المساعد الشخصي الرقمي

مشاهدة النسخة كاملة : exploit database


الصفحات : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 [32] 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51

  1. [remote] - Tiki Wiki 15.1 - Unauthenticated File Upload Vulnerability (msf)
  2. [dos] - Adobe Flash - ATF Image Packing Overflow
  3. [webapps] - Tiki Wiki CMS 15.0 - Arbitrary File Download
  4. [shellcode] - Linux x86-64 Continuously-Probing Reverse Shell via Socket + Port-range
  5. [webapps] - Streamo Online Radio And TV Streaming CMS - SQL Injection
  6. [webapps] - CyberPower Systems PowerPanel 3.1.2 - XXE Out-Of-Band Data Retrieval
  7. [webapps] - php Real Estate Script 3 - Arbitrary File Disclosure
  8. [shellcode] - Linux x86 TCP Reverse Shellcode - 75 bytes
  9. [dos] - Microsoft WinDbg logviewer.exe - Crash PoC
  10. [dos] - Microsoft Process Kill Utility (kill.exe) 6.3.9600.17298 - Crash PoC
  11. [local] - InstantHMI 6.1 - Privilege Escalation
  12. [local] - Hide.Me VPN Client 1.2.4 - Privilege Escalation
  13. [webapps] - WordPress Lazy Content Slider Plugin 3.4 - (Add Catetory) CSRF
  14. [local] - GE Proficy HMI/SCADA CIMPLICITY 8.2 - Local Privilege Escalation
  15. [webapps] - OPAC KpwinSQL - Multiple Vulnerabilities
  16. [dos] - Core FTP LE 2.2 - Path Field Local Buffer Overflow
  17. [local] - VUPlayer 2.49 - .m3u Buffer Overflow Exploit (Win 7 DEP Bypass)
  18. [remote] - Nagios XI Chained Remote Code Execution
  19. [local] - Samsung Android JACK - Privilege Escalation
  20. [webapps] - OpenFire 3.10.2 - 4.0.1 - Multiple Vulnerabilities
  21. [remote] - GNU Wget < 1.18 - Arbitrary File Upload/Remote Code Execution
  22. [webapps] - PaKnPost Pro 1.14 - Multiple Vulnerabilities
  23. [webapps] - Advanced Webhost Billing System (AWBS) 2.9.6 - Multiple Vulnerabilities
  24. [shellcode] - Linux 64bit Ncat Shellcode (SSL, MultiChannel, Persistant, Fork, IPv4/6
  25. [webapps] - 24online SMS_2500i 8.3.6 build 9.0 - SQL Injection
  26. [webapps] - CIMA DocuClass ECM - Multiple Vulnerabilities
  27. [shellcode] - Linux x86 TCP Bind Shell Port 4444 - 98 bytes
  28. [webapps] - eCardMAX 10.5 - Multiple Vulnerabilities
  29. [webapps] - WebCalendar 1.2.7 - Multiple Vulnerabilities
  30. [webapps] - WordPress Real3D FlipBook Plugin - Multiple Vulnerabilities
  31. [local] - Debian Exim - Spool Local Root Privilege Escalation
  32. [local] - Ubuntu 16.04 Kernel 4.4.0-21-generic - netfilter target_offset Local root E
  33. [shellcode] - Linux 64bit NetCat Bind Shell Shellcode - 64 bytes
  34. [webapps] - Ktools Photostore 4.7.5 - Multiple Vulnerabilities
  35. [webapps] - XpoLog Center 6 - Remote Command Execution CSRF
  36. [local] - Ubuntu 16.04 local root exploit - netfilter target_offset OOB
  37. [webapps] - Phoenix Exploit Kit - Remote Code Execution
  38. [webapps] - Ktools Photostore 4.7.5 - Blind SQL Injection
  39. [webapps] - Concrete5 5.7.3.1 - (Application::dispatch) Local File Inclusion
  40. [webapps] - Ubiquiti Administration Portal - CSRF to Remote Command Execution
