Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24745Exploits

日期	标题	类型	平台	作者
2014-01-14	Apache Struts2 2.0.0 < 2.3.15 - Prefixed Parameters OGNL Injection	webapps	multiple	Takeshi Terada
2014-01-14	Linux Kernel (Ubuntu 11.10/12.04) – binfmt_script Stack Data Disclosure	dos	linux	halfdog
2014-01-14	Oracle Supply Chain Products Suite – Remote Security	remote	multiple	Oracle
2014-01-14	Atmail Webmail Server – Email Body HTML Injection	webapps	php	Zhao Liang
2014-01-13	Dell Kace 1000 Systems Management Appliance DS-2014-001 – Multiple SQL Injections	webapps	php	Rohan Stelling
2014-01-13	DomPHP 0.83 – SQL Injection	webapps	php	Houssamix
2014-01-12	DomPHP 0.83 – Local Directory Traversal	webapps	php	Houssamix
2014-01-10	Joomla! Component Almond Classifieds – Arbitrary File Upload	webapps	php	DevilScreaM
2014-01-08	EZGenerator – Local File Disclosure / Cross-Site Request Forgery	webapps	php	AtT4CKxT3rR0r1ST
2014-01-08	Built2Go PHP Shopping – Cross-Site Request Forgery (Admin Password)	webapps	php	AtT4CKxT3rR0r1ST
2014-01-08	UAEPD Shopping Script – ‘news.php?id’ SQL Injection	webapps	php	AtT4CKxT3rR0r1ST
2014-01-08	UAEPD Shopping Script – ‘products.php’ Multiple SQL Injections	webapps	php	AtT4CKxT3rR0r1ST
2014-01-07	Command School Student Management System – ‘/sw/backup/backup_ray2.php’ Database Backup Direct Request Information Disclosure	webapps	php	AtT4CKxT3rR0r1ST
2014-01-07	IcoFX – Local Stack Buffer Overflow (Metasploit)	local	windows	Metasploit
2014-01-07	Command School Student Management System – ‘/sw/admin_subjects.php?id’ SQL Injection	webapps	php	AtT4CKxT3rR0r1ST
2014-01-07	vTiger CRM 5.4.0 SOAP – AddEmailAttachment Arbitrary File Upload (Metasploit)	remote	php	Metasploit
2014-01-07	Command School Student Management System – ‘/sw/admin_school_names.php?id’ SQL Injection	webapps	php	AtT4CKxT3rR0r1ST
2014-01-07	Middle School Homework Page 1.3 Beta 1 – Multiple Vulnerabilities	webapps	php	AtT4CKxT3rR0r1ST
2014-01-07	Command School Student Management System – ‘/sw/health_allergies.php?id’ SQL Injection	webapps	php	AtT4CKxT3rR0r1ST
2014-01-07	CCProxy 7.3 – Integer Overflow	local	windows	Mr.XHat
2014-01-07	Command School Student Management System – ‘/sw/admin_titles.php?id’ SQL Injection	webapps	php	AtT4CKxT3rR0r1ST
2014-01-07	Command School Student Management System – ‘/sw/admin_relations.php?id’ SQL Injection	webapps	php	AtT4CKxT3rR0r1ST
2014-01-07	Command School Student Management System – ‘/sw/admin_generations.php?id’ SQL Injection	webapps	php	AtT4CKxT3rR0r1ST
2014-01-07	Command School Student Management System – ‘/sw/admin_infraction_codes.php?id’ SQL Injection	webapps	php	AtT4CKxT3rR0r1ST
2014-01-07	Command School Student Management System – ‘/sw/admin_media_codes_1.php?id’ SQL Injection	webapps	php	AtT4CKxT3rR0r1ST
2014-01-07	Command School Student Management System – ‘/sw/admin_sgrades.php?id’ SQL Injection	webapps	php	AtT4CKxT3rR0r1ST
2014-01-07	Dredge School Administration System – ‘/DSM/Backup/processbackup.php’ Database Backup Information Disclosure	webapps	php	AtT4CKxT3rR0r1ST
2014-01-07	Command School Student Management System – ‘/sw/admin_school_years.php?id’ SQL Injection	webapps	php	AtT4CKxT3rR0r1ST
2014-01-07	Dredge School Administration System – ‘/DSM/loader.php’ Cross-Site Request Forgery (Admin Account Manipulation)	webapps	php	AtT4CKxT3rR0r1ST
2014-01-07	Command School Student Management System – ‘/sw/admin_terms.php?id’ SQL Injection	webapps	php	AtT4CKxT3rR0r1ST
2014-01-07	Dredge School Administration System – ‘/DSM/loader.php’ Account Information Disclosure	webapps	php	AtT4CKxT3rR0r1ST
2014-01-07	Command School Student Management System – ‘/sw/admin_grades.php?id’ SQL Injection	webapps	php	AtT4CKxT3rR0r1ST
2014-01-07	Dredge School Administration System – ‘/DSM/loader.php?Id’ SQL Injection	webapps	php	AtT4CKxT3rR0r1ST
2014-01-07	Joomla! Component com_aclsfgpl – ‘index.php’ Arbitrary File Upload	webapps	php	TUNISIAN CYBER
2014-01-07	Command School Student Management System – ‘/sw/add_topic.php’ Cross-Site Request Forgery (Topic Creation)	webapps	php	AtT4CKxT3rR0r1ST
2014-01-07	Cubic CMS – Multiple Vulnerabilities	webapps	php	Eugenio Delfa
2014-01-07	Command School Student Management System – ‘/sw/Admin_change_Password.php’ Cross-Site Request Forgery (Admin Password Manipulation)	webapps	php	AtT4CKxT3rR0r1ST
2014-01-07	IBM Forms Viewer – Unicode Buffer Overflow (Metasploit)	local	windows	Metasploit
2014-01-06	Seagate BlackArmor NAS sg2000-2000.1331 – Multiple Persistent Cross-Site Scripting Vulnerabilities	webapps	hardware	Jeroen - IT Nerdbox
2014-01-06	Seagate BlackArmor NAS sg2000-2000.1331 – Cross-Site Request Forgery	webapps	hardware	Jeroen - IT Nerdbox
2014-01-06	Seagate BlackArmor NAS sg2000-2000.1331 – Remote Command Execution	webapps	hardware	Jeroen - IT Nerdbox
2014-01-06	Seagate BlackArmor NAS – Privilege Escalation	webapps	hardware	Jeroen - IT Nerdbox
2014-01-04	Taboada Macronews 1.0 – SQL Injection	webapps	php	Jefrey
2014-01-04	Motorola SBG6580 Cable Modem & Wireless Router – Reboot (Denial of Service)	dos	hardware	nicx0
2014-01-03	Technicolor TC7200 – Multiple Cross-Site Scripting Vulnerabilities	webapps	hardware	Jeroen - IT Nerdbox
2014-01-03	Technicolor TC7200 – Multiple Cross-Site Request Forgery Vulnerabilities	webapps	hardware	Jeroen - IT Nerdbox
2014-01-03	ACE Stream Media 2.1 – ‘acestream://’ Format String	local	multiple	LiquidWorm
2014-01-03	Nisuta NS-WIR150NE / NS-WIR300N Wireless Routers – Remote Management Web Interface Authentication Bypass	webapps	hardware	Amplia Security Advisories
2014-01-03	DirectControlTM 3.1.7.0 – Multiple Vulnerabilities	webapps	windows	mohamad ch
2014-01-01	Apache Libcloud Digital Ocean API – Local Information Disclosure	local	linux	anonymous