Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24443Exploits
日期 标题 类型 平台 作者
2021-06-04

My Notes Safe 5.3 – Denial of Service (PoC)
  • dos
  • ios
    		• Geovanni Ruiz
    2021-06-04

    Macaron Notes great notebook 5.5 – Denial of Service (PoC)
  • dos
  • ios
    		• Geovanni Ruiz
    2021-06-04

    Color Notes 1.4 – Denial of Service (PoC)
  • dos
  • ios
    		• Geovanni Ruiz
    2021-06-03

    4Images 1.8 – ‘redirect’ Reflected XSS
  • webapps
  • php
    		• Piyush Patil
    2021-06-03

    Gitlab 13.9.3 – Remote Code Execution (Authenticated)
  • webapps
  • ruby
    		• enox
    2021-06-03

    FUDForum 3.1.0 – ‘author’ Reflected XSS
  • webapps
  • php
    		• Piyush Patil
    2021-06-03

    FUDForum 3.1.0 – ‘srch’ Reflected XSS
  • webapps
  • php
    		• Piyush Patil
    2021-06-03

    CHIYU IoT Devices – Denial of Service (DoS)
  • webapps
  • hardware
    		• sirpedrotavares
    2021-06-03

    CHIYU IoT Devices – ‘Telnet’ Authentication Bypass
  • remote
  • hardware
    		• sirpedrotavares
    2021-06-03

    Seo Panel 4.8.0 – ‘from_time’ Reflected XSS
  • webapps
  • php
    		• Piyush Patil
    2021-06-03

    PHP 8.1.0-dev – ‘User-Agentt’ Remote Code Execution
  • webapps
  • php
    		• flast101
    2021-06-02

    Thecus N4800Eco Nas Server Control Panel – Comand Injection
  • webapps
  • hardware
    		• Metin Yunus Kandemir
    2021-06-02

    Seo Panel 4.8.0 – ‘category’ Reflected XSS
  • webapps
  • php
    		• Piyush Patil
    2021-06-02

    Seo Panel 4.8.0 – ‘search_name’ Reflected XSS
  • webapps
  • php
    		• Piyush Patil
    2021-06-02

    Products.PluggableAuthService 2.6.0 – Open Redirect
  • webapps
  • Python
    		• Piyush Patil
    2021-06-02

    Intel(R) Audio Service x64 01.00.1080.0 – ‘IntelAudioService’ Unquoted Service Path
  • local
  • windows
    		• Geovanni Ruiz
    2021-06-02

    GetSimple CMS 3.3.4 – Information Disclosure
  • webapps
  • php
    		• Ron Jost
    2021-06-02

    Apache Airflow 1.10.10 – ‘Example Dag’ Remote Code Execution
  • webapps
  • multiple
    		• Pepe Berba
    2021-06-01

    Veyon 4.4.1 – ‘VeyonService’ Unquoted Service Path
  • local
  • windows
    		• Víctor García
    2021-06-01

    Atlassian Jira 8.15.0 – Information Disclosure (Username Enumeration)
  • webapps
  • multiple
    		• Mohammed Aloraimi
    2021-06-01

    CHIYU TCP/IP Converter devices – CRLF injection
  • webapps
  • cgi
    		• sirpedrotavares
    2021-06-01

    CHIYU IoT devices – ‘Multiple’ Cross-Site Scripting (XSS)
  • webapps
  • cgi
    		• sirpedrotavares
    2021-06-01

    WordPress Plugin WP Prayer version 1.6.1 – ‘prayer_messages’ Stored Cross-Site Scripting (XSS) (Authenticated)
  • webapps
  • php
    		• Bastijn Ouwendijk
    2021-06-01

    Ubee EVW327 – ‘Enable Remote Access’ Cross-Site Request Forgery (CSRF)
  • webapps
  • hardware
    		• lated
    2021-06-01

    ProjeQtOr Project Management 9.1.4 – Remote Code Execution
  • webapps
  • php
    		• Temel Demir
    2021-06-01

