Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24443Exploits
日期 标题 类型 平台 作者
2015-02-11

SixApart MovableType < 5.2.12 - Storable Perl Code Execution (Metasploit)
  • webapps
  • linux
    		• Metasploit
    2015-02-11

    IBM Endpoint Manager – Persistent Cross-Site Scripting
  • webapps
  • cgi
    		• RedTeam Pentesting
    2015-02-11

    Achat 0.150 beta7 – Remote Buffer Overflow (Metasploit)
  • remote
  • windows
    		• Metasploit
    2015-02-11

    Pandora FMS 5.1 SP1 – SQL Injection
  • webapps
  • php
    		• Vulnerability-Lab
    2015-02-11

    WordPress Plugin Survey and Poll 1.1 – Blind SQL Injection
  • webapps
  • php
    		• Securely (Yoo Hee man)
    2015-02-11

    MooPlayer 1.3.0 – ‘m3u’ Local Buffer Overflow (SEH) (1)
  • local
  • windows
    		• dogo h@ck
    2015-02-11

    SoftSphere DefenseWall FW/IPS 3.24 – Local Privilege Escalation
  • local
  • windows
    		• Parvez Anwar
    2015-02-10

    WordPress Plugin WP EasyCart – Unrestricted Arbitrary File Upload (Metasploit)
  • webapps
  • php
    		• Metasploit
    2015-02-10

    LG DVR LE6016D – Remote File Disclosure
  • webapps
  • hardware
    		• Yakir Wizman
    2015-02-09

    StaMPi – Local File Inclusion
  • webapps
  • php
    		• e . V . E . L
    2015-02-09

    u5CMS 3.9.3 – Multiple Persistent Cross-Site Scripting / Reflected Cross-Site Scripting Vulnerabilities
  • webapps
  • php
    		• LiquidWorm
    2015-02-09

    u5CMS 3.9.3 – ‘thumb.php’ Local File Inclusion
  • webapps
  • php
    		• LiquidWorm
    2015-02-09

    u5CMS 3.9.3 – Multiple SQL Injections
  • webapps
  • php
    		• LiquidWorm
    2015-02-09

    u5CMS 3.9.3 – ‘deletefile.php’ Arbitrary File Deletion
  • webapps
  • php
    		• LiquidWorm
    2015-02-09

    Fork CMS 3.8.5 – SQL Injection
  • webapps
  • php
    		• Sven Schleier
    2015-02-09

    RedaxScript CMS 2.2.0 – SQL Injection
  • webapps
  • php
    		• ITAS Team
    2015-02-09

    ManageEngine OpManager / Applications Manager / IT360 – ‘FailOverServlet’ Multiple Vulnerabilities
  • webapps
  • multiple
    		• Pedro Ribeiro
    2015-02-09

    Chamilo LMS 1.9.8 – Blind SQL Injection
  • webapps
  • php
    		• Kacper Szurek
    2015-02-09

    MooPlayer 1.3.0 – ‘m3u’ Buffer Overflow (SEH) (PoC)
  • dos
  • windows
    		• Samandeep Singh
    2015-02-08

    Achat 0.150 beta7 – Remote Buffer Overflow
  • remote
  • windows
    		• KAhara MAnhara
    2015-02-08

    Chemtool 1.6.14 – Memory Corruption
  • dos
  • linux
    		• Pablo González
    2015-02-07

    LG DVR LE6016D – Remote Users/Passwords Disclosure
  • remote
  • hardware
    		• Todor Donev
    2015-02-05

    Magento Server MAGMI Plugin – Multiple Vulnerabilities
  • webapps
  • php
    		• SECUPENT
    2015-02-05

    Shuttle Tech ADSL Modem/Router 915 WM – Remote DNS Change
  • remote
  • hardware
    		• Todor Donev
    2015-02-04

    BullGuard (Multiple Products) – Arbitrary Write Privilege Escalation
  • local
  • windows
    		• Parvez Anwar
    2015-02-04

