Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2019-11-08	Nextcloud 17 – Cross-Site Request Forgery	webapps	php	Ozer Goker
2019-11-08	rConfig – install Command Execution (Metasploit)	remote	linux	Metasploit
2019-11-07	Adaware Web Companion version 4.8.2078.3950 – ‘WCAssistantService’ Unquoted Service Path	local	windows	Mariela L Martínez Hdez
2019-11-06	Smartwares HOME easy 1.0.9 – Client-Side Authentication Bypass	webapps	hardware	LiquidWorm
2019-11-06	QNAP NetBak Replicator 4.5.6.0607 – ‘QVssService’ Unquoted Service Path	local	windows	Ivan Marmolejo
2019-11-06	Wacom WTabletService 6.6.7-3 – ‘WTabletServicePro’ Unquoted Service Path	local	windows	Marcos Antonio León
2019-11-06	Smartwares HOME easy 1.0.9 – Database Backup Information Disclosure	webapps	hardware	LiquidWorm
2019-11-05	Network Inventory Advisor 5.0.26.0 – ‘niaservice’ Unquoted Service Path	local	windows	Samuel DiazL
2019-11-05	html5_snmp 1.11 – ‘Router_ID’ SQL Injection	webapps	php	cakes
2019-11-05	SD.NET RIM 4.7.3c – ‘idtyp’ SQL Injection	webapps	aspx	Fabian Mosch, Nick Theisinger
2019-11-05	thejshen Globitek CMS 1.4 – ‘id’ SQL Injection	webapps	php	cakes
2019-11-05	WebKit – Universal XSS in JSObject::putInlineSlow and JSValue::putToPrimitive	dos	multiple	Google Security Research
2019-11-05	macOS XNU – Missing Locking in checkdirs_callback() Enables Race with fchdir_common()	dos	macos	Google Security Research
2019-11-05	html5_snmp 1.11 – ‘Remark’ Persistent Cross-Site Scripting	webapps	php	cakes
2019-11-05	FileOptimizer 14.00.2524 – Denial of Service (PoC)	dos	windows	SYANiDE
2019-11-05	rimbalinux AhadPOS 1.11 – ‘alamatCustomer’ SQL Injection	webapps	php	cakes
2019-11-05	thrsrossi Millhouse-Project 1.414 – ‘content’ Persistent Cross-Site Scripting	webapps	php	cakes
2019-11-05	JavaScriptCore – Type Confusion During Bailout when Reconstructing Arguments Objects	dos	multiple	Google Security Research
2019-11-05	Blue Stacks App Player 2.4.44.62.57 – “BstHdLogRotatorSvc” Unquote Service Path	local	windows	Diego Armando Buztamante Rico
2019-11-04	Micro Focus (HPE) Data Protector – SUID Privilege Escalation (Metasploit)	local	linux	Metasploit
2019-11-04	Apple macOS 10.15.1 – Denial of Service (PoC)	dos	macos	08Tc3wBB
2019-11-04	Launch Manager 6.1.7600.16385 – ‘DsiWMIService’ Unquoted Service Path	local	windows	Gustavo Briseño
2019-11-04	Ayukov NFTP client 1.71 – ‘SYST’ Buffer Overflow	remote	windows	SYANiDE
2019-11-04	OpenVPN Connect 3.0.0.272 – ‘agent_ovpnconnect’ Unquoted Service Path	local	windows	Luis Martínez
2019-11-04	Aida64 6.10.5200 – Buffer Overflow (SEH)	local	windows	daejinoh
2019-11-03	DOUBLEPULSAR (x64) – Hooking ‘srv!SrvTransactionNotImplemented’ in ‘srv!SrvTransaction2DispatchTable’	local	windows_x86-64	Mumbai
2019-11-02	ClamAV < 0.102.0 - 'bytecode_vm' Code Execution	local	linux	anonymous
2019-11-01	OpenVPN Private Tunnel 2.8.4 – ‘ovpnagent’ Unquoted Service Path	local	windows	Sainadh Jamalpur
2019-11-01	Nostromo – Directory Traversal Remote Command Execution (Metasploit)	remote	multiple	Metasploit
2019-11-01	Apache Solr 8.2.0 – Remote Code Execution	webapps	java	@l3x_wong
2019-11-01	ownCloud 10.3.0 stable – Cross-Site Request Forgery	webapps	linux	Ozer Goker
2019-11-01	TheJshen contentManagementSystem 1.04 – ‘id’ SQL Injection	webapps	php	cakes
2019-10-31	WordPress Plugin Google Review Slider 6.1 – ‘tid’ SQL Injection	webapps	php	Princy Edward
2019-10-31	MikroTik RouterOS 6.45.6 – DNS Cache Poisoning	remote	hardware	Jacob Baines
2019-10-31	WMV to AVI MPEG DVD WMV Convertor 4.6.1217 – Buffer OverFlow (SEH)	local	windows	4ll4u
2019-10-30	JavaScriptCore – GetterSetter Type Confusion During DFG Compilation	dos	multiple	Google Security Research
2019-10-30	WMV to AVI MPEG DVD WMV Convertor 4.6.1217 – Denial of Service	dos	windows	Nithoshitha S
2019-10-30	iSeeQ Hybrid DVR WH-H4 2.0.0.P – (get_jpeg) Stream Disclosure	webapps	hardware	LiquidWorm
2019-10-30	Ajenti 2.1.31 – Remote Code Exection (Metasploit)	webapps	json	Onur ER
2019-10-30	Citrix StoreFront Server 7.15 – XML External Entity Injection	webapps	xml	Vahagn Vardanyan
2019-10-29	Microsoft Windows Server 2012 – ‘Group Policy’ Remote Code Execution (MS15-011)	remote	windows	Thomas Zuk
2019-10-29	WordPress Core 5.2.4 – Cross-Origin Resource Sharing	webapps	php	Milad Khoshdel
2019-10-29	rConfig 3.9.2 – Remote Code Execution	webapps	php	Askar
2019-10-29	Win10 MailCarrier 2.51 – ‘POP3 User’ Remote Buffer Overflow	remote	windows	Lance Biggerstaff
2019-10-29	Intelligent Security System SecurOS Enterprise 10.2 – ‘SecurosCtrlService’ Unquoted Service Path	local	windows	Alberto Vargas
2019-10-29	Microsoft Windows Server 2012 – ‘Group Policy’ Security Feature Bypass (MS15-014)	remote	windows	Thomas Zuk
2019-10-28	Part-DB 0.4 – Authentication Bypass	webapps	php	Marvoloo
2019-10-28	waldronmatt FullCalendar-BS4-PHP-MySQL-JSON 1.21 – ‘start’ SQL Injection	webapps	php	cakes
2019-10-28	Intelbras Router WRN150 1.0.18 – Cross-Site Request Forgery	webapps	hardware	Prof. Joas Antonio
2019-10-28	waldronmatt FullCalendar-BS4-PHP-MySQL-JSON 1.21 – ‘description’ Cross-Site Scripting	webapps	php	cakes