Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24745Exploits

日期	标题	类型	平台	作者
2014-06-21	Lunar CMS 3.3 – Cross-Site Request Forgery / Persistent Cross-Site Scripting	webapps	php	LiquidWorm
2014-06-21	Linux Kernel 3.13 – SGID Privilege Escalation	local	linux	Vitaly Nikolenko
2014-06-21	D-Link DSL-2760U-E1 – Persistent Cross-Site Scripting	webapps	hardware	Yuval tisf Nativ
2014-06-19	web2Project 3.1 – Multiple Vulnerabilities	webapps	php	High-Tech Bridge SA
2014-06-19	Ericom AccessNow Server – Remote Buffer Overflow (Metasploit)	remote	windows	Metasploit
2014-06-18	Ubisoft Rayman Legends 1.2.103716 – Remote Stack Buffer Overflow (PoC)	dos	windows	LiquidWorm
2014-06-18	ZTE WXV10 W300 – Multiple Vulnerabilities	webapps	hardware	Osanda Malith Jayathissa
2014-06-18	Cacti Superlinks Plugin 1.4-2 – SQL Injection	webapps	php	Napsterakos
2014-06-18	Docker 0.11 – VMM-Container Breakout	local	linux	Sebastian Krahmer
2014-06-18	Rocket Servergraph Admin Center – fileRequestor Remote Code Execution (Metasploit)	remote	multiple	Metasploit
2014-06-18	Alienvault Open Source SIEM (OSSIM) < 4.7.0 - av-centerd 'get_log_line()' Remote Code Execution	remote	linux	Alfredo Ramirez
2014-06-17	Motorola SBG901 Wireless Modem – Cross-Site Request Forgery	webapps	hardware	Blessen Thomas
2014-06-17	Adobe Reader for Android < 11.2.0 - 'addJavascriptInterface' Local Overflow (Metasploit)	local	arm	Metasploit
2014-06-17	Easy File Management Web Server – Remote Stack Buffer Overflow (Metasploit)	remote	windows	Metasploit
2014-06-17	Java – Debug Wire Protocol Remote Code Execution (Metasploit)	remote	multiple	Metasploit
2014-06-13	ZeroCMS 1.0 – ‘zero_transact_user.php’ Handling Privilege Escalation	webapps	php	Tiago Carvalho
2014-06-13	Yealink VoIP Phone SIP-T38G – Privilege Escalation	remote	hardware	Mr.Un1k0d3r
2014-06-13	Yealink VoIP Phone SIP-T38G – Remote Command Execution	remote	hardware	Mr.Un1k0d3r
2014-06-13	Yealink VoIP Phone SIP-T38G – Local File Inclusion	webapps	hardware	Mr.Un1k0d3r
2014-06-13	Yealink VoIP Phone SIP-T38G – Default Credentials	remote	hardware	Mr.Un1k0d3r
2014-06-13	ZTE / TP-Link RomPager – Denial of Service	dos	hardware	Osanda Malith Jayathissa
2014-06-13	Plesk 10.4.4/11.0.9 – SSO XML External Entity / Cross-Site Scripting Injection	webapps	aix	BLacK ZeRo
2014-06-13	PostgreSQL 8.4.1 – JOIN Hashtable Size Integer Overflow Denial of Service	dos	multiple	Bernt Marius Johnsen
2014-06-13	Alienvault Open Source SIEM (OSSIM) < 4.8.0 - 'get_file' Information Disclosure (Metasploit)	remote	linux	James Fitts
2014-06-13	netKar PRO 1.1 – ‘.nkuser’ File Creation Null Pointer Denial of Service	dos	windows	A reliable source
2014-06-12	Yealink VoIP Phones – ‘/servlet’ HTTP Response Splitting	webapps	java	Jesus Oquendo
2014-06-12	IBM AIX 6.1.8 – ‘libodm’ Arbitrary File Write	local	aix	Portcullis
2014-06-11	SHOUTcast DNAS 2.2.1 – Persistent Cross-Site Scripting	webapps	php	rob222
2014-06-11	Core FTP LE 2.2 – Heap Overflow (PoC)	dos	windows	Gabor Seljan
2014-06-10	WordPress Plugin Featured Comments – Cross-Site Request Forgery	webapps	php	Tom Adams
2014-06-10	WordPress Plugin JW Player for Flash & HTML5 Video – Cross-Site Request Forgery	webapps	php	Tom Adams
2014-06-10	ZeroCMS 1.0 – ‘zero_view_article.php’ SQL Injection	webapps	php	LiquidWorm
2014-06-09	DevExpress ASPxFileManager 10.2 < 13.2.8 - Directory Traversal	webapps	asp	RedTeam Pentesting
2014-06-09	WebTitan 4.01 (Build 68) – Multiple Vulnerabilities	webapps	php	SEC Consult
2014-06-09	eFront 3.6.14.4 – ‘surname’ Persistent Cross-Site Scripting	webapps	php	shyamkumar somana
2014-06-08	WordPress Theme Elegance – ‘/elegance/lib/scripts/dl-skin.php’ Local File Disclosure	webapps	php	Felipe Andrian Peixoto
2014-06-08	WordPress Theme Infocus – ‘/infocus/lib/scripts/dl-skin.php’ Local File Disclosure	webapps	php	Felipe Andrian Peixoto
2014-06-06	Madness Pro 1.14 – SQL Injection	webapps	php	bwall
2014-06-06	Madness Pro 1.14 – Persistent Cross-Site Scripting	webapps	php	bwall
2014-06-05	Foreman Smart-Proxy – Remote Command Injection	remote	multiple	Lukas Zapletal
2014-06-03	IPSwitch IMail Server WEB client 12.4 – Persistent Cross-Site Scripting	webapps	windows	Peru
2014-06-03	Bluetooth Photo-File Share 2.1 iOS – Multiple Vulnerabilities	webapps	ios	Vulnerability-Lab
2014-06-03	AllReader 1.0 iOS – Multiple Vulnerabilities	webapps	ios	Vulnerability-Lab
2014-06-03	TigerCom My Assistant 1.1 iOS – Local File Inclusion	webapps	ios	Vulnerability-Lab
2014-06-03	Privacy Pro 1.2 HZ iOS – Local File Inclusion	webapps	ios	Vulnerability-Lab
2014-06-03	Files Desk Pro 1.4 iOS – Local File Inclusion	webapps	ios	Vulnerability-Lab
2014-06-03	NG WifiTransfer Pro 1.1 – Local File Inclusion	webapps	ios	Vulnerability-Lab
2014-06-03	PHPBTTracker+ 2.2 – SQL Injection	webapps	php	BackBox Linux Team
2014-06-02	dbus-glib pam_fprintd – Local Privilege Escalation	local	linux	Sebastian Krahmer
2014-06-02	WordPress Plugin Participants Database 1.5.4.8 – SQL Injection	webapps	php	Yarubo Research Team