Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2019-04-24	Google Chrome 72.0.3626.121 / 74.0.3725.0 – ‘NewFixedDoubleArray’ Integer Overflow	remote	multiple	Google Security Research
2019-04-24	VirtualBox 6.0.4 r128413 – COM RPC Interface Code Injection Host Privilege Escalation	local	windows	Google Security Research
2019-04-23	Linux – Missing Locking in Siemens R3964 Line Discipline Race Condition	dos	linux	Google Security Research
2019-04-23	Linux – ‘page->_refcount’ Overflow via FUSE	dos	linux	Google Security Research
2019-04-23	systemd – Lack of Seat Verification in PAM Module Permits Spoofing Active Session to polkit	dos	linux	Google Security Research
2019-04-23	Ross Video DashBoard 8.5.1 – Insecure Permissions	local	windows	LiquidWorm
2019-04-22	ManageEngine Applications Manager 14.0 – Authentication Bypass / Remote Command Execution (Metasploit)	remote	multiple	AkkuS
2019-04-22	Ease Audio Converter 5.30 – ‘.mp4’ Denial of Service (PoC)	dos	windows	Achilles
2019-04-22	Msvod 10 – Cross-Site Request Forgery (Change User Information)	webapps	php	ax8
2019-04-22	74CMS 5.0.1 – Cross-Site Request Forgery (Add New Admin User)	webapps	php	ax8
2019-04-22	LabF nfsAxe 3.7 Ping Client – ‘Host IP’ Buffer Overflow (Direct Ret)	local	windows	Dino Covotsos
2019-04-22	Google Chrome 73.0.3683.103 V8 JavaScript Engine – Out-of-Memory in Invalid Table Size Denial of Service (PoC)	dos	multiple	Bogdan Kurinnoy
2019-04-22	WordPress Plugin Contact Form Builder 1.0.67 – Cross-Site Request Forgery / Local File Inclusion	webapps	php	Panagiotis Vagenas
2019-04-22	UliCMS 2019.2 / 2019.1 – Multiple Cross-Site Scripting	webapps	php	Kağan EĞLENCE
2019-04-22	QNAP myQNAPcloud Connect 1.3.4.0317 – ‘Username/Password’ Denial of Service	dos	hardware	Dino Covotsos
2019-04-19	Atlassian Confluence Widget Connector Macro – Velocity Template Injection (Metasploit)	remote	multiple	Metasploit
2019-04-19	SystemTap 1.3 – MODPROBE_OPTIONS Privilege Escalation (Metasploit)	local	linux	Metasploit
2019-04-19	Oracle Business Intelligence / XML Publisher 11.1.1.9.0 / 12.2.1.3.0 / 12.2.1.4.0 – XML External Entity Injection	webapps	windows	Vahagn Vardanyan
2019-04-19	Oracle Business Intelligence 11.1.1.9.0 / 12.2.1.3.0 / 12.2.1.4.0 – Directory Traversal	webapps	windows	Vahagn Vardanyan
2019-04-18	Evernote 7.9 – Code Execution via Path Traversal	local	macos	Dhiraj Mishra
2019-04-18	LibreOffice < 6.0.7 / 6.1.3 - Macro Code Execution (Metasploit)	local	multiple	Metasploit
2019-04-18	Netwide Assembler (NASM) 2.14rc15 – NULL Pointer Dereference (PoC)	dos	multiple	Fakhri Zulkifli
2019-04-18	ManageEngine Applications Manager 11.0 < 14.0 - SQL Injection / Remote Code Execution (Metasploit)	remote	windows	AkkuS
2019-04-17	Oracle Java Runtime Environment – Heap Corruption During TTF font Rendering in GlyphIterator::setCurrGlyphID	dos	multiple	Google Security Research
