المساعد الشخصي الرقمي

مشاهدة النسخة كاملة : exploit database


الصفحات : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 [45] 46 47 48 49 50 51 52 53 54 55 56

  1. [local] - OSSEC 2.8 Insecure Temporary File Creation Vulnerability Privilege Escalati
  2. [remote] - Internet Explorer OLE Automation Array Remote Code Execution (msf)
  3. [remote] - Internet Explorer OLE Automation Array Remote Code Execution
  4. [webapps] - MyBB 1.8.X - Multiple Vulnerabilities
  5. [webapps] - Digi Online Examination System 2.0 - Unrestricted File Upload
  6. [webapps] - F5 BIG-IP 10.1.0 - Directory Traversal Vulnerability
  7. [webapps] - Piwigo 2.6.0 (picture.php, rate param) - SQL Injection
  8. [webapps] - Esotalk CMS 1.0.0g4 - XSS Vulnerability
  9. [webapps] - WordPress SupportEzzy Ticket System Plugin 1.2.5 - Stored XSS Vulnerabili
  10. [dos] - CorelDRAW X7 CDR File (CdrTxt.dll) Off-By-One Stack Corruption Vulnerability
  11. [local] - MS Office 2007 and 2010 - OLE Arbitrary Command Execution
  12. [webapps] - phpSound Music Sharing Platform 1.0.5 - Multiple XSS Vulnerabilities
  13. [webapps] - Serenity Client Management Portal 1.0.1 - Multiple Vulnerabilities
  14. [webapps] - Mouse Media Script 1.6 0 - Stored XSS Vulnerability
  15. [webapps] - Who's Who Script - CSRF Exploit (Add Admin Account)
  16. [remote] - Internet Explorer 8 MS14-035 Use-After-Free Exploit
  17. [webapps] - Another Wordpress Classifieds Plugin - SQL Injection
  18. [webapps] - Password Manager Pro / Pro MSP - Blind SQL Injection
  19. [remote] - Visual Mining NetCharts Server Remote Code Execution
  20. [webapps] - XCloner Wordpress/Joomla! Plugin - Multiple Vulnerabilities
  21. [webapps] - ManageEngine OpManager, Social IT Plus and IT360 - Multiple Vulnerabiliti
  22. [webapps] - Progress OpenEdge 11.2 - Directory Traversal
  23. [webapps] - PHP-Fusion 7.02.07 - SQL Injection
  24. [shellcode] - Position independent & Alphanumeric 64-bit execve("/bin/sh\0",NULL,NULL
  25. [webapps] - ZTE ZXDSL 831CII - Insecure Direct Object Reference
  26. [webapps] - Progress OpenEdge 11.2 - Directory Traversal
  27. [remote] - Belkin n750 jump login Parameter Buffer Overflow
  28. [remote] - X7 Chat 2.0.5 lib/message.php preg_replace() PHP Code Execution
  29. [dos] - VMware Workstations 10.0.0.40273 vmx86.sys Arbitrary Kernel Read
  30. [webapps] - Symantec Endpoint Protection 12.1.4023.4080 - Multiple Vulnerabilities
  31. [remote] - Citrix NetScaler SOAP Handler Remote Code Execution
  32. [dos] - i.Mage 1.11 - Local Crash PoC
  33. [dos] - i.Hex 0.98 - Local Crash PoC
  34. [local] - i-FTP 2.20 - Buffer Overflow SEH Exploit
  35. [papers] - [Hebrew] Digital Whisper Security Magazine #55
  36. [papers] - [Hebrew] Digital Whisper Security Magazine #54
  37. [papers] - [Hebrew] Digital Whisper Security Magazine #53
  38. [dos] - MINIX 3.3.0 Local Denial of Service PoC
  39. [local] - Linux Local Root => 2.6.39 (32-bit & 64-bit) - Mempodipper #2
  40. [shellcode] - Linux/x86 Add map in /etc/hosts file
  41. [dos] - Mac OS X Mavericks IOBluetoothHCIUserClient Privilege Escalation
  42. [papers] - Exploiting CVE-2014-4113 on Windows 8.1
  43. [remote] - Xerox Multifunction Printers (MFP) "Patch" DLM Vulnerability
  44. [webapps] - Drupal 7.32 Pre Auth SQL Injection
  45. [webapps] - ZTE Modem ZXDSL 531BIIV7.3.0f_D09_IN - Stored XSS Vulnerability
  46. [remote] - CUPS Filter Bash Environment Variable Code Injection
  47. [webapps] - MAARCH 1.4 - SQL Injection
  48. [webapps] - MAARCH 1.4 - Arbitrary File Upload
