Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24443Exploits
日期 标题 类型 平台 作者
2012-03-28

Quest InTrust 10.4.x – Annotation Objects ActiveX Control ‘AnnotateX.dll’ Uninitialized Pointer Remote Code Execution
  • remote
  • windows
    		• rgod
    2012-03-28

    ocPortal 7.1.5 – ‘code_editor.php’ Multiple Cross-Site Scripting Vulnerabilities
  • webapps
  • php
    		• High-Tech Bridge
    2012-03-28

    D-Link DCS-5605 Network Surveillance – ActiveX Control ‘DcsCliCtrl.dll’ lstrcpyW Remote Buffer Overflow
  • remote
  • hardware
    		• rgod
    2012-03-28

    TomatoCart 1.2.0 Alpha 2 – ‘json.php’ Local File Inclusion
  • webapps
  • php
    		• Canberk BOLAT
    2012-03-28

    Quest InTrust 10.4.x – ReportTree / SimpleTree Classes
  • remote
  • windows
    		• rgod
    2012-03-28

    Apple Safari 5.1.5 For Windows – ‘window.open()’ URI Spoofing
  • remote
  • windows
    		• Lostmon
    2012-03-28

    KnFTPd 1.0.0 – ‘FEAT’ Denial of Service (PoC)
  • dos
  • windows
    		• Stefan Schurtz
    2012-03-28

    PicoPublisher 2.0 – SQL Injection
  • webapps
  • php
    		• ZeTH
    2012-03-28

    Invision Power Board (IP.Board) 4.2.1 – ‘searchText’ Cross-Site Scripting
  • webapps
  • php
    		• sonyy
    2012-03-28

    WordPress Plugin Integrator 1.32 – ‘redirect_to’ Cross-Site Scripting
  • webapps
  • php
    		• Stefan Schurtz
    2012-03-27

    Matthew1471 BlogX – Multiple Cross-Site Scripting Vulnerabilities
  • webapps
  • asp
    		• demonalex
    2012-03-27

    NextBBS 0.6 – ‘index.php?do’ Cross-Site Scripting
  • webapps
  • php
    		• waraxe
    2012-03-27

    NextBBS 0.6 – ‘ajaxserver.php’ Multiple SQL Injections
  • webapps
  • php
    		• waraxe
    2012-03-27

    Geeklog 1.8.1 – ‘index.php’ SQL Injection
  • webapps
  • php
    		• HELLBOY
    2012-03-26

    vBshop – Multiple Persistent Cross-Site Scripting Vulnerabilities
  • webapps
  • php
    		• ToiL
    2012-03-26

    Family CMS 2.9 – Multiple Vulnerabilities
  • webapps
  • php
    		• Ahmed Elhady Mohamed
    2012-03-26

    UltraVNC 1.0.2 Client – ‘vncviewer.exe’ Remote Buffer Overflow (Metasploit)
  • remote
  • windows
    		• Metasploit
    2012-03-25

    PHP 5.4.0 Built-in Web Server – Denial of Service (PoC)
  • dos
  • multiple
    		• ls
    2012-03-25

    Zumset.com FbiLike 1.00 – ‘id’ Cross-Site Scripting
  • webapps
  • php
    		• Crim3R
    2012-03-24

    RealPlayer – ‘.mp4’ file handling memory Corruption
  • dos
  • windows
    		• Senator of Pirates
    2012-03-24

    RIPS 0.53 – Multiple Local File Inclusions
  • webapps
  • php
    		• localh0t
    2012-03-24

    FreePBX 2.9.0/2.10.0 – ‘callmenum’ Remote Code Execution (Metasploit)
  • webapps
  • php
    		• Metasploit
    2012-03-24

    Ricoh DC Software DL-10 SR10 FTP Server (SR10.exe) – FTP USER Command Buffer Overflow (Metasploit)
  • remote
  • windows
    		• Metasploit
    2012-03-24

    Event Calendar PHP – ‘cal_year’ Cross-Site Scripting
  • webapps
  • php
    		• 3spi0n
    2012-03-23

    mmPlayer 2.2 – ‘.ppl’ Local Buffer Overflow (SEH)
  • local
  • windows
    		• RjRjh Hack3r
    2012-03-23

