Exploits

日期	标题	类型	平台	作者
2015-06-03	Jildi FTP Client – Buffer Overflow (PoC)	dos	windows	metacom
2015-06-03	VFront 0.99.2 – Cross-Site Request Forgery / Persistent Cross-Site Scripting	webapps	php	hyp3rlinx
2015-06-03	Seagate Central 2014.0410.0026-F – Remote Facebook Access Token	webapps	hardware	Jeremy Brown
2015-06-03	Seagate Central 2014.0410.0026-F – Remote Command Execution	remote	hardware	Jeremy Brown
2015-06-03	SysAid Help Desk Administrator Portal < 14.4 - Arbitrary File Upload (Metasploit)	webapps	multiple	Metasploit
2015-06-03	WebDrive 12.2 (B4172) – Buffer Overflow (PoC)	dos	windows	Vulnerability-Lab
2015-06-02	Linux Kernel (PonyOS 3.0) – TTY ‘ioctl()’ Local Privilege Escalation	local	linux	Hacker Fantastic
2015-06-02	WordPress Plugin LeagueManager 3.9.11 – SQL Injection	webapps	php	javabudd
2015-06-01	Linux Kernel (PonyOS 3.0) – ELF Loader Local Privilege Escalation	local	linux	Hacker Fantastic
2015-06-01	Linux Kernel (PonyOS 3.0) – VFS Permissions Local Privilege Escalation	local	linux	Hacker Fantastic
2015-06-01	WordPress Plugin dzs-zoomsounds 2.0 – Arbitrary File Upload	webapps	php	nabil chris
2015-06-01	WebDrive 12.2 (Build #4172) – Remote Buffer Overflow	remote	windows	metacom
2015-06-01	IBM Security AppScan Standard 9.0.2 – OLE Automation Array Remote Code Execution	remote	windows	Naser Farhadi
2015-06-01	Aruba ClearPass Policy Manager – Persistent Cross-Site Scripting	webapps	hardware	Cristiano Maruti
2015-06-01	D-Link Devices – HNAP SOAPAction-Header Command Execution (Metasploit)	remote	hardware	Metasploit
2015-06-01	Airties – login-cgi Buffer Overflow (Metasploit)	remote	hardware	Metasploit
2015-06-01	Realtek SDK – Miniigd UPnP SOAP Command Execution (Metasploit)	remote	linux	Metasploit
2015-05-29	ESC 8832 Data Controller – Multiple Vulnerabilities	webapps	hardware	Balazs Makany
2015-05-29	JSPMyAdmin 1.1 – Multiple Vulnerabilities	webapps	jsp	hyp3rlinx
2015-05-29	TCPDF Library 5.9 – Arbitrary File Deletion	webapps	php	Filippo Roncari
2015-05-29	Private Shell SSH Client 3.3 – Crash (PoC)	dos	windows	3unnym00n
2015-05-28	Peercast < 0.1211 - Format String	dos	windows	GulfTech Security
2015-05-27	WordPress Plugin Free Counter 1.1 – Persistent Cross-Site Scripting	webapps	php	Panagiotis Vagenas
2015-05-26	WordPress Plugin Simple Photo Gallery 1.7.8 – Blind SQL Injection	webapps	php	woodspeed
2015-05-26	WordPress Plugin church_admin 0.800 – Persistent Cross-Site Scripting	webapps	php	woodspeed
2015-05-26	WordPress Plugin MailChimp Subscribe Forms 1.1 – Remote Code Execution	webapps	php	woodspeed
2015-05-26	Apache JackRabbit – WebDAV XML External Entity	webapps	java	Mikhail Egorov
2015-05-26	WordPress Plugin GigPress 2.3.8 – SQL Injection	webapps	php	Adrián M. F.
2015-05-26	Acoustica Pianissimo 1.0 Build 12 – ‘Registration ID’ Buffer Overflow (PoC)	dos	windows	LiquidWorm
2015-05-26	WordPress Plugin Landing Pages 1.8.4 – Multiple Vulnerabilities	webapps	php	Adrián M. F.
2015-05-26	WordPress Plugin NewStatPress 0.9.8 – Multiple Vulnerabilities	webapps	php	Adrián M. F.
2015-05-26	WordPress Plugin Video Gallery 2.8 – Arbitrary Mail Relay	webapps	php	Claudio Viviani
2015-05-26	ClickHeat 1.13+ – Remote Command Execution	webapps	perl	Calum Hutton
2015-05-26	Sendio ESP – Information Disclosure	webapps	jsp	Core Security
2015-05-25	Microsoft Windows – Local Privilege Escalation (MS15-010)	local	windows	Sky lake
2015-05-25	FTP Media Server 3.0 – Authentication Bypass / Denial of Service	remote	ios	Wh1t3Rh1n0 (Michael Allen)
2015-05-23	Fuse 2.9.3-15 – Local Privilege Escalation	local	linux	Tavis Ormandy
2015-05-23	Apport (Ubuntu 14.04/14.10/15.04) – Race Condition Privilege Escalation	local	linux	rebel
2015-05-21	WordPress Plugin WP Symposium 15.1 – ‘&show=’ SQL Injection	webapps	php	Hannes Trunde
2015-05-21	Forma LMS 1.3 – Multiple SQL Injections	webapps	php	Filippo Roncari
2015-05-21	WordPress Plugin WP Membership 1.2.3 – Multiple Vulnerabilities	webapps	php	Panagiotis Vagenas
2015-05-20	ZOC SSH Client – Buffer Overflow (SEH) (PoC)	dos	windows	Dolev Farhi
2015-05-20	WordPress Plugin FeedWordPress 2015.0426 – SQL Injection	webapps	php	Adrián M. F.
2015-05-20	Phoenix Contact ILC 150 ETH PLC – Remote Control Script	remote	hardware	Photubias
2015-05-20	Comodo GeekBuddy < 4.18.121 - Local Privilege Escalation	local	windows	Jeremy Brown
2015-05-19	Microsoft Internet Explorer 11 – Crash (PoC) (1)	dos	windows	Garage4Hackers
2015-05-19	Microsoft Windows 8.0/8.1 (x64) – ‘TrackPopupMenu’ Local Privilege Escalation (MS14-058)	local	windows_x86-64	ryujin
2015-05-18	ManageEngine EventLog Analyzer 10.0 Build 10001 – Cross-Site Request Forgery	webapps	windows	Akash S. Chavan
2015-05-18	OYO File Manager 1.1 (iOS / Android) – Multiple Vulnerabilities	webapps	multiple	Vulnerability-Lab
2015-05-18	Wireless Photo Transfer 3.0 iOS – Local File Inclusion	webapps	ios	Vulnerability-Lab