    AVG Internet Security 2015.0.5315 – Arbitrary Write Privilege Escalation
  • local
  • windows
    		• Parvez Anwar
    2015-02-04

    K7 Computing (Multiple Products) – Arbitrary Write Privilege Escalation
  • local
  • windows
    		• Parvez Anwar
    2015-02-04

    Pragyan CMS 3.0 – SQL Injection
  • webapps
  • php
    		• Steffen Rösemann
    2015-02-03

    Microsoft Remote Desktop Services – Web Proxy IE Sandbox Escape (MS15-004) (Metasploit)
  • local
  • windows
    		• Metasploit
    2015-02-03

    Hewlett-Packard (HP) UCMDB – JMX-Console Authentication Bypass
  • webapps
  • windows
    		• Hans-Martin Muench
    2015-02-03

    ManageEngine Desktop Central 9 Build 90087 – Cross-Site Request Forgery
  • webapps
  • multiple
    		• Mohamed Idris
    2015-02-02

    Sefrengo CMS 1.6.1 – Multiple SQL Injections
  • webapps
  • php
    		• ITAS Team
    2015-02-01

    Symantec Altiris Agent 6.9 (Build 648) – Local Privilege Escalation
  • local
  • windows
    		• Parvez Anwar
    2015-01-31

    Trend Micro 8.0.1133 (Multiple Products) – Local Privilege Escalation
  • local
  • windows
    		• Parvez Anwar
    2015-01-30

    HP Data Protector 8.x – Remote Command Execution
  • remote
  • hp-ux
    		• Juttikhun Khamchaiyaphum
    2015-01-30

    McAfee Data Loss Prevention Endpoint – Arbitrary Write Privilege Escalation
  • local
  • windows
    		• Parvez Anwar
    2015-01-30

    Symantec Encryption Management Server < 3.2.0 MP6 - Remote Command Injection
  • remote
  • windows
    		• Paul Craig
    2015-01-30

    X360 VideoPlayer ActiveX Control 2.6 – ASLR + DEP Bypass
  • remote
  • windows
    		• Rh0
    2015-01-29

    FreeBSD – Multiple Vulnerabilities
  • dos
  • freebsd
    		• Core Security
    2015-01-29

    Microsoft Windows Server 2003 SP2 – Local Privilege Escalation (MS14-070)
  • local
  • windows
    		• KoreLogic
    2015-01-29

    UniPDF 1.1 – Crash (PoC) (SEH)
  • dos
  • windows
    		• bonze
    2015-01-29

    Exim ESMTP 4.80 – glibc gethostbyname Denial of Service
  • dos
  • linux
    		• 1n3
    2015-01-29

    Apple Mac OSX < 10.10.x - GateKeeper Bypass
  • local
  • osx
    		• Amplia Security Research
    2015-01-29

    ManageEngine Firewall Analyzer 8.0 – Directory Traversal / Cross-Site Scripting
  • webapps
  • hardware
    		• Ertebat Gostar Co
    2015-01-28

    ClearSCADA – Remote Authentication Bypass
  • remote
  • windows
    		• Jeremy Brown
    2015-01-27

    D-Link DSL-2740R – Remote DNS Change
  • remote
  • hardware
    		• Todor Donev
    2015-01-26

    ManageEngine EventLog Analyzer 9.0 – Directory Traversal / Cross-Site Scripting
  • webapps
  • jsp
    		• Ertebat Gostar Co
    2015-01-26

    SWFupload 2.5.0 – Cross Frame Scripting (XFS)
  • webapps
  • multiple
    		• MindCracker
    2015-01-26

    PHP Webquest 2.6 – SQL Injection
  • webapps
  • php
    		• jordan root
    2015-01-26

    Comodo Backup 4.4.0.0 – Null Pointer Dereference Privilege Escalation
  • local
  • windows
    		• Parvez Anwar