Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2012-07-24	phpProfiles – Multiple Vulnerabilities	webapps	php	L0n3ly-H34rT
2012-07-23	EGallery – Arbitrary ‘.PHP’ File Upload (Metasploit)	webapps	php	Metasploit
2012-07-23	Simple Web Server – Connection Header Buffer Overflow (Metasploit)	remote	windows	Metasploit
2012-07-23	SpiceWorks 5.3.75941 – Persistent Cross-Site Scripting / (Authenticated) SQL Injection	webapps	windows	dookie
2012-07-23	Alienvault Open Source SIEM (OSSIM) 3.1 – Reflected Cross-Site Scripting / Blind SQL Injection	webapps	php	muts
2012-07-23	MySQL Squid Access Report 2.1.4 – HTML Injection	webapps	php	Daniel Godoy
2012-07-23	MyMp3 Player Stack – ‘.m3u’ File DEP Bypass	local	windows	Daniel Romero
2012-07-23	Symantec Web Gateway 5.0.3.18 – Blind SQL Injection Backdoor via MySQL Triggers	webapps	php	muts
2012-07-23	Symantec Web Gateway 5.0.2 – ‘blocked.php?id’ Blind SQL Injection	webapps	linux	muts
2012-07-23	Atmail WebAdmin and Webmail Control Panel – SQL Root Password Disclosure	webapps	linux	Ciph3r
2012-07-23	Photodex ProShow Producer 5.0.3256 – Local Buffer Overflow	local	windows	mr.pr0n
2012-07-22	Dell SonicWALL Scrutinizer 9.0.1 – ‘statusFilter.php?q’ SQL Injection	webapps	php	muts
2012-07-22	ipswitch whatsup gold 15.02 – Persistent Cross-Site Scripting / Blind SQL Injection / Remote Code Execution	webapps	asp	muts
2012-07-21	SolarWinds Orion Network Performance Monitor 10.2.2 – Multiple Vulnerabilities	webapps	windows	muts
2012-07-21	X-Cart Gold 4.5 – ‘products_map.php?symb’ Cross-Site Scripting	webapps	php	muts
2012-07-21	AtMail Email Server Appliance 6.4 – Persistent Cross-Site Scripting / Cross-Site Request Forgery / Remote Code Execution	remote	linux	muts
2012-07-21	WordPress Plugin chenpress – Arbitrary File Upload	webapps	php	Am!r
2012-07-20	httpdx 1.5.4 – HTTP Server Remote Denial of Service	dos	windows	st3n
2012-07-20	ptunnel 0.72 – Remote Denial of Service	dos	linux	st3n
2012-07-20	Oxide WebServer 2.0.4 – Denial of Service	dos	windows	SecPod Research
2012-07-20	Maian Survey – ‘/index.php’ URI redirection / Local File Inclusion	webapps	php	PuN!Sh3r
2012-07-20	iBoutique 4.0 – ‘key’ SQL Injection	webapps	php	SecPod Research
2012-07-20	PHP-Nuke module (SPChat) – SQL Injection	webapps	php	Yakir Wizman
2012-07-20	PHP 6.0 – ‘openssl_verify()’ Local Buffer Overflow (PoC)	dos	windows	Yakir Wizman
2012-07-20	Oracle Outside-In – ‘.LWP’ File Parsing Stack Buffer Overflow	dos	windows	Francis Provencher
2012-07-20	Oracle Outside-In JP2 – File Parsing Heap Overflow	dos	windows	Francis Provencher
2012-07-20	Oracle Outside-In – ‘.FPX’ File Parsing Heap Overflow	dos	windows	Francis Provencher
2012-07-20	Novell ZENworks Configuration Management Preboot Service – 0x4c Buffer Overflow (Metasploit)	remote	windows	Metasploit
2012-07-20	Novell ZENworks Configuration Management Preboot Service – 0x6c Buffer Overflow (Metasploit)	remote	windows	Metasploit
2012-07-19	Simple Web Server 2.2 rc2 – Remote Buffer Overflow	remote	windows	mr.pr0n
2012-07-19	Linux Kernel 2.4.4 < 2.4.37.4 / 2.6.0 < 2.6.30.4 - 'Sendpage' Local Privilege Escalation (Metasploit)	local	linux	Metasploit
2012-07-19	Novell ZENworks Configuration Management Preboot Service 0x21 – Remote Buffer Overflow (Metasploit)	remote	windows	Metasploit
2012-07-19	Novell ZENworks Configuration Management Preboot Service 0x06 – Remote Buffer Overflow (Metasploit)	remote	windows	Metasploit
2012-07-19	Microsoft Windows – Task Scheduler ‘.XML’ Local Privilege Escalation (MS10-092) (Metasploit)	local	windows	Metasploit
2012-07-19	WebKit Cross-Site Scripting Filter – ‘Cross-Site ScriptingAuditor.cpp’ Security Bypass	webapps	php	Tushar Dalvi
2012-07-19	CodeIgniter 2.1 – ‘xss_clean()’ Filter Security Bypass	webapps	php	Krzysztof Kotowicz
2012-07-19	Joomla! Component com_hello – ‘Controller’ Local File Inclusion	webapps	php	AJAX Security Team
2012-07-18	Barracuda SSL VPN – ‘launchAgent.do?return-To’ Cross-Site Scripting	remote	hardware	Benjamin Kunz Mejri
2012-07-18	Nwahy Articles 2.2 – Cross-Site Request Forgery (Add Admin)	webapps	php	DaOne
2012-07-18	Arora Browser – Remote Denial of Service	dos	multiple	t3rm!n4t0r
2012-07-18	Barracuda SSL VPN – ‘fileSystem.do’ Multiple Cross-Site Scripting Vulnerabilities	remote	hardware	Benjamin Kunz Mejri
2012-07-17	AVA VoIP – Multiple Vulnerabilities	webapps	php	Ibrahim El-Sayed
2012-07-17	Forum Oxalis 0.1.2 – SQL Injection	webapps	php	Jean Pascal Pereira
2012-07-17	libdbus – ‘DBUS_SYSTEM_BUS_ADDRESS’ Local Privilege Escalation	local	linux	Sebastian Krahmer
2012-07-16	EmbryoCore CMS 1.03 – ‘loadcss.php’ Multiple Directory Traversal Vulnerabilities	webapps	php	Sammy FORGIT
2012-07-16	Rama Zeiten CMS – ‘download.php’ Remote File Disclosure	webapps	php	Sammy FORGIT
2012-07-16	web@all – ‘name’ Cross-Site Scripting	webapps	php	Sammy FORGIT
2012-07-16	WordPress Plugin Post Recommendations – ‘abspath’ Remote File Inclusion	webapps	php	Sammy FORGIT
2012-07-16	Simple Machines 2.0.2 – Multiple HTML Injection Vulnerabilities	webapps	php	Benjamin Kunz Mejri
2012-07-16	PBBoard CMS 2.1.4 – Multiple Vulnerabilities	webapps	php	Vulnerability-Lab