  41. [local] - Cuckoo Sandbox Guest 2.0.1 - XMLRPC Privileged Remote Code Execution
  42. [webapps] - WordPress Ultimate Membership Pro Plugin 3.3 - SQL Injection
  43. [local] - Lenovo ThinkPad - System Management Mode Arbitrary Code Execution Exploit
  44. [local] - Windows 7 SP1 x86 - Privilege Escalation (MS16-014)
  45. [webapps] - Symantec Endpoint Protection Manager 12.1 - Multiple Vulnerabilities
  46. [dos] - Symantec Antivirus - PowerPoint Misaligned Stream-cache Remote Stack Buffer O
  47. [dos] - Symantec Antivirus - Missing Bounds Checks in dec2zip ALPkOldFormatDecompress
  48. [dos] - Symantec Antivirus - Integer Overflow in TNEF Decoder
  49. [dos] - Symantec Antivirus - Heap Overflow Modifying MIME Messages
  50. [dos] - Symantec Antivirus - Remote Stack Buffer Overflow in dec2lha Library
  51. [dos] - Symantec Antivirus - Multiple Remote Memory Corruption Unpacking RAR
  52. [webapps] - Untangle NGFW 12.1.0 beta - execEvil() Command Injection
  53. [shellcode] - Linux x86_64 /etc/passwd File Sender Shellcode
  54. [webapps] - Riverbed SteelCentral NetProfiler & NetExpress 10.8.7 - Multiple Vulnerab
  55. [webapps] - SugarCRM 6.5.18 - PHP Code Injection
  56. [shellcode] - Linux x86 /bin/sh Shellcode + ASLR Bruteforce
  57. [local] - HNB 1.9.18-10 - Local Buffer Overflow
  58. [webapps] - BigTree CMS 4.2.11 - SQL Injection
  59. [local] - PInfo 0.6.9-5.1 - Local Buffer Overflow
  60. [webapps] - iBilling 3.7.0 - Stored and Reflected XSS
  61. [webapps] - MyLittleForum 2.3.5 - PHP Command Injection
  62. [local] - Panda Security Multiple Products - Privilege Escalation
  63. [webapps] - Kagao 3.0 - Multiple Vulnerabilities
  64. [webapps] - Option CloudGate CG0192-11897 - Multiple Vulnerabilities
  65. [dos] - Magnet Networks Tesley CPVA 642 Router – Weak WPA-PSK Passphrase Algorithm
  66. [webapps] - XuezhuLi FileSharing - Directory Traversal
  67. [webapps] - XuezhuLi FileSharing - (Add User) CSRF
  68. [webapps] - FinderView - Multiple Vulnerabilities
  69. [shellcode] - Linux Netcat Reverse Shell - 32bit - 77 bytes
  70. [webapps] - Getsimple CMS 3.3.10 - Arbitrary File Upload
  71. [webapps] - Alibaba Clone B2B Script - Arbitrary File Disclosure
  72. [papers] - [Hebrew] Digital Whisper Security Magazine #73
  73. [local] - Linux Kernel
  74. [remote] - PCMAN FTP 2.0.7 - ls Command Buffer Overflow (Metasploit)
  75. [papers] - [Hebrew] Digital Whisper Security Magazine #71
  76. [papers] - [Hebrew] Digital Whisper Security Magazine #72
  77. [remote] - Wolf CMS 0.8.2 - Arbitrary File Upload Exploit (Metasploit)
  78. [shellcode] - Windows x86 ShellExecuteA(NULL,NULL,"cmd.exe",NULL,NULL,1) Shellcode
  79. [webapps] - Radiant CMS 1.1.3 - Mutiple Persistent XSS Vulnerabilities
  80. [webapps] - YetiForce CRM < 3.1 - Persistent XSS
  81. [webapps] - SAP NetWeaver AS JAVA 7.1 - 7.5 - Directory Traversal
  82. [webapps] - SAP NetWeaver AS JAVA 7.1 - 7.5 - ctcprotocol Servlet XXE
  83. [dos] - Windows - Custom Font Disable Policy Bypass