  49. [local] - IBM Tivoli Monitoring 6.2.2 kbbacf1 - Privilege Escalation
  50. [remote] - Konke Smart Plug K - Authentication Bypass Vulnerability
  51. [webapps] - vBulletin Tapatalk - Blind SQL Injection
  52. [local] - Windows TrackPopupMenu Win32k NULL Pointer Dereference
  53. [webapps] - Enalean Tuleap 7.4.99.5 - Remote Command Execution
  54. [webapps] - Enalean Tuleap 7.2 - XXE File Disclosure
  55. [webapps] - Enalean Tuleap 7.4.99.5 - Blind SQL Injection
  56. [local] - Filemaker Pro 13.03 & Advanced 12.04 - Login Bypass and Privilege Escala
  57. [webapps] - Folder Plus 2.5.1 iOS - Persistent XSS Vulnerability
  58. [webapps] - WebDisk+ 2.1 iOS - Code Execution Vulnerability
  59. [dos] - Binary File Descriptor Library (libbfd) - Out-of-Bounds Crash
  60. [webapps] - Incredible PBX 2.0.6.5.0 - Remote Command Execution
  61. [webapps] - Mulesoft ESB Runtime 3.5.1 - Privilege Escalation Vulnerability
  62. [remote] - Centreon SQL and Command Injection
  63. [webapps] - HP Operations Agent Remote XSS iFrame Injection
  64. [webapps] - CBN CH6640E/CG6640E Wireless Gateway Series Multiple Vulnerabilities
  65. [local] - Free WMA MP3 Converter 1.8 (.wav) - Buffer Overflow
  66. [webapps] - Wordpress CP Multi View Event Calendar 1.01 - SQL Injection
  67. [webapps] - Dell SonicWall GMS 7.2.x - Code Injection
  68. [webapps] - Axway Secure Transport 5.1 SP2 - Arbitary File Upload via CSRF
  69. [webapps] - Change CMS 3.6.8 - Multiple CSRF Vulnerabilities
  70. [webapps] - HttpCombiner ASP.NET - Remote File Disclosure Vulnerability
  71. [webapps] - vBulletin 4.x Verify Email Before Registration Plugin - SQL Injection
  72. [webapps] - Parallels Plesk Sitebuilder 9.5 - Multiple Vulnerabilities
  73. [remote] - Ammyy Admin 3.5 - RCE
  74. [webapps] - File Manager 4.2.10 iOS - Code Execution Vulnerability
  75. [dos] - OpenBSD
  76. [webapps] - Creative Contact Form (Wordpress 0.9.7 and Joomla 2.0.0) - Shell Upload V
  77. [webapps] - Dell EqualLogic Storage - Remote File Inclusion
  78. [remote] - Windows OLE - Remote Code Execution "Sandworm" Exploit (MS14-060)
  79. [webapps] - Magento Server MAGMI Plugin - Remote File Inclusion (RFI)
  80. [webapps] - Feng Office 1.7.4 - Cross Site Scripting Vulnerabilities
  81. [webapps] - Feng Office 1.7.4 - Arbitrary File Upload
  82. [webapps] - Creative Contact Form - Arbitrary File Upload
  83. [webapps] - DotNetNuke DNNspot Store 3.0.0 Arbitary File Upload
  84. [local] - iBackup 10.0.0.32 - Local Privilege Escalation
  85. [webapps] - File Manager 4.2.10 iOS - Code Execution Vulnerability
  86. [webapps] - iFunBox Free 1.1 iOS - File Inclusion Vulnerability
  87. [remote] - HP Data Protector EXEC_INTEGUTIL Remote Code Execution
  88. [remote] - Joomla Akeeba Kickstart Unserialize Remote Code Execution
  89. [remote] - Numara / BMC Track-It! FileStorageService Arbitrary File Upload
  90. [local] - MS14-060 Microsoft Windows OLE Package Manager Code Execution
  91. [local] - Linux PolicyKit Race Condition Privilege Escalation
  92. [local] - Windows OLE Package Manager SandWorm Exploit
  93. [webapps] - ZTE ZXDSL-931VII - Unauthenticated Configuration Dump
  94. [webapps] - Typo3 JobControl 2.14.0 - Cross Site Scripting / SQL Injection
  95. [dos] - SAP Netweaver Enqueue Server - Denial of Service
  96. [webapps] - Drupal Core
  97. [webapps] - Drupal Core
  98. [webapps] - Drupal Core
  99. [local] - Microsoft Bluetooth Personal Area Networking (BthPan.sys) Privilege Escalat
  100. [webapps] - Indeed Job Search 2.5 iOS API - Multiple Vulnerabilities
