Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2019-08-15	Adobe Acrobat Reader DC for Windows – Heap-Based Buffer Overflow While Processing Malformed PDF	dos	windows	Google Security Research
2019-08-15	Microsoft Font Subsetting – DLL Heap-Based Out-of-Bounds read in FixSbitSubTableFormat1	dos	windows	Google Security Research
2019-08-15	Adobe Acrobat Reader DC for Windows – Heap-Based Out-of-Bounds read due to Malformed JP2 Stream	dos	windows	Google Security Research
2019-08-15	NSKeyedUnarchiver – Info Leak in Decoding SGBigUTF8String	dos	multiple	Google Security Research
2019-08-15	Microsoft Font Subsetting – DLL Heap Corruption in FixSbitSubTables	dos	windows	Google Security Research
2019-08-15	Adobe Acrobat Reader DC for Windows – Heap-Based Buffer Overflow due to Malformed JP2 Stream	dos	windows	Google Security Research
2019-08-15	Microsoft Font Subsetting – DLL Returning a Dangling Pointer via MergeFontPackage	dos	windows	Google Security Research
2019-08-15	Microsoft Font Subsetting – DLL Double Free in MergeFormat12Cmap / MakeFormat12MergedGlyphList	dos	windows	Google Security Research
2019-08-15	Adobe Acrobat CoolType (AFDKO) – Call from Uninitialized Memory due to Empty FDArray in Type 1 Fonts	dos	windows	Google Security Research
2019-08-15	Adobe Acrobat CoolType (AFDKO) – Memory Corruption in the Handling of Type 1 Font load/store Operators	dos	windows	Google Security Research
2019-08-15	Microsoft Font Subsetting – DLL Heap Corruption in ReadTableIntoStructure	dos	windows	Google Security Research
2019-08-15	Adobe Acrobat Reader DC for Windows – Double Free due to Malformed JP2 Stream	dos	windows	Google Security Research
2019-08-15	Microsoft Windows Text Services Framework MSCTF – Multiple Vulnerabilities	local	windows	Google Security Research
2019-08-15	Microsoft Font Subsetting – DLL Heap Corruption in ReadAllocFormat12CharGlyphMapList	dos	windows	Google Security Research
2019-08-15	Adobe Acrobat Reader DC for Windows – free() of Uninitialized Pointer due to Malformed JBIG2Globals Stream	dos	windows	Google Security Research
2019-08-15	Microsoft Font Subsetting – DLL Heap-Based Out-of-Bounds read in GetGlyphIdx	dos	windows	Google Security Research
2019-08-15	Adobe Acrobat Reader DC for Windows – Use-After-Free due to Malformed JP2 Stream	dos	windows	Google Security Research
2019-08-15	Adobe Acrobat Reader DC for Windows – Heap-Based Buffer Overflow due to Malformed Font Stream	dos	windows	Google Security Research
2019-08-14	ManageEngine opManager 12.3.150 – Authenticated Code Execution	webapps	windows	kindredsec
2019-08-14	Agent Tesla Botnet – Arbitrary Code Execution (Metasploit)	remote	php	Ege Balci
2019-08-14	ABC2MTEX 1.6.1 – Command Line Stack Overflow	dos	linux	Carter Yagemann
2019-08-14	Microsoft Windows 10 AppXSvc Deployment Service – Arbitrary File Deletion	local	windows	Abdelhamid Naceri
2019-08-14	TortoiseSVN 1.12.1 – Remote Code Execution	webapps	windows	Vulnerability-Lab
2019-08-14	WordPress Plugin Download Manager 2.5 – Cross-Site Request Forgery	webapps	php	Princy Edward
2019-08-14	D-Link DIR-600M – Authentication Bypass (Metasploit)	webapps	hardware	Devendra Singh Solanki
2019-08-14	Joomla! Component JS Jobs (com_jsjobs) 1.2.5 – ‘customfields.php’ SQL Injection	webapps	php	qw3rTyTy
2019-08-14	Microsoft Windows PowerShell – Unsanitized Filename Command Execution	dos	windows	hyp3rlinx
2019-08-14	SugarCRM Enterprise 9.0.0 – Cross-Site Scripting	webapps	php	Ilca Lucian Florin
2019-08-13	Agent Tesla Botnet – Arbitrary Code Execution	remote	php	prsecurity
2019-08-13	AZORult Botnet – SQL Injection	remote	php	prsecurity
2019-08-12	Cisco Adaptive Security Appliance – Path Traversal (Metasploit)	webapps	hardware	Angelo Ruwantha
2019-08-12	osTicket 1.12 – Persistent Cross-Site Scripting	webapps	php	Aishwarya Iyer
2019-08-12	osTicket 1.12 – Formula Injection	webapps	php	Aishwarya Iyer
2019-08-12	Ghidra (Linux) 9.0.4 – .gar Arbitrary Code Execution	local	linux	Etienne Lacoche
2019-08-12	osTicket 1.12 – Persistent Cross-Site Scripting via File Upload	webapps	php	Aishwarya Iyer
2019-08-12	Mitsubishi Electric smartRTU / INEA ME-RTU – Unauthenticated OS Command Injection Bind Shell	webapps	php	xerubus
2019-08-12	Joomla! Component JS Support Ticket (com_jssupportticket) 1.1.6 – ‘ticket.php’ Arbitrary File Deletion	webapps	php	qw3rTyTy
2019-08-12	Mitsubishi Electric smartRTU / INEA ME-RTU – Unauthenticated Configuration Download	webapps	php	xerubus
2019-08-12	Joomla! Component JS Support Ticket (com_jssupportticket) 1.1.6 – ‘ticketreply.php’ SQL Injection	webapps	php	qw3rTyTy
2019-08-12	VxWorks 6.8 – TCP Urgent Pointer = 0 Integer Underflow	dos	vxworks	Zhou Yu
2019-08-12	Joomla! Component JS Jobs (com_jsjobs) 1.2.5 – ‘cities.php’ SQL Injection	webapps	php	qw3rTyTy
2019-08-12	Linux – Use-After-Free Reads in show_numa_stats()	dos	linux	Google Security Research
2019-08-12	Steam Windows Client – Local Privilege Escalation	local	windows	AbsoZed
2019-08-12	ManageEngine OpManager 12.4x – Privilege Escalation / Remote Command Execution (Metasploit)	remote	multiple	AkkuS
2019-08-12	WebKit – UXSS via XSLT and Nested Document Replacements	dos	multiple	Google Security Research
2019-08-12	ManageEngine OpManager 12.4x – Unauthenticated Remote Command Execution (Metasploit)	remote	multiple	AkkuS
2019-08-12	BSI Advance Hotel Booking System 2.0 – ‘booking_details.php Persistent Cross-Site Scripting	webapps	php	Angelo Ruwantha
2019-08-12	ManageEngine Application Manager 14.2 – Privilege Escalation / Remote Command Execution (Metasploit)	remote	multiple	AkkuS
2019-08-12	Webmin 1.920 – Unauthenticated Remote Code Execution (Metasploit)	remote	linux	AkkuS
2019-08-12	UNA 10.0.0 RC1 – ‘polyglot.php’ Persistent Cross-Site Scripting	webapps	php	Greg.Priest