    LogonTracer 1.2.0 – Remote Code Execution (Unauthenticated)
  • webapps
  • multiple
    		• g0ldm45k
    2021-06-01

    DupTerminator 1.4.5639.37199 – Denial of Service (PoC)
  • dos
  • windows
    		• Brian Rodriguez
    2021-05-28

    Selenium 3.141.59 – Remote Code Execution (Firefox/geckodriver)
  • webapps
  • linux
    		• Jon Stratton
    2021-05-28

    Trixbox 2.8.0.4 – ‘lang’ Path Traversal
  • webapps
  • php
    		• Ron Jost
    2021-05-28

    Trixbox 2.8.0.4 – ‘lang’ Remote Code Execution (Unauthenticated)
  • webapps
  • php
    		• Ron Jost
    2021-05-28

    WordPress Plugin LifterLMS 4.21.0 – Stored Cross-Site Scripting (XSS)
  • webapps
  • php
    		• Captain_hook
    2021-05-28

    PHPFusion 9.03.50 – Remote Code Execution
  • webapps
  • php
    		• g0ldm45k
    2021-05-27

    Postbird 0.8.4 – Javascript Injection
  • webapps
  • multiple
    		• Debshubra Chakraborty
    2021-05-26

    Pluck CMS 4.7.13 – File Upload Remote Code Execution (Authenticated)
  • webapps
  • php
    		• Ron Jost
    2021-05-26

    ProFTPd 1.3.5 – ‘mod_copy’ Remote Command Execution (2)
  • remote
  • linux
    		• Shellbr3ak
    2021-05-26

    Codiad 2.8.4 – Remote Code Execution (Authenticated) (3)
  • webapps
  • multiple
    		• Ron Jost
    2021-05-26

    RarmaRadio 2.72.8 – Denial of Service (PoC)
  • dos
  • windows
    		• Ismael Nava
    2021-05-25

    WordPress Plugin Cookie Law Bar 1.2.1 – ‘clb_bar_msg’ Stored Cross-Site Scripting (XSS)
  • webapps
  • php
    		• Mesut Cetin
    2021-05-25

    Gadget Works Online Ordering System 1.0 – ‘Category’ Persistent Cross-Site Scripting (XSS)
  • webapps
  • php
    		• Vinay H C
    2021-05-24

    WordPress Plugin ReDi Restaurant Reservation 21.0307 – ‘Comment’ Stored Cross-Site Scripting (XSS)
  • webapps
  • php
    		• Bastijn Ouwendijk
    2021-05-24

    Codiad 2.8.4 – Remote Code Execution (Authenticated) (2)
  • webapps
  • multiple
    		• Ron Jost
    2021-05-24

    Shopizer 2.16.0 – ‘Multiple’ Cross-Site Scripting (XSS)
  • webapps
  • java
    		• Marek Toth
    2021-05-24

    ePowerSvc 6.0.3008.0 – ‘ePowerSvc.exe’ Unquoted Service Path
  • local
  • windows
    		• Emmanuel Lujan
    2021-05-24

    DiskBoss Service 12.2.18 – ‘diskbsa.exe’ Unquoted Service Path
  • local
  • windows
    		• Erick Galindo
    2021-05-24

    iDailyDiary 4.30 – Denial of Service (PoC)
  • dos
  • windows
    		• Ismael Nava
    2021-05-24

    Schlix CMS 2.2.6-6 – Arbitary File Upload (Authenticated)
  • webapps
  • multiple
    		• Emir Polat
    2021-05-21

    DELL dbutil_2_3.sys 2.3 – Arbitrary Write to Local Privilege Escalation (LPE)
  • local
  • windows
    		• Paolo Stagno
    2021-05-21

    Mozilla Firefox 88.0.1 – File Extension Execution of Arbitrary Code
  • local
  • windows
    		• BestEffort Team
    2021-05-21

    Spotweb 1.4.9 – DOM Based Cross-Site Scripting (XSS)
  • webapps
  • multiple
    		• nu11secur1ty
    2021-05-21

    Solaris SunSSH 11.0 x86 – libpam Remote Root (2)
  • remote
  • solaris
    		• legend