Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24745Exploits
日期 标题 类型 平台 作者
2014-12-02

Prolink PRN2001 – Multiple Vulnerabilities
  • webapps
  • hardware
    		• Herman Groeneveld
    2014-12-02

    TYPO3 Extension ke DomPDF – Remote Code Execution
  • webapps
  • php
    		• RedTeam Pentesting
    2014-12-02

    EntryPass N5200 – Credentials Exposure
  • webapps
  • hardware
    		• RedTeam Pentesting
    2014-12-02

    Tincd – (Authenticated) Remote TCP Stack Buffer Overflow (Metasploit)
  • remote
  • multiple
    		• Metasploit
    2014-12-02

    Apple Mac OSX – IOKit Keyboard Driver Privilege Escalation (Metasploit)
  • local
  • osx
    		• Metasploit
    2014-12-02

    WordPress Plugin Nextend Facebook Connect 1.4.59 – Cross-Site Scripting
  • webapps
  • php
    		• Kacper Szurek
    2014-12-02

    SQL Buddy 1.3.3 – Remote Code Execution
  • webapps
  • php
    		• Fady Mohammed Osman
    2014-12-02

    tnftp (FreeBSD 8/9/10) – ‘tnftp’ Client Side
  • remote
  • bsd
    		• dash
    2014-12-02

    ProjectSend r-561 – Arbitrary File Upload
  • webapps
  • php
    		• Fady Mohammed Osman
    2014-12-02

    Thomson Reuters Fixed Assets CS 13.1.4 – Local Privilege Escalation
  • local
  • windows
    		• Information Paradox
    2014-12-02

    IPUX CS7522/CS2330/CS2030 IP Camera – ‘UltraHVCamX.ocx’ ActiveX Stack Buffer Overflow
  • remote
  • hardware
    		• LiquidWorm
    2014-12-02

    IPUX CL5452/CL5132 IP Camera – ‘UltraSVCamX.ocx’ ActiveX Stack Buffer Overflow
  • remote
  • hardware
    		• LiquidWorm
    2014-12-02

    IPUX Cube Type CS303C IP Camera – ‘UltraMJCamX.ocx’ ActiveX Stack Buffer Overflow
  • remote
  • hardware
    		• LiquidWorm
    2014-12-01

    Drupal < 7.34 - Denial of Service
  • dos
  • php
    		• Javer Nieto & Andres Rojas
    2014-12-01

    WordPress Core < 4.0.1 - Denial of Service
  • dos
  • php
    		• Javer Nieto & Andres Rojas
    2014-12-01

    WordPress Core 4.0 – Denial of Service
  • dos
  • php
    		• SECURELI.com
    2014-11-28

    CCH Wolters Kluwer PFX Engagement 7.1 – Local Privilege Escalation
  • local
  • windows
    		• Information Paradox
    2014-11-28

    xEpan 1.0.4 – Multiple Vulnerabilities
  • webapps
  • php
    		• Parikesit , Kurawa
    2014-11-26

    WordPress Plugin Slider REvolution 3.0.95 / Showbiz Pro 1.7.1 – Arbitrary File Upload
  • webapps
  • php
    		• Simo Ben Youssef
    2014-11-26

    Device42 WAN Emulator 2.3 – Ping Command Injection (Metasploit)
  • webapps
  • cgi
    		• Brandon Perry
    2014-11-26

    Device42 WAN Emulator 2.3 – Traceroute Command Injection (Metasploit)
  • webapps
  • cgi
    		• Brandon Perry
    2014-11-26

    Android WAPPushManager – SQL Injection
  • dos
  • android
    		• Baidu X-Team
    2014-11-26

    xEpan 1.0.1 – Cross-Site Request Forgery
  • webapps
  • php
    		• High-Tech Bridge SA
    2014-11-26

    Pandora Fms – SQL Injection Remote Code Execution (Metasploit)
  • remote
  • php
    		• Metasploit
    2014-11-26

    Elipse E3 – HTTP Denial of Service
  • dos
  • windows
    		• firebitsbr
    2014-11-26

