Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2019-09-13	LimeSurvey 3.17.13 – Cross-Site Scripting	webapps	php	SEC Consult
2019-09-13	phpMyAdmin 4.9.0.1 – Cross-Site Request Forgery	webapps	php	Manuel García Cárdenas
2019-09-13	Dolibarr ERP-CRM 10.0.1 – ‘User-Agent’ Cross-Site Scripting	webapps	php	Metin Yunus Kandemir
2019-09-13	Folder Lock 7.7.9 – Denial of Service	dos	windows	Achilles
2019-09-12	Microsoft DirectWrite – Out-of-Bounds Read in sfac_GetSbitBitmap While Processing TTF Fonts	dos	windows	Google Security Research
2019-09-12	Microsoft DirectWrite – Invalid Read in SplicePixel While Processing OTF Fonts	dos	windows	Google Security Research
2019-09-11	AVCON6 systems management platform – OGNL Remote Command Execution	webapps	java	Nassim Asrir
2019-09-11	eWON Flexy – Authentication Bypass	webapps	hardware	Photubias
2019-09-10	WordPress Plugin Photo Gallery 1.5.34 – SQL Injection	webapps	php	MTK
2019-09-10	WordPress Plugin Photo Gallery 1.5.34 – Cross-Site Scripting (2)	webapps	php	MTK
2019-09-10	Microsoft Windows 10 – UAC Protection Bypass Via Microsoft Windows Store (WSReset.exe) and Registry (Metasploit)	local	windows	Metasploit
2019-09-10	Microsoft Windows 10 – UAC Protection Bypass Via Microsoft Windows Store (WSReset.exe) (Metasploit)	local	windows	Metasploit
2019-09-10	October CMS – Upload Protection Bypass Code Execution (Metasploit)	remote	php	Metasploit
2019-09-10	LibreNMS – Collectd Command Injection (Metasploit)	remote	linux	Metasploit
2019-09-10	WordPress Plugin Photo Gallery 1.5.34 – Cross-Site Scripting	webapps	php	MTK
2019-09-09	Dolibarr ERP-CRM 10.0.1 – ‘elemid’ SQL Injection	webapps	php	Metin Yunus Kandemir
2019-09-09	Online Appointment – SQL Injection	webapps	php	mohammad zaheri
2019-09-09	WordPress Core 5.2.3 – Cross-Site Host Modification	webapps	php	Todor Donev
2019-09-09	Enigma NMS 65.0.0 – Cross-Site Request Forgery	webapps	multiple	xerubus
2019-09-09	Rifatron Intelligent Digital Security System – ‘animate.cgi’ Stream Disclosure	webapps	cgi	LiquidWorm
2019-09-09	Enigma NMS 65.0.0 – SQL Injection	webapps	multiple	xerubus
2019-09-09	Enigma NMS 65.0.0 – OS Command Injection	webapps	multiple	xerubus
2019-09-09	WordPress Plugin Sell Downloads 1.0.86 – Cross-Site Scripting	webapps	php	Mr Winst0n
2019-09-09	Dolibarr ERP-CRM 10.0.1 – SQL Injection	webapps	php	Metin Yunus Kandemir
2019-09-06	Publisure Hybrid – Multiple Vulnerabilities	webapps	php	Jean-Marie Bourbon
2019-09-06	Pulse Secure 8.1R15.1/8.2/8.3/9.0 SSL VPN – Remote Code Execution	remote	multiple	Justin Wagner
2019-09-06	Inventory Webapp – ‘itemquery’ SQL injection	webapps	php	mohammad zaheri
2019-09-06	FusionPBX 4.4.8 – Remote Code Execution	remote	linux	Askar
2019-09-06	Microsoft Windows NTFS – Privileged File Access Enumeration	local	windows	hyp3rlinx
2019-09-05	AwindInc SNMP Service – Command Injection (Metasploit)	remote	linux	Metasploit
2019-09-04	DASAN Zhone ZNID GPON 2426A EU – Multiple Cross-Site Scripting	webapps	hardware	Adam Ziaja
2019-09-04	WordPress Plugin Download Manager 2.9.93 – Cross-Site Scripting	webapps	php	MgThuraMoeMyint
2019-09-03	ptrace – Sudo Token Privilege Escalation (Metasploit)	local	linux	Metasploit
2019-09-03	Cisco Data Center Network Manager – Unauthenticated Remote Code Execution (Metasploit)	remote	java	Metasploit
2019-09-03	Cisco UCS Director – default scpuser password (Metasploit)	remote	unix	Metasploit
2019-09-03	ktsuss 1.4 – suid Privilege Escalation (Metasploit)	local	linux	Metasploit
2019-09-03	Cisco RV110W/RV130(W)/RV215W Routers Management Interface – Remote Command Execution (Metasploit)	remote	hardware	Metasploit
2019-09-03	FileThingie 2.5.7 – Arbitrary File Upload	webapps	php	cakes
2019-09-02	Webmin < 1.920 - 'rpc.cgi' Remote Code Execution (Metasploit)	webapps	linux	James Bercegay
2019-09-02	ChaosPro 3.1 – SEH Buffer Overflow	local	windows	Jonathan Crosby
2019-09-02	Craft CMS 2.7.9/3.2.5 – Information Disclosure	webapps	php	Mohammed Abdul Raheem
2019-09-02	ChaosPro 2.0 – SEH Buffer Overflow	local	windows	Jonathan Crosby
2019-09-02	Opencart 3.x – Cross-Site Scripting	webapps	php	Nipun Somani
2019-09-02	Alkacon OpenCMS 10.5.x – Cross-Site Scripting (2)	webapps	multiple	Aetsu
2019-09-02	Cisco Email Security Appliance (IronPort) C160 – ‘Host’ Header Injection	remote	hardware	Todor Donev
2019-09-02	Alkacon OpenCMS 10.5.x – Local File inclusion	webapps	multiple	Aetsu
2019-09-02	WordPress Plugin Event Tickets 4.10.7.1 – CSV Injection	webapps	php	MTK
2019-09-02	Alkacon OpenCMS 10.5.x – Cross-Site Scripting	webapps	multiple	Aetsu
2019-09-02	Wolters Kluwer TeamMate 3.1 – Cross-Site Request Forgery	webapps	multiple	Bhadresh Patel
2019-09-02	ChaosPro 2.1 – SEH Buffer Overflow	local	windows	Jonathan Crosby