Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24745Exploits
日期 标题 类型 平台 作者
2012-05-13

RealVNC 4.1.0/4.1.1 – Authentication Bypass
  • remote
  • windows
    		• fdiskyou
    2012-05-13

    Liferay Portal 6.0.x < 6.1 - Privilege Escalation
  • webapps
  • java
    		• Jelmer Kuperus
    2012-05-13

    Galette – ‘picture.php’ SQL Injection
  • webapps
  • php
    		• sbz
    2012-05-13

    Free Realty 3.1-0.6 – Multiple Vulnerabilities
  • webapps
  • php
    		• Vulnerability-Lab
    2012-05-13

    Viscacha Forum CMS 0.8.1.1 – Multiple Vulnerabilities
  • webapps
  • php
    		• Vulnerability-Lab
    2012-05-13

    Proman Xpress 5.0.1 – Multiple Vulnerabilities
  • webapps
  • php
    		• Vulnerability-Lab
    2012-05-13

    Travelon Express CMS 6.2.2 – Multiple Vulnerabilities
  • webapps
  • php
    		• Vulnerability-Lab
    2012-05-13

    Mozilla Firefox 8/9 – ‘AttributeChildRemoved()’ Use-After-Free (Metasploit)
  • remote
  • windows
    		• Metasploit
    2012-05-12

    AnvSoft Any Video Converter 4.3.6 – Unicode Buffer Overflow
  • local
  • windows
    		• h1ch4m
    2012-05-12

    Sockso 1.51 – Persistent Cross-Site Scripting
  • webapps
  • php
    		• Ciaran McNally
    2012-05-12

    Distinct TFTP 3.01 – Writable Directory Traversal Execution (Metasploit)
  • remote
  • windows
    		• Metasploit
    2012-05-12

    WikkaWiki 1.3.2 – Spam Logging PHP Injection (Metasploit)
  • webapps
  • php
    		• Metasploit
    2012-05-11

    Adobe Photoshop CS5.1 – U3D.8BI Collada Asset Elements Stack Overflow
  • local
  • windows
    		• rgod
    2012-05-11

    PHP 5.4.3 (Windows x86 Polish) – Code Execution
  • local
  • windows_x86
    		• 0in
    2012-05-11

    Belkin N150 Wireless Router – Password Disclosure
  • webapps
  • hardware
    		• Avinash Tangirala
    2012-05-11

    QNX phrelay/phindows/phditto – Multiple Vulnerabilities
  • dos
  • windows
    		• Luigi Auriemma
    2012-05-10

    Chevereto 1.91 – ‘/Upload/engine.php?v’ Traversal Arbitrary File Enumeration
  • webapps
  • php
    		• AkaStep
    2012-05-10

    Chevereto 1.91 – ‘/Upload/engine.php?v’ Cross-Site Scripting
  • webapps
  • php
    		• AkaStep
    2012-05-10

    eLearning server 4g – Multiple Vulnerabilities
  • webapps
  • php
    		• Andrey Komarov
    2012-05-10

    Kerio WinRoute Firewall Web Server < 6 - Source Code Disclosure
  • webapps
  • php
    		• Andrey Komarov
    2012-05-09

    PivotX 2.3.2 – ‘ajaxhelper.php’ Cross-Site Scripting
  • webapps
  • php
    		• High-Tech Bridge SA
    2012-05-09

    OrangeHRM 2.7 RC – ‘index.php?URI’ Cross-Site Scripting
  • webapps
  • php
    		• High-Tech Bridge SA
    2012-05-09

    OrangeHRM 2.7 RC – ‘/templates/hrfunct/emppop.php?sortOrder1’ Cross-Site Scripting
  • webapps
  • php
    		• High-Tech Bridge SA
    2012-05-09

    OrangeHRM 2.7 RC – ‘/plugins/ajaxCalls/haltResumeHsp.php?newHspStatus’ Cross-Site Scripting
  • webapps
  • php
    		• High-Tech Bridge SA
    2012-05-09

