Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24443Exploits
日期 标题 类型 平台 作者
2019-10-28

delpino73 Blue-Smiley-Organizer 1.32 – ‘datetime’ SQL Injection
  • webapps
  • php
    		• cakes
    2019-10-28

    JumpStart 0.6.0.0 – ‘jswpbapi’ Unquoted Service Path
  • local
  • windows
    		• Roberto Escamilla
    2019-10-28

    Part-DB 0.4 – Authentication Bypass
  • webapps
  • php
    		• Marvoloo
    2019-10-28

    waldronmatt FullCalendar-BS4-PHP-MySQL-JSON 1.21 – ‘start’ SQL Injection
  • webapps
  • php
    		• cakes
    2019-10-28

    Intelbras Router WRN150 1.0.18 – Cross-Site Request Forgery
  • webapps
  • hardware
    		• Prof. Joas Antonio
    2019-10-25

    ClonOs WEB UI 19.09 – Improper Access Control
  • webapps
  • php
    		• İbrahim Hakan Şeker
    2019-10-24

    AUO SunVeillance Monitoring System 1.1.9e – ‘MailAdd’ SQL Injection
  • webapps
  • hardware
    		• Luca.Chiou
    2019-10-24

    AUO SunVeillance Monitoring System 1.1.9e – Incorrect Access Control
  • webapps
  • hardware
    		• Luca.Chiou
    2019-10-24

    WordPress Plugin Sliced Invoices 3.8.2 – ‘post’ SQL Injection
  • webapps
  • php
    		• Lucian Ioan Nitescu
    2019-10-24

    Linux Polkit – pkexec helper PTRACE_TRACEME local root (Metasploit)
  • local
  • linux
    		• Metasploit
    2019-10-23

    Joomla! 3.4.6 – Remote Code Execution (Metasploit)
  • webapps
  • php
    		• Alessandro Groppo
    2019-10-23

    IObit Uninstaller 9.1.0.8 – ‘IObitUnSvr’ Unquoted Service Path
  • local
  • windows
    		• Sainadh Jamalpur
    2019-10-23

    Rocket.Chat 2.1.0 – Cross-Site Scripting
  • webapps
  • linux
    		• 3H34N
    2019-10-22

    Moxa EDR-810 – Command Injection / Information Disclosure
  • remote
  • hardware
    		• RandoriSec
    2019-10-22

    Total.js CMS 12 – Widget JavaScript Code Injection (Metasploit)
  • remote
  • multiple
    		• Metasploit
    2019-10-21

    WinRAR 5.80 (x64) – Denial of Service
  • dos
  • windows_x86-64
    		• alblalawi
    2019-10-21

    Trend Micro Anti-Threat Toolkit 1.62.0.1218 – Remote Code Execution
  • local
  • windows
    		• hyp3rlinx
    2019-10-21

    Winrar 5.80 – XML External Entity Injection
  • local
  • xml
    		• hyp3rlinx
    2019-10-21

    Solaris 11.4 – xscreensaver Privilege Escalation
  • local
  • solaris
    		• Marco Ivaldi
    2019-10-21

    Adobe Acrobat Reader DC for Windows – Heap-Based Buffer Overflow due to Malformed JP2 Stream (2)
  • dos
  • windows
    		• Google Security Research
    2019-10-18

    Joomla! 3.4.6 – Remote Code Execution
  • webapps
  • php
    		• Alessandro Groppo
    2019-10-17

    WordPress Plugin Popup Builder 3.49 – Persistent Cross-Site Scripting
  • webapps
  • php
    		• Unk9vvN
    2019-10-17

    WorkgroupMail 7.5.1 – ‘WorkgroupMail’ Unquoted Service Path
  • local
  • windows
    		• cakes
    2019-10-17

    WordPress Plugin Soliloquy Lite 2.5.6 – Persistent Cross-Site Scripting
  • webapps
  • php
    		• Unk9vvN
    2019-10-17

