Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2019-06-05	IBM Websphere Application Server – Network Deployment Untrusted Data Deserialization Remote Code Execution (Metasploit)	remote	windows	Metasploit
2019-06-05	Google Chrome 73.0.3683.103 – ‘WasmMemoryObject::Grow’ Use-After-Free	dos	multiple	Google Security Research
2019-06-05	Exim 4.87 < 4.91 - (Local / Remote) Command Execution	remote	linux	Qualys Corporation
2019-06-05	Zimbra < 8.8.11 - XML External Entity Injection / Server-Side Request Forgery	webapps	jsp	k8gege
2019-06-04	Zoho ManageEngine ServiceDesk Plus 9.3 – ‘SearchN.do’ Cross-Site Scripting	webapps	java	Vingroup
2019-06-04	Zoho ManageEngine ServiceDesk Plus 9.3 – ‘PurchaseRequest.do’ Cross-Site Scripting	webapps	java	Vingroup
2019-06-04	IceWarp 10.4.4 – Local File Inclusion	webapps	php	JameelNabbo
2019-06-04	NUUO NVRMini 2 3.9.1 – ‘sscanf’ Stack Overflow	remote	hardware	@0x00string
2019-06-04	Cisco RV130W 1.0.3.44 – Remote Stack Overflow	remote	hardware	@0x00string
2019-06-04	DVD X Player 5.5 Pro – Local Buffer Overflow (SEH)	local	windows	Kevin Randall
2019-06-04	Vim < 8.1.1365 / Neovim < 0.3.6 - Arbitrary Code Execution	local	linux	Arminius
2019-06-04	Zoho ManageEngine ServiceDesk Plus 9.3 – ‘SiteLookup.do’ Cross-Site Scripting	webapps	java	Vingroup
2019-06-04	Zoho ManageEngine ServiceDesk Plus 9.3 – ‘SolutionSearch.do’ Cross-Site Scripting	webapps	java	Vingroup
2019-06-03	KACE System Management Appliance (SMA) < 9.0.270 - Multiple Vulnerabilities	webapps	php	SlidingWindow
2019-06-03	AUO Solar Data Recorder < 1.3.0 - Incorrect Access Control	webapps	hardware	Luca.Chiou
2019-06-03	WordPress Plugin Form Maker 1.13.3 – SQL Injection	webapps	php	Daniele Scanu
2019-06-03	Nvidia GeForce Experience Web Helper – Command Injection	local	windows	Rhino Security Labs
2019-05-30	Microsoft Windows Remote Desktop – ‘BlueKeep’ Denial of Service	dos	windows	n1xbyte
2019-05-29	Qualcomm Android – Kernel Use-After-Free via Incorrect set_page_dirty() in KGSL	dos	android	Google Security Research
2019-05-29	Free SMTP Server 2.5 – Denial of Service (PoC)	dos	windows	Metin Yunus Kandemir
2019-05-29	pfSense 2.4.4-p3 (ACME Package 0.59_14) – Persistent Cross-Site Scripting	webapps	php	Chi Tran
2019-05-29	Spidermonkey – IonMonkey Unexpected ObjectGroup in ObjectGroupDispatch Operation	dos	multiple	Google Security Research
2019-05-29	Spidermonkey – IonMonkey Leaks JS_OPTIMIZED_OUT Magic Value to Script	dos	multiple	Google Security Research
2019-05-29	Oracle Application Testing Suite – WebLogic Server Administration Console War Deployment (Metasploit)	remote	java	Metasploit
2019-05-28	Petraware pTransformer ADC < 2.1.7.22827 - Login Bypass	remote	windows	Faudhzan Rahman
2019-05-28	Phraseanet < 4.0.7 - Cross-Site Scripting	webapps	multiple	Krzysztof Szulski
2019-05-28	EquityPandit 1.0 – Password Disclosure	local	android	ManhNho
2019-05-27	Typora 0.9.9.24.6 – Directory Traversal	remote	macos	Dhiraj Mishra
2019-05-27	Pidgin 2.13.0 – Denial of Service (PoC)	dos	windows	Alejandra Sánchez
2019-05-27	Deltek Maconomy 2.2.5 – Local File Inclusion	webapps	multiple	JameelNabbo
2019-05-24	Fast AVI MPEG Joiner – ‘License Name’ Denial of Service (PoC)	dos	windows	Achilles
2019-05-24	Cyberoam Transparent Authentication Suite 2.1.2.5 – ‘NetBIOS Name’ Denial of Service (PoC)	dos	windows	Victor Mondragón
2019-05-24	Cyberoam Transparent Authentication Suite 2.1.2.5 – ‘Fully Qualified Domain Name’ Denial of Service (PoC)	dos	windows	Victor Mondragón
2019-05-24	Axessh 4.2 – ‘Log file name’ Local Stack-based Buffer Overflow	local	windows	Uday Mittal
2019-05-24	Cyberoam SSLVPN Client 1.3.1.30 – ‘HTTP Proxy’ Denial of Service (PoC)	dos	windows	Victor Mondragón
2019-05-24	Cyberoam SSLVPN Client 1.3.1.30 – ‘Connect To Server’ Denial of Service (PoC)	dos	windows	Victor Mondragón
2019-05-24	Opencart 3.0.3.2 – ‘extension/feed/google_base’ Denial of Service (PoC)	dos	php	Todor Donev
2019-05-24	Microsoft Internet Explorer Windows 10 1809 17763.316 – Scripting Engine Memory Corruption	remote	windows	Simon Zuckerbraun
2019-05-24	Cyberoam General Authentication Client 2.1.2.7 – ‘Server Address’ Denial of Service (PoC)	dos	windows	Victor Mondragón
2019-05-23	NetAware 1.20 – ‘Share Name’ Denial of Service (PoC)	dos	windows	Alejandra Sánchez
2019-05-23	Microsoft Windows – AppX Deployment Service Local Privilege Escalation (2)	local	windows	SandboxEscaper
2019-05-23	Microsoft Windows 10 (17763.379) – Install DLL	local	windows	SandboxEscaper
2019-05-23	Shopware – createInstanceFromNamedArguments PHP Object Instantiation Remote Code Execution (Metasploit)	remote	php	Metasploit
2019-05-23	Apple Mac OS X – Feedback Assistant Race Condition (Metasploit)	local	macos	Metasploit
2019-05-23	Nagios XI 5.6.1 – SQL injection	webapps	php	JameelNabbo
2019-05-23	Terminal Services Manager 3.2.1 – Denial of Service	dos	windows	Alejandra Sánchez
2019-05-23	Visual Voicemail for iPhone – IMAP NAMESPACE Processing Use-After-Free	dos	ios	Google Security Research
2019-05-23	NetAware 1.20 – ‘Add Block’ Denial of Service (PoC)	dos	windows	Alejandra Sánchez
2019-05-23	Microsoft Windows 10 1809 – ‘CmKeyBodyRemapToVirtualForEnum’ Arbitrary Key Enumeration Privilege Escalation	local	windows	Google Security Research
2019-05-22	BlueStacks 4.80.0.1060 – Denial of Service (PoC)	dos	windows	Alejandra Sánchez