Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2020-10-28	Prey 1.9.6 – “CronService” Unquoted Service Path	local	windows	Ömer Tuygun
2020-10-28	Program Access Controller v1.2.0.0 – ‘PACService.exe’ Unquoted Service Path	local	windows	Mohammed Alshehri
2020-10-28	Exploit – EPSON 1.124 – ‘seksmdb.exe’ Unquoted Service Path	local	windows	İsmail Önder Kaya
2020-10-28	Oracle Business Intelligence Enterprise Edition 5.5.0.0.0 / 12.2.1.3.0 / 12.2.1.4.0 – ‘getPreviewImage’ Directory Traversal/Local File Inclusion	webapps	linux	Ivo Palazzolo
2020-10-28	Blueman < 2.1.4 - Local Privilege Escalation	local	linux	Vaisha Bernard
2020-10-28	aptdaemon < 1.1.1 - File Existence Disclosure	local	linux	Vaisha Bernard
2020-10-28	PackageKit < 1.1.13 - File Existence Disclosure	local	linux	Vaisha Bernard
2020-10-28	CSE Bookstore 1.0 – Authentication Bypass	webapps	php	Alper Basaran
2020-10-28	Nagios XI 5.7.3 – ‘mibs.php’ Remote Command Injection (Authenticated)	webapps	php	Matthew Aberegg
2020-10-27	Client Management System 1.0 – ‘searchdata’ SQL injection	webapps	php	Serkan Sancar
2020-10-27	Sentrifugo 3.2 – File Upload Restriction Bypass (Authenticated)	webapps	php	Gurkirat Singh
2020-10-27	Adtec Digital Multiple Products – Default Hardcoded Credentials Remote Root	remote	hardware	LiquidWorm
2020-10-27	TDM Digital Signage PC Player 4.1 – Insecure File Permissions	local	windows	LiquidWorm
2020-10-27	GoAhead Web Server 5.1.1 – Digest Authentication Capture Replay Nonce Reuse	remote	hardware	LiquidWorm
2020-10-27	Sphider Search Engine 1.3.6 – ‘word_upper_bound’ RCE (Authenticated)	webapps	php	Gurkirat Singh
2020-10-26	ReQuest Serious Play F3 Media Server 7.0.3 – Remote Code Execution (Unauthenticated)	webapps	hardware	LiquidWorm
2020-10-26	ReQuest Serious Play F3 Media Server 7.0.3 – Remote Denial of Service	webapps	hardware	LiquidWorm
2020-10-26	ReQuest Serious Play F3 Media Server 7.0.3 – Debug Log Disclosure	webapps	hardware	LiquidWorm
2020-10-26	ReQuest Serious Play Media Player 3.0 – Directory Traversal File Disclosure	webapps	hardware	LiquidWorm
2020-10-26	Genexis Platinum-4410 – ‘SSID’ Persistent XSS	webapps	hardware	Amal Mohandas
2020-10-26	PDW File Browser 1.3 – ‘new_filename’ Cross-Site Scripting (XSS)	webapps	php	David Bimmel
2020-10-26	InoERP 0.7.2 – Remote Code Execution (Unauthenticated)	webapps	php	Lyhin\'s Lab
2020-10-26	Online Health Care System 1.0 – Multiple Cross Site Scripting (Stored)	webapps	php	Akıner Kısa
2020-10-26	CMS Made Simple 2.1.6 – ‘cntnt01detailtemplate’ Server-Side Template Injection	webapps	php	Gurkirat Singh
2020-10-23	Gym Management System 1.0 – Authentication Bypass	webapps	php	Jyotsna Adhana
2020-10-23	School Faculty Scheduling System 1.0 – ‘username’ SQL Injection	webapps	php	Jyotsna Adhana
2020-10-23	School Faculty Scheduling System 1.0 – ‘id’ SQL Injection	webapps	php	Jyotsna Adhana
2020-10-23	Point of Sales 1.0 – ‘username’ SQL Injection	webapps	php	Jyotsna Adhana
2020-10-23	Gym Management System 1.0 – ‘id’ SQL Injection	webapps	php	Jyotsna Adhana
2020-10-23	Lot Reservation Management System 1.0 – Cross-Site Scripting (Stored)	webapps	php	Ankita Pal
2020-10-23	Lot Reservation Management System 1.0 – Authentication Bypass	webapps	php	Ankita Pal
2020-10-23	Point of Sales 1.0 – ‘id’ SQL Injection	webapps	php	Ankita Pal
2020-10-23	User Registration & Login and User Management System 2.1 – SQL Injection	webapps	php	Ihsan Sencan
2020-10-23	Car Rental Management System 1.0 – Arbitrary File Upload	webapps	php	Jyotsna Adhana
2020-10-23	Stock Management System 1.0 – ‘brandId and categoriesId’ SQL Injection	webapps	php	Ihsan Sencan
2020-10-23	Ajenti 2.1.36 – Remote Code Execution (Authenticated)	webapps	Python	Ahmet Ümit BAYRAM
2020-10-23	Online Library Management System 1.0 – Arbitrary File Upload	webapps	php	Jyotsna Adhana
2020-10-23	TextPattern CMS 4.8.3 – Remote Code Execution (Authenticated)	webapps	php	0blio_
2020-10-23	Bludit 3.9.2 – Auth Bruteforce Bypass	webapps	php	Mayank Deshmukh
2020-10-23	Gym Management System 1.0 – Stored Cross Site Scripting	webapps	php	Jyotsna Adhana
2020-10-21	Stock Management System 1.0 – ‘Product Name’ Persistent Cross-Site Scripting	webapps	php	Adeeb Shah
2020-10-21	GOautodial 4.0 – Authenticated Shell Upload	webapps	php	Balzabu
2020-10-21	School Faculty Scheduling System 1.0 – Authentication Bypass POC	webapps	php	Jyotsna Adhana
2020-10-21	School Faculty Scheduling System 1.0 – Stored Cross Site Scripting POC	webapps	php	Jyotsna Adhana
2020-10-21	Hrsale 2.0.0 – Local File Inclusion	webapps	php	Sosecure
2020-10-21	Tiki Wiki CMS Groupware 21.1 – Authentication Bypass	webapps	php	Maximilian Barz
2020-10-21	Stock Management System 1.0 – ‘Brand Name’ Persistent Cross-Site Scripting	webapps	php	Adeeb Shah
2020-10-21	Stock Management System 1.0 – ‘Categories Name’ Persistent Cross-Site Scripting	webapps	php	Adeeb Shah
2020-10-20	Comtrend AR-5387un router – Persistent XSS (Authenticated)	webapps	hardware	OscarAkaElvis
2020-10-20	WordPress Plugin Colorbox Lightbox v1.1.1 – Persistent Cross-Site Scripting (Authenticated)	webapps	multiple	n1x_