  84. [local] - Linux - ecryptfs and /proc/$pid/environ Privilege Escalation
  85. [dos] - Windows Kernel - ATMFD.DLL NamedEscape 0x250C Pool Corruption (MS16-074)
  86. [dos] - Windows - gdi32.dll Multiple DIB-Related EMF Record Handlers Heap-Based Out-o
  87. [dos] - Internet Explorer 11 - Garbage Collector Attribute Type Confusion (MS16-063)
  88. [webapps] - Joomla Publisher Pro (com_publisher) Component - SQL Injection
  89. [webapps] - Yona CMS - (Add Admin) CSRF
  90. [webapps] - IonizeCMS 1.0.8 - (Add Admin) CSRF
  91. [dos] - Banshee 2.6.2 - .mp3 Crash PoC
  92. [remote] - DarkComet Server Remote File Download Exploit (msf)
  93. [local] - ACROS Security 0patch 2016.05.19.539 - (0PatchServicex64.exe) Unquoted Serv
  94. [webapps] - Symphony CMS 2.6.7 - Session Fixation
  95. [webapps] - Airia - Webshell Upload Exploit
  96. [webapps] - Airia - (Add content) CSRF
  97. [local] - Tomabo MP4 Player 3.11.6 - SEH Based Stack Overflow (msf)
  98. [shellcode] - Windows XP - 10 - Download & Execute Shellcode
  99. [webapps] - Premium SEO Pack 1.9.1.3 - wp_options Overwrite
  100. [webapps] - Joomla BT Media (com_bt_media) Component - SQL Injection
  101. [webapps] - sNews CMS 1.7.1 - Multiple Vulnerabilities
  102. [shellcode] - Linux x86_64 execve Shellcode - 15 bytes
  103. [webapps] - WordPress Ultimate Product Catalog Plugin 3.8.1 - Privilege Escalation
  104. [remote] - op5 v7.1.9 Configuration Command Execution
  105. [webapps] - phpATM 1.32 - Multiple Vulnerabilities
  106. [webapps] - phpATM 1.32 - Remote Command Execution (Shell Upload) on Windows Servers
  107. [webapps] - Vicidial 2.11 - Scripts Stored XSS
  108. [webapps] - WordPress Gravity Forms Plugin 1.8.19 - Arbitrary File Upload
  109. [dos] - Blat 3.2.14 - Stack Overflow
  110. [local] - Solarwinds Virtualization Manager - Privilege Escalation
  111. [webapps] - Tiki-Wiki CMS Calendar 14.2, 12.5 LTS, 9.11 LTS, and 6.15 - Remote Code E
  112. [webapps] - SlimCMS 0.1 - CSRF (Change Admin Password)
  113. [webapps] - Roxy Fileman 1.4.4 - Arbitrary File Upload
  114. [webapps] - ATCOM PBX IP01, IP08 , IP4G, IP2G4A - Authentication Bypass
  115. [shellcode] - Linux/Windows/BSD x86_64 execve("/bin//sh", {"//bin/sh", "-c", "cmd"},
  116. [shellcode] - Linux x86 TCP Bind Shell Port 4444 (656 bytes)
  117. [shellcode] - Linux x86_64 Shellcode Null-Free Reverse TCP Shell
  118. [shellcode] - Linux/x86 - Bindshell with Configurable Port - 87 bytes
  119. [shellcode] - Linux x86_64 - Reverse Shell Shellcode
  120. [dos] - Google Chrome - GPU Process MailboxManagerImpl Double-Read
  121. [dos] - Windows 7 - win32k Bitmap Use-After-Free (MS16-062) (2)
  122. [dos] - Windows 7 - win32k Bitmap Use-After-Free (MS16-062) (1)
  123. [remote] - Bomgar Remote Support Unauthenticated Code Execution (msf)
  124. [webapps] - PHPLive 4.4.8 - 4.5.4 - Password Recovery SQL Injection
  125. [webapps] - jbFileManager - Directory Traversal
  126. [webapps] - BookingWizz Booking System < 5.5 - Multiple Vulnerabilities
