Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2015-11-16	TECO TP3-PCLINK 2.1 – ‘.tpc’ Handling Buffer Overflow (PoC)	dos	windows	LiquidWorm
2015-11-16	Kaspersky AntiVirus – Certificate Handling Directory Traversal	dos	windows	Google Security Research
2015-11-16	D-Link DIR-825 (vC) – Multiple Vulnerabilities	remote	hardware	Samuel Huntley
2015-11-16	TECO SG2 FBD Client 3.51 – ‘.gfb’ Overwrite Buffer Overflow (SEH) (PoC)	dos	windows	LiquidWorm
2015-11-16	Idera Up.Time Monitoring Station 7.4 – ‘post2file.php’ Arbitrary File Upload (Metasploit)	remote	php	Metasploit
2015-11-16	D-Link DIR-866L – Multiple Buffer Overflow Vulnerabilities	remote	hardware	Samuel Huntley
2015-11-16	TECO SG2 LAD Client 3.51 – ‘.gen’ Overwrite Buffer Overflow (SEH)	local	windows	LiquidWorm
2015-11-16	Idera Up.Time Monitoring Station 7.0 – ‘post2file.php’ Arbitrary File Upload (Metasploit)	remote	php	Metasploit
2015-11-16	D-Link DIR-890L/R – Multiple Buffer Overflow Vulnerabilities	remote	hardware	Samuel Huntley
2015-11-16	CF Image Host 1.65 – PHP Command Injection	webapps	php	hyp3rlinx
2015-11-16	XCart 5.2.6 – Code Execution	remote	php	Curesec Research Team
2015-11-16	D-Link DIR-815 / DIR-850L – SSDP Command Injection	remote	hardware	Samuel Huntley
2015-11-16	CF Image Host 1.65 – Cross-Site Request Forgery	webapps	php	hyp3rlinx
2015-11-16	ClipperCMS 1.3.0 – Code Execution	remote	php	Curesec Research Team
2015-11-16	Microsoft Windows Kernel – ‘win32k.sys’ Malformed OS/2 Table TTF Font Processing Pool-Based Buffer Overflow (MS15-115)	dos	windows	Google Security Research
2015-11-16	ClipperCMS 1.3.0 – Multiple SQL Injections	webapps	php	Curesec Research Team
2015-11-16	Microsoft Windows Kernel – ‘win32k.sys’ Malformed TrueType Program TTF Font Processing Pool-Based Buffer Overflow (MS15-115)	dos	windows	Google Security Research
2015-11-16	AlegroCart 1.2.8 – Local/Remote File Inclusion	webapps	php	Curesec Research Team
2015-11-16	AlegroCart 1.2.8 – Multiple SQL Injections	webapps	php	Curesec Research Team
2015-11-16	foobar2000 1.3.9 – ‘.asx’ Local Crash (PoC)	dos	windows	Antonio Z.
2015-11-16	D-Link DGL5500 – HNAP Buffer Overflow	remote	hardware	Samuel Huntley
2015-11-16	foobar2000 1.3.9 – ‘.pls’ / ‘.m3u’ / ‘.m3u8’ Local Crash (PoC)	dos	windows	Antonio Z.
2015-11-16	D-Link DIR-880L – Multiple Buffer Overflow Vulnerabilities	remote	hardware	Samuel Huntley
2015-11-16	D-Link DIR-601 – Command Injection	remote	hardware	Samuel Huntley
2015-11-16	D-Link DIR-816L Wireless Router – Cross-Site Request Forgery	webapps	hardware	Bhadresh Patel
2015-11-13	b374k 3.2.3/2.8 (Web Shell) – Cross-Site Request Forgery / Command Injection	webapps	php	hyp3rlinx
2015-11-12	Sam Spade 1.14 – S-Lang Command Field Overflow (SEH)	dos	windows	Nipun Jaswal
2015-11-12	TACK 1.07 – Local Stack Buffer Overflow	dos	linux	Juan Sacco
2015-11-12	R-Scripts Vacation Rental Script 7R – Multiple Vulnerabilities	webapps	php	LiquidWorm
2015-11-11	FBZX 2.10 – Local Stack Buffer Overflow	dos	linux	Juan Sacco
2015-11-11	WordPress Plugin WP Fastest Cache 0.8.4.8 – Blind SQL Injection	webapps	php	Kacper Szurek
2015-11-10	YesWiki 0.2 – ‘template’ Directory Traversal	webapps	php	HaHwul
2015-11-10	Jenkins 1.633 – Credential Recovery	webapps	java	The Repo
2015-11-10	Huawei HG630a / HG630a-50 – Default SSH Admin Password on ADSL Modems	remote	hardware	Murat Sahin
2015-11-09	FreeType 2.6.1 – TrueType tt_sbit_decoder_load_bit_aligned Heap Out-of-Bounds Read	dos	multiple	Google Security Research
2015-11-09	TestLink 1.9.14 – Cross-Site Request Forgery	webapps	php	Aravind C Ajayan, Balagopal N
2015-11-09	WordPress Plugin Ajax Load More 2.8.1.1 – PHP Upload (Metasploit)	remote	php	Metasploit
2015-11-09	POP Peeper 4.0.1 – Overwrite (SEH)	dos	windows	Un_N0n
2015-11-09	Arris TG1682G Modem – Persistent Cross-Site Scripting	webapps	hardware	Nu11By73
2015-11-07	Google AdWords 6.2.0 API client libraries – XML eXternal Entity Injection	webapps	php	Dawid Golunski
2015-11-07	eBay Magento CE 1.9.2.1 – Unrestricted Cron Script (Code Execution / Denial of Service)	webapps	php	Dawid Golunski
2015-11-07	QNap QVR Client 5.1.0.11290 – Crash (PoC)	dos	windows	Luis Martínez
2015-11-07	Google AdWords API PHP client library 6.2.0 – Arbitrary PHP Code Execution	webapps	php	Dawid Golunski
2015-11-06	WordPress Plugin My Calendar 2.4.10 – Multiple Vulnerabilities	webapps	php	Mysticism
2015-11-06	NXFilter 3.0.3 – Multiple Cross-Site Scripting Vulnerabilities	webapps	jsp	hyp3rlinx
2015-11-06	NXFilter 3.0.3 – Cross-Site Request Forgery	webapps	jsp	hyp3rlinx
2015-11-06	SolarWinds Log and Event Manager/Trigeo SIM 6.1.0 – Remote Command Execution	remote	windows	Chris Graham
2015-11-05	vBulletin 5.1.x – Remote Code Execution	webapps	php	hhjj
2015-11-05	JSSE – SKIP-TLS	webapps	multiple	Ramon de C Valle
2015-11-05	OpenSSL – Alternative Chains Certificate Forgery	webapps	multiple	Ramon de C Valle