windows

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2018-09-12 iCash 7.6.5 – Denial of Service (PoC)
  • dos
    		•  Gionathan Reale
    2018-09-12 SynaMan 4.0 build 1488 – SMTP Credential Disclosure
  • webapps
    		•  bzyo
    2018-09-12 SynaMan 4.0 build 1488 – (Authenticated) Cross-Site Scripting
  • webapps
    		•  bzyo
    2018-09-10 Microsoft Baseline Security Analyzer 2.3 – XML External Entity Injection
  • local
    		•  hyp3rlinx
    2018-09-07 DVD Photo Slideshow Professional 8.07 – Buffer Overflow (SEH)
  • local
    		•  T3jv1l
    2018-09-03 Microsoft Windows Explorer Out-of-Bound Read – Denial of Service (PoC)
  • dos
    		•  Ghaaf
    2018-09-03 FsPro Labs Event Log Explorer v4.6.1.2115 – XML External Entity Injection
  • webapps
    		•  hyp3rlinx
    2018-09-03 VSAXESS V2.6.2.70 build 20171226_053 – ‘Nickname’ Denial of Service (PoC)
  • dos
    		•  Diego Santamaria
    2018-09-03 Wikipedia 12.0 – Denial of Service (PoC)
  • dos
    		•  0xB9
    2018-08-29 R 3.4.4 – Buffer Overflow (SEH)
  • local
    		•  ZwX
    2018-08-28 Microsoft Windows – Advanced Local Procedure Call (ALPC) Local Privilege Escalation
  • local
    		•  SandboxEscaper
    2018-08-28 Microsoft Windows – JScript RegExp.lastIndex Use-After-Free
  • dos
    		•  Google Security Research
    2018-08-28 Cisco Network Assistant 6.3.3 – ‘Cisco Login’ Denial of Service (PoC)
  • dos
    		•  Luis Martínez
    2018-08-27 Foxit PDF Reader 9.0.1.1049 – Pointer Overwrite Use-After-Free (Metasploit)
  • local
    		•  Metasploit
    2018-08-27 Sentrifugo HRMS 3.2 – ‘deptid’ SQL Injection
  • webapps
    		•  Javier Olmedo
    2018-08-25 ManageEngine ADManager Plus 6.5.7 – HTML Injection
  • webapps
    		•  Ismail Tasdelen
    2018-08-23 PCViewer vt1000 – Directory Traversal
  • webapps
    		•  Berk Dusunur
    2018-08-22 Microsoft Windows 10 – Diagnostics Hub Standard Collector Service Privilege Escalation
  • local
    		•  Atredis Partners
    2018-08-17 Microsoft Edge Chakra JIT – ImplicitCallFlags Check Bypass with Intl
  • dos
    		•  Google Security Research
    2018-08-17 Microsoft Edge Chakra JIT – InitializeNumberFormat and InitializeDateTimeFormat Type Confusion
  • dos
    		•  Google Security Research
    2018-08-17 Microsoft Edge Chakra JIT – ‘InlineArrayPush’ Type Confusion
  • dos
    		•  Google Security Research
    2018-08-17 Microsoft Edge Chakra JIT – ‘DictionaryPropertyDescriptor::CopyFrom’ Type Confusion
  • dos
    		•  Google Security Research
    2018-08-17 Microsoft Edge Chakra JIT – Parameter Scope Parsing Type Confusion
  • dos
    		•  Google Security Research
    2018-08-14 Oracle GlassFish Server Open Source Edition 4.1 – Path Traversal (Metasploit)
  • webapps
    		•  Metasploit