  101. [webapps] - YourMembers Plugin - Blind SQL Injection
  102. [webapps] - SEO Control Panel 3.6.0 - Authenticated SQL Injection
  103. [webapps] - Croogo 2.0.0 - Multiple Stored XSS Vulnerabilities
  104. [webapps] - Croogo 2.0.0 - Arbitrary PHP Code Execution Exploit
  105. [webapps] - Tenda A32 Router - CSRF Vulnerability
  106. [local] - Telefonica O2 Connection Manager 8.7 - Service Trusted Path Privilege Escal
  107. [local] - Telefonica O2 Connection Manager 3.4 - Local Privilege Escalation Vulnerabi
  108. [webapps] - PayPal Inc BB #85 MB iOS 4.6 - Auth Bypass Vulnerability
  109. [webapps] - Bosch Security Systems DVR 630/650/670 Series - Multiple Vulnerabilities
  110. [local] - Comodo Internet Security - HIPS/Sandbox Escape PoC
  111. [webapps] - Nessus Web UI 2.3.3 - Stored XSS
  112. [webapps] - DrayTek VigorACS SI 1.3.0 - Multiple Vulnerabilities
  113. [remote] - F5 iControl Remote Root Command Execution
  114. [remote] - Rejetto HttpFileServer Remote Command Execution
  115. [remote] - Wordpress InfusionSoft Plugin Upload Vulnerability
  116. [local] - Linux Kernel remount FUSE Exploit
  117. [webapps] - BMC Track-It! - Multiple Vulnerabilities
  118. [local] - Asx to Mp3 2.7.5 - Stack Overflow
  119. [webapps] - Wordpress Slideshow Gallery 1.4.6 - Shell Upload (Python Exploit)
  120. [webapps] - Ultra Electronics 7.2.0.19 and 7.4.0.7 - Multiple Vulnerabilities
  121. [webapps] - AutoWeb 3.0 - (noticias.php id_cat) SQL Injection Exploit
  122. [remote] - Postfix SMTP - Shellshock Exploit
  123. [webapps] - Bash - CGI RCE (MSF) Shellshock Exploit
  124. [remote] - Apache mod_cgi - Remote Exploit (Shellshock)
  125. [remote] - OpenVPN 2.2.29 - ShellShock Exploit
  126. [papers] - Exploraçao de codigo remoto: uma técnica bastante eficaz
  127. [remote] - ManageEngine OpManager / Social IT Arbitrary File Upload
  128. [remote] - HP Network Node Manager I PMD Buffer Overflow
  129. [webapps] - Moab < 7.2.9 - Authorization Bypass
  130. [webapps] - Epicor Enterprise 7.4 - Multiple Vulnerabilities
  131. [webapps] - TestLink 1.9.11 - Multiple SQL Injection Vulnerabilities
  132. [webapps] - PHPCompta/NOALYSS 6.7.1 5638 - Remote Command Execution
  133. [remote] - Pure-FTPd External Authentication Bash Environment Variable Code Injection
  134. [remote] - GNU bash 4.3.11 Environment Variable dhclient Exploit
  135. [papers] - Technical Information on Vulnerabilities of Hypercall Handlers
  136. [webapps] - RBS Change Complet Open Source 3.6.8 - CSRF Vulnerability
  137. [dos] - TeamSpeak Client 3.0.14 - Buffer Overflow Vulnerability
  138. [remote] - Kolibri Webserver 2.0 Buffer Overflow with EMET 5.0 and EMET 4.1 Partial B
  139. [webapps] - All In One Wordpress Firewall 3.8.3 - Persistent XSS Vulnerability
  140. [webapps] - HTTP File Server 2.3a, 2.3b, 2.3c - Remote Command Execution
  141. [webapps] - OpenFiler 2.99.1 - CSRF Vulnerability
  142. [webapps] - Microsoft Exchange IIS HTTP Internal IP Address Disclosure
  143. [remote] - Internet Explorer 8 - Fixed Col Span ID Full ASLR, DEP & EMET 5.0 Bypass (
  144. [webapps] - GS Foto Uebertraeger 3.0 iOS - File Include Vulnerability
  145. [webapps] - Wordpress All In One WP Security Plugin 3.8.2 - SQL Injection
  146. [webapps] - Nucom ADSL ADSLR5000UN ISP Credentials Disclosure
  147. [remote] - GNU bash Environment Variable Command Injection (MSF)
  148. [remote] - Bash Environment Variables Code Injection Exploit
  149. [remote] - GNU bash Environment Variable Command Injection
  150. [webapps] - Cart Engine 3.0 - Multiple Vulnerabilities
