Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24745Exploits
日期 标题 类型 平台 作者
2013-11-08

appRain 3.0.2 – Blind SQL Injection
  • webapps
  • php
    		• High-Tech Bridge SA
    2013-11-08

    Flatpress 1.0 – Remote Code Execution
  • webapps
  • php
    		• Wireghoul
    2013-11-08

    VICIdial Manager – Send OS Command Injection (Metasploit)
  • remote
  • linux
    		• Metasploit
    2013-11-08

    Vanilla Forums 2.0 < 2.0.18.5 - 'class.utilitycontroller.php' PHP Object Injection
  • webapps
  • php
    		• EgiX
    2013-11-08

    RASPcalendar 1.01 (ASP) – Admin Login
  • webapps
  • asp
    		• Hackeri-AL UAH-Crew
    2013-11-07

    WordPress Theme Kernel – Arbitrary File Upload
  • webapps
  • php
    		• link_satisi
    2013-11-07

    Microweber 0.905 – Error-Based SQL Injection
  • webapps
  • php
    		• Zy0d0x
    2013-11-05

    Hanso Player 2.5.0 – ‘m3u’ Buffer Overflow (Denial of Service)
  • dos
  • windows
    		• Necmettin COSKUN
    2013-11-04

    Google Android – Signature Verification Security Bypass
  • remote
  • android
    		• Jay Freeman
    2013-11-04

    Apache Tomcat 5.5.25 – Cross-Site Request Forgery
  • webapps
  • multiple
    		• Ivano Binetti
    2013-11-03

    Practico 13.9 – Multiple Vulnerabilities
  • webapps
  • multiple
    		• LiquidWorm
    2013-11-03

    Plogue Sforzando 1.665 – Buffer Overflow (SEH) (PoC)
  • dos
  • windows
    		• Mike Czumak
    2013-11-01

    WordPress Theme This Way – ‘upload_settings_image.php’ Arbitrary File Upload
  • webapps
  • php
    		• Bet0
    2013-11-01

    pdirl PHP Directory Listing 1.0.4 – Cross-Site Scripting
  • webapps
  • php
    		• Vulnerability-Lab
    2013-11-01

    WordPress Theme Think Responsive 1.0 – Arbitrary File Upload
  • webapps
  • php
    		• Byakuya Kouta
    2013-11-01

    ImpressPages CMS 3.6 – ‘manage()’ Remote Code Execution
  • webapps
  • php
    		• LiquidWorm
    2013-11-01

    WordPress Theme Switchblade 1.3 – Arbitrary File Upload
  • webapps
  • php
    		• Byakuya Kouta
    2013-11-01

    ImpressPages CMS 3.6 – Arbitrary File Deletion
  • webapps
  • php
    		• LiquidWorm
    2013-11-01

    Watermark Master 2.2.23 – Local Buffer Overflow (SEH)
  • local
  • windows
    		• metacom
    2013-10-31

    vTiger CRM 5.3.0 5.4.0 – (Authenticated) Remote Code Execution (Metasploit)
  • remote
  • php
    		• Metasploit
    2013-10-31

    Apache + PHP < 5.3.12 / < 5.4.2 - Remote Code Execution + Scanner
  • remote
  • php
    		• noptrix
    2013-10-31

    Opsview pre 4.4.1 – Blind SQL Injection
  • webapps
  • php
    		• J. Oquendo
    2013-10-31

    ProcessMaker Open Source – (Authenticated) PHP Code Execution (Metasploit)
  • remote
  • php
    		• Metasploit
    2013-10-31

    Moodle – Remote Command Execution (Metasploit)
  • remote
  • linux
    		• Metasploit
    2013-10-31

    OpenMediaVault Cron – Remote Command Execution (Metasploit)
  • remote
  • linux
    		• Metasploit
    2013-10-31

    ISPConfig – (Authenticated) Arbitrary PHP Code Execution (Metasploit)
  • remote
  • php
    		• Metasploit
    2013-10-31

    NAS4Free – Remote Code Execution (Metasploit)
  • remote
  • php
    		• Metasploit
    2013-10-31

    Zabbix – (Authenticated) Remote Command Execution (Metasploit)
  • remote
  • linux
    		• Metasploit
    2013-10-31

    ImpressPages CMS 3.6 – Multiple Cross-Site Scripting / SQL Injection Vulnerabilities
  • webapps
  • php
    		• LiquidWorm
    2013-10-30

    Openbravo ERP – XML External Entity Information Disclosure
  • remote
  • multiple
    		• Tod Beardsley
    2013-10-30

    Unicorn Router WB-3300NR – Cross-Site Request Forgery (Factory Reset/DNS Change)
  • webapps
  • hardware
    		• absane
    2013-10-30

    AudioCoder 0.8.22 – ‘.m3u’ Local Buffer Overflow (SEH)
  • local
  • windows
    		• Mike Czumak
    2013-10-30

    SoftMaker Office 2012 – TextMaker Memory Corruption
  • dos
  • windows
    		• Arash Allebrahim
    2013-10-29

    Horde Groupware Web Mail Edition 5.1.2 – Cross-Site Request Forgery (1)
  • webapps
  • php
    		• Marcela Benetrix
    2013-10-29

    Watchguard Firewall XTM 11.7.4u1 – Remote Buffer Overflow
  • remote
  • hardware
    		• st3n
    2013-10-29

    Stem Innovation – ‘IZON’ Hard-Coded Credentials
  • webapps
  • hardware
    		• Mark Stanislav
    2013-10-29

    ILIAS eLearning CMS 4.3.4 < 4.4 - Persistent Cross-Site Scripting
  • webapps
  • php
    		• Vulnerability-Lab
    2013-10-29

    XAMPP for Windows 1.8.2 – Blind SQL Injection
  • webapps
  • windows
    		• Sebastián Magof
    2013-10-29

    Apache + PHP < 5.3.12 / < 5.4.2 - cgi-bin Remote Code Execution
  • remote
  • php
    		• kingcope
    2013-10-29

    GTX CMS 2013 Optima – SQL Injection
  • webapps
  • php
    		• Vulnerability-Lab
    2013-10-29

    Olat CMS 7.8.0.1 – Persistent Cross-Site Scripting
  • webapps
  • php
    		• Vulnerability-Lab
    2013-10-28

    Onpub CMS 1.4/1.5 – Multiple SQL Injections
  • webapps
  • php
    		• Vulnerability-Lab
    2013-10-28

    BlazeDVD 6.2 – ‘.plf’ Local Buffer Overflow (SEH)
  • local
  • windows
    		• Mike Czumak
    2013-10-28

    Pirelli Discus DRG A125g – Password Disclosure
  • webapps
  • hardware
    		• Sebastián Magof
    2013-10-28

    PHP RSS Reader 2010 – SQL Injection
  • webapps
  • php
    		• mishal abdullah
    2013-10-27

    VideoCharge Studio 2.12.3.685 – Local Buffer Overflow (SEH)
  • local
  • windows
    		• metacom
    2013-10-26

    Poppler 0.14.3 – ‘/utils/pdfseparate.cc’ Local Format String
  • local
  • linux
    		• Daniel Kahn Gillmor
    2013-10-26

    Photodex ProShow Producer 5.0.3310 – Local Buffer Overflow (SEH)
  • local
  • windows
    		• Mike Czumak
    2013-10-26

    WordPress Theme Curvo – Cross-Site Request Forgery / Arbitrary File Upload
  • webapps
  • php
    		• Byakuya Kouta
    2013-10-26

    Open Flash Chart 2 – Arbitrary File Upload (Metasploit)
  • remote
  • php
    		• Metasploit