    WordPress Plugin DB Backup – Arbitrary File Download
  • webapps
  • php
    		• Ashiyane Digital Security Team
    2014-11-26

    Mini-stream RM-MP3 Converter 3.1.2.1.2010.03.30 – ‘.wax’ Local Buffer Overflow (SEH)
  • local
  • windows
    		• Muhamad Fadzil Ramli
    2014-11-25

    Arris VAP2500 – Authentication Bypass
  • webapps
  • hardware
    		• HeadlessZeke
    2014-11-25

    WordPress Plugin Google Document Embedder 2.5.14 – SQL Injection
  • webapps
  • php
    		• Kacper Szurek
    2014-11-25

    Linux Kernel 3.14.5 (CentOS 7 / RHEL) – ‘libfutex’ Local Privilege Escalation
  • local
  • linux
    		• Kaiqu Chen
    2014-11-25

    Crea8Social 1.3 – Persistent Cross-Site Scripting
  • webapps
  • php
    		• Halil Dalabasmaz
    2014-11-25

    PHPMyRecipes 1.2.2 – ‘dosearch.php?words_exact’ SQL Injection
  • webapps
  • php
    		• bard
    2014-11-25

    TRENDnet SecurView Wireless Network Camera TV-IP422WN – ‘UltraCamX.ocx’ Stack Buffer Overflow (PoC)
  • dos
  • windows
    		• LiquidWorm
    2014-11-24

    Microsoft Windows 8.1/ Server 2012 – ‘Win32k.sys’ Local Privilege Escalation (MS14-058)
  • local
  • windows
    		• anonymous
    2014-11-24

    WordPress Plugin Download Manager 2.7.2 – Privilege Escalation
  • webapps
  • php
    		• Kacper Szurek
    2014-11-24

    tcpdump 4.6.2 – Geonet Decoder Denial of Service
  • dos
  • multiple
    		• Steffen Bauch
    2014-11-24

    PHP 5.5.12 – Locale::parseLocale Memory Corruption
  • dos
  • php
    		• John Leitch
    2014-11-24

    Advantech EKI-6340 – Command Injection
  • webapps
  • cgi
    		• Core Security
    2014-11-24

    Hikvision DVR – RTSP Request Remote Code Execution (Metasploit)
  • remote
  • linux
    		• Metasploit
    2014-11-24

    WordPress Plugin DukaPress 2.5.2 – Directory Traversal
  • webapps
  • php
    		• Kacper Szurek
    2014-11-24

    TP-Link TL-WR740N – Denial of Service
  • dos
  • hardware
    		• LiquidWorm
    2014-11-24

    RobotStats 1.0 – ‘robot’ SQL Injection
  • webapps
  • php
    		• ZoRLu Bugrahan
    2014-11-24

    RobotStats 1.0 – HTML Injection
  • dos
  • aix
    		• ZoRLu Bugrahan
    2014-11-24

    WordPress Plugin wpDataTables 1.5.3 – Arbitrary File Upload
  • webapps
  • php
    		• Claudio Viviani
    2014-11-24

    WordPress Plugin wpDataTables 1.5.3 – SQL Injection
  • webapps
  • php
    		• Claudio Viviani
    2014-11-24

    JourneyMap 5.0.0RC2 Ultimate Edition – Resource Consumption (Denial of Service)
  • dos
  • multiple
    		• CovertCodes
    2014-11-22

    WordPress Plugin CM Download Manager 2.0.0 – Code Injection
  • webapps
  • php
    		• Phi Ngoc Le
    2014-11-22

    MyBB 1.8.2 – ‘unset_globals()’ Function Bypass / Remote Code Execution
  • webapps
  • php
    		• Taoguang Chen
    2014-11-22

    Privacyware Privatefirewall 7.0 – Unquoted Service Path Privilege Escalation
  • local
  • windows
    		• LiquidWorm
    2014-11-22

    Microsoft Windows – ‘win32k.sys’ Denial of Service
  • dos
  • windows
    		• Kedamsky