    WordPress Plugin FooGallery 1.8.12 – Persistent Cross-Site Scripting
  • webapps
  • php
    		• Unk9vvN
    2019-10-17

    BlackMoon FTP Server 3.1.2.1731 – ‘BMFTP-RELEASE’ Unquoted Serive Path
  • local
  • windows
    		• Debashis Pal
    2019-10-17

    Restaurant Management System 1.0 – Remote Code Execution
  • webapps
  • php
    		• Ibad Shah
    2019-10-17

    Web Companion versions 5.1.1035.1047 – ‘WCAssistantService’ Unquoted Service Path
  • local
  • windows
    		• Debashis Pal
    2019-10-17

    ThinVNC 1.0b1 – Authentication Bypass
  • remote
  • windows
    		• Nikhith Tumamlapalli
    2019-10-16

    Lavasoft 2.3.4.7 – ‘LavasoftTcpService’ Unquoted Service Path
  • local
  • windows
    		• Luis MedinaL
    2019-10-16

    Whatsapp 2.19.216 – Remote Code Execution
  • remote
  • android
    		• Valerio Brussani
    2019-10-16

    Mikogo 5.2.2.150317 – ‘Mikogo-Service’ Unquoted Serive Path
  • local
  • windows
    		• cakes
    2019-10-16

    Solaris xscreensaver 11.4 – Privilege Escalation
  • local
  • solaris
    		• Marco Ivaldi
    2019-10-16

    LiteManager 4.5.0 – ‘romservice’ Unquoted Serive Path
  • local
  • windows
    		• cakes
    2019-10-16

    X.Org X Server 1.20.4 – Local Stack Overflow
  • local
  • linux
    		• s4vitar
    2019-10-16

    Zilab Remote Console Server 3.2.9 – ‘zrcs’ Unquoted Service Path
  • local
  • windows
    		• cakes
    2019-10-16

    Accounts Accounting 7.02 – Persistent Cross-Site Scripting
  • webapps
  • php
    		• Debashis Pal
    2019-10-15

    sudo 1.8.27 – Security Bypass
  • local
  • linux
    		• Mohin Paramasivam
    2019-10-15

    Bolt CMS 3.6.10 – Cross-Site Request Forgery
  • webapps
  • php
    		• r3m0t3nu11
    2019-10-15

    ActiveFax Server 6.92 Build 0316 – ‘ActiveFaxServiceNT’ Unquoted Service Path
  • local
  • windows
    		• cakes
    2019-10-15

    Podman & Varlink 1.5.1 – Remote Code Execution
  • remote
  • linux
    		• Jeremy Brown
    2019-10-14

    Apache Httpd mod_proxy – Error Page Cross-Site Scripting
  • webapps
  • multiple
    		• Sebastian Neef
    2019-10-14

    Kirona-DRS 5.5.3.5 – Information Disclosure
  • webapps
  • php
    		• Ramikan
    2019-10-14

    Ajenti 2.1.31 – Remote Code Execution
  • webapps
  • Python
    		• Jeremy Brown
    2019-10-14

    Express Invoice 7.12 – ‘Customer’ Persistent Cross-Site Scripting
  • webapps
  • php
    		• Debashis Pal
    2019-10-14

    ActiveFax Server 6.92 Build 0316 – ‘POP3 Server’ Denial of Service
  • dos
  • windows
    		• stresser
    2019-10-14

    SpotAuditor 5.3.1.0 – Denial of Service
  • dos
  • windows
    		• Sanjana shetty
    2019-10-14

    Uplay 92.0.0.6280 – Local Privilege Escalation
  • local
  • windows
    		• Kusol Watchara-Apanukorn
    2019-10-14

    WordPress Core < 5.2.3 - Viewing Unauthenticated/Password/Private Posts
  • webapps
  • multiple
    		• Sebastian Neef
    2019-10-14

    Apache Httpd mod_rewrite – Open Redirects
  • webapps
  • multiple
    		• Sebastian Neef