Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24745Exploits

日期	标题	类型	平台	作者
2023-04-05	Online Eyewear Shop 1.0 – SQL Injection (Unauthenticated)	webapps	php	Muhammad Navaid Zafar Ansari
2023-04-05	Apache Tomcat 10.1 – Denial Of Service	dos	multiple	Cristian Giustini
2023-04-05	bgERP v22.31 (Orlovets) – Cookie Session vulnerability & Cross-Site Scripting (XSS)	webapps	php	nu11secur1ty
2023-04-05	ImageMagick 7.1.0-49 – Arbitrary File Read	local	multiple	Cristian Giustini
2023-04-05	Liferay Portal 6.2.5 – Insecure Permissions	webapps	java	Fu2x2000
2023-04-05	CKEditor 5 35.4.0 – Cross-Site Scripting (XSS)	webapps	php	Manish Pathak
2023-04-05	D-Link DIR-846 – Remote Command Execution (RCE) vulnerability	remote	hardware	Françoa Taffarel
2023-04-05	SOUND4 LinkAndShare Transmitter 1.1.2 – Format String Stack Buffer Overflow	remote	hardware	LiquidWorm
2023-04-05	Bus Pass Management System 1.0 – Stored Cross-Site Scripting (XSS)	webapps	php	Matteo Conti
2023-04-05	Answerdev 1.0.3 – Account Takeover	webapps	go	Eduardo Pérez-Malumbres Cervera
2023-04-05	Calendar Event Multi View 1.4.07 – Unauthenticated Arbitrary Event Creation to Cross-Site Scripting (XSS)	webapps	php	Mostafa Farzaneh
2023-04-05	ImageMagick 7.1.0-49 – DoS	dos	php	nu11secur1ty
2023-04-05	zstore 6.6.0 – Cross-Site Scripting (XSS)	webapps	php	nu11secur1ty
2023-04-03	WP-file-manager v6.9 – Unauthenticated Arbitrary File Upload leading to RCE	webapps	php	BLY
2023-04-03	Zstore 6.5.4 – Reflected Cross-Site Scripting (XSS)	webapps	php	nu11secur1ty
2023-04-03	Grand Theft Auto III/Vice City Skin File v1.1 – Buffer Overflow	local	windows	Knursoft
2023-04-03	HotKey Clipboard 2.1.0.6 – Privilege Escalation Unquoted Service Path	local	windows	Wim Jaap van Vliet
2023-04-03	ManageEngin AMP 4.3.0 – File-path-traversal	webapps	multiple	nu11secur1ty
2023-04-03	Nacos 2.0.3 – Access Control vulnerability	webapps	java	Jenson Zhao
2023-04-03	Active eCommerce CMS 6.5.0 – Stored Cross-Site Scripting (XSS)	webapps	multiple	Sajibe Kanti
2023-04-03	Metform Elementor Contact Form Builder v3.1.2 – Unauthenticated Stored Cross-Site Scripting (XSS)	webapps	php	Mohammed Chemouri
2023-04-03	ERPGo SaaS 3.9 – CSV Injection	webapps	php	Sajibe Kanti
2023-04-03	Windows 11 10.0.22000 – Backup service Privilege Escalation	local	windows	nu11secur1ty
2023-04-03	AmazCart CMS 3.4 – Cross-Site-Scripting (XSS)	webapps	php	Sajibe Kanti
2023-04-03	ChiKoi v1.0 – SQL Injection	webapps	php	nu11secur1ty
2023-04-03	Paid Memberships Pro v2.9.8 (WordPress Plugin) – Unauthenticated SQL Injection	webapps	php	r3nt0n
2023-04-03	SQL Monitor 12.1.31.893 – Cross-Site Scripting (XSS)	webapps	multiple	geeklinuxman
2023-04-03	pimCore v5.4.18-skeleton – Sensitive Cookie with Improper SameSite Attribute	webapps	php	nu11secur1ty
2023-04-03	GLPI Cartography Plugin v6.0.0 – Unauthenticated Remote Code Execution (RCE)	webapps	php	Nuri Çilengir
2023-04-03	sudo 1.8.0 to 1.9.12p1 – Privilege Escalation	local	linux	n3m1.sys
2023-04-03	GLPI v10.0.2 – SQL Injection (Authentication Depends on Configuration)	webapps	php	Nuri Çilengir
2023-04-03	Art Gallery Management System Project v1.0 – SQL Injection (editid) authenticated	webapps	php	Rahul Patwari
2023-04-03	GLPI Activity v3.1.0 – Authenticated Local File Inclusion on Activity plugin	webapps	php	Nuri Çilengir
2023-04-03	Art Gallery Management System Project v1.0 – SQL Injection (cid) Unauthenticated	webapps	php	Rahul Patwari
2023-04-03	GLPI Glpiinventory v1.0.1 – Unauthenticated Local File Inclusion	webapps	php	Nuri Çilengir
2023-04-03	Art Gallery Management System Project v1.0 – Reflected Cross-Site Scripting (XSS)	webapps	php	Rahul Patwari
2023-04-03	GLPI 4.0.2 – Unauthenticated Local File Inclusion on Manageentities plugin	webapps	php	Nuri Çilengir
2023-04-03	MyBB 1.8.32 – Remote Code Execution (RCE) (Authenticated)	webapps	php	lUc1f3r11
2023-04-03	Roxy WI v6.1.1.0 – Unauthenticated Remote Code Execution (RCE) via ssl_cert Upload	webapps	Python	Nuri Çilengir
2023-04-03	Microsoft Exchange Active Directory Topology 15.02.1118.007 – ‘Service MSExchangeADTopology’ Unquoted Service Path	local	windows	Milad karimi
2023-04-03	Roxy WI v6.1.0.0 – Unauthenticated Remote Code Execution (RCE)	webapps	Python	Nuri Çilengir
2023-04-03	SLIMSV 9.5.2 – Cross-Site Scripting (XSS)	webapps	php	nu11secur1ty
2023-04-03	Roxy WI v6.1.0.0 – Improper Authentication Control	webapps	Python	Nuri Çilengir
2023-04-03	Chromacam 4.0.3.0 – PsyFrameGrabberService Unquoted Service Path	local	windows	Laguin Benjamin
2023-04-03	sleuthkit 4.11.1 – Command Injection	local	multiple	Dino Barlattani
2023-04-03	Solaris 10 libXm – Buffer overflow Local privilege escalation	local	solaris	Marco Ivaldi
2023-04-01	XCMS v1.83 – Remote Command Execution (RCE)	webapps	php	Onurcan
2023-04-01	AD Manager Plus 7122 – Remote Code Execution (RCE)	remote	java	Chan Nyein Wai
2023-04-01	ELSI Smart Floor V3.3.3 – Stored Cross-Site Scripting (XSS)	webapps	aspx	Rob, CTRL Group
2023-04-01	Splashtop 8.71.12001.0 – Unquoted Service Path	local	windows	A.I. hernandez