Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24443Exploits
日期 标题 类型 平台 作者
2011-01-30

Maxthon Browser 3.0.20.1000 – ref / replace Denial of Service
  • dos
  • windows
    		• Carlos Mario Penagos Hollmann
    2011-01-30

    NetZip – Classic Buffer Overflow (SEH)
  • local
  • windows
    		• C4SS!0 G0M3S
    2011-01-30

    RW-Download 4.0.6 – ‘index.php’ SQL Injection
  • webapps
  • php
    		• Dr.NeT
    2011-01-30

    Google Chrome 8.0.552.237 – replace Denial of Service
  • dos
  • multiple
    		• Carlos Mario Penagos Hollmann
    2011-01-30

    SDP Downloader 2.3.0 – ‘http_response’ Remote Buffer Overflow
  • remote
  • windows
    		• sup3r
    2011-01-30

    vBSEO Sitemap 2.5/3.0 – Multiple Vulnerabilities
  • webapps
  • php
    		• MaXe
    2011-01-30

    vBSEO 3.2.2/3.5.2 – Persistent Cross-Site Scripting via LinkBacks
  • webapps
  • php
    		• MaXe
    2011-01-29

    MultiCMS – Local File Inclusion
  • webapps
  • php
    		• R3VAN_BASTARD
    2011-01-29

    A-PDF All to MP3 Converter 2.0.0 – ‘.wav’ Local Buffer Overflow (SEH)
  • local
  • windows
    		• m0nna
    2011-01-29

    WM Downloader 3.1.2.2 2010.04.15 – ‘.m3u’ File Buffer Overflow (DEP Bypass)
  • local
  • windows
    		• sickness
    2011-01-29

    Microsoft Internet Explorer – MHTML Protocol Handler Cross-Site Scripting
  • local
  • windows
    		• 80vul
    2011-01-29

    Caedo HTTPd Server 0.5.1 ALPHA – Arbitrary File Download
  • remote
  • windows
    		• Zer0 Thunder
    2011-01-28

    Virtuosa Phoenix Edition 5.2 – ASX Buffer Overflow (SEH)
  • local
  • windows
    		• Acidgen
    2011-01-28

    PHP Script Directory Software – ‘sbcat_id’ SQL Injection
  • webapps
  • php
    		• h4ck3r
    2011-01-28

    Polycom SoundPoint IP Devices – Denial of Service
  • dos
  • hardware
    		• pawel gawinek
    2011-01-28

    FreeBSD 8.0 – Local Forced Reboot (Denial of Service)
  • dos
  • bsd
    		• kingcope
    2011-01-28

    PHP Classified ads software – ‘cid’ Blind SQL Injection
  • webapps
  • php
    		• h4ck3r
    2011-01-28

    PHP Link Directory Software – ‘sbcat_id’ SQL Injection
  • webapps
  • php
    		• h4ck3r
    2011-01-27

    Vanilla Forums 2.0.16 – ‘Target’ Cross-Site Scripting
  • webapps
  • php
    		• YGN Ethical Hacker Group
    2011-01-27

    comercioplus 5.6 – Multiple Vulnerabilities
  • webapps
  • php
    		• Daniel Godoy
    2011-01-26

    Oracle Document Capture – Actbar2.ocx Insecure Method
  • remote
  • windows
    		• Evdokimov Dmitriy
    2011-01-26

    Oracle Document Capture 10.1.3.5 – Insecure Method / Buffer Overflow
  • remote
  • windows
    		• Alexandr Polyakov
    2011-01-26

    Froxlor 0.9.15 – Remote File Inclusion
  • webapps
  • php
    		• DIES3L
    2011-01-26

    class.upload.php 0.30 – Arbitrary File Upload
  • webapps
  • php
    		• DIES3L
    2011-01-26

    AWCM 2.2 Final – Local File Inclusion
  • webapps
  • php
    		• Cucura
    2011-01-26

    PHPDirector Game Edition – ‘game.php’ SQL Injection
  • webapps
  • php
    		• AtT4CKxT3rR0r1ST
    2011-01-26

