Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24745Exploits

日期	标题	类型	平台	作者
2025-05-13	TP-Link VN020 F3v(T) TT_V6.2.1021) – DHCP Stack Buffer Overflow	local	multiple	Mohamed Maatallah
2025-05-13	Kentico Xperience 13.0.178 – Cross Site Scripting (XSS)	webapps	multiple	Alex Messham
2025-05-13	RDPGuard 9.9.9 – Privilege Escalation	local	multiple	Ahmet Ümit BAYRAM
2025-05-09	Apache ActiveMQ 6.1.6 – Denial of Service (DOS)	remote	multiple	Abdualhadi khalifa
2025-05-09	VirtualBox 7.0.16 – Privilege Escalation	local	windows	Milad karimi
2025-05-09	SureTriggers OttoKit Plugin 1.0.82 – Privilege Escalation	webapps	multiple	Abdualhadi khalifa
2025-05-09	WordPress Depicter Plugin 3.6.1 – SQL Injection	webapps	multiple	Andrew Long
2025-05-09	Microsoft Windows 11 Pro 23H2 – Ancillary Function Driver for WinSock Privilege Escalation	local	windows	Milad karimi
2025-05-06	Casdoor 1.901.0 – Cross-Site Request Forgery (CSRF)	webapps	go	Van Lam Nguyen
2025-05-06	ERPNext 14.82.1 – Account Takeover via Cross-Site Request Forgery (CSRF)	webapps	Python	Ahmed Thaiban
2025-05-06	Grokability Snipe-IT 8.0.4 – Insecure Direct Object Reference (IDOR)	webapps	php	Sn1p3r-H4ck3r
2025-05-01	Microsoft – NTLM Hash Disclosure Spoofing (library-ms)	local	windows	hyp3rlinx
2025-05-01	ZTE ZXV10 H201L – RCE via authentication bypass	local	multiple	tasos meletlidis
2025-05-01	Daikin Security Gateway 14 – Remote Password Reset	local	multiple	LiquidWorm
2025-05-01	Microsoft Windows – XRM-MS File NTLM Information Disclosure Spoofing	local	windows	hyp3rlinx
2025-04-30	unzip-stream 0.3.1 – Arbitrary File Write	local	nodejs	cybersploit
2025-04-22	Microsoft Windows 11 – Kernel Privilege Escalation	local	windows	Milad karimi
2025-04-22	code-projects Online Exam Mastering System 1.0 – Reflected Cross-Site Scripting (XSS)	remote	php	Pruthu Raut
2025-04-22	WordPress Core 6.2 – Directory Traversal	webapps	php	Milad karimi
2025-04-22	Firefox ESR 115.11 – PDF.js Arbitrary JavaScript execution	remote	multiple	Milad karimi
2025-04-22	WonderCMS 3.4.2 – Remote Code Execution (RCE)	remote	php	Milad karimi
2025-04-22	Microsoft Windows 11 23h2 – CLFS.sys Elevation of Privilege	local	windows	Milad karimi
2025-04-22	OpenSSH server (sshd) 9.8p1 – Race Condition	remote	linux	Milad karimi
2025-04-22	tar-fs 3.0.0 – Arbitrary File Write/Overwrite	local	linux	cybersploit
2025-04-19	FoxCMS 1.2.5 – Remote Code Execution (RCE)	webapps	multiple	VeryLazyTech
2025-04-19	Drupal 11.x-dev – Full Path Disclosure	webapps	php	Milad karimi
2025-04-18	UJCMS 9.6.3 – User Enumeration via IDOR	webapps	multiple	Cyd Tseng
2025-04-18	Inventio Lite 4 – SQL Injection	webapps	php	pointedsec
2025-04-18	Langflow 1.3.0 – Remote Code Execution (RCE)	remote	multiple	VeryLazyTech
2025-04-18	Apache Commons Text 1.10.0 – Remote Code Execution	webapps	multiple	Arjun Chaudhary
2025-04-18	Tatsu 3.3.11 – Unauthenticated RCE	webapps	php	Milad karimi
2025-04-18	Hunk Companion Plugin 1.9.0 – Unauthenticated Plugin Installation	webapps	multiple	Jun Takemura
2025-04-18	KiviCare Clinic & Patient Management System (EHR) 3.6.4 – Unauthenticated SQL Injection	webapps	php	samogod
2025-04-17	AnyDesk 9.0.1 – Unquoted Service Path	local	windows	Parastou Razi
2025-04-17	compop.ca 3.5.3 – Arbitrary code Execution	webapps	multiple	dmlino
2025-04-17	Blood Bank & Donor Management System 2.4 – CSRF Improper Input Validation	webapps	multiple	Kwangyun Keum
2025-04-17	Usermin 2.100 – Username Enumeration	webapps	multiple	Kjesper
2025-04-17	Angular-Base64-Upload Library 0.1.21 – Unauthenticated Remote Code Execution (RCE)	webapps	multiple	Ravindu Wickramasinghe
2025-04-17	ABB Cylon Aspect 3.08.02 (ethernetUpdate.php) – Authenticated Path Traversal	hardware	php	LiquidWorm
2025-04-17	ABB Cylon Aspect 3.08.02 (deployStart.php) – Unauthenticated Command Execution	hardware	php	LiquidWorm
2025-04-17	TP-Link VN020 F3v(T) TT_V6.2.1021 – Denial Of Service (DOS)	remote	multiple	Mohamed Maatallah
2025-04-17	TP-Link VN020 F3v(T) TT_V6.2.1021 – Buffer Overflow Memory Corruption	remote	multiple	Mohamed Maatallah
2025-04-16	KodExplorer 4.52 – Open Redirect	webapps	php	Rahad Chowdhury
2025-04-16	phpMyFAQ 3.1.7 – Reflected Cross-Site Scripting (XSS)	webapps	php	CodeSecLab
2025-04-16	ASUS ASMB8 iKVM 1.14.51 – Remote Code Execution (RCE)	local	hardware	ub3rsick
2025-04-16	Car Rental Project 1.0 – Remote Code Execution	webapps	php	ub3rsick
2025-04-16	Ruckus IoT Controller 1.7.1.0 – Undocumented Backdoor Account	local	hardware	ub3rsick
2025-04-16	Ethercreative Logs 3.0.3 – Path Traversal	webapps	multiple	ub3rsick
2025-04-16	FLIR AX8 1.46.16 – Remote Command Injection	webapps	hardware	ub3rsick
2025-04-16	Fortinet FortiOS, FortiProxy, and FortiSwitchManager 7.2.0 – Authentication bypass	remote	windows	ub3rsick