Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2021-11-08	Froxlor 0.10.29.1 – SQL Injection (Authenticated)	webapps	php	Martin Cernac
2021-11-08	Money Transfer Management System 1.0 – Authentication Bypass	webapps	php	Aryan Chehreghani
2021-11-08	Kmaleon 1.1.0.205 – ‘tipocomb’ SQL Injection (Authenticated)	webapps	php	Amel BOUZIANE-LEBLOND
2021-11-08	Simple Client Management System 1.0 – ‘multiple’ Stored Cross-Site Scripting (XSS)	webapps	php	Sentinal920
2021-11-08	Simple Client Management System 1.0 – SQLi (Authentication Bypass)	webapps	php	Sentinal920
2021-11-05	ImportExportTools NG 10.0.4 – HTML Injection	webapps	multiple	Vulnerability-Lab
2021-11-05	Payment Terminal 3.1 – ‘Multiple’ Cross-Site Scripting (XSS)	webapps	php	Vulnerability-Lab
2021-11-05	10-Strike Network Inventory Explorer Pro 9.31 – ‘srvInventoryWebServer’ Unquoted Service Path	local	windows	Brian Rodriguez
2021-11-04	Opencart 3 Extension TMD Vendor System – Blind SQL Injection	webapps	php	Muhammad Zaki Sulistya
2021-11-03	WordPress Plugin Hotel Listing 3 – ‘Multiple’ Cross-Site Scripting (XSS)	webapps	php	Vulnerability-Lab
2021-11-03	Ultimate POS 4.4 – ‘name’ Cross-Site Scripting (XSS)	webapps	php	Vulnerability-Lab
2021-11-03	PHPJabbers Simple CMS 5 – ‘name’ Persistent Cross-Site Scripting (XSS)	webapps	php	Vulnerability-Lab
2021-11-03	Vanguard 2.1 – ‘Search’ Cross-Site Scripting (XSS)	webapps	php	Vulnerability-Lab
2021-11-03	Isshue Shopping Cart 3.5 – ‘Title’ Cross Site Scripting (XSS)	webapps	multiple	Vulnerability-Lab
2021-11-03	Mult-e-Cart Ultimate 2.4 – ‘id’ SQL Injection	webapps	php	Vulnerability-Lab
2021-11-03	PHP Melody 3.0 – Persistent Cross-Site Scripting (XSS)	webapps	php	Vulnerability-Lab
2021-11-03	PHP Melody 3.0 – ‘vid’ SQL Injection	webapps	php	Vulnerability-Lab
2021-11-03	PHP Melody 3.0 – ‘Multiple’ Cross-Site Scripting (XSS)	webapps	php	Vulnerability-Lab
2021-11-03	Sonicwall SonicOS 6.5.4 – ‘Common Name’ Cross-Site Scripting (XSS)	webapps	hardware	Vulnerability-Lab
2021-11-03	RDP Manager 4.9.9.3 – Denial-of-Service (PoC)	local	windows	Vulnerability-Lab
2021-11-03	Simplephpscripts Simple CMS 2.1 – ‘Multiple’ SQL Injection	webapps	php	Vulnerability-Lab
2021-11-03	Simplephpscripts Simple CMS 2.1 – ‘Multiple’ Stored Cross-Site Scripting (XSS)	webapps	php	Vulnerability-Lab
2021-11-03	OpenAM 13.0 – LDAP Injection	webapps	java	Charlton Trezevant
2021-11-03	WordPress Plugin Popup Anything 2.0.3 – ‘Multiple’ Stored Cross-Site Scripting (XSS)	webapps	php	Luca Schembri
2021-11-03	Eclipse Jetty 11.0.5 – Sensitive File Disclosure	webapps	java	Mayank Deshmukh
2021-11-03	Fuel CMS 1.4.1 – Remote Code Execution (3)	webapps	php	Padsala Trushal
2021-11-02	Codiad 2.8.4 – Remote Code Execution (Authenticated) (4)	webapps	multiple	P4p4_M4n3
2021-11-02	i3 International Annexxus Cameras Ax-n 5.2.0 – Application Logic Flaw	webapps	multiple	LiquidWorm
2021-11-02	10-Strike Network Inventory Explorer Pro 9.31 – Buffer Overflow (SEH)	local	windows	ro0k
2021-11-02	YouTube Video Grabber 1.9.9.1 – Buffer Overflow (SEH)	local	windows	stresser
2021-11-02	Kingdia CD Extractor 3.0.2 – Buffer Overflow (SEH)	local	windows	stresser
2021-11-02	Ericsson Network Location MPS GMPC21 – Privilege Escalation (Metasploit)	webapps	multiple	AkkuS
2021-11-02	Ericsson Network Location MPS GMPC21 – Remote Code Execution (RCE) (Metasploit)	webapps	multiple	AkkuS
2021-11-02	Employee Record Management System 1.2 – ’empid’ SQL injection (Unauthenticated)	webapps	php	Anubhav Singh
2021-11-02	Dynojet Power Core 2.3.0 – Unquoted Service Path	local	windows	Pedro Sousa Rodrigues
2021-10-29	Mini-XML 3.2 – Heap Overflow	local	linux	LIWEI
2021-10-29	Movable Type 7 r.5002 – XMLRPC API OS Command Injection (Metasploit)	webapps	cgi	Charl-Alexandre Le Brun
2021-10-29	WebCTRL OEM 6.5 – ‘locale’ Reflected Cross-Site Scripting (XSS)	webapps	multiple	3ndG4me
2021-10-29	Umbraco v8.14.1 – ‘baseUrl’ SSRF	webapps	aspx	NgoAnhDuc
2021-10-28	WordPress Plugin Supsystic Contact Form 1.7.18 – ‘label’ Stored Cross-Site Scripting (XSS)	webapps	php	Murat DEMİRCİ
2021-10-28	PHPGurukul Hostel Management System 2.1 – Cross-site request forgery (CSRF) to Cross-site Scripting (XSS)	webapps	php	Anubhav Singh
2021-10-26	WordPress Plugin Filterable Portfolio Gallery 1.0 – ‘title’ Stored Cross-Site Scripting (XSS)	webapps	php	Murat DEMİRCİ
2021-10-25	Netgear Genie 2.4.64 – Unquoted Service Path	local	windows	Mert Daş
2021-10-25	WordPress Plugin TaxoPress 3.0.7.1 – Stored Cross-Site Scripting (XSS) (Authenticated)	webapps	php	Akash Patil
2021-10-25	phpMyAdmin 4.8.1 – Remote Code Execution (RCE)	webapps	php	samguy
2021-10-25	Hikvision Web Server Build 210702 – Command Injection	webapps	hardware	bashis
2021-10-25	WordPress 4.9.6 – Arbitrary File Deletion (Authenticated) (2)	webapps	php	samguy
2021-10-25	WordPress Plugin Ninja Tables 4.1.7 – Stored Cross-Site Scripting (XSS)	webapps	php	Akash Patil
2021-10-25	WordPress Plugin Media-Tags 3.2.0.2 – Stored Cross-Site Scripting (XSS)	webapps	php	Akash Patil
2021-10-25	Engineers Online Portal 1.0 – ‘id’ SQL Injection	webapps	php	Alon Leviev