Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24443Exploits
日期 标题 类型 平台 作者
2020-02-17

LabVantage 8.3 – Information Disclosure
  • webapps
  • java
    		• Joel Aviad Ossi
    2020-02-17

    SOPlanning 1.45 – ‘users’ SQL Injection
  • webapps
  • php
    		• J3rryBl4nks
    2020-02-17

    WordPress Plugin WOOF Products Filter for WooCommerce 1.2.3 – Persistent Cross-Site Scripting
  • webapps
  • php
    		• Shahab.ra.9
    2020-02-17

    Cuckoo Clock v5.0 – Buffer Overflow
  • local
  • windows
    		• boku
    2020-02-14

    phpMyChat Plus 1.98 – ‘pmc_username’ SQL Injection
  • webapps
  • php
    		• J3rryBl4nks
    2020-02-14

    SprintWork 2.3.1 – Local Privilege Escalation
  • local
  • windows
    		• boku
    2020-02-14

    EPSON EasyMP Network Projection 2.81 – ‘EMP_NSWLSV’ Unquoted Service Path
  • local
  • windows
    		• Roberto Piña
    2020-02-14

    HomeGuard Pro 9.3.1 – Insecure Folder Permissions
  • local
  • windows
    		• boku
    2020-02-13

    WordPress Plugin ultimate-member 2.1.3 – Local File Inclusion
  • webapps
  • php
    		• Mehran Feizi
    2020-02-13

    PANDORAFMS 7.0 – Authenticated Remote Code Execution
  • webapps
  • php
    		• Engin Demirbilek
    2020-02-13

    WordPress Plugin contact-form-7 5.1.6 – Remote File Upload
  • webapps
  • php
    		• Mehran Feizi
    2020-02-13

    WordPress Plugin Wordfence.7.4.5 – Local File Disclosure
  • webapps
  • php
    		• Mehran Feizi
    2020-02-13

    OpenTFTP 1.66 – Local Privilege Escalation
  • local
  • windows
    		• boku
    2020-02-13

    WordPress Plugin tutor.1.5.3 – Persistent Cross-Site Scripting
  • webapps
  • php
    		• Mehran Feizi
    2020-02-13

    WordPress Plugin Tutor.1.5.3 – Local File Inclusion
  • webapps
  • php
    		• Mehran Feizi
    2020-02-12

    HP System Event Utility – Local Privilege Escalation
  • local
  • windows
    		• hyp3rlinx
    2020-02-12

    MyVideoConverter Pro 3.14 – ‘TVSeries’ Buffer Overflow
  • local
  • windows
    		• ZwX
    2020-02-12

    MyVideoConverter Pro 3.14 – ‘Output Folder’ Buffer Overflow
  • local
  • windows
    		• ZwX
    2020-02-12

    MyVideoConverter Pro 3.14 – ‘Movie’ Buffer Overflow
  • local
  • windows
    		• ZwX
    2020-02-11

    Wedding Slideshow Studio 1.36 – ‘Name’ Buffer Overflow
  • local
  • windows
    		• ZwX
    2020-02-11

    Disk Savvy Enterprise 12.3.18 – Unquoted Service Path
  • local
  • windows
    		• boku
    2020-02-11

    Disk Sorter Enterprise 12.4.16 – ‘Disk Sorter Enterprise’ Unquoted Service Path
  • local
  • windows
    		• boku
    2020-02-11

    WordPress Plugin InfiniteWP – Client Authentication Bypass (Metasploit)
  • webapps
  • php
    		• Metasploit
    2020-02-11

    DVD Photo Slideshow Professional 8.07 – ‘Name’ Buffer Overflow
  • local
  • windows
    		• ZwX
    2020-02-11

    Sync Breeze Enterprise 12.4.18 – ‘Sync Breeze Enterprise’ Unquoted Service Path
  • local
  • windows
    		• boku
    2020-02-11

    FreeSSHd 1.3.1 – ‘FreeSSHDService’ Unquoted Service Path
  • local
  • windows
    		• boku
    2020-02-11

    freeFTPd v1.0.13 – ‘freeFTPdService’ Unquoted Service Path
  • local
  • windows
    		• boku
    2020-02-11

    Vanilla Forums 2.6.3 – Persistent Cross-Site Scripting
  • webapps
  • php
    		• Sayak Naskar
    2020-02-11

    DVD Photo Slideshow Professional 8.07 – ‘Key’ Buffer Overflow
  • local
  • windows
    		• ZwX
    2020-02-11

    CHIYU BF430 TCP IP Converter – Stored Cross-Site Scripting
  • webapps
  • cgi
    		• Luca.Chiou
    2020-02-11

    Torrent iPod Video Converter 1.51 – Stack Overflow
  • local
  • windows
    		• boku
    2020-02-11

    OpenSMTPD 6.4.0 < 6.6.1 - Local Privilege Escalation + Remote Code Execution
  • remote
  • openbsd
    		• Marco Ivaldi
    2020-02-10

    usersctp – Out-of-Bounds Reads in sctp_load_addresses_from_init
  • dos
  • linux
    		• Google Security Research
    2020-02-10

    Dota 2 7.23f – Denial of Service (PoC)
  • dos
  • windows
    		• Bogdan Kurinnoy
    2020-02-10

    WordPress Plugin LearnDash LMS 3.1.2 – Reflective Cross-Site Scripting
  • webapps
  • php
    		• Jinson Varghese Behanan
    2020-02-10

    Forcepoint WebSecurity 8.5 – Reflective Cross-Site Scripting
  • webapps
  • multiple
    		• Prasenjit Kanti Paul
    2020-02-10

    Wedding Slideshow Studio 1.36 – ‘Key’ Buffer Overflow
  • local
  • windows
    		• ZwX
    2020-02-10

    OpenSMTPD – MAIL FROM Remote Code Execution (Metasploit)
  • remote
  • linux
    		• Metasploit
    2020-02-10

    D-Link Devices – Unauthenticated Remote Command Execution in ssdpcgi (Metasploit)
  • remote
  • linux_mips
    		• Metasploit
    2020-02-10

    Ricoh Driver – Privilege Escalation (Metasploit)
  • local
  • windows
    		• Metasploit
    2020-02-10

    iOS/macOS – Out-of-Bounds Timestamp Write in IOAccelCommandQueue2::processSegmentKernelCommand()
  • dos
  • multiple
    		• Google Security Research
    2020-02-07

    Google Invisible RECAPTCHA 3 – Spoof Bypass
  • webapps
  • multiple
    		• Matamorphosis
    2020-02-07

    ExpertGPS 6.38 – XML External Entity Injection
  • webapps
  • xml
    		• Trent Gordon
    2020-02-07

    EyesOfNetwork 5.3 – Remote Code Execution
  • webapps
  • php
    		• Clément Billac
    2020-02-07

    PackWeb Formap E-learning 1.0 – ‘NumCours’ SQL Injection
  • webapps
  • php
    		• Amel BOUZIANE-LEBLOND
    2020-02-07

    VehicleWorkshop 1.0 – ‘bookingid’ SQL Injection
  • webapps
  • php
    		• Mehran Feizi
    2020-02-07

    QuickDate 1.3.2 – SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2020-02-07

    Windscribe – WindscribeService Named Pipe Privilege Escalation (Metasploit)
  • local
  • windows
    		• Metasploit
    2020-02-06

    Online Job Portal 1.0 – Cross Site Request Forgery (Add User)
  • webapps
  • php
    		• Ihsan Sencan
    2020-02-06

    RarmaRadio 2.72.4 – ‘server’ Denial of Service (PoC)
  • dos
  • windows
    		• chuyreds