Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2019-06-25	SAPIDO RB-1732 – Remote Command Execution	remote	hardware	k1nm3n.aotoi
2019-06-24	SeedDMS < 5.1.11 - 'out.GroupMgr.php' Cross-Site Scripting	webapps	php	Nimit Jain
2019-06-24	GSearch 1.0.1.0 – Denial of Service (PoC)	dos	windows	0xB9
2019-06-24	GrandNode 4.40 – Path Traversal / Arbitrary File Download	webapps	multiple	Corey Robinson
2019-06-24	SeedDMS versions < 5.1.11 - Remote Command Execution	webapps	php	Nimit Jain
2019-06-24	dotProject 2.1.9 – SQL Injection	webapps	php	Metin Yunus Kandemir
2019-06-24	Microsoft Windows Font Cache Service – Insecure Sections Privilege Escalation	dos	windows	Google Security Research
2019-06-24	SeedDMS < 5.1.11 - 'out.UsrMgr.php' Cross-Site Scripting	webapps	php	Nimit Jain
2019-06-24	Microsoft Windows – ‘CmpAddRemoveContainerToCLFSLog’ Arbitrary File/Directory Creation	dos	windows	Google Security Research
2019-06-21	EA Origin < 10.5.38 - Remote Code Execution	remote	windows	Dominik Penner
2019-06-20	Linux – Use-After-Free via race Between modify_ldt() and #BR Exception	dos	linux	Google Security Research
2019-06-20	Cisco Prime Infrastructure – Runrshell Privilege Escalation (Metasploit)	local	linux	Metasploit
2019-06-20	Cisco Prime Infrastructure Health Monitor – TarArchive Directory Traversal (Metasploit)	remote	linux	Metasploit
2019-06-20	Tuneclone 2.20 – Local SEH Buffer Overflow	local	windows	Achilles
2019-06-20	WebERP 4.15 – SQL injection	webapps	php	Semen Alexandrovich Lyhin
2019-06-20	BlogEngine.NET 3.3.6/3.3.7 – XML External Entity Injection	webapps	aspx	Aaron Bishop
2019-06-19	BlogEngine.NET 3.3.6/3.3.7 – ‘theme Cookie’ Directory Traversal / Remote Code Execution	webapps	aspx	Aaron Bishop
2019-06-19	BlogEngine.NET 3.3.6/3.3.7 – ‘dirPath’ Directory Traversal / Remote Code Execution	webapps	aspx	Aaron Bishop
2019-06-18	Serv-U FTP Server < 15.1.7 - Local Privilege Escalation (1)	local	linux	Guy Levin
2019-06-18	Sahi pro 7.x/8.x – Directory Traversal	webapps	multiple	Goutham Madhwaraj
2019-06-18	Sahi pro 8.x – SQL Injection	webapps	multiple	Goutham Madhwaraj
2019-06-18	Sahi pro 8.x – Cross-Site Scripting	webapps	multiple	Goutham Madhwaraj
2019-06-17	Thunderbird ESR < 60.7.XXX - 'icalrecur_add_bydayrules' Stack-Based Buffer Overflow	dos	multiple	X41 D-Sec GmbH
2019-06-17	RedwoodHQ 2.5.5 – Authentication Bypass	webapps	multiple	EthicalHCOP
2019-06-17	Thunderbird ESR < 60.7.XXX - 'parser_get_next_char' Heap-Based Buffer Overflow	dos	multiple	X41 D-Sec GmbH
2019-06-17	Netperf 2.6.0 – Stack-Based Buffer Overflow	dos	linux	Juan Sacco
2019-06-17	CleverDog Smart Camera DOG-2W / DOG-2W-V4 – Multiple Vulnerabilities	webapps	hardware	Alex Akinbi
2019-06-17	Thunderbird ESR < 60.7.XXX - 'icalmemorystrdupanddequote' Heap-Based Buffer Overflow	dos	multiple	X41 D-Sec GmbH
2019-06-17	Microsoft Windows – UAC Protection Bypass (Via Slui File Handler Hijack) (PowerShell)	local	windows	Gushmazuko
2019-06-17	Exim 4.87 – 4.91 – Local Privilege Escalation	local	linux	Marco Ivaldi
2019-06-17	HC10 HC.Server Service 10.14 – Remote Invalid Pointer Write	dos	windows	hyp3rlinx
2019-06-17	AROX School-ERP Pro – Unauthenticated Remote Command Execution (Metasploit)	remote	php	AkkuS
2019-06-17	Spring Security OAuth – Open Redirector	webapps	java	Riemann
2019-06-17	Thunderbird ESR < 60.7.XXX - Type Confusion	dos	multiple	X41 D-Sec GmbH
2019-06-14	CentOS 7.6 – ‘ptrace_scope’ Privilege Escalation	local	linux	s4vitar
2019-06-14	Aida64 6.00.5100 – ‘Log to CSV File’ Local SEH Buffer Overflow	local	windows	Nipun Jaswal
2019-06-13	Sitecore 8.x – Deserialization Remote Code Execution	webapps	aspx	Jarad Kopf
2019-06-13	Pronestor Health Monitoring < 8.1.11.0 - Privilege Escalation	local	windows	PovlTekstTV
2019-06-12	FusionPBX 4.4.3 – Remote Command Execution	webapps	php	Dustin Cobb
2019-06-11	WordPress Plugin Insert or Embed Articulate Content into WordPress – Remote Code Execution	webapps	php	xulchibalraa
2019-06-11	ProShow 9.0.3797 – Local Privilege Escalation	local	windows	Yonatan_Correa
2019-06-11	phpMyAdmin 4.8 – Cross-Site Request Forgery	webapps	php	Riemann
2019-06-11	Liferay Portal 7.1 CE GA=3 / SimpleCaptcha API – Cross-Site Scripting	webapps	jsp	Valerio Brussani
2019-06-11	Webmin 1.910 – ‘Package Updates’ Remote Command Execution (Metasploit)	remote	linux	AkkuS
2019-06-10	UliCMS 2019.1 ‘Spitting Lama’ – Persistent Cross-Site Scripting	webapps	php	Unk9vvN
2019-06-10	Ubuntu 18.04 – ‘lxd’ Privilege Escalation	local	linux	s4vitar
2019-06-07	Microsoft Windows – AppX Deployment Service Local Privilege Escalation (3)	local	windows	SandboxEscaper
2019-06-06	Supra Smart Cloud TV – ‘openLiveURL()’ Remote File Inclusion	webapps	hardware	Dhiraj Mishra
2019-06-06	VMware WorkStation 12.5.3 – Virtual Machine Escape	local	windows	unamer
2019-06-05	LibreNMS – addhost Command Injection (Metasploit)	remote	linux	Metasploit