multiple

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2023-05-23 FusionInvoice 2023-1.0 – Stored XSS (Cross-Site Scripting)
  • webapps
    		•  Andrea Intilangelo
    2023-05-23 Yank Note v3.52.1 (Electron) – Arbitrary Code Execution
  • local
    		•  8bitsec
    2023-05-23 Gin Markdown Editor v0.7.4 (Electron) – Arbitrary Code Execution
  • local
    		•  8bitsec
    2023-05-23 PaperCut NG/MG 22.0.4 – Remote Code Execution (RCE)
  • webapps
    		•  MaanVader
    2023-05-23 Apache Superset 2.0.0 – Authentication Bypass
  • webapps
    		•  MaanVader
    2023-05-05 Codigo Markdown Editor v1.0.1 (Electron) – Remote Code Execution
  • local
    		•  8bitsec
    2023-04-25 PaperCut NG/MG 22.0.4 – Authentication Bypass
  • webapps
    		•  MaanVader
    2023-04-20 Microsoft Word 16.72.23040900 – Remote Code Execution (RCE)
  • remote
    		•  nu11secur1ty
    2023-04-10 Microsoft Edge (Chromium-based) Webview2 1.0.1661.34 – Spoofing
  • local
    		•  nu11secur1ty
    2023-04-08 Palo Alto Cortex XSOAR 6.5.0 – Stored Cross-Site Scripting (XSS)
  • webapps
    		•  omurugur
    2023-04-08 Symantec Messaging Gateway 10.7.4 – Stored Cross-Site Scripting (XSS)
  • webapps
    		•  omurugur
    2023-04-08 Suprema BioStar 2 v2.8.16 – SQL Injection
  • webapps
    		•  Yuriy (Vander) Tsarenko
    2023-04-08 Lucee Scheduled Job v1.0 – Command Execution
  • local
    		•  Alexander Philiotis
    2023-04-08 Microsoft Excel 365 MSO (Version 2302 Build 16.0.16130.20186) 64-bit – Remote Code Execution (RCE)
  • remote
    		•  nu11secur1ty
    2023-04-08 Adobe Connect 11.4.5 – Local File Disclosure
  • webapps
    		•  h4shur
    2023-04-07 IBM Aspera Faspex 4.4.1 – YAML deserialization (RCE)
  • remote
    		•  Maurice Lambert
    2023-04-07 Docker based datastores for IBM Instana 241-2 243-0 – No Authentication
  • remote
    		•  Shahid Parvez (zippon)
    2023-04-06 craftercms 4.x.x – CORS
  • webapps
    		•  nu11secur1ty
    2023-04-05 Secure Web Gateway 10.2.11 – Cross-Site Scripting (XSS)
  • webapps
    		•  RedTeam Pentesting GmbH
    2023-04-05 Provide Server v.14.4 XSS – CSRF & Remote Code Execution (RCE)
  • webapps
    		•  Andreas Finstad
    2023-04-05 Apache Tomcat 10.1 – Denial Of Service
  • dos
    		•  Cristian Giustini
    2023-04-05 ImageMagick 7.1.0-49 – Arbitrary File Read
  • local
    		•  Cristian Giustini
    2023-04-05 BTCPay Server v1.7.4 – HTML Injection
  • webapps
    		•  Manojkumar J
    2023-04-05 PostgreSQL 9.6.1 – Remote Code Execution (RCE) (Authenticated)
  • remote
    		•  Paulo Trindade