    SimpGB 1.49.2 – ‘Guestbook.php’ Multiple Cross-Site Scripting Vulnerabilities
  • webapps
  • php
    		• MustLive
    2011-01-26

    Xnova Legacies 2009.2 – Cross-Site Request Forgery
  • webapps
  • php
    		• Xploit A Day
    2011-01-26

    MultiPowUpload 2.1 – Arbitrary File Upload
  • webapps
  • php
    		• DIES3L
    2011-01-26

    Oracle – Document Capture Insecure READ Method
  • remote
  • windows
    		• Alexey Sintsov
    2011-01-26

    Oracle Document Capture – ’empop3.dll’ Insecure Methods
  • remote
  • windows
    		• Evdokimov Dmitriy
    2011-01-26

    sap crystal report server 2008 – Directory Traversal
  • webapps
  • windows
    		• Dmitriy Chastuhin
    2011-01-25

    PivotX 2.2 – ‘/pivotx/includes/timwrapper.php?src’ Cross-Site Scripting
  • webapps
  • php
    		• High-Tech Bridge SA
    2011-01-25

    PivotX 2.2 – ‘/pivotx/includes/blogroll.php?color’ Cross-Site Scripting
  • webapps
  • php
    		• High-Tech Bridge SA
    2011-01-25

    WordPress Plugin Videox7 UGC 2.5.3.2 – ‘listid’ Cross-Site Scripting
  • webapps
  • php
    		• AutoSec Tools
    2011-01-25

    ActiveWeb Professional 3.0 – Arbitrary File Upload
  • webapps
  • cfm
    		• StenoPlasma
    2011-01-25

    ab Web CMS 1.35 – Multiple Vulnerabilities
  • webapps
  • php
    		• Dr.0rYX & Cr3W-DZ
    2011-01-25

    PivotX 2.2.2 – ‘module_image.php’ Cross-Site Scripting
  • webapps
  • php
    		• AutoSec Tools
    2011-01-25

    Opera Web Browser 11.00 – Integer Overflow
  • dos
  • windows
    		• C4SS!0 G0M3S
    2011-01-25

    web@all 1.1 – ‘url’ Cross-Site Scripting
  • webapps
  • php
    		• AutoSec Tools
    2011-01-25

    Sun Microsystems SunScreen Firewall – Privilege Escalation
  • remote
  • multiple
    		• kingcope
    2011-01-25

    WordPress Plugin FCChat Widget 2.1.7 – ‘path’ Cross-Site Scripting
  • webapps
  • php
    		• AutoSec Tools
    2011-01-25

    Automated Solutions Modbus/TCP OPC Server – Remote Heap Corruption (PoC)
  • dos
  • windows
    		• Jeremy Brown
    2011-01-25

    WordPress Plugin BezahlCode Generator 1.0 – ‘gen_name’ Cross-Site Scripting
  • webapps
  • php
    		• AutoSec Tools
    2011-01-25

    WordPress Plugin Recip.ly 1.1.7 – ‘uploadImage.php’ Arbitrary File Upload
  • webapps
  • php
    		• AutoSec Tools
    2011-01-25

    WordPress Plugin Featured Content 0.0.1 – ‘listid’ Cross-Site Scripting
  • webapps
  • php
    		• AutoSec Tools
    2011-01-25

    Opera Web Browser 11.00 – ‘option’ HTML Element Integer Overflow
  • remote
  • multiple
    		• C4SS!0 G0M3S
    2011-01-24

    Microsoft Fax – Cover Page Editor 5.2.3790.3959 Double-Free Memory Corruption
  • local
  • windows
    		• Luigi Auriemma
    2011-01-24

    WordPress Plugin Uploader 1.0 – ‘num’ Cross-Site Scripting
  • webapps
  • php
    		• AutoSec Tools
    2011-01-24

    libxml2 2.6.x – ‘XMLWriter::writeAttribute()’ Memory Leak Information Disclosure
  • remote
  • multiple
    		• Kees Cook