  127. [local] - AdobeUpdateService 3.6.0.248 - Unquoted Service Path Privilege Escalation
  128. [webapps] - Joomla En Masse (com_enmasse) Component 5.1 - 6.4 - SQL Injection
  129. [webapps] - Dokeos 2.2.1 - Blind SQL Injection
  130. [webapps] - Hyperoptic (Tilgin) Router HG23xx - Multiple Vulnerabilities
  131. [webapps] - w2wiki - Multiple XSS Vulnerabilities
  132. [webapps] - Ultrabenosaurus ChatBoard - CSRF (Send Message)
  133. [webapps] - Ultrabenosaurus ChatBoard - Stored XSS
  134. [dos] - Oracle Orakill.exe 11.2.0 - Buffer Overflow
  135. [webapps] - WordPress Social Stream Plugin 1.5.15 - wp_options Overwrite
  136. [dos] - Oracle Orakill.exe 11.2.0 - Buffer Overflow
  137. [remote] - Apache Continuum Arbitrary Command Execution
  138. [dos] - Foxit PDF Reader 1.0.1.0925 - CFX_BaseSegmentedArray::IterateIndex Memory Cor
  139. [dos] - Foxit PDF Reader 1.0.1.0925 -kdu_core::kdu_codestream::get_subsampling Memory
  140. [dos] - Foxit PDF Reader 1.0.1.0925 - CFX_WideString::operator= Invalid Read
  141. [dos] - Foxit PDF Reader 1.0.1.0925 - CPDF_DIBSource::TranslateScanline24bpp Out-of-B
  142. [dos] - Foxit PDF Reader 1.0.1.0925 - CPDF_StreamContentParser::~CPDF_StreamContentPa
  143. [dos] - iSQL 1.0 - isql_main.c Buffer Overflow PoC
  144. [local] - iSQL 1.0 - Shell Command Injection
  145. [webapps] - Zabbix 2.2 - 3.0.3 - RCE with API JSON-RPC
  146. [webapps] - Joomla PayPlans (com_payplans) Extension 3.3.6 - SQL Injection
  147. [webapps] - Grid Gallery 1.0 - Admin Panel Authentication Bypass
  148. [webapps] - Dream Gallery 2.0 - Admin Panel Authentication Bypass
  149. [local] - Easy RM to MP3 Converter 2.7.3.700 - (.m3u) Exploit with Universal DEP+ASLR
  150. [webapps] - Viart Shopping Cart 5.0 - CSRF Shell Upload
  151. [webapps] - FRticket Ticket System - Stored XSS
  152. [dos] - OS X Kernel - Stack Buffer Overflow in GeForce GPU Driver
  153. [dos] - OS X/iOS Kernel - UAF Racing getProperty on IOHDIXController and testNetBootM
  154. [dos] - OS X Kernel - Use-After-Free Due to Bad Locking in IOAcceleratorFamily2
  155. [dos] - OS X Kernel - OOB Read of Object Pointer Due to Insufficient Checks in Raw Ca
  156. [dos] - OS X Kernel - Exploitable NULL Pointer Dereference in IOAudioEngine
  157. [dos] - OS X Kernel - Exploitable NULL Dereference in CoreCaptureResponder Due to Unc
  158. [dos] - OS X Kernel - Exploitable NULL Dereference in IOAccelSharedUserClient2::page_
  159. [dos] - OS X Kernel - Exploitable NULL Pointer Dereference in AppleGraphicsDeviceCont
  160. [dos] - OS X Kernel - Exploitable NULL Pointer Dereference in AppleMuxControl.kext
  161. [dos] - Android - /system/bin/sdcard Stack Buffer Overflow
  162. [webapps] - Drale DBTableViewer 100123 - Blind SQL Injection
  163. [webapps] - Cisco EPC 3928 - Multiple Vulnerabilities
  164. [local] - League of Legends Screensaver - Insecure File Permissions Privilege Escalat
  165. [local] - League of Legends Screensaver - Unquoted Service Path Privilege Escalation
  166. [shellcode] - Linux x86 /bin/nc -le /bin/sh -vp13337 Shellcode (56 bytes)
