Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24745Exploits
日期 标题 类型 平台 作者
2013-10-10

Ziteman CMS – Login Page SQL Injection
  • webapps
  • php
    		• Ashiyane Digital Security Team
    2013-10-10

    ALLPlayer 5.6.2 – ‘.m3u’ Local Buffer Overflow (PoC)
  • dos
  • windows
    		• metacom
    2013-10-10

    Imperva SecureSphere Web Application Firewall MX 9.5.6 – Blind SQL Injection
  • webapps
  • multiple
    		• Giuseppe D'Amore
    2013-10-10

    Indusoft Thin Client 7.1 – ActiveX Buffer Overflow
  • remote
  • windows
    		• blake
    2013-10-10

    ONO Hitron CDE-30364 Router – Denial of Service
  • dos
  • hardware
    		• Matias Mingorance Svensson
    2013-10-09

    Bugzilla 4.2 – Tabular Reports Cross-Site Scripting
  • webapps
  • cgi
    		• Mateusz Goik
    2013-10-09

    Bugzilla – ‘editflagtypes.cgi’ Multiple Cross-Site Scripting Vulnerabilities
  • webapps
  • cgi
    		• Mateusz Goik
    2013-10-08

    WordPress Plugin WP-Realty – ‘listing_id’ SQL Injection
  • webapps
  • php
    		• Napsterakos
    2013-10-08

    Alienvault Open Source SIEM (OSSIM) – ‘Timestamp’ Directory Traversal
  • webapps
  • php
    		• Ding Yu-Chi
    2013-10-08

    Apple Motion 5.0.7 – Integer Overflow
  • dos
  • osx
    		• Jean Pascal Pereira
    2013-10-08

    GestioIP – Remote Command Execution (Metasploit)
  • remote
  • unix
    		• Metasploit
    2013-10-08

    HP LoadRunner – ‘magentproc.exe’ Remote Overflow (Metasploit)
  • remote
  • windows
    		• Metasploit
    2013-10-08

    WordPress Plugin Quick Contact Form 6.0 – Persistent Cross-Site Scripting
  • webapps
  • php
    		• Zy0d0x
    2013-10-08

    WHMCompleteSolution (WHMCS) 5.2.7 – SQL Injection
  • webapps
  • php
    		• localhost.re
    2013-10-08

    davfs2 1.4.6/1.4.7 – Local Privilege Escalation
  • local
  • linux
    		• Lorenzo Cantoni
    2013-10-07

    WordPress Plugin Woopra Analytics – ‘ofc_upload_image.php’ Arbitrary PHP Code Execution
  • webapps
  • php
    		• wantexz
    2013-10-04

    SIEMENS Solid Edge ST4 SEListCtrlX – ActiveX Remote Code Execution (Metasploit)
  • remote
  • windows
    		• Metasploit
    2013-10-04

    Aanval 7.1 build 70151 – Multiple Vulnerabilities
  • webapps
  • php
    		• xistence
    2013-10-04

    FreeBSD 9.0 – Intel SYSRET Kernel Privilege Escalation
  • local
  • freebsd
    		• CurcolHekerLink
    2013-10-04

    Apache Tomcat/JBoss EJBInvokerServlet / JMXInvokerServlet (RMI over HTTP) Marshalled Object – Remote Code Execution
  • remote
  • php
    		• rgod
    2013-10-04

    CMS Formulasi 2.07 – Multiple Vulnerabilities
  • webapps
  • php
    		• Sarahma Security
    2013-10-04

    FlashChat 6.0.2 < 6.0.8 - Arbitrary File Upload
  • webapps
  • php
    		• x-hayben21
    2013-10-04

    elproLOG MONITOR Webaccess 2.1 – Multiple Vulnerabilities
  • webapps
  • php
    		• Vulnerability-Lab
    2013-10-03

    SPAMINA Cloud Email Firewall – Directory Traversal
  • webapps
  • php
    		• Sisco Barrera
    2013-10-03

