Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24443Exploits
日期 标题 类型 平台 作者
2016-10-14

School Full CBT 0.1 – SQL Injection
  • webapps
  • php
    		• lahilote
    2016-10-14

    Graylog Collector 0.4.2 – Unquoted Service Path Privilege Escalation
  • local
  • windows
    		• Joey Lane
    2016-10-13

    ASLDRService ATK Hotkey 1.0.69.0 – Unquoted Service Path Privilege Escalation
  • local
  • windows
    		• Cyril Vallicari
    2016-10-13

    Simple Blog PHP 2.0 – SQL Injection
  • webapps
  • php
    		• Ehsan Hosseini
    2016-10-13

    Simple Blog PHP 2.0 – Multiple Vulnerabilities
  • webapps
  • php
    		• Ehsan Hosseini
    2016-10-13

    JonhCMS 4.5.1 – SQL Injection
  • webapps
  • php
    		• Besim
    2016-10-13

    RSS News AutoPilot Script 1.0.1/3.1.0 – Admin Panel Authentication Bypass
  • webapps
  • php
    		• Arbin Godar
    2016-10-13

    Hotspot Shield 6.0.3 – Unquoted Service Path Privilege Escalation
  • local
  • windows
    		• Amir.ght
    2016-10-13

    Colorful Blog – Cross-Site Request Forgery (Change Admin Password)
  • webapps
  • php
    		• Besim
    2016-10-13

    Colorful Blog – Persistent Cross-Site Scripting
  • webapps
  • php
    		• Besim
    2016-10-13

    IObit Malware Fighter 4.3.1 – Unquoted Service Path Privilege Escalation
  • local
  • windows
    		• Amir.ght
    2016-10-13

    VOX Music Player 2.8.8 – ‘.pls’ Denial of Service
  • dos
  • osx
    		• Antonio Z.
    2016-10-13

    ATKGFNEXSrv ATKGFNEX 1.0.11.1 – Unquoted Service Path Privilege Escalation
  • local
  • windows
    		• Cyril Vallicari
    2016-10-13

    InsOnSrv Asus InstantOn 2.3.1.1 – Unquoted Service Path Privilege Escalation
  • local
  • windows
    		• Cyril Vallicari
    2016-10-13

    Thatware 0.4.6 – SQL Injection
  • webapps
  • php
    		• Besim
    2016-10-12

    ApPHP MicroCMS 3.9.5 – Cross-Site Request Forgery (Add Admin)
  • webapps
  • php
    		• Besim
    2016-10-12

    ApPHP MicroCMS 3.9.5 – Persistent Cross-Site Scripting
  • webapps
  • php
    		• Besim
    2016-10-12

    Google Android – Binder Generic ASLR Leak
  • dos
  • android
    		• Google Security Research
    2016-10-12

    OpenCimetiere 3.0.0-a5 – Blind SQL Injection
  • webapps
  • php
    		• Wadeek
    2016-10-12

    NetBilletterie 2.8 – Multiple Vulnerabilities
  • webapps
  • php
    		• Wadeek
    2016-10-12

    Categorizator 0.3.1 – SQL Injection
  • webapps
  • php
    		• Wadeek
    2016-10-12

    Adobe Flash Player 23.0.0.162 – ‘.SWF’ ConstantPool Critical Memory Corruption
  • dos
  • multiple
    		• COSIG
    2016-10-12

    Cisco Webex Player T29.10 – ‘.ARF’ Out-of-Bounds Memory Corruption
  • dos
  • windows
    		• COSIG
    2016-10-12

    Cisco Webex Player T29.10 – ‘.WRF’ Use-After-Free Memory Corruption
  • dos
  • windows
    		• COSIG
    2016-10-12

    Subversion 1.6.6/1.6.12 – Code Execution
  • remote
  • linux
    		• GlacierZ0ne
    2016-10-11

    Linux Kernel 3.13.1 – ‘Recvmmsg’ Local Privilege Escalation (Metasploit)
  • local
  • linux
    		• Metasploit
    2016-10-11

    Google Android – ‘gpsOneXtra’ Data Files Denial of Service
  • dos
  • android
    		• Nightwatch Cybersecurity Research
    2016-10-11

    RSA Enterprise Compromise Assessment Tool 4.1.0.1 – XML External Entity Injection
  • webapps
  • xml
    		• SEC Consult
    2016-10-11

    AVTECH IP Camera / NVR / DVR Devices – Multiple Vulnerabilities
  • webapps
  • cgi
    		• Gergely Eberhardt
    2016-10-11

    Sheed AntiVirus 2.3 – Unquoted Service Path Privilege Escalation
  • local
  • windows
    		• Amir.ght
    2016-10-11

    phpEnter 4.2.7 – Cross-Site Request Forgery (Add New Post)
  • webapps
  • php
    		• Besim
    2016-10-11

    BirdBlog 1.4.0 – Cross-Site Request Forgery (Add New Post)
  • webapps
  • php
    		• Besim
    2016-10-11

    Minecraft Launcher 1.6.61 – Insecure File Permissions Privilege Escalation
  • local
  • windows
    		• Ross Marks
    2016-10-11

    ApPHP MicroBlog 1.0.2 – Cross-Site Request Forgery (Add New Author)
  • webapps
  • php
    		• Besim
    2016-10-11

    ApPHP MicroBlog 1.0.2 – Persistent Cross-Site Scripting
  • webapps
  • php
    		• Besim
    2016-10-11

    Allwinner 3.4 Legacy Kernel – Local Privilege Escalation (Metasploit)
  • local
  • android
    		• Metasploit
    2016-10-10

    Spacemarc News – Cross-Site Request Forgery (Add New Post)
  • webapps
  • php
    		• Besim
    2016-10-10

    Maian Weblog 4.0 – Cross-Site Request Forgery (Add New Post)
  • webapps
  • php
    		• Besim
    2016-10-10

    HP Client 9.1/9.0/8.1/7.9 – Command Injection
  • remote
  • multiple
    		• SlidingWindow
    2016-10-10

    Zend Studio IDE 13.5.1 – Insecure File Permissions Privilege Escalation
  • local
  • windows
    		• hyp3rlinx
    2016-10-10

    Linux Kernel 4.6.2 (Ubuntu 16.04.1) – ‘IP6T_SO_SET_REPLACE’ Local Privilege Escalation
  • local
  • linux
    		• Qian Zhang
    2016-10-10

    Apache Tomcat 8/7/6 (RedHat Based Distros) – Local Privilege Escalation
  • local
  • linux
    		• Dawid Golunski
    2016-10-09

    Foxit Cloud Update Service – Unquoted Service Path Privilege Escalation
  • local
  • windows
    		• Ross Marks
    2016-10-09

    Wacom Consumer Service – Unquoted Service Path Privilege Escalation
  • local
  • windows
    		• Ross Marks
    2016-10-09

    Leap Service – Unquoted Service Path Privilege Escalation
  • local
  • windows
    		• Ross Marks
    2016-10-09

    Fitbit Connect Service – Unquoted Service Path Privilege Escalation
  • local
  • windows
    		• Ross Marks
    2016-10-09

    miniblog 1.0.1 – Cross-Site Request Forgery (Add New Post)
  • webapps
  • php
    		• Besim
    2016-10-09

    PHP Press Release – Persistent Cross-Site Scripting
  • webapps
  • php
    		• Besim
    2016-10-09

    PHP Press Release – Cross-Site Request Forgery (Add Admin)
  • webapps
  • php
    		• Besim
    2016-10-07

    Entrepreneur Job Portal Script 2.06 – SQL Injection
  • webapps
  • php
    		• OoN_Boy