  151. [webapps] - OsClass 3.4.1 (index.php, file param) - Local File Inclusion
  152. [webapps] - Wordpress Login Widget With Shortcode 3.1.1 - Multiple Vulnerabilities
  153. [webapps] - webEdition 6.3.8.0 (SVN-Revision: 6985) - Path Traversal
  154. [webapps] - Restaurant Script (PizzaInn Project) - Stored XSS
  155. [webapps] - Glype 1.4.9 - Local Address Filter Bypass
  156. [webapps] - Glype 1.4.9 - Cookie Injection Path Traversal LFI
  157. [remote] - Advantech WebAccess dvs.ocx GetColor Buffer Overflow
  158. [remote] - EMC AlphaStor Device Manager Opcode 0x75 Command Injection
  159. [webapps] - M/Monit 3.3.2 - CSRF Vulnerability
  160. [webapps] - Joomla Mac Gallery 1.5 - Arbitrary File Download
  161. [webapps] - Joomla Face Gallery 1.0 - Multiple vulnerabilities
  162. [webapps] - Onlineon E-Ticaret Database Disclosure Exploit
  163. [dos] - WS10 Data Server SCADA Exploit Overflow PoC
  164. [webapps] - ZyXEL Prestig P-660HNU-T1 ISP Credentials Disclosure
  165. [webapps] - Joomla Spider Form Maker
  166. [dos] - Fast Image Resizer 098 - Local Crash Poc
  167. [webapps] - LittleSite 0.1 'file' Parameter Local File Include Vulnerability
  168. [dos] - Seafile-server
  169. [webapps] - ClassApps SelectSurvey.net - Multiple SQL Injection Vulnerabilities
  170. [webapps] - Livefyre LiveComments Plugin - Stored XSS
  171. [webapps] - Briefcase 4.0 iOS - Code Execution & File Include Vulnerability
  172. [webapps] - USB&WiFi Flash Drive 1.3 iOS - Code Execution Vulnerability
  173. [webapps] - CacheGuard-OS 5.7.7 - CSRF Vulnerability
  174. [remote] - SolarWinds Storage Manager Authentication Bypass
  175. [remote] - ManageEngine Eventlog Analyzer Arbitrary File Upload
  176. [remote] - Railo Remote File Include
  177. [remote] - Http File Server 2.3.x - Remote Command Execution
  178. [webapps] - ALCASAR
  179. [webapps] - ChatSecure IM 2.2.4 iOS - Persistent XSS Vulnerability
  180. [webapps] - Photorange 1.0 iOS - File Inclusion Vulnerability
  181. [webapps] - Joomla Spider Contacts 1.3.6 (index.php, contacts_id param) - SQL Injecti
  182. [webapps] - OroCRM - Stored XSS Vulnerability
  183. [webapps] - Wordpress WP Support Plus Responsive Ticket System 2.0 Plugin - Multiple
  184. [remote] - ALCASAR 2.8 Remote Root Code Execution Vulnerability
  185. [webapps] - Atmail Webmail 7.2 - Multiple Vulnerabilities
  186. [remote] - ManageEngine Desktop Central StatusUpdate Arbitrary File Upload
  187. [shellcode] - Obfuscated Shellcode Linux x86 - chmod 777 (/etc/passwd + /etc/shadow)
  188. [papers] - Breaking the Sandbox
  189. [dos] - PHP Stock Management System 1.02 - Multiple Vulnerabilty
  190. [webapps] - TP-LINK Model No. TL-WR841N / TL-WR841ND - Multiple Vulnerabilities
  191. [webapps] - TP-LINK Model No. TL-WR340G / TL-WR340GD - Multiple Vulnerabilities
  192. [webapps] - osCommerce 2.3.4 - Multiple vulnerabilities
  193. [webapps] - Jenkins 1.578 - Multiple Vulnerabilities
  194. [webapps] - Mpay24 PrestaShop Payment Module 1.5 - Multiple Vulnerabilities
  195. [webapps] - WordPress Acento Theme (view-pdf.php, file param) - Arbitrary File Downlo
  196. [webapps] - Wordpress Bulk Delete Users by Email Plugin 1.0 - CSRF
  197. [webapps] - Joomla Spider Calendar
  198. [webapps] - PhpOnlineChat 3.0 - XSS
  199. [webapps] - Wordpress Like Dislike Counter 1.2.3 Plugin - SQL Injection Vulnerability
  200. [webapps] - LoadedCommerce7 - Systemic Query Factory Vulnerability
  201. [webapps] - IP Board 3.x - CSRF Token hjiacking