    WordPress Plugin SEO Watcher – ‘ofc_upload_image.php’ Arbitrary PHP Code Execution
  • webapps
  • php
    		• wantexz
    2013-10-02

    GLPI 0.84.1 – Multiple Vulnerabilities
  • webapps
  • php
    		• High-Tech Bridge SA
    2013-10-02

    Gnew 2013.1 – Multiple Vulnerabilities (2)
  • webapps
  • php
    		• High-Tech Bridge SA
    2013-10-02

    HylaFAX+ 5.2.4 > 5.5.3 – Buffer Overflow
  • dos
  • linux
    		• Dennis Jenkins
    2013-10-02

    Micorosft Internet Explorer – SetMouseCapture Use-After-Free (Metasploit)
  • remote
  • windows
    		• Metasploit
    2013-10-02

    freeFTPd 1.0.10 – ‘PASS’ Remote Buffer Overflow (Metasploit)
  • remote
  • windows
    		• Metasploit
    2013-10-02

    PinApp Mail-SeCure 3.70 – Access Control Failure
  • local
  • linux
    		• Core Security
    2013-10-02

    Evince PDF Reader 2.32.0.145 (Windows) / 3.4.0 (Linux) – Denial of Service
  • dos
  • multiple
    		• Deva
    2013-10-02

    Alienvault Open Source SIEM (OSSIM) 3.1 – ‘date_from’ Multiple SQL Injections
  • webapps
  • php
    		• Yu-Chi Ding
    2013-09-30

    Abuse HTTP Server – Remote Denial of Service
  • dos
  • multiple
    		• Zico Ekel
    2013-09-30

    glibc and eglibc 2.5/2.7/2.13 – Local Buffer Overflow
  • local
  • linux
    		• Hector Marco & Ismael Ripoll
    2013-09-30

    SimpleRisk 20130915-01 – Multiple Vulnerabilities
  • webapps
  • php
    		• Ryan Dewhurst
    2013-09-30

    Nodejs – ‘js-yaml load()’ Code Exec (Metasploit)
  • local
  • multiple
    		• Metasploit
    2013-09-30

    XAMPP 1.8.1 – ‘lang.php?WriteIntoLocalDisk method’ Local Write Access
  • webapps
  • php
    		• Manuel García Cárdenas
    2013-09-30

    mod_accounting Module 0.5 – Blind SQL Injection
  • webapps
  • linux
    		• Wireghoul
    2013-09-30

    Asus RT-N66U 3.0.0.4.374_720 – Cross-Site Request Forgery
  • webapps
  • hardware
    		• cgcai
    2013-09-30

    KMPlayer 3.7.0.109 – ‘.wav’ Crash (PoC)
  • dos
  • windows
    		• xboz
    2013-09-30

    Tenda W309R Router 5.07.46 – Configuration Disclosure
  • webapps
  • hardware
    		• SANTHO
    2013-09-27

    FreeSMS – ‘/pages/crc_handler.php’ Multiple Cross-Site Scripting Vulnerabilities
  • webapps
  • php
    		• Sarahma Security
    2013-09-27

    FreeSMS – ‘/pages/crc_handler.php?scheduleid’ SQL Injection
  • webapps
  • php
    		• Sarahma Security
    2013-09-26

    Posnic Stock Management System 1.02 – Multiple Vulnerabilities
  • webapps
  • multiple
    		• Sarahma Security
    2013-09-26

    Hewlett-Packard (HP) 2620 Switch Series. Edit Admin Account – Cross-Site Request Forgery
  • webapps
  • hardware
    		• Hubert Gradek
    2013-09-26

    Blast XPlayer – Local Buffer Overflow (PoC)
  • dos
  • multiple
    		• flux77
    2013-09-26

    Piwigo 2.5.2 – Cross-Site Scripting
  • webapps
  • php
    		• Arsan
    2013-09-26

    ArticleSetup – Multiple Vulnerabilities
  • webapps
  • php
    		• DevilScreaM
    2013-09-25

    ZeroShell ‘cgi-bin/kerbynet’ – Local File Disclosure
  • webapps
  • linux
    		• Yann CAM