    OrangeHRM 2.7 RC – ‘/plugins/ajaxCalls/haltResumeHsp.php?hspSummaryId’ SQL Injection
  • webapps
  • php
    		• High-Tech Bridge SA
    2012-05-09

    SAP NetWeaver Dispatcher – Multiple Vulnerabilities
  • dos
  • windows
    		• Core Security
    2012-05-09

    DecisionTools SharpGrid – ActiveX Control Remote Code Execution
  • dos
  • windows
    		• Francis Provencher
    2012-05-09

    Guitar Pro 6.1.1 r10791 – ‘.gpx’ Crash (PoC)
  • dos
  • windows
    		• condis
    2012-05-09

    X7 Chat 2.0.5.1 – Cross-Site Request Forgery (Add Admin)
  • webapps
  • php
    		• DennSpec
    2012-05-09

    Mozilla Firefox 7 / 8 < 8.0.1 - nsSVGValue Out-of-Bounds Access (Metasploit)
  • remote
  • windows
    		• Metasploit
    2012-05-08

    S9Y Serendipity 1.6 – ‘Backend’ Cross-Site Scripting / SQL Injection
  • webapps
  • php
    		• Stefan Schurtz
    2012-05-08

    Linksys WRT54GL Wireless Router – Cross-Site Request Forgery
  • remote
  • hardware
    		• Kalashinkov3
    2012-05-08

    PHP Enter 4.1.2 – ‘banners.php’ PHP Code Injection
  • webapps
  • php
    		• L3b-r1'z
    2012-05-07

    JibberBook 2.3 – ‘Login_form.php’ Authentication Bypass
  • webapps
  • php
    		• L3b-r1'z
    2012-05-07

    Ramui Forum Script – ‘query’ Cross-Site Scripting
  • webapps
  • php
    		• 3spi0n
    2012-05-07

    Trombinoscope 3.x – ‘photo.php’ Server SQL Injection
  • webapps
  • php
    		• Ramdan Yantu
    2012-05-07

    PHP Agenda 2.2.8 – SQL Injection
  • webapps
  • php
    		• loneferret
    2012-05-07

    myCare2x CMS – Multiple Vulnerabilities
  • webapps
  • php
    		• Vulnerability-Lab
    2012-05-07

    Myre Real Estate Mobile 2012/2 – Multiple Vulnerabilities
  • webapps
  • php
    		• Vulnerability-Lab
    2012-05-07

    Genium CMS 2012/Q2 – Multiple Vulnerabilities
  • webapps
  • php
    		• Vulnerability-Lab
    2012-05-07

    Lynx Message Server – Multiple Vulnerabilities
  • webapps
  • cgi
    		• Mark Lachniet
    2012-05-07

    Fortinet FortiWeb Web Application Firewall – Policy Bypass
  • webapps
  • asp
    		• Geffrey Velasquez
    2012-05-06

    Schneider Electric Telecontrol Kerweb 3.0.0/6.0.0 – ‘kw.dll’ HTML Injection
  • webapps
  • php
    		• phocean
    2012-05-05

    PHP < 5.3.12 / < 5.4.2 - CGI Argument Injection
  • remote
  • php
    		• rayh4c
    2012-05-04

    PHP 5.3.12/5.4.2 – CGI Argument Injection (Metasploit)
  • remote
  • php
    		• Metasploit
    2012-05-04

    SolarWinds Storage Manager 5.1.0 – SQL Injection (Metasploit)
  • remote
  • windows
    		• Metasploit
    2012-05-04

    Symantec Web Gateway – Cross-Site Scripting
  • webapps
  • php
    		• B00y@
    2012-05-03

    OpenKM 5.1.7 – Cross-Site Request Forgery
  • webapps
  • jsp
    		• Cyrill Brunschwiler
    2012-05-03

    PluXml 5.1.5 – Local File Inclusion
  • webapps
  • php
    		• High-Tech Bridge SA
    2012-05-03

    Baby Gekko CMS 1.1.5c – Multiple Persistent Cross-Site Scripting Vulnerabilities
  • webapps
  • php
    		• LiquidWorm