Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2020-01-28	macOS/iOS ImageIO – Heap Corruption when Processing Malformed TIFF Image	dos	multiple	Google Security Research
2020-01-28	Centreon 19.10.5 – Remote Command Execution	webapps	php	Fabien AUNAY
2020-01-28	Centreon 19.10.5 – Database Credentials Disclosure	webapps	php	Fabien AUNAY
2020-01-28	Octeth Oempro 4.8 – ‘CampaignID’ SQL Injection	webapps	php	Bruno de Barros Bulle
2020-01-28	Adive Framework 2.0.8 – Cross-Site Request Forgery (Change Admin Password)	webapps	php	Sarthak Saini
2020-01-27	Microsoft Windows Kernel – Information Disclosure	local	windows	Bitdefender
2020-01-27	Torrent 3GP Converter 1.51 – Stack Overflow (SEH)	local	windows	boku
2020-01-24	Genexis Platinum-4410 2.1 – Authentication Bypass	webapps	hardware	Husinul Sanub
2020-01-24	OLK Web Store 2020 – Cross-Site Request Forgery	webapps	asp	Joel Aviad Ossi
2020-01-24	Webtareas 2.0 – ‘id’ SQL Injection	webapps	php	Greg.Priest
2020-01-24	TP-Link TP-SG105E 1.0.0 – Unauthenticated Remote Reboot	webapps	hardware	PCEumel
2020-01-23	qdPM 9.1 – Remote Code Execution	webapps	php	Rishal Dwivedi
2020-01-23	Remote Desktop Gateway – ‘BlueGate’ Denial of Service (PoC)	dos	windows	ollypwn
2020-01-23	Remote Desktop Gateway – ‘BlueGate’ Denial of Service (PoC)	dos	windows	ollypwn
2020-01-23	Reliable Datagram Sockets (RDS) – rds_atomic_free_op NULL pointer dereference Privilege Escalation (Metasploit)	local	linux	Metasploit
2020-01-23	Pachev FTP Server 1.0 – Path Traversal	remote	linux	1F98D
2020-01-23	BOOTP Turbo 2.0 – Denial of Service (SEH)(PoC)	dos	windows	boku
2020-01-22	KeePass 2.44 – Denial of Service (PoC)	dos	multiple	Mustafa Emre Gül
2020-01-22	Citrix XenMobile Server 10.8 – XML External Entity Injection	webapps	xml	Jonas Lejon
2020-01-22	Ricoh Printer Drivers – Local Privilege Escalation	local	windows	pentagrid
2020-01-21	Microsoft SharePoint – Deserialization Remote Code Execution	remote	windows	Voulnet
2020-01-21	NEOWISE CARBONFTP 1.4 – Weak Password Encryption	local	windows	hyp3rlinx
2020-01-21	ManageEngine Network Configuration Manager 12.2 – ‘apiKey’ SQL Injection	webapps	java	Ertebat Gostar Co
2020-01-20	Centreon 19.04 – Authenticated Remote Code Execution (Metasploit)	webapps	php	TheCyberGeek
2020-01-20	Sysax Multi Server 5.50 – Denial of Service (PoC)	dos	windows	Shailesh Kumavat
2020-01-20	Adive Framework 2.0.8 – Persistent Cross-Site Scripting	webapps	php	Sarthak Saini
2020-01-20	Easy XML Editor 1.7.8 – XML External Entity Injection	local	xml	Javier Olmedo
2020-01-17	APKF Product Key Finder 2.5.8.0 – ‘Name’ Denial of Service (PoC)	dos	windows	Ismail Tasdelen
2020-01-17	Plantronics Hub 3.13.2 – SpokesUpdateService Privilege Escalation (Metasploit)	local	windows	Metasploit
2020-01-17	Trend Micro Maximum Security 2019 – Privilege Escalation	local	windows	hyp3rlinx
2020-01-17	GTalk Password Finder 2.2.1 – ‘Key’ Denial of Service (PoC)	dos	windows	Ismail Tasdelen
2020-01-17	WordPress Plugin Time Capsule 1.21.16 – Authentication Bypass	webapps	php	B. Canavate
2020-01-17	Trend Micro Maximum Security 2019 – Arbitrary Code Execution	local	windows	hyp3rlinx
2020-01-17	WordPress Plugin InfiniteWP Client 1.9.4.5 – Authentication Bypass	webapps	php	Raphael Karger
2020-01-17	Torrent FLV Converter 1.51 Build 117 – Stack Oveflow (SEH partial overwrite)	local	windows	antonio
2020-01-16	Rukovoditel Project Management CRM 2.5.2 – ‘filters’ SQL Injection	webapps	php	Fatih Çelik
2020-01-16	SunOS 5.10 Generic_147148-26 – Local Privilege Escalation	local	solaris	Marco Ivaldi
2020-01-16	Rukovoditel Project Management CRM 2.5.2 – ‘entities_id’ SQL Injection	webapps	php	Fatih Çelik
2020-01-16	Citrix Application Delivery Controller (ADC) and Gateway 13.0 – Path Traversal	webapps	multiple	Dhiraj Mishra
2020-01-16	Tautulli 2.1.9 – Denial of Service (Metasploit)	dos	multiple	Ismail Tasdelen
2020-01-16	Online Book Store 1.0 – Arbitrary File Upload	webapps	php	Or4nG.M4N
2020-01-16	Jenkins Gitlab Hook Plugin 1.4.2 – Reflected Cross-Site Scripting	webapps	java	Ai Ho
2020-01-16	Rukovoditel Project Management CRM 2.5.2 – ‘reports_id’ SQL Injection	webapps	php	Fatih Çelik
2020-01-16	WordPress Plugin Postie 1.9.40 – Persistent Cross-Site Scripting	webapps	php	V1n1v131r4
2020-01-15	Sagemcom F@ST 3890 (50_10_19-T1) Cable Modem – ‘Cable Haunt’ Remote Code Execution	remote	hardware	Lyrebirds
2020-01-15	Microsoft Windows – CryptoAPI (Crypt32.dll) Elliptic Curve Cryptography (ECC) Spoof Code-Signing Certificate	local	windows	Oliver Lyak
2020-01-15	Huawei HG255 – Directory Traversal (Metasploit)	webapps	hardware	Ismail Tasdelen
2020-01-15	Barco WePresent – file_transfer.cgi Command Injection (Metasploit)	remote	linux	Metasploit
2020-01-15	Online Book Store 1.0 – ‘bookisbn’ SQL Injection	webapps	php	Ertebat Gostar Co
2020-01-14	Android – ashmem Readonly Bypasses via remap_file_pages() and ASHMEM_UNPIN	dos	android	Google Security Research