Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24745Exploits

日期	标题	类型	平台	作者
2023-04-08	ENTAB ERP 1.0 – Username PII leak	webapps	asp	Deb Prasad Banerjee
2023-04-08	ESET Service 16.0.26.0 – ‘Service ekrn’ Unquoted Service Path	local	windows	Milad karimi
2023-04-08	Joomla! v4.2.8 – Unauthenticated information disclosure	webapps	php	Alexandre ZANNI
2023-04-08	Pentaho BA Server EE 9.3.0.0-428 – Remote Code Execution (RCE) (Unauthenticated)	webapps	jsp	dwbzn
2023-04-08	Lucee Scheduled Job v1.0 – Command Execution	local	multiple	Alexander Philiotis
2023-04-08	WebsiteBaker v2.13.3 – Cross-Site Scripting (XSS)	webapps	php	Mirabbas Ağalarov
2023-04-08	ActFax 10.10 – Unquoted Path Services	local	windows	Birkan ALHAN
2023-04-08	ZCBS/ZBBS/ZPBS v4.14k – Reflected Cross-Site Scripting (XSS)	webapps	cgi	Abdulaziz Saad
2023-04-08	Google Chrome 109.0.5414.74 – Code Execution via missing lib file (Ubuntu)	local	linux	Rafay Baloch and Muhammad Samak
2023-04-08	X2CRM v6.6/6.9 – Reflected Cross-Site Scripting (XSS) (Authenticated)	webapps	php	Betul Denizler
2023-04-08	Restaurant Management System 1.0 – SQL Injection	webapps	php	calfcrusher
2023-04-08	X2CRM v6.6/6.9 – Stored Cross-Site Scripting (XSS) (Authenticated)	webapps	php	Betul Denizler
2023-04-08	Icinga Web 2.10 – Arbitrary File Disclosure	webapps	php	Jacob Ebben
2023-04-08	Online-Pizza-Ordering -1.0 – Remote Code Execution (RCE)	webapps	php	nu11secur1ty
2023-04-08	Microsoft Excel 365 MSO (Version 2302 Build 16.0.16130.20186) 64-bit – Remote Code Execution (RCE)	remote	multiple	nu11secur1ty
2023-04-08	Palo Alto Cortex XSOAR 6.5.0 – Stored Cross-Site Scripting (XSS)	webapps	multiple	omurugur
2023-04-08	Adobe Connect 11.4.5 – Local File Disclosure	webapps	multiple	h4shur
2023-04-08	Symantec Messaging Gateway 10.7.4 – Stored Cross-Site Scripting (XSS)	webapps	multiple	omurugur
2023-04-08	FortiRecorder 6.4.3 – Denial of Service	dos	hardware	Mohammed Adel
2023-04-08	Stonesoft VPN Client 6.2.0 / 6.8.0 – Local Privilege Escalation	local	windows	TOUHAMI Kasbaoui
2023-04-08	Altenergy Power Control Software C1.2.5 – OS command injection	webapps	hardware	Ahmed Alroky
2023-04-08	Suprema BioStar 2 v2.8.16 – SQL Injection	webapps	multiple	Yuriy (Vander) Tsarenko
2023-04-08	Goanywhere Encryption helper 7.1.1 – Remote Code Execution (RCE)	webapps	java	Youssef Muhammad
2023-04-08	Medicine Tracker System v1.0 – Sql Injection	webapps	php	Sanjay Singh
2023-04-08	Online Appointment System V1.0 – Cross-Site Scripting (XSS)	webapps	php	Sanjay Singh
2023-04-07	Schneider Electric v1.0 – Directory traversal & Broken Authentication	remote	hardware	Parsa Rezaie Khiabanloo
2023-04-07	ChurchCRM 4.5.1 – Authenticated SQL Injection	webapps	php	Arvandy
2023-04-07	NotrinosERP 0.7 – Authenticated Blind SQL Injection	webapps	php	Arvandy
2023-04-07	Tenda N300 F3 12.01.01.48 – Malformed HTTP Request Header Processing	remote	hardware	@h454nsec
2023-04-07	IBM Aspera Faspex 4.4.1 – YAML deserialization (RCE)	remote	multiple	Maurice Lambert
2023-04-07	MAC 1200R – Directory Traversal	webapps	hardware	Chunlei Shang, Jiangsu Public Information Co., Ltd.
2023-04-07	Docker based datastores for IBM Instana 241-2 243-0 – No Authentication	remote	multiple	Shahid Parvez (zippon)
2023-04-07	Wondershare Dr Fone 12.9.6 – Privilege Escalation	local	windows	Thurein Soe
2023-04-07	Snitz Forum v1.0 – Blind SQL Injection	webapps	asp	Emiliano Febbi
2023-04-07	Rukovoditel 3.3.1 – Remote Code Execution (RCE)	webapps	php	Mirabbas Ağalarov
2023-04-07	Franklin Fueling Systems TS-550 – Exploit and Default Password	remote	hardware	Parsa Rezaie Khiabanloo
2023-04-06	Osprey Pump Controller 1.0.1 – Cross-Site Request Forgery	remote	hardware	LiquidWorm
2023-04-06	Music Gallery Site v1.0 – SQL Injection on music_list.php	webapps	php	Muhammad Navaid Zafar Ansari
2023-04-06	Art Gallery Management System Project in PHP v 1.0 – SQL injection	webapps	php	Yogesh Verma
2023-04-06	Osprey Pump Controller 1.0.1 – Authentication Bypass Credentials Modification	remote	hardware	LiquidWorm
2023-04-06	Employee Task Management System v1.0 – SQL Injection on edit-task.php	webapps	php	Muhammad Navaid Zafar Ansari
2023-04-06	atrocore 1.5.25 User interaction – Unauthenticated File upload – RCE	webapps	php	nu11secur1ty
2023-04-06	Osprey Pump Controller v1.0.1 – Unauthenticated Reflected XSS	remote	hardware	LiquidWorm
2023-04-06	Employee Task Management System v1.0 – SQL Injection on (task-details.php?task_id=?)	webapps	php	Muhammad Navaid Zafar Ansari
2023-04-06	Dompdf 1.2.1 – Remote Code Execution (RCE)	webapps	php	Ravindu Wickramasinghe
2023-04-06	Osprey Pump Controller 1.0.1 – (userName) Blind Command Injection	remote	hardware	LiquidWorm
2023-04-06	Employee Task Management System v1.0 – Broken Authentication	webapps	php	Muhammad Navaid Zafar Ansari
2023-04-06	Arris Router Firmware 9.1.103 – Remote Code Execution (RCE) (Authenticated)	remote	hardware	Yerodin Richards
2023-04-06	Osprey Pump Controller 1.0.1 – (pseudonym) Semi-blind Command Injection	remote	hardware	LiquidWorm
2023-04-06	Auto Dealer Management System v1.0 – SQL Injection on manage_user.php	webapps	php	Muhammad Navaid Zafar Ansari