    Apache Struts 2.0 – ‘XSLTResult.java’ Arbitrary File Upload
  • webapps
  • java
    		• voidloafer
    2012-03-23

    mmPlayer 2.2 – ‘.m3u’ Local Buffer Overflow (SEH)
  • local
  • windows
    		• RjRjh Hack3r
    2012-03-23

    PHPFox 3.0.1 – ‘ajax.php’ Remote Command Execution
  • webapps
  • php
    		• EgiX
    2012-03-23

    Spotify 0.8.2.610 – search func Memory Exhaustion
  • dos
  • windows
    		• LiquidWorm
    2012-03-23

    Wolfcms 0.75 – Cross-Site Request Forgery / Cross-Site Scripting
  • webapps
  • php
    		• Ivano Binetti
    2012-03-23

    Sitecom WLM-2501 – Multiple Cross-Site Request Forgery Vulnerabilities
  • webapps
  • asp
    		• Ivano Binetti
    2012-03-23

    FreePBX 2.10.0 / Elastix 2.2.0 – Remote Code Execution
  • webapps
  • php
    		• muts
    2012-03-22

    vBShout – Persistent Cross-Site Scripting
  • webapps
  • php
    		• ToiL
    2012-03-22

    Ricoh DC Software DL-10 SR10 FTP Server (SR10.exe) 1.1.0.6 – Remote Buffer Overflow
  • dos
  • windows
    		• Julien Ahrens
    2012-03-22

    Microsoft Internet Explorer – Object Memory Use-After-Free (MS10-002) (Metasploit)
  • remote
  • windows
    		• Metasploit
    2012-03-22

    Cisco Linksys WVC200 Wireless-G PTZ Internet Video Camera PlayerPT – ActiveX Control PlayerPT.ocx sprintf Buffer Overflow (PoC)
  • dos
  • windows
    		• rgod
    2012-03-22

    Google Talk – ‘gtalk://’ Deprecated URI Handler Injection
  • remote
  • windows
    		• rgod
    2012-03-22

    AtMail 1.04 – Multiple Vulnerabilities
  • remote
  • linux
    		• Yury Maryshev
    2012-03-22

    FreePBX 2.9.0/2.10.0 – Multiple Vulnerabilities
  • webapps
  • php
    		• Martin Tschirsich
    2012-03-22

    phpMoneyBooks 1.0.2 – Local File Inclusion
  • webapps
  • php
    		• Mark Stanislav
    2012-03-22

    PHP Grade Book 1.9.4 – SQL Database Export
  • webapps
  • php
    		• Mark Stanislav
    2012-03-22

    Cyberoam UTM – Multiple Vulnerabilities
  • webapps
  • hardware
    		• Saurabh Harit
    2012-03-21

    CMSimple 3.3 – ‘index.php’ Cross-Site Scripting
  • webapps
  • php
    		• Stefan Schurtz
    2012-03-21

    phpList 2.10.17 – SQL Injection / Cross-Site Scripting
  • webapps
  • php
    		• LiquidWorm
    2012-03-21

    D-Link DIR-605 – Cross-Site Request Forgery
  • webapps
  • hardware
    		• iqzer0
    2012-03-21

    Oreans WinLicense 2.1.8.0 – XML File Handling Memory Corruption
  • dos
  • windows
    		• LiquidWorm
    2012-03-21

    Oreans Themida 2.1.8.0 – ‘.TMD’ File Handling Buffer Overflow
  • dos
  • windows
    		• LiquidWorm
    2012-03-21

    Minify 2.1.x – ‘g’ Cross-Site Scripting
  • webapps
  • java
    		• Ayoub Aboukir
    2012-03-21

    Dell Webcam CrazyTalk – ActiveX BackImage (Metasploit)
  • remote
  • windows
    		• Metasploit
    2012-03-21

    Open Journal Systems (OJS) 2.3.6 – ‘rfiles.php’ Traversal Arbitrary File Manipulation
  • webapps
  • php
    		• High-Tech Bridge