ‘AF_PACKET’ Race Condition Privilege Escalation	local	linux_x86-64	rebel
2016-12-06	Microsoft Windows 10 (x86/x64) – WLAN AutoConfig Denial of Service (PoC)	dos	windows	Jeremy Brown
2016-12-06	Edge SkateShop – Authentication bypass	webapps	php	Delilah
2016-12-06	Microsoft Internet Explorer 9 – ‘jscript9’ JavaScriptStackWalker Memory Corruption (MS15-056)	remote	windows	Skylined
2016-12-06	Microsoft Edge – CBaseScriptable::PrivateQueryInterface Memory Corruption (MS16-068)	dos	windows	Skylined
2016-12-06	Microsoft Internet Explorer 9 – CDoc::ExecuteScriptUri Use-After-Free (MS13-009)	dos	windows	Skylined
2016-12-06	Microsoft Edge – CMarkup::EnsureDeleteCFState Use-After-Free (MS15-125)	dos	windows	Skylined