Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24443Exploits
日期 标题 类型 平台 作者
2020-02-06

AbsoluteTelnet 11.12 – ‘SSH2/username’ Denial of Service (PoC)
  • dos
  • windows
    		• chuyreds
    2020-02-06

    ELAN Smart-Pad 11.10.15.1 – ‘ETDService’ Unquoted Service Path
  • local
  • windows
    		• ZwX
    2020-02-06

    VIM 8.2 – Denial of Service (PoC)
  • dos
  • linux
    		• Dhiraj Mishra
    2020-02-06

    Online Job Portal 1.0 – ‘user_email’ SQL Injection
  • webapps
  • php
    		• Ihsan Sencan
    2020-02-06

    AbsoluteTelnet 11.12 – ‘license name’ Denial of Service (PoC)
  • dos
  • windows
    		• chuyreds
    2020-02-06

    AbsoluteTelnet 11.12 – “license name” Denial of Service (PoC)
  • dos
  • windows
    		• chuyreds
    2020-02-06

    Cisco Data Center Network Manager 11.2.1 – ‘LanFabricImpl’ Command Injection
  • webapps
  • java
    		• mr_me
    2020-02-06

    Cisco Data Center Network Manager 11.2.1 – ‘getVmHostData’ SQL Injection
  • webapps
  • java
    		• mr_me
    2020-02-06

    Sudo 1.8.25p – ‘pwfeedback’ Buffer Overflow
  • local
  • linux
    		• Dylan Katz
    2020-02-06

    Cisco Data Center Network Manager 11.2 – Remote Code Execution
  • webapps
  • java
    		• mr_me
    2020-02-06

    Ecommerce Systempay 1.0 – Production KEY Brute Force
  • webapps
  • php
    		• live3
    2020-02-06

    Online Job Portal 1.0 – Cross Site Request Forgery (Add User)
  • webapps
  • php
    		• Ihsan Sencan
    2020-02-06

    RarmaRadio 2.72.4 – ‘server’ Denial of Service (PoC)
  • dos
  • windows
    		• chuyreds
    2020-02-06

    RarmaRadio 2.72.4 – ‘username’ Denial of Service (PoC)
  • dos
  • windows
    		• chuyreds
    2020-02-06

    TapinRadio 2.12.3 – ‘username’ Denial of Service (PoC)
  • dos
  • windows
    		• chuyreds
    2020-02-05

    HiSilicon DVR/NVR hi3520d firmware – Remote Backdoor Account
  • remote
  • hardware
    		• Snawoot
    2020-02-05

    AVideo Platform 8.1 – Cross Site Request Forgery (Password Reset)
  • webapps
  • json
    		• Ihsan Sencan
    2020-02-05

    Verodin Director Web Console 3.5.4.0 – Remote Authenticated Password Disclosure (PoC)
  • webapps
  • json
    		• nxkennedy
    2020-02-05

    Kronos WebTA 4.0 – Authenticated Remote Privilege Escalation
  • webapps
  • java
    		• nxkennedy
    2020-02-05

    xglance-bin 11.00 – Privilege Escalation
  • local
  • linux
    		• redtimmysec
    2020-02-05

    Socat 1.7.3.4 – Heap-Based Overflow (PoC)
  • local
  • linux
    		• hieubl
    2020-02-05

    Wago PFC200 – Authenticated Remote Code Execution (Metasploit)
  • webapps
  • hardware
    		• 0x483d
    2020-02-05

    AVideo Platform 8.1 – Information Disclosure (User Enumeration)
  • webapps
  • json
    		• Ihsan Sencan
    2020-02-04

    F-Secure Internet Gatekeeper 5.40 – Heap Overflow (PoC)
  • webapps
  • linux
    		• Kevin Joensen
    2020-02-04

    Sudo 1.8.25p – ‘pwfeedback’ Buffer Overflow (PoC)
  • dos
  • linux
    		• Joe Vennix
    2020-02-04

