windows

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2018-10-23 MGB OpenSource Guestbook 0.7.0.2 – ‘id’ SQL Injection
  • webapps
    		•  Ihsan Sencan
    2018-10-23 ServersCheck Monitoring Software 14.3.3 – ‘id’ SQL Injection
  • webapps
    		•  hyp3rlinx
    2018-10-23 ServersCheck Monitoring Software 14.3.3 – Arbitrary File Write
  • remote
    		•  hyp3rlinx
    2018-10-22 Microsoft Windows 10 – Local Privilege Escalation (UAC Bypass)
  • local
    		•  Fabien DROMAS
    2018-10-22 Microsoft Windows – SetImeInfoEx Win32k NULL Pointer Dereference (Metasploit)
  • local
    		•  Metasploit
    2018-10-22 Audacity 2.3 – Denial of Service (PoC)
  • dos
    		•  Kağan Çapar
    2018-10-16 VLC Media Player – MKV Use-After-Free (Metasploit)
  • local
    		•  Metasploit
    2018-10-16 Microsoft Windows – ‘FSCTL_FIND_FILES_BY_SID’ Information Disclosure
  • dos
    		•  Google Security Research
    2018-10-15 NoMachine < 5.3.27 - Remote Code Execution
  • remote
    		•  hyp3rlinx
    2018-10-12 Phoenix Contact WebVisit 2985725 – Authentication Bypass
  • webapps
    		•  Photubias
    2018-10-11 Microsoft SQL Server Management Studio 17.9 – ‘.xmla’ XML External Entity Injection
  • local
    		•  hyp3rlinx
    2018-10-11 Microsoft SQL Server Management Studio 17.9 – ‘.xel’ XML External Entity Injection
  • local
    		•  hyp3rlinx
    2018-10-11 Microsoft SQL Server Management Studio 17.9 – XML External Entity Injection
  • local
    		•  hyp3rlinx
    2018-10-09 Microsoft Edge Chakra JIT – ‘BailOutOnInvalidatedArrayHeadSegment’ Check Bypass
  • dos
    		•  Google Security Research
    2018-10-09 Seqrite End Point Security 7.4 – Privilege Escalation
  • local
    		•  Hashim Jawad
    2018-10-09 Delta Electronics Delta Industrial Automation COMMGR 1.08 – Stack Buffer Overflow (Metasploit)
  • remote
    		•  Metasploit
    2018-10-09 Microsoft Edge Chakra JIT – Type Confusion
  • dos
    		•  Google Security Research
    2018-10-08 Microsoft Windows – Net-NTLMv2 Reflection DCOM/RPC (Metasploit)
  • local
    		•  Metasploit
    2018-10-08 Zahir Enterprise Plus 6 – Stack Buffer Overflow (Metasploit)
  • local
    		•  Metasploit
    2018-09-27 Microsoft Edge – Sandbox Escape
  • remote
    		•  Google Security Research
    2018-09-27 EE 4GEE Mini EE40_00_02.00_44 – Privilege Escalation
  • local
    		•  Osanda Malith Jayathissa
    2018-09-27 iWay Data Quality Suite Web Console 10.6.1.ga – XML External Entity Injection
  • webapps
    		•  Sureshbabu Narvaneni
    2018-09-19 Microsoft Windows – Double Dereference in NtEnumerateKey Elevation of Privilege
  • dos
    		•  Google Security Research
    2018-09-19 Microsoft Windows – ‘CiSetFileCache’ WDAC Security Feature Bypass TOCTOU
  • dos
    		•  Google Security Research