Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2016-08-06	VMware Host Guest Client Redirector – DLL Side Loading (Metasploit)	local	windows	Metasploit
2016-08-06	NUUO NVRmini 2 3.0.8 – Remote Code Execution	webapps	php	LiquidWorm
2016-08-05	zFTP Client 20061220 – ‘Connection Name’ Local Buffer Overflow	local	linux	Juan Sacco
2016-08-05	Subrion CMS 4.0.5 – SQL Injection	webapps	php	Vulnerability-Lab
2016-08-05	ntop/nbox 2.3 < 2.5 - Multiple Vulnerabilities	remote	linux	Javier Marcos
2016-08-05	NUUO NVRmini2 / NVRsolo / Crystal Devices / NETGEAR ReadyNAS Surveillance Application – Multiple Vulnerabilities	remote	hardware	Pedro Ribeiro
2016-08-05	Kodi Web Server 16.1 – Denial of Service	dos	windows	Guillaume Kaddouch
2016-08-05	NASdeluxe NDL-2400r 2.01.09 – OS Command Injection	webapps	hardware	SySS GmbH
2016-08-05	WordPress Plugin Count Per Day 3.5.4 – Persistent Cross-Site Scripting	webapps	php	Julien Rentrop
2016-08-05	Davolink DV-2051 – Multiple Vulnerabilities	webapps	cgi	Eric Flokstra
2016-08-05	PHP Power Browse 1.2 – Directory Traversal	webapps	php	Manuel Mancera
2016-08-04	ntop-ng 2.5.160805 – Username Enumeration	webapps	multiple	Dolev Farhi
2016-08-03	Wireshark 1.12.0 < 1.12.12 / 2.0.0 < 2.0.4 - RLC Dissector Denial of Service	dos	multiple	Antti Levomäki
2016-08-03	Wireshark 1.12.0 < 1.12.12 / 2.0.0 < 2.0.4 - WSP Dissector Denial of Service	dos	multiple	Chris Benedict
2016-08-03	Wireshark 1.12.0 < 1.12.12 / 2.0.0 < 2.0.4 - PacketBB Dissector Denial of Service	dos	multiple	Chris Benedict
2016-08-03	Wireshark 2.0.0 < 2.0.4 - CORBA IDL Dissectors Denial of Service	dos	windows_x86-64	Igor
2016-08-03	Wireshark 2.0.0 < 2.0.4 - MMSE / WAP / WBXML / WSP Dissectors Denial of Service	dos	multiple	Antti Levomäki
2016-08-03	Wireshark 1.12.0 < 1.12.12 - NDS Dissector Denial of Service	dos	multiple	Chris Benedict
2016-08-02	Open Upload 0.4.2 – Cross-Site Request Forgery (Add Admin)	webapps	php	Vinesh Redkar
2016-08-01	Halliburton LogView Pro 9.7.5 – ‘.cgm’ / ‘.tif’ / ‘.tiff’ / ‘.tifh’ Crash (PoC)	dos	windows	Karn Ganeshen
2016-08-01	WordPress Plugin ALO EasyMail NewsLetter 2.9.2 – Cross-Site Request Forgery (Add/Import Arbitrary Subscribers)	webapps	php	Yorick Koster
2016-08-01	WordPress Plugin WP Live Chat Support 6.2.03 – Persistent Cross-Site Scripting	webapps	php	Dennis Kerdijk & Erwin Kievith
2016-08-01	WordPress Plugin Booking Calendar 6.2 – SQL Injection	webapps	php	Edwin Molenaar
2016-07-29	WebKit – TypedArray.copyWithin Memory Corruption	dos	multiple	Google Security Research
2016-07-29	WebKit – TypedArray.fill Memory Corruption	dos	multiple	Google Security Research
2016-07-29	Linux Kernel (ARM/ARM64) – ‘perf_event_open()’ Arbitrary Memory Read	dos	arm	Google Security Research
2016-07-29	AppArmor securityfs < 4.8 - 'aa_fs_seq_hash_show' Reference Count Leak	dos	linux	Google Security Research
2016-07-29	Trend Micro Deep Discovery 3.7/3.8 SP1 (3.81)/3.8 SP2 (3.82) – ‘hotfix_upload.cgi’ Filename Remote Code Execution	webapps	linux	korpritzombie
2016-07-29	Easy File Sharing Web Server 7.2 – Remote Overflow (Egghunter) (SEH)	remote	windows	ch3rn0byl
2016-07-29	Barracuda Web Application Firewall 8.0.1.008 – (Authenticated) Remote Command Execution (Metasploit)	remote	linux	xort
2016-07-29	Barracuda Web App Firewall 8.0.1.008/Load Balancer 5.4.0.004 – (Authenticated) Remote Command Execution (Metasploit) (3)	remote	linux	xort
2016-07-29	WordPress Plugin Ultimate Product Catalog 3.9.8 – do_shortcode via ajax Blind SQL Injection	webapps	php	i0akiN SEC-LABORATORY
2016-07-29	mySCADAPro 7 – Local Privilege Escalation	local	windows	Karn Ganeshen
2016-07-29	VUPlayer 2.49 – ‘.pls’ File Stack Buffer Overflow (DEP Bypass)	local	windows	vportal
2016-07-29	AXIS (Multiple Products) – ‘devtools ‘ (Authenticated) Remote Command Execution	webapps	linux	Orwelllabs
2016-07-29	phpMyAdmin 4.6.2 – (Authenticated) Remote Code Execution	webapps	php	@iamsecurity
2016-07-27	Centreon 2.5.3 – Web Useralias Command Execution (Metasploit)	remote	Python	Metasploit
2016-07-26	Iris ID IrisAccess ICU 7000-2 – Multiple Vulnerabilities	webapps	cgi	LiquidWorm
2016-07-26	PHP File Vault 0.9 – Directory Traversal	webapps	php	N_A
2016-07-26	Barracuda Web App Firewall 8.0.1.007/Load Balancer 5.4.0.004 – (Authenticated) Remote Command Execution (Metasploit)	remote	linux	xort
2016-07-26	Iris ID IrisAccess iCAM4000/iCAM7000 – Hard-Coded Credentials Remote Shell Access	remote	linux	LiquidWorm
2016-07-26	Iris ID IrisAccess ICU 7000-2 – Remote Command Execution	webapps	cgi	LiquidWorm
2016-07-25	Mediacoder 0.8.43.5852 – ‘.m3u’ (SEH)	local	windows	Karn Ganeshen
2016-07-25	Barracuda Spam & Virus Firewall 5.1.3.007 – Remote Command Execution (Metasploit)	remote	linux	xort
2016-07-25	Barracuda Web App Firewall 8.0.1.007/Load Balancer 5.4.0.004 – Remote Command Execution (Metasploit)	remote	linux	xort
2016-07-25	Rapid7 AppSpider 6.12 – Local Privilege Escalation	local	windows	LiquidWorm
2016-07-25	Micro Focus Filr 2 2.0.0.421/1.2 1.2.0.846 – Multiple Vulnerabilities	webapps	java	SEC Consult
2016-07-25	Bellini/Supercook Wi-Fi Yumi SC200 – Multiple Vulnerabilities	webapps	hardware	James McLean
2016-07-25	Compal CH7465LG-LC Modem/Router CH7465LG-NCIP-4.50.18.13-NOSH – Multiple Vulnerabilities	webapps	hardware	Gergely Eberhardt
2016-07-25	Hitron CGNV4 Modem/Router 4.3.9.9-SIP-UPC – Multiple Vulnerabilities	webapps	hardware	Gergely Eberhardt