Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2015-03-04	BEdita CMS 3.5.0 – Multiple Vulnerabilities	webapps	php	Edric Teo
2015-03-04	Seagate Business NAS – Remote Command Execution (Metasploit)	remote	php	Metasploit
2015-03-04	Symantec Web Gateway 5 – ‘restore.php’ (Authenticated) Command Injection (Metasploit)	remote	linux	Metasploit
2015-03-04	SolarWinds Orion Service – SQL Injection	webapps	windows	Brandon Perry
2015-03-03	WordPress Plugin cp-multi-view-calendar 1.1.4 – SQL Injection	webapps	php	i0akiN SEC-LABORATORY
2015-03-03	WordPress Theme Photocrati 4.x – SQL Injection / Cross-Site Scripting	webapps	php	ayastar
2015-03-03	Sagem F@st 3304-V2 – Local File Inclusion	webapps	hardware	Loudiyi Mohamed
2015-03-03	PHPMoAdmin – Unauthorized Remote Code Execution	webapps	php	@u0x
2015-03-02	vBulletin vBSEO 4.x – ‘visitormessage.php’ Remote Code Injection	webapps	php	Net.Edit0r
2015-03-02	WordPress Plugin Calculated Fields Form 1.0.10 – SQL Injection	webapps	php	Ibrahim Raafat
2015-03-01	Seagate Business NAS 2014.00319 – Remote Code Execution	webapps	hardware	OJ Reeves
2015-02-28	Microsoft Word 2007 – RTF Object Confusion (ASLR + DEP Bypass)	local	windows	R-73eN
2015-02-28	GoAutoDial CE 2.0 – Arbitrary File Upload	webapps	php	R-73eN
2015-02-27	Persistent Systems Client Automation – Command Injection Remote Code Execution (Metasploit)	remote	windows	Ben Turner
2015-02-26	SQLite3 3.8.6 – Controlled Memory Corruption (PoC)	dos	linux	Andras Kabai
2015-02-26	Ubisoft Uplay 5.0 – Insecure File Permissions Privilege Escalation	local	windows	LiquidWorm
2015-02-26	Electronic Arts Origin Client 9.5.5 – Multiple Privilege Escalation Vulnerabilities	local	windows	LiquidWorm
2015-02-26	D-Link/TRENDnet – NCC Service Command Injection (Metasploit)	webapps	linux	Metasploit
2015-02-25	VFU 4.10-1.1 – Move Entry Buffer Overflow	local	linux	Bas van den Berg
2015-02-24	HP Client – Automation Command Injection (Metasploit)	remote	multiple	Metasploit
2015-02-23	phpBugTracker 1.6.0 – Multiple Vulnerabilities	webapps	php	Steffen Rösemann
2015-02-23	Zeuscart 4.0 – Multiple Vulnerabilities	webapps	php	Steffen Rösemann
2015-02-23	PHP DateTime – Use-After-Free	dos	php	Taoguang Chen
2015-02-23	Zabbix 2.0.5 – Cleartext ldap_bind_Password Password Disclosure (Metasploit)	webapps	php	Pablo González
2015-02-23	Clipbucket 2.7 RC3 0.9 – Blind SQL Injection	webapps	php	CWH Underground
2015-02-23	WeBid 1.1.1 – Unrestricted Arbitrary File Upload	webapps	php	CWH Underground
2015-02-23	Beehive Forum 1.4.4 – Persistent Cross-Site Scripting	webapps	php	Halil Dalabasmaz
2015-02-23	WordPress Plugin Easy Social Icons 1.2.2 – Cross-Site Request Forgery	webapps	php	Eric Flokstra
2015-02-22	Samsung iPOLiS 1.12.2 – iPOLiS XnsSdkDeviceIpInstaller ActiveX WriteConfigValue (PoC)	dos	windows	Praveen Darshanam
2015-02-20	Pentaho < 4.5.0 - User Console XML Injection	webapps	xml	K.d Long
2015-02-19	Piwigo 2.7.3 – Multiple Vulnerabilities	webapps	php	Steffen Rösemann
2015-02-19	CrushFTP 7.2.0 – Multiple Vulnerabilities	webapps	multiple	Rehan Ahmed
2015-02-19	Piwigo 2.7.3 – SQL Injection	webapps	php	Sven Schleier
2015-02-19	jQuery – jui_filter_rules PHP Code Execution	remote	php	Timo Schmid
2015-02-18	D-Link DSL-2640B ADSL Router – ‘ddnsmngr’ Remote DNS Change	webapps	hardware	Todor Donev
2015-02-18	Publish-It 3.6d – Local Buffer Overflow (SEH)	local	windows	Andrew Smith
2015-02-18	WordPress Plugin Duplicator 0.5.8 – Privilege Escalation	webapps	php	Kacper Szurek
2015-02-17	Java JMX – Server Insecure Configuration Java Code Execution (Metasploit)	remote	java	Metasploit
2015-02-17	X360 VideoPlayer – ActiveX Control Buffer Overflow (Metasploit)	remote	windows	Metasploit
2015-02-17	GuppY CMS 5.0.9 < 5.00.10 - Multiple Cross-Site Request Forgery Vulnerabilities	webapps	php	Brandon Murphy
2015-02-17	Guppy CMS 5.0.9/5.00.10 – Authentication Bypass/Change Email	webapps	php	Brandon Murphy
2015-02-16	eTouch SamePage 4.4.0.0.239 – Multiple Vulnerabilities	webapps	php	Brandon Perry
2015-02-16	WordPress Plugin Fancybox 3.0.2 – Persistent Cross-Site Scripting	webapps	php	NULLpOint7r
2015-02-16	WordPress Plugin WonderPlugin Audio Player 2.0 – Blind SQL Injection / Cross-Site Scripting	webapps	php	Kacper Szurek
2015-02-14	PCMan FTP Server 2.0.7 – ‘MKD’ Remote Buffer Overflow	remote	windows	R-73eN
2015-02-13	Realtek 11n Wireless LAN utility – Local Privilege Escalation	local	windows	Humberto Cabrera
2015-02-13	WordPress Plugin Webdorado Spider Event Calendar 1.4.9 – SQL Injection	webapps	php	Mateusz Lach
2015-02-12	Exponent CMS 2.3.1 – Multiple Cross-Site Scripting Vulnerabilities	webapps	php	Mayuresh Dani
2015-02-12	WordPress Plugin Video Gallery 2.7.0 – SQL Injection	webapps	php	Claudio Viviani
2015-02-11	IBM Endpoint Manager – Persistent Cross-Site Scripting	webapps	cgi	RedTeam Pentesting