  167. [shellcode] - Windows x86 WinExec("cmd.exe",0) Shellcode
  168. [webapps] - Nagios XI 5.2.7 - Multiple Vulnerabilities
  169. [webapps] - rConfig 3.1.1 - Local File Inclusion
  170. [webapps] - Notilus Travel Solution Software 2012 R3 - SQL Injection
  171. [webapps] - WordPress Double Opt-In for Download Plugin 2.0.9 - SQL Injection
  172. [webapps] - WordPress Uncode Theme 1.3.1 - Arbitrary File Upload
  173. [webapps] - WordPress Newspaper Theme 6.7.1 - Privilege Escalation
  174. [webapps] - WordPress WP PRO Advertising System Plugin 4.6.18 - SQL Injection
  175. [webapps] - WordPress Creative Multi-Purpose Theme 9.1.3 - Stored XSS
  176. [webapps] - WordPress WP Mobile Detector Plugin 3.5 - Arbitrary File Upload
  177. [webapps] - Electroweb Online Examination System 1.0 - SQL Injection
  178. [webapps] - Dream Gallery 1.0 - CSRF Add Admin Exploit
  179. [webapps] - WordPress Simple Backup Plugin 2.7.11 - Multiple Vulnerabilities
  180. [dos] - Websockify (C Implementation) 0.8.0 - Buffer Overflow
  181. [webapps] - Relay Ajax Directory Manager relayb01-071706, 1.5.1, 1.5.3 - Unauthentica
  182. [webapps] - Liferay CE < 6.2 CE GA6 - Stored XSS
  183. [webapps] - Joomla SecurityCheck Extension 2.8.9 - Multiple Vulnerabilities
  184. [dos] - Wireshark - erf_meta_read_tag SIGSEGV
  185. [webapps] - AjaxExplorer 1.10.3.2 - Multiple Vulnerabilities
  186. [dos] - TCPDump 4.5.1 - Crash PoC
  187. [remote] - Data Protector A.09.00 - Encrypted Communications Arbitrary Command Execut
  188. [dos] - CCextractor 0.80 - Crash PoC
  189. [webapps] - ProcessMaker 3.0.1.7 - Multiple vulnerabilities
  190. [webapps] - AirOS NanoStation M2 5.6-beta - Multiple Vulnerabilities
  191. [webapps] - FlatPress 1.0.3 - CSRF Arbitrary File Upload
  192. [shellcode] - Linux x86_64 XOR Encode execve Shellcode
  193. [webapps] - Open Source Real Estate Script 3.6.0 - SQL Injection
  194. [dos] - MySQL 5.5.45 - procedure analyse Function Denial of Service
  195. [webapps] - PHP Realestate Script Script 4.9.0 - SQL Injection
  196. [dos] - Graphite2 - NameTable::getName Multiple Heap-Based Out-of-Bounds Reads
  197. [dos] - Graphite2 - TtfUtil::CmapSubtable4NextCodepoint Heap-Based Overread
  198. [dos] - Graphite2 - TtfUtil::CheckCmapSubtable12 Heap-Based Overread
  199. [dos] - Graphite2 - GlyphCache::Loader Heap-Based Overreads
  200. [dos] - Graphite2 - GlyphCache::GlyphCache Heap-Based Buffer Overflow
  201. [remote] - HP Data Protector A.09.00 - Arbitrary Command Execution
  202. [dos] - Micro Focus Rumba+ 9.4 - Multiple Stack Buffer Overflow Vulnerabilities
  203. [webapps] - EduSec 4.2.5 - SQL Injection
  204. [webapps] - Real Estate Portal 4.1 - Multiple Vulnerabilities
  205. [remote] - PowerFolder Server 10.4.321 - Remote Code Execution
  206. [remote] - Ubiquiti airOS Arbitrary File Upload
  207. [remote] - Oracle ATS Arbitrary File Upload
  208. [webapps] - AfterLogic WebMail Pro ASP.NET 6.2.6 - Administrator Account Disclosure v
