Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24443Exploits
日期 标题 类型 平台 作者
2023-03-23

wkhtmltopdf 0.12.6 – Server Side Request Forgery
  • webapps
  • asp
    		• Momen Eldawakhly
    2023-03-23

    WorkOrder CMS 0.1.0 – SQL Injection
  • webapps
  • php
    		• Chokri Hammedi
    2023-03-23

    MAN-EAM-0003 V3.2.4 – XXE
  • webapps
  • xml
    		• Ahmed Alroky
    2023-03-23

    Owlfiles File Manager 12.0.1 – Multiple Vulnerabilities
  • webapps
  • ios
    		• Chokri Hammedi
    2023-03-22

    Linksys AX3200 V1.1.00 – Command Injection
  • webapps
  • hardware
    		• Ahmed Alroky
    2023-03-22

    SoX 14.4.2 – Denial Of Service
  • dos
  • hardware
    		• LiquidWorm
    2023-03-22

    VIAVIWEB Wallpaper Admin 1.0 – Multiple Vulnerabilities
  • webapps
  • php
    		• Edd13Mora
    2023-02-20

    pfBlockerNG 2.1.4_26 – Remote Code Execution (RCE)
  • webapps
  • php
    		• IHTeam
    2022-11-11

    MSNSwitch Firmware MNT.2408 – Remote Code Execution
  • remote
  • hardware
    		• Eli Fulkerson
    2022-11-11

    Open Web Analytics 1.7.3 – Remote Code Execution
  • webapps
  • php
    		• Jacob Ebben
    2022-11-11

    SmartRG Router SR510n 2.6.13 – Remote Code Execution
  • remote
  • hardware
    		• Yerodin Richards
    2022-11-11

    CVAT 2.0 – Server Side Request Forgery
  • webapps
  • Python
    		• Emir Polat
    2022-11-11

    IOTransfer V4 – Unquoted Service Path
  • local
  • windows
    		• BLAY ABU SAFIAN
    2022-11-11

    AVEVA InTouch Access Anywhere Secure Gateway 2020 R2 – Path Traversal
  • remote
  • hardware
    		• Jens Regel
    2022-10-17

    WordPress Plugin ImageMagick-Engine 1.7.4 – Remote Code Execution (RCE) (Authenticated)
  • webapps
  • php
    		• ABDO10
    2022-10-06

    WordPress Plugin Zephyr Project Manager 3.2.42 – Multiple SQLi
  • webapps
  • php
    		• Rizacan Tufan
    2022-09-23

    Testa 3.5.1 Online Test Management System – Reflected Cross-Site Scripting (XSS)
  • webapps
  • php
    		• Ashkan Moghaddas
    2022-09-23

    Aero CMS v0.0.1 – SQLi
  • webapps
  • php
    		• nu11secur1ty
    2022-09-23

    WordPress Plugin 3dady real-time web stats 1.0 – Stored Cross Site Scripting (XSS)
  • webapps
  • php
    		• UnD3sc0n0c1d0
    2022-09-23

    WordPress Plugin WP-UserOnline 2.88.0 – Stored Cross Site Scripting (XSS)
  • webapps
  • php
    		• UnD3sc0n0c1d0
    2022-09-23

    Teleport v10.1.1 – Remote Code Execution (RCE)
  • remote
  • multiple
    		• Brandon Roach
    2022-09-23

    Feehi CMS 2.1.1 – Remote Code Execution (Authenticated)
  • webapps
  • php
    		• yuyudhn
    2022-09-23

    TP-Link Tapo c200 1.1.15 – Remote Code Execution (RCE)
  • webapps
  • hardware
    		• hacefresko
    2022-09-21

    WiFiMouse 1.8.3.4 – Remote Code Execution (RCE)
  • remote
  • windows
    		• FEBIN MON SAJI
    2022-09-21

    Wifi HD Wireless Disk Drive 11 – Local File Inclusion
  • remote
  • ios
    		• Chokri Hammedi
    2022-09-20

