Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24745Exploits

日期	标题	类型	平台	作者
2014-12-22	Lotus Mail Encryption Server 2.1.0.1 (Protector for Mail) – Local File Inclusion / Remote Code Execution (Metasploit)	webapps	php	Patrick Webster
2014-12-19	Codiad 2.4.3 – Multiple Vulnerabilities	webapps	php	TaurusOmar
2014-12-19	GQ File Manager 0.2.5 – Multiple Vulnerabilities	webapps	php	TaurusOmar
2014-12-19	Piwigo 2.7.2 – Multiple Vulnerabilities	webapps	php	TaurusOmar
2014-12-19	ProjectSend r561 – Multiple Vulnerabilities	webapps	php	TaurusOmar
2014-12-19	Varnish Cache CLI Interface – Remote Code Execution (Metasploit)	remote	linux	Patrick Webster
2014-12-19	Ettercap 0.8.0 < 0.8.1 - Multiple Denial of Service Vulnerabilities	dos	linux	Nick Sampanis
2014-12-19	MiniBB 3.1 – Blind SQL Injection	webapps	php	Kacper Szurek
2014-12-19	Cacti Superlinks Plugin 1.4-2 – SQL Injection / Local File Inclusion	webapps	php	Wireghoul
2014-12-18	GIT 1.8.5.6/1.9.5/2.0.5/2.1.4/2.2.1 & Mercurial < 3.2.3 - Multiple Vulnerabilities (Metasploit)	remote	multiple	Metasploit
2014-12-17	CIK Telecom VoIP Router SVG6000RW – Privilege Escalation / Command Execution	webapps	hardware	Chako
2014-12-16	Malwarebytes Anti-Malware < 2.0.3 / Anti-Exploit < 1.03.1.1220 - Update Code Execution (Metasploit)	local	windows	Metasploit
2014-12-16	CMS Papoo 6.0.0 Rev. 4701 – Persistent Cross-Site Scripting	webapps	php	Steffen Rösemann
2014-12-16	ActualAnalyzer – ‘ant’ Cookie Command Execution (Metasploit)	remote	unix	Metasploit
2014-12-15	Tuleap – PHP Unserialize Code Execution (Metasploit)	remote	php	Metasploit
2014-12-15	WordPress Plugin WP Symposium 14.11 – Arbitrary File Upload	webapps	php	Claudio Viviani
2014-12-15	ResourceSpace 6.4.5976 – Cross-Site Scripting / SQL Injection / Insecure Cookie Handling	webapps	php	Adler Freiheit
2014-12-15	phpMyAdmin 4.0.x/4.1.x/4.2.x – Denial of Service	dos	php	Javer Nieto & Andres Rojas
2014-12-15	PHPads 213607 – Authentication Bypass / Password Change	webapps	php	Shaker msallm
2014-12-15	WordPress Plugin Download Manager 2.7.4 – Remote Code Execution	webapps	php	Claudio Viviani
2014-12-15	jaangle 0.98i.977 – Denial of Service	dos	windows	s-dz
2014-12-15	Mediacoder 0.8.33 build 5680 – ‘.lst’ Buffer Overflow (PoC) (SEH Overwrite)	dos	windows	s-dz
2014-12-15	Mediacoder 0.8.33 build 5680 – ‘.m3u’ Buffer Overflow (PoC) (SEH Overwrite)	dos	windows	s-dz
2014-12-15	Soitec SmartEnergy 1.4 – SCADA Login SQL Injection / Authentication Bypass	webapps	windows	LiquidWorm
2014-12-15	GLPI 0.85 – Blind SQL Injection	webapps	php	Kacper Szurek
2014-12-12	IBM Tivoli Service Automation Manager 7.2.4 – Remote Code Execution	webapps	jsp	Jakub Palaczynski
2014-12-12	Winamp 5.666 build 3516 – Corrupted .flv Crash (PoC)	dos	windows	Drozdova Liudmila
2014-12-12	JetAudio 8.1.3 – ‘.mp4’ Crash (PoC)	dos	windows	Drozdova Liudmila
2014-12-10	Humhub 0.10.0-rc.1 – Multiple Persistent Cross-Site Scripting Vulnerabilities	webapps	php	Jos Wetzels, Emiel Florijn
2014-12-10	Humhub 0.10.0-rc.1 – SQL Injection	webapps	php	Jos Wetzels, Emiel Florijn
2014-12-10	OpenEMR 4.1.2(7) – Multiple SQL Injections	webapps	php	Portcullis
2014-12-10	Apache James Server 2.3.2 – Remote Command Execution	remote	linux	Jakub Palaczynski
2014-12-09	Flat Calendar 1.1 – HTML Injection	webapps	php	ZoRLu Bugrahan
2014-12-09	WordPress Plugin Symposium 14.10 – SQL Injection	webapps	php	Kacper Szurek
2014-12-09	Advantech AdamView 4.30.003 – ‘.gni’ Local Buffer Overflow (SEH)	local	windows	Muhamad Fadzil Ramli
2014-12-08	WordPress Plugin Ajax Store Locator 1.2 – Arbitrary File Download	webapps	php	Claudio Viviani
2014-12-08	Free Article Submissions 1.0 – SQL Injection	webapps	php	BarrabravaZ
2014-12-08	PBBoard CMS – Persistent Cross-Site Scripting	webapps	php	Manish Tanwar
2014-12-08	IceHrm 7.1 – Multiple Vulnerabilities	webapps	php	LiquidWorm
2014-12-05	Microsoft Windows Kerberos – Privilege Escalation (MS14-068)	remote	windows	Sylvain Monne
2014-12-05	PBBoard CMS 3.0.1 – SQL Injection	webapps	php	Tran Dinh Tien
2014-12-05	Offset2lib – Bypassing Full ASLR On 64 bit Linux	local	linux_x86-64	Packet Storm
2014-12-04	Advertise With Pleasure! (AWP) 6.6 – SQL Injection	webapps	cgi	Robert Cooper
2014-12-04	Technicolor DT5130 2.05.C29GV – Multiple Vulnerabilities	webapps	hardware	Crash
2014-12-03	BulletProof FTP Client 2010 – Local Buffer Overflow (SEH)	local	windows	Muhamad Fadzil Ramli
2014-12-03	WordPress Plugin Google Document Embedder 2.5.16 – ‘mysql_real_escpae_string’ Bypass SQL Injection	webapps	php	Securely (Yoo Hee man)
2014-12-03	ManageEngine Netflow Analyzer / IT360 – Arbitrary File Download	webapps	multiple	Pedro Ribeiro
2014-12-03	WordPress Plugin CodeArt Google MP3 Player – File Disclosure Download	webapps	php	QK14 Team
2014-12-03	WordPress Plugin Cart66 Lite eCommerce 1.5.1.17 – Blind SQL Injection	webapps	php	Kacper Szurek
2014-12-03	VFU 4.10-1.1 – Local Buffer Overflow	local	linux	Juan Sacco