2019-04-17	DHCP Server 2.5.2 – Denial of Service (PoC)	dos	windows	Victor Mondragón
2019-04-17	Oracle Java Runtime Environment – Heap Corruption During TTF font Rendering in sc_FindExtrema4	dos	multiple	Google Security Research
2019-04-17	ASUS HG100 – Denial of Service	dos	hardware	YinT Wang
2019-04-17	MailCarrier 2.51 – POP3 ‘RETR’ SEH Buffer Overflow	remote	windows	Dino Covotsos
2019-04-16	Zyxel ZyWall 310 / ZyWall 110 / USG1900 / ATP500 / USG40 – Login Page Cross-Site Scripting	webapps	hardware	Aaron Bishop
2019-04-16	PCHelpWare V2 1.0.0.5 – ‘Group’ Denial of Service (PoC)	dos	windows	Alejandra Sánchez
2019-04-16	Microsoft Windows 10 1809 – LUAFV LuafvCopyShortName Arbitrary Short Name Privilege Escalation	local	windows	Google Security Research
2019-04-16	Microsoft Windows 10 1809 – LUAFV NtSetCachedSigningLevel Device Guard Bypass	local	windows	Google Security Research
2019-04-16	Microsoft Windows 10 1809 – LUAFV Delayed Virtualization Cross Process Handle Duplication Privilege Escalation	local	windows	Google Security Research
2019-04-16	Microsoft Windows 10 1809 – LUAFV Delayed Virtualization Cache Manager Poisoning Privilege Escalation	local	windows	Google Security Research
2019-04-16	Microsoft Windows 10 1809 – LUAFV PostLuafvPostReadWrite SECTION_OBJECT_POINTERS Race Condition Privilege Escalation	local	windows	Google Security Research
2019-04-16	Zoho ManageEngine ADManager Plus 6.6 (Build < 6659) - Privilege Escalation	local	windows	Digital Interruption
2019-04-16	Microsoft Windows 10 1809 – LUAFV Delayed Virtualization MAXIMUM_ACCESS DesiredAccess Privilege Escalation	local	windows	Google Security Research
2019-04-16	PCHelpWare V2 1.0.0.5 – ‘SC’ Denial of Service (PoC)	dos	windows	Alejandra Sánchez
2019-04-16	Joomla! Core 1.5.0 – 3.9.4 – Directory Traversal / Authenticated Arbitrary File Deletion	webapps	php	Haboob Team
2019-04-16	Microsoft Windows 10 1809 / 1709 – CSRSS SxSSrv Cached Manifest Privilege Escalation	local	windows	Google Security Research
2019-04-16	AdminExpress 1.2.5 – ‘Folder Path’ Denial of Service (PoC)	dos	windows	Mücahit İsmail Aktaş
2019-04-15	UltraVNC Launcher 1.2.2.4 – ‘Path’ Denial of Service (PoC)	dos	windows	Victor Mondragón
2019-04-15	MailCarrier 2.51 – POP3 ‘LIST’ SEH Buffer Overflow	remote	windows	Dino Covotsos
2019-04-15	MailCarrier 2.51 – POP3 ‘USER’ Buffer Overflow	remote	windows	Dino Covotsos
2019-04-15	Cisco RV130W Routers – Management Interface Remote Command Execution (Metasploit)	remote	hardware	Metasploit
2019-04-15	CuteNews 2.1.2 – ‘avatar’ Remote Code Execution (Metasploit)	remote	php	AkkuS
2019-04-15	RemoteMouse 3.008 – Arbitrary Remote Command Execution	remote	windows	0rphon
2019-04-15	UltraVNC Viewer 1.2.2.4 – ‘VNC Server’ Denial of Service (PoC)	dos	windows	Victor Mondragón
2019-04-15	MailCarrier 2.51 – POP3 ‘TOP’ SEH Buffer Overflow	remote	windows	Dino Covotsos
2019-04-15	DirectAdmin 1.561 – Multiple Vulnerabilities	webapps	php	InfinitumIT