Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24745Exploits

日期	标题	类型	平台	作者
2012-10-22	RealPlayer 15.0.6.14.3gp – Crash (PoC)	dos	windows	coolkaveh
2012-10-22	Movable Type Pro 5.13en – Persistent Cross-Site Scripting	webapps	php	sqlhacker
2012-10-22	Joomla! Component com_commedia – ‘task’ SQL Injection	webapps	php	D4NB4R
2012-10-22	WHMCompleteSolution (WHMCS) 4.5.2 – ‘googlecheckout.php’ SQL Injection	webapps	php	Starware Security Team
2012-10-22	ATutor 1.2 – Multiple Vulnerabilities	webapps	php	High-Tech Bridge SA
2012-10-22	subrion CMS 2.2.1 – Multiple Vulnerabilities	webapps	php	High-Tech Bridge SA
2012-10-22	WordPress Plugin social discussions 6.1.1 – Multiple Vulnerabilities	webapps	php	waraxe
2012-10-21	FirePass 7.0 SSL VPN – ‘refreshURL’ Open Redirection	remote	hardware	Aung Khant
2012-10-20	WebTitan – ‘logs-x.php’ Directory Traversal	webapps	php	Richard Conner
2012-10-19	Vm86 – Syscall Task Switch Kernel Panic Denial of Service / Privilege Escalation	local	linux	halfdog
2012-10-19	CMS Mini 0.2.2 – ‘index.php’ Script Cross-Site Scripting	webapps	php	Netsparker
2012-10-19	Microsoft Internet Explorer 9 – Cross-Site Scripting Filter Bypass	dos	windows	Jean Pascal Pereira
2012-10-19	CMSQLite 1.3.2 – Multiple Vulnerabilities	webapps	php	Vulnerability-Lab
2012-10-19	Joomla! Component com_tag – ‘tag’ SQL Injection	webapps	php	D4NB4R
2012-10-19	Joomla! Component com_fss 1.9.1.1447 – SQL Injection	webapps	php	D4NB4R
2012-10-19	ManageEngine Security Manager Plus 5.5 build 5505 – Remote SYSTEM SQL Injection (Metasploit)	remote	windows	xistence
2012-10-19	ManageEngine Security Manager Plus 5.5 build 5505 – Remote Root/SYSTEM SQL Injection	remote	multiple	xistence
2012-10-19	ManageEngine Security Manager Plus 5.5 build 5505 – Directory Traversal	webapps	multiple	xistence
2012-10-18	Oracle Database – Protocol Authentication Bypass	local	multiple	Esteban Martinez Fayo
2012-10-18	WordPress Plugin Wordfence Security – Cross-Site Scripting	webapps	php	MustLive
2012-10-18	Broadcom WIDCOMM Bluetooth – ‘btkrnl.sys’ Driver Privilege Escalation	local	windows	Nikita Tarakanov
2012-10-18	Amateur Photographer’s Image Gallery – ‘fullscreen.php?albumid’ SQL Injection	webapps	php	cr4wl3r
2012-10-18	Amateur Photographer’s Image Gallery – ‘plist.php?albumid’ Cross-Site Scripting	webapps	php	cr4wl3r
2012-10-18	Amateur Photographer’s Image Gallery – ‘plist.php?albumid’ SQL Injection	webapps	php	cr4wl3r
2012-10-18	Amateur Photographer’s Image Gallery – ‘force-download.php?File’ Information Disclosure	webapps	php	cr4wl3r
2012-10-18	BSW Gallery – ‘uploadpic.php’ Arbitrary File Upload	webapps	php	cr4wl3r
2012-10-18	WordPress Plugin FireStorm Professional Real Estate 2.06.01 – SQL Injection	webapps	php	Ashiyane Digital Security Team
2012-10-18	OTRS 3.1 – Persistent Cross-Site Scripting	webapps	windows	Mike Eduard
2012-10-17	jCore – ‘/admin/index.php?path’ Cross-Site Scripting	webapps	php	High-Tech Bridge
2012-10-17	ModSecurity – ‘POST’ Security Bypass	remote	linux	Bernhard Mueller
2012-10-17	WordPress Plugin Slideshow – Multiple Cross-Site Scripting Vulnerabilities	webapps	php	waraxe
2012-10-17	Oracle WebCenter Sites (FatWire Content Server) – Multiple Vulnerabilities	webapps	multiple	SEC Consult
2012-10-17	ManageEngine Support Center Plus 7908 – Multiple Vulnerabilities	webapps	jsp	xistence
2012-10-17	Symphony CMS 2.3 – Multiple Vulnerabilities	webapps	php	Wireghoul
2012-10-17	Sisfokol 4.0 – Arbitrary File Upload	webapps	php	cr4wl3r
2012-10-16	WANem – Multiple Cross-Site Scripting Vulnerabilities	webapps	php	Brendan Coles
2012-10-16	Samsung Kies 2.3.2.12054_20 – Multiple Vulnerabilities	remote	windows	High-Tech Bridge SA
2012-10-16	EZHomeTech EzServer 7.0 – Remote Heap Corruption	dos	windows	Lorenzo Cantoni
2012-10-16	Visual Tools DVR3.0.6.16, vx series 4.2.19.2 – Multiple Vulnerabilities	webapps	hardware	Andrea Fabrizi
2012-10-16	Joomla! Component com_icagenda – ‘id’ Multiple Vulnerabilities	webapps	php	Dark-Puzzle
2012-10-16	MyBB Profile Albums Plugin 0.9 – ‘albums.php?album’ SQL Injection	webapps	php	Zixem
2012-10-16	Microsoft Windows – Escalate Service Permissions Privilege Escalation (Metasploit)	local	windows	Metasploit
2012-10-16	AjaXplorer – ‘checkInstall.php’ Remote Command Execution (Metasploit)	remote	php	Metasploit
2012-10-16	Project Pier – Arbitrary File Upload (Metasploit)	webapps	php	Metasploit
2012-10-15	SilverStripe CMS 2.4.x – ‘BackURL’ Open Redirection	webapps	php	Aung Khant
2012-10-15	BigPond 3G21WB – Multiple Vulnerabilities	webapps	hardware	Roberto Paleari
2012-10-15	QQPlayer 3.7.892 – m2p ‘quartz.dll’ Heap Pointer Overwrite (PoC)	dos	windows	James Ritchey
2012-10-15	airVisionNVR 1.1.13 – ‘readfile()’ Disclosure / SQL Injection	webapps	php	pennyGrit
2012-10-15	Cartweaver 3 – Local File Inclusion	webapps	php	HaxOr
2012-10-15	Huawei Technologies Internet Mobile – Unicode (SEH)	local	windows	Dark-Puzzle