Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2016-08-19	Microsoft Windows – Fileless UAC Protection Bypass Privilege Escalation (Metasploit)	local	windows	Pablo González
2016-08-19	MESSOA IP-Camera NIC990 – Authentication Bypass / Configuration Download	webapps	cgi	Todor Donev
2016-08-19	TOSHIBA IP-Camera IK-WP41A – Authentication Bypass / Configuration Download	webapps	cgi	Todor Donev
2016-08-18	X-Cart < 4.1.3 - Arbitrary Variable Overwrite	webapps	php	GulfTech Security
2016-08-18	Honeywell IP-Camera HICC-1100PT – Credentials Disclosure	webapps	cgi	Yakir Wizman
2016-08-18	SIEMENS IP Camera CCMW1025 x.2.2.1798 – Remote Admin Credentials Change	webapps	cgi	Todor Donev
2016-08-18	Cisco ASA 8.x – ‘EXTRABACON’ Authentication Bypass	remote	hardware	Shadow Brokers
2016-08-18	Linux Kernel – TCP Related Read Use-After-Free	dos	linux	Marco Grassi
2016-08-17	Microsoft Windows – GDI+ EMR_EXTTEXTOUTA / EMR_POLYTEXTOUTA Heap Buffer Overflow (MS16-097)	dos	windows	Google Security Research
2016-08-17	Microsoft Windows – GDI+ ValidateBitmapInfo Invalid Pointer Arithmetic Out-of-Bounds Reads (MS16-097)	dos	windows	Google Security Research
2016-08-17	Microsoft Windows – GDI+ DecodeCompressedRLEBitmap Invalid Pointer Arithmetic Out-of-Bounds Write (MS16-097)	dos	windows	Google Security Research
2016-08-17	SIEMENS IP-Camera CVMS2025-IR / CCMS2025 – Credentials Disclosure	webapps	cgi	Yakir Wizman
2016-08-16	Lepton CMS 2.2.0/2.2.1 – PHP Code Injection	webapps	php	hyp3rlinx
2016-08-16	Lepton CMS 2.2.0/2.2.1 – Directory Traversal	webapps	php	hyp3rlinx
2016-08-16	WSO2 Carbon 4.4.5 – Denial of Service / Cross-Site Request Forgery	webapps	jsp	hyp3rlinx
2016-08-16	WSO2 Carbon 4.4.5 – Persistent Cross-Site Scripting	webapps	jsp	hyp3rlinx
2016-08-16	WSO2 Carbon 4.4.5 – Local File Inclusion	webapps	jsp	hyp3rlinx
2016-08-16	WSO2 Identity Server 5.1.0 – Multiple Vulnerabilities	webapps	jsp	hyp3rlinx
2016-08-16	Microsoft Word 2013/2016 – sprmSdyaTop Denial of Service (MS16-099)	dos	multiple	COSIG
2016-08-16	Microsoft Internet Explorer – MSHTML!CMultiReadStreamLifetimeManager::ReleaseThreadStateInternal Read AV	dos	windows	Google Security Research
2016-08-16	Nagios Incident Manager 2.0.0 – Multiple Vulnerabilities	webapps	php	Security-Assessment.com
2016-08-16	Nagios Network Analyzer 2.2.0 – Multiple Vulnerabilities	webapps	php	Security-Assessment.com
2016-08-16	Nagios Log Server 1.4.1 – Multiple Vulnerabilities	webapps	php	Security-Assessment.com
2016-08-16	Pi-Hole Web Interface 2.8.1 – Persistent Cross-Site Scripting in Whitelist/Blacklist	webapps	linux	loneferret
2016-08-15	Zabbix 2.2.x/3.0.x – SQL Injection	webapps	php	1n3
2016-08-15	GitLab – ‘impersonate’ Feature Privilege Escalation	webapps	ruby	Kaimi
2016-08-14	Claroline < 1.7.7 - Arbitrary File Inclusion	webapps	php	GulfTech Security
2016-08-14	Samsung Smart Home Camera SNH-P-6410 – Command Injection	remote	hardware	PentestPartners
2016-08-12	FreePBX 13/14 – Remote Command Execution / Privilege Escalation	remote	linux	pgt
2016-08-11	SquirrelMail < 1.4.7 - Arbitrary Variable Overwrite	webapps	php	GulfTech Security
2016-08-11	ColoradoFTP 1.3 Prime Edition (Build 8) – Directory Traversal	webapps	java	Rv3Laboratory
2016-08-10	EyeLock nano NXT 3.5 – Remote Code Execution	webapps	php	LiquidWorm
2016-08-10	EyeLock nano NXT 3.5 – Local File Disclosure	webapps	php	LiquidWorm
2016-08-10	EyeLock Myris 3.3.2 – SDK Service Unquoted Service Path Privilege Escalation	local	windows	LiquidWorm
2016-08-10	vBulletin 5.2.2 – Server-Side Request Forgery	webapps	php	Dawid Golunski
2016-08-10	Microsoft Word 2007/2010/2013/2016 – Out-of-Bounds Read Code Execution (MS16-099)	local	windows	COSIG
2016-08-10	Nagios Network Analyzer 2.2.1 – Multiple Cross-Site Request Forgery Vulnerabilities	webapps	php	hyp3rlinx
2016-08-10	SAP SAPCAR – Multiple Vulnerabilities	dos	linux	Core Security
2016-08-10	WebNMS Framework Server 5.2/5.2 SP1 – Multiple Vulnerabilities	webapps	jsp	Pedro Ribeiro
2016-08-09	Xfinity Gateway (Technicolor DPC3941T) – Cross-Site Request Forgery	webapps	hardware	Ayushman Dutta
2016-08-08	WordPress Plugin Add From Server < 3.3.2 - Cross-Site Request Forgery (Arbitrary File Upload)	webapps	php	Edwin Molenaar
2016-08-08	Microsoft Windows 7 (x86/x64) – Group Policy Privilege Escalation (MS16-072)	local	windows	Nabeel Ahmed
2016-08-08	PHPCollab CMS 2.5 – ’emailusers.php’ SQL Injection	webapps	php	Vulnerability-Lab
2016-08-08	Navis Webaccess – SQL Injection	webapps	jsp	bRpsd
2016-08-06	VMware Host Guest Client Redirector – DLL Side Loading (Metasploit)	local	windows	Metasploit
2016-08-06	NUUO NVRmini 2 3.0.8 – Remote Code Execution	webapps	php	LiquidWorm
2016-08-06	NUUO NVRmini 2 3.0.8 – ‘strong_user.php’ Backdoor Remote Shell Access	webapps	php	LiquidWorm
2016-08-06	NUUO NVRmini 2 3.0.8 – Arbitrary File Deletion	webapps	php	LiquidWorm
2016-08-06	NUUO NVRmini 2 3.0.8 – Remote Command Injection (Shellshock)	webapps	cgi	LiquidWorm
2016-08-06	NUUO NVRmini 2 3.0.8 – Multiple OS Command Injections	webapps	php	LiquidWorm