Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2019-05-22	AUO Solar Data Recorder < 1.3.0 - 'addr' Cross-Site Scripting	webapps	hardware	Luca.Chiou
2019-05-22	RarmaRadio 2.72.3 – ‘Server’ Denial of Service (PoC)	dos	windows	Victor Mondragón
2019-05-22	TapinRadio 2.11.6 – ‘Address’ Denial of Service (PoC)	dos	windows	Victor Mondragón
2019-05-22	RarmaRadio 2.72.3 – ‘Username’ Denial of Service (PoC)	dos	windows	Victor Mondragón
2019-05-22	TapinRadio 2.11.6 – ‘Uername’ Denial of Service (PoC)	dos	windows	Victor Mondragón
2019-05-22	BlueStacks 4.80.0.1060 – Denial of Service (PoC)	dos	windows	Alejandra Sánchez
2019-05-22	Zoho ManageEngine ServiceDesk Plus < 10.5 - Improper Access Restrictions	webapps	multiple	Vingroup
2019-05-22	Microsoft Windows (x86) – Task Scheduler’ .job’ Import Arbitrary Discretionary Access Control List Write / Local Privilege Escalation	local	windows_x86	SandboxEscaper
2019-05-22	Microsoft Internet Explorer 11 – Sandbox Escape	local	windows	SandboxEscaper
2019-05-22	Carel pCOWeb < B1.2.1 - Credentials Disclosure	webapps	hardware	Luca.Chiou
2019-05-22	Microsoft Windows (x86/x64) – ‘Error Reporting’ Discretionary Access Control List / Local Privilege Escalation	local	windows	SandboxEscaper
2019-05-22	Horde Webmail 5.2.22 – Multiple Vulnerabilities	webapps	php	InfinitumIT
2019-05-22	Zoho ManageEngine ServiceDesk Plus 9.3 – Cross-Site Scripting	webapps	multiple	Vingroup
2019-05-21	Apple macOS < 10.14.5 / iOS < 12.3 XNU - 'in6_pcbdetach' Stale Pointer Use-After-Free	dos	multiple	Google Security Research
2019-05-21	Apple macOS < 10.14.5 / iOS < 12.3 XNU - Wild-read due to bad cast in stf_ioctl	dos	multiple	Google Security Research
2019-05-21	Apple macOS < 10.14.5 / iOS < 12.3 JavaScriptCore - AIR Optimization Incorrectly Removes Assignment to Register	dos	multiple	Google Security Research
2019-05-21	TP-LINK TL-WR840N v5 00000005 – Cross-Site Scripting	webapps	hardware	purnendu ghosh
2019-05-21	Deluge 1.3.15 – ‘URL’ Denial of Service (PoC)	dos	multiple	Victor Mondragón
2019-05-21	Apple macOS < 10.14.5 / iOS < 12.3 JavaScriptCore - Loop-Invariant Code Motion (LICM) in DFG JIT Leaves Stack Variable Uninitialized	dos	multiple	Google Security Research
2019-05-21	WordPress Plugin WPGraphQL 0.2.3 – Multiple Vulnerabilities	webapps	php	Simone Quatrini
2019-05-21	Brocade Network Advisor 14.4.1 – Unauthenticated Remote Code Execution	webapps	java	Jakub Palaczynski
2019-05-21	Apple macOS < 10.14.5 / iOS < 12.3 DFG JIT Compiler - 'HasIndexedProperty' Use-After-Free	dos	multiple	Google Security Research
2019-05-21	Deluge 1.3.15 – ‘Webseeds’ Denial of Service (PoC)	dos	windows	Victor Mondragón
2019-05-21	Oracle CTI Web Service – ‘EBS_ASSET_HISTORY_OPERATIONS’ XML Entity Injection	webapps	java	omurugur
2019-05-21	Moodle Jmol Filter 6.1 – Directory Traversal / Cross-Site Scripting	webapps	php	Dionach Ltd
2019-05-20	Solaris 10 1/13 (Intel) – ‘dtprintinfo’ Local Privilege Escalation (1)	local	solaris	Marco Ivaldi
2019-05-20	Solaris 7/8/9 (SPARC) – ‘dtprintinfo’ Local Privilege Escalation (2)	local	solaris	Marco Ivaldi
2019-05-20	Solaris 7/8/9 (SPARC) – ‘dtprintinfo’ Local Privilege Escalation (1)	local	solaris	Marco Ivaldi
2019-05-20	Encrypt PDF 2.3 – Denial of Service (PoC)	dos	windows	Alejandra Sánchez
2019-05-20	AbsoluteTelnet 10.16 – ‘License name’ Denial of Service (PoC)	dos	windows	Victor Mondragón
2019-05-20	PCL Converter 2.7 – Denial of Service (PoC)	dos	windows	Alejandra Sánchez
2019-05-20	GetSimpleCMS – Unauthenticated Remote Code Execution (Metasploit)	remote	php	Metasploit
2019-05-20	docPrint Pro 8.0 – Denial of Service (PoC)	dos	windows	Alejandra Sánchez
2019-05-20	Huawei eSpace 1.1.11.103 – ‘ContactsCtrl.dll’ / ‘eSpaceStatusCtrl.dll’ ActiveX Heap Overflow	dos	windows	LiquidWorm
2019-05-20	BulletProof FTP Server 2019.0.0.50 – ‘DNS Address’ Denial of Service (PoC)	dos	windows	Victor Mondragón
2019-05-20	BulletProof FTP Server 2019.0.0.50 – ‘Storage-Path’ Denial of Service (PoC)	dos	windows	Victor Mondragón
2019-05-20	Huawei eSpace Meeting 1.1.11.103 – ‘cenwpoll.dll’ SEH Buffer Overflow (Unicode)	dos	windows	LiquidWorm
2019-05-20	Huawei eSpace 1.1.11.103 – DLL Hijacking	local	windows	LiquidWorm
2019-05-20	eLabFTW 1.8.5 – Arbitrary File Upload / Remote Code Execution	webapps	php	liquidsky
2019-05-20	Huawei eSpace 1.1.11.103 – Image File Format Handling Buffer Overflow	dos	windows	LiquidWorm
2019-05-17	CEWE Photo Importer 6.4.3 – ‘.jpg’ Denial of Service (PoC)	dos	windows	Alejandra Sánchez
2019-05-17	Iperius Backup 6.1.0 – Privilege Escalation	local	windows	bzyo
2019-05-17	Cisco Prime Infrastructure Health Monitor HA TarArchive – Directory Traversal / Remote Code Execution	remote	linux	mr_me
2019-05-17	Interspire Email Marketer 6.20 – ‘surveys_submit.php’ Remote Code Execution	webapps	php	numan türle
2019-05-17	Sandboxie 5.30 – ‘Programs Alerts’ Denial of Service (PoC)	dos	windows	Alejandra Sánchez
2019-05-17	CEWE Photoshow 6.4.3 – ‘Password’ Denial of Service (PoC)	dos	windows	Alejandra Sánchez
2019-05-16	WeChat for Android 7.0.4 – ‘vcodec2_hls_filter’ Denial of Service	dos	android	Hong Nhat Pham
2019-05-16	DeepSound 1.0.4 – SQL Injection	webapps	php	Mehmet EMIROGLU
2019-05-16	Axessh 4.2 – ‘Log file name’ Denial of Service (PoC)	dos	windows	Victor Mondragón
2019-05-16	ZOC Terminal v7.23.4 – ‘Shell’ Denial of Service (PoC)	dos	windows	Victor Mondragón