linux

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2019-05-03 Blue Angel Software Suite – Command Execution
  • remote
    		•  Paolo Serracino, Pietro Minniti, Damiano Proietti
    2019-05-02 Ruby On Rails – DoubleTap Development Mode secret_key_base Remote Code Execution (Metasploit)
  • remote
    		•  Metasploit
    2019-05-01 CentOS Web Panel 0.9.8.793 (Free) / v0.9.8.753 (Pro) / 0.9.8.807 (Pro) – Domain Field (Add DNS Zone) Cross-Site Scripting
  • webapps
    		•  DKM
    2019-04-30 Linux – Missing Locking Between ELF coredump code and userfaultfd VMA Modification
  • dos
    		•  Google Security Research
    2019-04-26 systemd – DynamicUser can Create setuid Binaries when Assisted by Another Process
  • dos
    		•  Google Security Research
    2019-04-23 Linux – ‘page->_refcount’ Overflow via FUSE
  • dos
    		•  Google Security Research
    2019-04-23 Linux – Missing Locking in Siemens R3964 Line Discipline Race Condition
  • dos
    		•  Google Security Research
    2019-04-23 systemd – Lack of Seat Verification in PAM Module Permits Spoofing Active Session to polkit
  • dos
    		•  Google Security Research
    2019-04-19 SystemTap 1.3 – MODPROBE_OPTIONS Privilege Escalation (Metasploit)
  • local
    		•  Metasploit
    2019-04-12 Zimbra Collaboration – Autodiscover Servlet XXE and ProxyServlet SSRF (Metasploit)
  • remote
    		•  Metasploit
    2019-04-08 Apache 2.4.17 < 2.4.38 - 'apache2ctl graceful' 'logrotate' Local Privilege Escalation
  • local
    		•  cfreal
    2019-04-08 CentOS Web Panel 0.9.8.793 (Free) / 0.9.8.753 (Pro) – Cross-Site Scripting
  • webapps
    		•  DKM
    2019-03-29 CentOS Web Panel 0.9.8.789 – NameServer Field Persistent Cross-Site Scripting
  • webapps
    		•  DKM
    2019-03-28 gnutls 3.6.6 – ‘verify_crt()’ Use-After-Free
  • dos
    		•  Google Security Research
    2019-03-22 snap – seccomp BBlacklist for TIOCSTI can be Circumvented
  • dos
    		•  Google Security Research
    2019-03-19 libseccomp < 2.4.0 - Incorrect Compilation of Arithmetic Comparisons
  • dos
    		•  Google Security Research
    2019-03-11 Linux Kernel 4.4 (Ubuntu 16.04) – ‘snd_timer_user_ccallback()’ Kernel Pointer Leak
  • dos
    		•  wally0813
    2019-03-07 Imperva SecureSphere 13.x – ‘PWS’ Command Injection (Metasploit)
  • remote
    		•  Metasploit
    2019-03-06 Linux < 4.20.14 - Virtual Address 0 is Mappable via Privileged write() to /proc/*/mem
  • dos
    		•  Google Security Research
    2019-03-04 FileZilla 3.40.0 – ‘Local search’ / ‘Local site’ Denial of Service (PoC)
  • dos
    		•  Mr Winst0n
    2019-03-01 Linux < 4.14.103 / < 4.19.25 - Out-of-Bounds Read and Write in SNMP NAT Module
  • dos
    		•  Google Security Research
    2019-02-28 Usermin 1.750 – Remote Command Execution (Metasploit)
  • webapps
    		•  AkkuS
    2019-02-28 WebKitGTK 2.23.90 / WebKitGTK+ 2.22.6 – Denial of Service
  • dos
    		•  Dhiraj Mishra
    2019-02-22 Micro Focus Filr 3.4.0.217 – Path Traversal / Local Privilege Escalation
  • webapps
    		•  SecureAuth