  209. [webapps] - XenAPI 1.4.1 for XenForo - Multiple SQL Injections
  210. [webapps] - Job Script by Scubez - Remote Code Execution
  211. [shellcode] - Linux x86_64 Information Stealer Shellcode
  212. [dos] - Operation Technology ETAP 14.1.0 - Multiple Stack Buffer Overrun Vulnerabilit
  213. [local] - Operation Technology ETAP 14.1.0 - Local Privilege Escalation
  214. [local] - VirIT Explorer Lite & Pro 8.1.68 - Local Privilege Escalation
  215. [dos] - 4digits 1.1.4 - Local Buffer Overflow
  216. [webapps] - SAP NetWeaver AS JAVA 7.1 - 7.5 - Information Disclosure
  217. [webapps] - SAP NetWeaver AS JAVA 7.1 - 7.5 - SQL Injection
  218. [dos] - Apple Quicktime - MOV File Parsing Memory Corruption Vulnerability
  219. [webapps] - Magento < 2.0.6 - Unauthenticated Arbitrary Unserialize -> Arbitrary Writ
  220. [webapps] - SAP xMII 15.0 - Directory Traversal
  221. [remote] - Dell SonicWALL Scrutinizer 11.01 methodDetail SQL Injection
  222. [dos] - Symantec/Norton Antivirus - ASPack Remote Heap/Pool Memory Corruption Vulnera
  223. [dos] - Windows - gdi32.dll Heap-Based Buffer Overflow in ExtEscape() Triggerable via
  224. [dos] - Windows - gdi32.dll Multiple Issues in the EMF COMMENT_MULTIFORMATS Record Ha
  225. [dos] - Windows - gdi32.dll Multiple Issues in the EMF CREATECOLORSPACEW Record Handl
  226. [dos] - Adobe Flash - SetNative Use-After-Free
  227. [dos] - Adobe Flash - addProperty Use-After-Free
  228. [dos] - Adobe Flash - Type Confusion in FileReference Constructor
  229. [dos] - Adobe Flash - MP4 File Stack Corruption
  230. [dos] - Adobe Flash - Heap Overflow in ATF Processing (Image Reading)
  231. [dos] - Adobe Flash - Overflow in Processing Raw 565 Textures
  232. [webapps] - Meteocontrol WEB’log - Admin Password Disclosure
  233. [webapps] - Web2py 2.14.5 - Multiple Vulnerabilities
  234. [local] - Hex : Shard of Fate 1.0.1.026 - Unquoted Path Privilege Escalation
  235. [dos] - Microsoft Excel 2010 - Crash PoC
  236. [webapps] - Web interface for DNSmasq / Mikrotik - SQL Injection
  237. [webapps] - eXtplorer 2.1.9 - Archive Path Traversal
  238. [local] - Multiples Nexon Games - Unquoted Path Privilege Escalation
  239. [webapps] - CakePHP Framework 3.2.4 - IP Spoofing
  240. [dos] - Wireshark - AirPDcapDecryptWPABroadcastKey Heap-Based Out-of-Bounds Read
  241. [local] - runAV mod_security - Arbitrary Command Execution
  242. [local] - NRSS Reader 0.3.9 - Local Stack-Based Overflow
  243. [webapps] - TrendMicro - Multiple HTTP Problems with CoreServiceShell.exe
  244. [remote] - Microsoft Windows Media Center .MCL File Processing Remote Code Execution
  245. [local] - Intuit QuickBooks Desktop 2007 - 2016 - Arbitrary Code Execution
  246. [local] - FileZilla FTP Client 3.17.0.0 - Unquoted Path Privilege Escalation
  247. [dos] - CIScan 1.00 - Hostname/IP Field SEH Overwrite PoC
  248. [dos] - Android Broadcom Wi-Fi Driver - Memory Corruption
  249. [dos] - Nfdump Nfcapd 1.6.14 - Multiple Vulnerabilities
  250. [dos] - Adobe Reader DC 15.010.20060 - Memory Corruption