  202. [webapps] - Syslog LogAnalyzer 3.6.5 - Stored XSS (Python Exploit)
  203. [webapps] - PHP Stock Management System 1.02 - Multiple Persistent Cross Site Scripti
  204. [local] - HTML Help Workshop 1.4 - Local Buffer Overflow Exploit (SEH)
  205. [local] - BulletProof FTP Client 2010 - Buffer Overflow (SEH) Exploit
  206. [webapps] - MyBB User Social Networks Plugin 1.2 - Stored XSS
  207. [webapps] - Wordpress Plugins Premium Gallery Manager Unauthenticated Configuration A
  208. [webapps] - vBulletin 4.0.x - 4.1.2 (search.php, cat param) - SQL Injection Exploit
  209. [webapps] - Wordpress Huge-IT Image Gallery 1.0.1 Authenticated SQL Injection
  210. [webapps] - ManageEngine EventLog Analyzer Multiple Vulnerabilities
  211. [webapps] - ManageEngine Desktop Central - Arbitrary File Upload / RCE
  212. [remote] - Wing FTP Server Authenticated Command Execution
  213. [papers] - Outsmarted - Why Malware Works in face of Antivirus Software
  214. [papers] - [Spanish] Design and Implementation of a Voice Encryption System for Telep
  215. [webapps] - WordPress Slideshow Gallery Plugin 1.4.6 - Shell Upload Vulnerability
  216. [webapps] - Arachni Web Application Scanner Web UI - Stored XSS Vulnerability
  217. [webapps] - Mulitple WordPress Themes (admin-ajax.php, img param) - Arbitrary File Do
  218. [remote] - NRPE 2.15 - Remote Code Execution Vulnerability
  219. [remote] - F5 Big-IP - Unauthenticated rsync Access
  220. [local] - HTML Help Workshop 1.4 - (SEH) Buffer Overflow
  221. [dos] - Internet Explorer MS14-029 Memory Corruption PoC
  222. [webapps] - Plogger 1.0-RC1 - Authenticated Arbitrary File Upload
  223. [remote] - Firefox WebIDL Privileged Javascript Injection
  224. [webapps] - ManageEngine DeviceExpert 5.9 - User Credential Disclosure
  225. [webapps] - ActualAnalyzer Lite 2.81 - Unauthenticated Command Execution
  226. [webapps] - PhpWiki - Remote Command Execution
  227. [webapps] - XRMS - Blind SQL Injection and Command Execution
  228. [webapps] - WordPress ShortCode Plugin 1.1 - Local File Inclusion Vulnerability
  229. [webapps] - WooCommerce Store Exporter 1.7.5 - SXSS and RXSS
  230. [local] - glibc Off-by-One NUL Byte gconv_translit_find Exploit
  231. [webapps] - ntopng 1.2.0 - XSS Injection
  232. [webapps] - VTLS Virtua InfoStation.cgi - SQL Injection
  233. [webapps] - ManageEngine Password Manager MetadataServlet.dat SQL Injection
  234. [webapps] - Innovaphone PBX Admin-GUI - CSRF Vulnerability
  235. [remote] - Air Transfer Iphone 1.3.9 - Multiple Vulnerabilities
  236. [local] - BlazeDVD Pro 7.0 (.plf) - Buffer Overflow (SEH)
  237. [remote] - HybridAuth install.php PHP Code Execution
  238. [webapps] - MyBB 1.8 Beta 3 - Multiple Vulnerabilities
  239. [remote] - Gitlab-shell Code Execution
  240. [remote] - Firefox toString console.time Privileged Javascript Injection
  241. [webapps] - Feng Office - Stored XSS
  242. [webapps] - Tenda A5s Router 3.02.05_CN - Authentication Bypass Vulnerability
  243. [remote] - VirtualBox 3D Acceleration Virtual Machine Escape
  244. [remote] - VMTurbo Operations Manager 4.6 vmtadmin.cgi Remote Command Execution
  245. [webapps] - Disqus for Wordpress 2.7.5 Admin Stored CSRF and XSS
  246. [local] - VirtualBox Guest Additions VBoxGuest.sys Privilege Escalation
  247. [webapps] - HybridAuth 2.2.2 - Remote Code Execution
  248. [local] - BlazeDVD Pro 7.0 - (.plf) Stack Based Buffer Overflow (Direct RET)
  249. [webapps] - TomatoCart 1.x - SQL Injection Vulnerability
  250. [dos] - Sky Broadband Router SR101 - Weak WPA-PSK Generation Algorithm