Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2016-11-22	SAP NetWeaver AS JAVA – ‘BC-BMT-BPM-DSK’ XML External Entity Injection	webapps	xml	ERPScan
2016-11-22	Ubuntu 15.10 – ‘USERNS ‘ Overlayfs Over Fuse Privilege Escalation	local	linux	halfdog
2016-11-22	Microsoft Internet Explorer 8 – MSHTML ‘Ptls5::LsFindSpanVisualBoundaries’ Memory Corruption	dos	windows	Skylined
2016-11-22	Ubuntu 14.04/15.10 – User Namespace Overlayfs Xattr SetGID Privilege Escalation	local	linux	halfdog
2016-11-22	TP-LINK TDDP – Multiple Vulnerabilities	dos	hardware	Core Security
2016-11-22	Crestron AM-100 – Multiple Vulnerabilities	remote	hardware	Zach Lanier
2016-11-22	EasyPHP Devserver 16.1.1 – Cross-Site Request Forgery / Remote Command Execution	webapps	php	hyp3rlinx
2016-11-22	Huawei UTPS – Unquoted Service Path Privilege Escalation	local	windows	Dhruv Shah
2016-11-21	D-Link DIR-Series Routers – HNAP Login Stack Buffer Overflow (Metasploit)	remote	multiple	Metasploit
2016-11-21	WordPress Plugin Olimometer 2.56 – SQL Injection	webapps	php	TAD GROUP
2016-11-21	FUDforum 3.0.6 – Local File Inclusion	webapps	php	Curesec Research Team
2016-11-21	FUDforum 3.0.6 – Cross-Site Scripting / Cross-Site Request Forgery	webapps	php	Curesec Research Team
2016-11-21	LEPTON 2.2.2 – Remote Code Execution	webapps	php	Curesec Research Team
2016-11-21	LEPTON 2.2.2 – SQL Injection	webapps	php	Curesec Research Team
2016-11-21	Mezzanine 4.2.0 – Cross-Site Scripting	webapps	Python	Curesec Research Team
2016-11-21	Microsoft Internet Explorer 8 – jscript ‘RegExpBase::FBadHeader’ Use-After-Free (MS15-018)	dos	windows	Skylined
2016-11-21	Microsoft Edge – ‘CTextExtractor::GetBlockText’ Out-of-Bounds Read (MS16-104)	dos	windows	Skylined
2016-11-21	WordPress Plugin Instagram Feed 1.4.6.2 – Cross-Site Request Forgery	webapps	php	Sipke Mellema
2016-11-21	Atlassian Confluence AppFusions Doxygen 1.3.0 – Directory Traversal	webapps	java	Julien Ahrens
2016-11-21	Microsoft Edge Scripting Engine – Memory Corruption (MS16-129)	dos	windows	Security-Assessment.com
2016-11-21	NTP 4.2.8p8 – Denial of Service	dos	linux	Magnus Klaaborg Stubman
2016-11-20	ScriptCase 8.1.053 – Multiple Vulnerabilities	webapps	php	hyp3rlinx
2016-11-18	Microsoft Edge – ‘Array.splice’ Heap Overflow	dos	windows	Google Security Research
2016-11-18	Microsoft Edge – ‘Array.reverse’ Overflow	dos	windows	Google Security Research
2016-11-18	Microsoft Edge – ‘Array.filter’ Information Leak	dos	windows	Google Security Research
2016-11-18	Microsoft Edge – ‘FillFromPrototypes’ Type Confusion	dos	windows	Google Security Research
2016-11-18	Moxa SoftCMS 1.5 – Denial of Service (PoC)	dos	windows	Zhou Yu
2016-11-18	FTPShell Client 5.24 – ‘PWD’ Remote Buffer Overflow	remote	windows	Th3GundY
2016-11-18	EditMe CMS – Cross-Site Request Forgery (Add Admin)	webapps	php	Vulnerability-Lab
2016-11-18	Nagios 4.2.2 – Local Privilege Escalation	local	linux	Vincent Malguy
2016-11-18	Palo Alto Networks PanOS – appweb3 Stack Buffer Overflow	dos	linux	Google Security Research
2016-11-18	Palo Alto Networks PanOS – ‘root_reboot’ Local Privilege Escalation	local	linux	Google Security Research
2016-11-18	Palo Alto Networks PanOS – ‘root_trace’ Local Privilege Escalation	local	linux	Google Security Research
2016-11-17	Microsoft Edge – ‘eval’ Type Confusion	dos	windows	Google Security Research
2016-11-17	WordPress Plugin Sirv 1.3.1 – SQL Injection	webapps	php	Lenon Leite
2016-11-17	WordPress Plugin Answer My Question 1.3 – SQL Injection	webapps	php	Lenon Leite
2016-11-16	CS-Cart 4.3.10 – XML External Entity Injection	webapps	php	0x4148
2016-11-16	Nginx (Debian Based Distros + Gentoo) – ‘logrotate’ Local Privilege Escalation	local	linux	Dawid Golunski
2016-11-15	Microsoft Windows Kernel – Registry Hive Loading ‘nt!RtlEqualSid’ Out-of-Bounds Read (MS16-138)	dos	windows	Google Security Research
2016-11-15	Microsoft Windows – VHDMP Arbitrary Physical Disk Cloning Privilege Escalation (MS16-138)	local	windows	Google Security Research
2016-11-15	Microsoft Windows – VHDMP ZwDeleteFile Arbitrary File Deletion Privilege Escalation (MS16-138)	local	windows	Google Security Research
2016-11-15	Microsoft Windows – VHDMP Arbitrary File Creation Privilege Escalation (MS16-138)	local	windows	Google Security Research
2016-11-15	Linux Kernel 4.8.0-22/3.10.0-327 (Ubuntu 16.10 / RedHat) – ‘keyctl’ Null Pointer Dereference	dos	linux	OpenSource Security
2016-11-15	Microsoft Edge 11.0.10240.16384 – ‘edgehtml’ CAttrArray::Destroy Use-After-Free	dos	windows	Skylined
2016-11-15	Easy Internet Sharing Proxy Server 2.2 – Remote Overflow (SEH) (Metasploit)	remote	windows	Tracy Turben
2016-11-15	WinaXe 7.7 FTP Client – Remote Buffer Overflow (Metasploit)	remote	windows	Metasploit
2016-11-14	Linux Kernel 4.4 (Ubuntu 16.04) – ‘BPF’ Local Privilege Escalation (Metasploit)	local	linux	Metasploit
2016-11-14	Disk Pulse Enterprise 9.0.34 – ‘Login’ Remote Buffer Overflow (Metasploit)	remote	windows	Metasploit
2016-11-14	Microsoft Internet Explorer 11 – MSHTML CMapElement::Notify Use-After-Free (MS15-009)	dos	windows	Skylined
2016-11-14	Boonex Dolphin 7.3.2 – Authentication Bypass / Remote Code Execution	webapps	php	0x4148