    Airspan AirSpot 5410 version 0.3.4.1 – Remote Code Execution (RCE)
  • remote
  • linux
    		• Samy Younsi
    2022-09-20

    Mobile Mouse 3.6.0.4 – Remote Code Execution (RCE)
  • remote
  • windows
    		• Chokri Hammedi
    2022-09-20

    Blink1Control2 2.2.7 – Weak Password Encryption
  • local
  • multiple
    		• p1ckzi
    2022-09-20

    Bookwyrm v0.4.3 – Authentication Bypass
  • webapps
  • multiple
    		• Akshay Ravi
    2022-09-20

    Buffalo TeraStation Network Attached Storage (NAS) 1.66 – Authentication Bypass
  • webapps
  • hardware
    		• Jordan Glover
    2022-09-15

    Gitea 1.16.6 – Remote Code Execution (RCE) (Metasploit)
  • webapps
  • multiple
    		• samguy
    2022-09-02

    WordPress Plugin Netroics Blog Posts Grid 1.0 – Stored Cross-Site Scripting (XSS)
  • webapps
  • php
    		• Luqman Hakim Zahari
    2022-09-02

    WordPress Plugin Testimonial Slider and Showcase 2.2.6 – Stored Cross-Site Scripting (XSS)
  • webapps
  • php
    		• Luqman Hakim Zahari
    2022-09-02

    Sophos XG115w Firewall 17.0.10 MR-10 – Authentication Bypass
  • webapps
  • hardware
    		• Aryan Chehreghani
    2022-08-09

    PAN-OS 10.0 – Remote Code Execution (RCE) (Authenticated)
  • remote
  • multiple
    		• UnD3sc0n0c1d0
    2022-08-09

    ThingsBoard 3.3.1 ‘description’ – Stored Cross-Site Scripting (XSS)
  • webapps
  • multiple
    		• Steffen Langenfeld
    2022-08-09

    ThingsBoard 3.3.1 ‘name’ – Stored Cross-Site Scripting (XSS)
  • webapps
  • multiple
    		• Steffen Langenfeld
    2022-08-09

    Feehi CMS 2.1.1 – Stored Cross-Site Scripting (XSS)
  • webapps
  • php
    		• Shivam Singh
    2022-08-09

    Prestashop blockwishlist module 2.1.0 – SQLi
  • webapps
  • php
    		• Karthik UJ
    2022-08-02

    uftpd 2.10 – Directory Traversal (Authenticated)
  • remote
  • linux
    		• Aaron Esau
    2022-08-01

    mPDF 7.0 – Local File Inclusion
  • webapps
  • php
    		• Musyoka Ian
    2022-08-01

    CuteEditor for PHP 6.6 – Directory Traversal
  • webapps
  • php
    		• Stefan Hesselman
    2022-08-01

    WordPress Plugin Duplicator 1.4.7 – Information Disclosure
  • webapps
  • php
    		• SecuriTrust
    2022-08-01

    WordPress Plugin Duplicator 1.4.6 – Unauthenticated Backup Download
  • webapps
  • php
    		• SecuriTrust
    2022-08-01

    Wavlink WN530HG4 – Password Disclosure
  • webapps
  • hardware
    		• Ahmed Alroky
    2022-08-01

    Wavlink WN533A8 – Password Disclosure
  • webapps
  • hardware
    		• Ahmed Alroky
    2022-08-01

    Wavlink WN533A8 – Cross-Site Scripting (XSS)
  • webapps
  • hardware
    		• Ahmed Alroky
    2022-08-01

    Easy Chat Server 3.1 – Remote Stack Buffer Overflow (SEH)
  • remote
  • windows
    		• r00tpgp
    2022-08-01

    Webmin 1.996 – Remote Code Execution (RCE) (Authenticated)
  • webapps
  • linux
    		• Emir Polat
    2022-08-01

    NanoCMS v0.4 – Remote Code Execution (RCE) (Authenticated)
  • webapps
  • php
    		• p1ckzi