Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2022-04-19	Microsoft Exchange Mailbox Assistants 15.0.847.40 – ‘Service MSExchangeMailboxAssistants’ Unquoted Service Path	local	windows	Antonio Cuomo
2022-04-19	WordPress Plugin Elementor 3.6.2 – Remote Code Execution (RCE) (Authenticated)	webapps	php	AkuCyberSec
2022-04-19	PKP Open Journals System 3.3 – Cross-Site Scripting (XSS)	webapps	php	Hemant Kashyap
2022-04-19	Delta Controls enteliTOUCH 3.40.3935 – Cookie User Password Disclosure	remote	hardware	LiquidWorm
2022-04-19	Delta Controls enteliTOUCH 3.40.3935 – Cross-Site Scripting (XSS)	remote	hardware	LiquidWorm
2022-04-19	Delta Controls enteliTOUCH 3.40.3935 – Cross-Site Request Forgery (CSRF)	remote	hardware	LiquidWorm
2022-04-19	REDCap 11.3.9 – Stored Cross Site Scripting	webapps	php	Kendrick Lam
2022-04-19	WordPress Plugin Popup Maker 1.16.5 – Stored Cross-Site Scripting (Authenticated)	webapps	php	Roel van Beurden
2022-04-19	Verizon 4G LTE Network Extender – Weak Credentials Algorithm	remote	hardware	LiquidWorm
2022-04-19	WordPress Plugin Videos sync PDF 1.7.4 – Stored Cross Site Scripting (XSS)	webapps	php	UnD3sc0n0c1d0
2022-04-19	ManageEngine ADSelfService Plus 6.1 – User Enumeration	remote	windows	Metin Yunus Kandemir
2022-04-19	Scriptcase 9.7 – Remote Code Execution (RCE)	webapps	php	luckyt0mat0
2022-04-19	Easy Appointments 1.4.2 – Information Disclosure	webapps	php	Alexandre ZANNI
2022-04-19	Zyxel NWA-1100-NH – Command Injection	remote	hardware	Ahmed Alroky
2022-04-19	EaseUS Data Recovery – ‘ensserver.exe’ Unquoted Service Path	local	windows	bios
2022-04-19	WordPress Plugin Motopress Hotel Booking Lite 4.2.4 – SQL Injection	webapps	php	Mohsen Dehghani
2022-04-19	PTPublisher v2.3.4 – Unquoted Service Path	local	windows	bios
2022-04-19	Microsoft Exchange Active Directory Topology 15.0.847.40 – ‘Service MSExchangeADTopology’ Unquoted Service Path	local	windows	Antonio Cuomo
2022-04-11	Razer Sila – Command Injection	webapps	hardware	Kevin Randall
2022-04-11	Razer Sila – Local File Inclusion (LFI)	webapps	hardware	Kevin Randall
2022-04-11	Telesquare TLR-2855KS6 – Arbitrary File Deletion	webapps	hardware	Momen Eldawakhly
2022-04-11	Telesquare TLR-2855KS6 – Arbitrary File Creation	webapps	hardware	Momen Eldawakhly
2022-04-11	Franklin Fueling Systems Colibri Controller Module 1.8.19.8580 – Local File Inclusion (LFI)	remote	linux	Momen Eldawakhly
2022-04-11	SAM SUNNY TRIPOWER 5.0 – Insecure Direct Object Reference (IDOR)	webapps	hardware	Momen Eldawakhly
2022-04-11	MiniTool Partition Wizard – Unquoted Service Path	local	windows	Saud Alenazi
2022-04-07	Zenario CMS 9.0.54156 – Remote Code Execution (RCE) (Authenticated)	webapps	php	minhnq22
2022-04-07	binutils 2.37 – Objdump Segmentation Fault	local	linux	Marlon Petry
2022-04-07	Opmon 9.11 – Cross-site Scripting	remote	multiple	Marlon Petry
2022-04-07	Kramer VIAware – Remote Code Execution (RCE) (Root)	remote	hardware	sharkmoos
2022-04-07	ICEHRM 31.0.0.0S – Cross-site Request Forgery (CSRF) to Account Deletion	webapps	php	Devansh Bordia
2022-04-07	qdPM 9.2 – Cross-site Request Forgery (CSRF)	webapps	php	Chetanya Sharma
2022-04-07	minewebcms 1.15.2 – Cross-site Scripting (XSS)	webapps	php	Chetanya Sharma
2022-04-07	Sherpa Connector Service v2020.2.20328.2050 – Unquoted Service Path	local	windows	Manthan Chhabra
2022-04-07	KLiK Social Media Website 1.0 – ‘Multiple’ SQLi	webapps	php	corpse
2022-03-30	WordPress Plugin Easy Cookie Policy 1.6.2 – Broken Access Control to Stored XSS	webapps	php	0xB9
2022-03-30	Kramer VIAware 2.5.0719.1034 – Remote Code Execution (RCE)	remote	hardware	sharkmoos
2022-03-30	PostgreSQL 9.3-11.7 – Remote Code Execution (RCE) (Authenticated)	remote	multiple	b4keSn4ke
2022-03-30	CSZ CMS 1.2.9 – ‘Multiple’ Blind SQLi(Authenticated)	webapps	php	Rahad Chowdhury
2022-03-30	WordPress Plugin admin-word-count-column 2.2 – Local File Read	webapps	php	Hassan Khan Yusufzai
2022-03-30	WordPress Plugin video-synchro-pdf 1.7.4 – Local File Inclusion	webapps	php	Hassan Khan Yusufzai
2022-03-30	WordPress Plugin cab-fare-calculator 1.0.3 – Local File Inclusion	webapps	php	Hassan Khan Yusufzai
2022-03-30	WordPress Plugin Curtain 1.0.2 – Cross-site Request Forgery (CSRF)	webapps	php	Hassan Khan Yusufzai
2022-03-30	Drupal avatar_uploader v7.x-1.0-beta8 – Cross Site Scripting (XSS)	webapps	php	Milad karimi
2022-03-30	Atom CMS 2.0 – Remote Code Execution (RCE)	webapps	php	Ashish Koli
2022-03-30	ImpressCMS 1.4.2 – Remote Code Execution (RCE)	webapps	php	Egidio Romano
2022-03-23	WordPress Plugin amministrazione-aperta 3.7.3 – Local File Read – Unauthenticated	webapps	php	Hassan Khan Yusufzai
2022-03-23	ProtonVPN 1.26.0 – Unquoted Service Path	local	windows	gemreda
2022-03-22	Sysax FTP Automation 6.9.0 – Privilege Escalation	local	windows	bzyo
2022-03-22	Ivanti Endpoint Manager 4.6 – Remote Code Execution (RCE)	remote	multiple	d7x
2022-03-22	iRZ Mobile Router – CSRF to RCE	remote	hardware	John Jackson