Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2016-06-29	Ubiquiti Administration Portal – Remote Command Execution (via Cross-Site Request Forgery)	webapps	cgi	KoreLogic
2016-06-28	Untangle NGFW 12.1.0 Beta – ‘execEvil()’ Command Injection	webapps	json	Matt Bush
2016-06-27	BigTree CMS 4.2.11 – SQL Injection	webapps	php	Mehmet Ince
2016-06-27	PInfo 0.6.9-5.1 – Local Buffer Overflow	local	linux	Juan Sacco
2016-06-27	My Little Forum 2.3.5 – PHP Command Injection	webapps	php	hyp3rlinx
2016-06-27	Panda Security (Multiple Products) – Local Privilege Escalation	local	windows	Security-Assessment.com
2016-06-27	Kagao 3.0 – Multiple Vulnerabilities	webapps	php	N4TuraL
2016-06-27	VUPlayer 2.49 (Windows 7) – ‘.m3u’ Local Buffer Overflow (DEP Bypass)	local	windows	secfigo
2016-06-27	Mediacoder 0.8.43.5830 – ‘.m3u’ Local Buffer Overflow (SEH)	local	windows	Sibusiso Sishi
2016-06-27	Option CloudGate CG0192-11897 – Multiple Vulnerabilities	webapps	hardware	LiquidWorm
2016-06-27	CodoForum 3.4 – Persistent Cross-Site Scripting	webapps	php	Ahmed Sherif
2016-06-27	iBilling 3.7.0 – Persistent Cross-Site Scripting / Reflected Cross-Site Scripting	webapps	php	Bikramaditya Guha
2016-06-27	Magnet Networks Tesley CPVA 642 Router – Weak WPA-PSK Passphrase Algorithm	dos	hardware	Matt O'Connor
2016-06-27	OPAC KpwinSQL – SQL Injection	webapps	php	bRpsd
2016-06-27	WordPress Plugin Ultimate Product Catalog 3.8.6 – Arbitrary File Upload	webapps	php	i0akiN SEC-LABORATORY
2016-06-27	Riverbed SteelCentral NetProfiler & NetExpress 10.8.7 – Multiple Vulnerabilities	webapps	php	Security-Assessment.com
2016-06-27	SugarCRM 6.5.18 – PHP Code Injection	webapps	php	Egidio Romano
2016-06-27	HNB 1.9.18-10 – Local Buffer Overflow	local	linux	Juan Sacco
2016-06-23	Alibaba Clone B2B Script – Arbitrary File Disclosure	webapps	php	Meisam Monsef
2016-06-23	FinderView – Multiple Vulnerabilities	webapps	php	HaHwul
2016-06-23	XuezhuLi FileSharing – Cross-Site Request Forgery (Add User)	webapps	php	HaHwul
2016-06-23	XuezhuLi FileSharing – Directory Traversal	webapps	php	HaHwul
2016-06-23	Getsimple CMS 3.3.10 – Arbitrary File Upload	webapps	php	s0nk3y
2016-06-22	Wolf CMS 0.8.2 – Arbitrary File Upload (Metasploit)	remote	php	s0nk3y
2016-06-22	PCMan FTP Server 2.0.7 – ‘ls’ Remote Buffer Overflow (Metasploit)	remote	windows_x86-64	quanyechavshuo
2016-06-22	Microsoft Internet Explorer 11 (Windows 10) – VBScript Memory Corruption (MS16-051)	local	windows	Brian Pak
2016-06-21	Banshee 2.6.2 – ‘.mp3’ Crash (PoC)	dos	linux	Ilca Lucian
2016-06-21	DarkComet Server – Arbitrary File Download (Metasploit)	remote	windows	Jos Wetzels
2016-06-21	YetiForce CRM < 3.1 - Persistent Cross-Site Scripting	webapps	php	David Silveiro
2016-06-21	Radiant CMS 1.1.3 – Multiple Persistent Cross-Site Scripting Vulnerabilities	webapps	ruby	David Silveiro
2016-06-21	SAP NetWeaver AS JAVA 7.1 < 7.5 - Directory Traversal	webapps	java	ERPScan
2016-06-21	SAP NetWeaver AS JAVA 7.1 < 7.5 - 'ctcprotocol Servlet' XML External Entity	webapps	java	ERPScan
2016-06-21	Microsoft Internet Explorer 11 – Garbage Collector Attribute Type Confusion (MS16-063)	dos	windows	Skylined
2016-06-21	Microsoft Windows – Custom Font Disable Policy Bypass	dos	windows_x86	Google Security Research
2016-06-21	Linux Kernel – ‘ecryptfs’ ‘/proc/$pid/environ’ Local Privilege Escalation	local	linux	Google Security Research
2016-06-21	Microsoft Windows Kernel – ‘ATMFD.dll’ NamedEscape 0x250C Pool Corruption (MS16-074)	dos	windows	Google Security Research
2016-06-21	Microsoft Windows – ‘gdi32.dll’ Multiple DIB-Related EMF Record Handlers Heap Out-of-Bounds Reads/Memory Disclosure (MS16-074)	dos	windows	Google Security Research
2016-06-21	Joomla! Component com_publisher – SQL Injection	webapps	php	s0nk3y
2016-06-21	Yona CMS – Cross-Site Request Forgery	webapps	php	s0nk3y
2016-06-21	IonizeCMS 1.0.8 – Cross-Site Request Forgery (Add Admin)	webapps	php	s0nk3y
2016-06-20	ACROS Security 0patch 2016.05.19.539 – ‘0PatchServicex64.exe’ Unquoted Service Path Privilege Escalation	local	windows_x86-64	LiquidWorm
2016-06-20	Symphony CMS 2.6.7 – Session Fixation	webapps	php	hyp3rlinx
2016-06-20	Airia – Arbitrary File Upload	webapps	php	HaHwul
2016-06-20	Airia – Cross-Site Request Forgery (Add Content)	webapps	php	HaHwul
2016-06-20	Tomabo MP4 Player 3.11.6 – Local Stack Overflow (SEH) (Metasploit)	local	windows	s0nk3y
2016-06-20	WordPress Plugin Premium SEO Pack 1.9.1.3 – wp_options Overwrite	webapps	php	wp0Day.com
2016-06-20	Joomla! Component com_bt_media 1.0 – SQL Injection	webapps	php	Persian Hack Team
2016-06-20	sNews CMS 1.7.1 – Multiple Vulnerabilities	webapps	php	hyp3rlinx
2016-06-20	WordPress Plugin Ultimate Product Catalog 3.8.1 – Privilege Escalation	webapps	php	i0akiN SEC-LABORATORY
2016-06-17	op5 7.1.9 – Configuration Command Execution (Metasploit)	remote	linux	Metasploit