    Centreon 19.10.5 – ‘Pollers’ Remote Command Execution (Metasploit)
  • webapps
  • php
    		• mekhalleh
    2020-02-03

    Cacti 1.2.8 – Authenticated Remote Code Execution
  • webapps
  • multiple
    		• Askar
    2020-02-03

    P2PWIFICAM2 for iOS 10.4.1 – ‘Camera ID’ Denial of Service (PoC)
  • dos
  • ios
    		• Ivan Marmolejo
    2020-02-03

    School ERP System 1.0 – Cross Site Request Forgery (Add Admin)
  • webapps
  • php
    		• J3rryBl4nks
    2020-02-03

    Schneider Electric U.Motion Builder 1.3.4 – Authenticated Command Injection
  • webapps
  • hardware
    		• Cosmin Craciun
    2020-02-03

    Jira 8.3.4 – Information Disclosure (Username Enumeration)
  • webapps
  • java
    		• Mufeed VH
    2020-02-03

    phpList 3.5.0 – Authentication Bypass
  • webapps
  • php
    		• Suvadip Kar
    2020-02-03

    IceWarp WebMail 11.4.4.1 – Reflective Cross-Site Scripting
  • webapps
  • php
    		• Lutfu Mert Ceylan
    2020-02-03

    BearFTP 0.1.0 – ‘PASV’ Denial of Service
  • dos
  • linux
    		• kolya5544
    2020-02-03

    Cacti 1.2.8 – Unauthenticated Remote Code Execution
  • webapps
  • multiple
    		• Askar
    2020-01-31

    FlexNet Publisher 11.12.1 – Cross-Site Request Forgery (Add Local Admin)
  • webapps
  • php
    		• Ismail Tasdelen
    2020-01-31

    Lotus Core CMS 1.0.1 – Local File Inclusion
  • webapps
  • php
    		• Daniel Monzón
    2020-01-30

    PHP 7.0 < 7.4 (Unix) - 'debug_backtrace' disable_functions Bypass
  • local
  • php
    		• mm0r1
    2020-01-30

    OpenSMTPD 6.6.1 – Remote Code Execution
  • remote
  • linux
    		• 1F98D
    2020-01-30

    rConfig 3.9.3 – Authenticated Remote Code Execution
  • webapps
  • php
    		• vikingfr
    2020-01-30

    Microsoft Windows Media Center WMV / WMA 6.3.9600.16384 – Code Execution
  • local
  • windows
    		• Eduardo Braun Prado
    2020-01-29

    Centreon 19.10.5 – ‘centreontrapd’ Remote Command Execution
  • webapps
  • php
    		• Fabien AUNAY
    2020-01-29

    Centreon 19.10.5 – ‘Pollers’ Remote Command Execution
  • webapps
  • php
    		• Omri Baso
    2020-01-29

    Satellian 1.12 – Remote Code Execution
  • webapps
  • hardware
    		• Xh4H
    2020-01-29

    Microsoft Windows 10 – Theme API ‘ThemePack’ File Parsing
  • local
  • windows
    		• Eduardo Braun Prado
    2020-01-29

    XMLBlueprint 16.191112 – XML External Entity Injection
  • local
  • windows
    		• Javier Olmedo
    2020-01-29

    Cups Easy 1.0 – Cross Site Request Forgery (Password Reset)
  • webapps
  • php
    		• J3rryBl4nks
    2020-01-29

    Liferay CE Portal 6.0.2 – Remote Command Execution
  • webapps
  • java
    		• Berk Dusunur
    2020-01-29

    Kibana 6.6.1 – CSV Injection
  • webapps
  • windows
    		• Aamir Rehman
    2020-01-29

    Fifthplay S.A.M.I 2019.2_HP – Persistent Cross-Site Scripting
  • webapps
  • hardware
    		• LiquidWorm