المساعد الشخصي الرقمي

مشاهدة النسخة كاملة : exploit database


الصفحات : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 [45] 46 47 48 49 50 51 52 53 54

  1. [webapps] - Bilboplanet 2.0 - Multiple XSS Vulnerabilities
  2. [webapps] - Barracuda Networks Message Archiver 650 - Persistent XSS Vulnerability
  3. [dos] - ACME micro_httpd - Denial of Service
  4. [webapps] - Omeka 2.2 - CSRF And Stored XSS Vulnerability
  5. [webapps] - Bitdefender GravityZone 5.1.5.386 - Multiple Vulnerabilities
  6. [webapps] - Joomla Youtube Gallery Component - SQL Injection Vulnerability
  7. [remote] - Boat Browser 8.0 and 8.0.1 - Remote Code Execution Vulnerability
  8. [dos] - Node Browserify 4.2.0 - Remote Code Execution Vulnerability
  9. [remote] - D-Link info.cgi POST Request Buffer Overflow
  10. [local] - OpenVPN Private Tunnel Core Service - Unquoted Service Path Elevation Of Pr
  11. [webapps] - Shopizer 1.1.5 - Multiple Vulnerabilities
  12. [remote] - HP Data protector manager 8.10 remote command execution
  13. [remote] - D-Link Unauthenticated UPnP M-SEARCH Multicast Command Injection
  14. [remote] - D-Link HNAP Request Remote Buffer Overflow
  15. [remote] - D-Link info.cgi POST Request Buffer Overflow
  16. [webapps] - Infoblox 6.8.2.11 - OS Command Injection
  17. [webapps] - C99.php Shell - Authentication Bypass
  18. [webapps] - Frog CMS 0.9.5 - Arbitrary File Upload
  19. [remote] - Yokogawa CS3000 BKFSim_vhfd.exe Buffer Overflow
  20. [webapps] - Dolibarr CMS 3.5.3 - Multiple Security Vulnerabilities
  21. [webapps] - Photo Org WonderApplications 8.3 iOS - File Include Vulnerability
  22. [remote] - Wordpress MailPoet (wysija-newsletters) Unauthenticated File Upload
  23. [remote] - Gitlist Unauthenticated Remote Command Execution
  24. [remote] - Oracle Event Processing FileUploadServlet Arbitrary File Upload
  25. [webapps] - FireEye Malware Analysis System (MAS) 6.4.1 - Multiple Vulnerabilities
  26. [webapps] - Netgear WNR1000v3 - Password Recovery Credential Disclosure Vulnerability
  27. [local] - Ubisoft Uplay 4.6 - Insecure File Permissions Local Privilege Escalation
  28. [dos] - Baidu Spark Browser v26.5.9999.3511 - Remote Stack Overflow Vulnerability (Do
  29. [papers] - [Hebrew] Digital Whisper Security Magazine #52
  30. [webapps] - Kerio Control 8.3.1 - Blind SQL Injection
  31. [webapps] - Zurmo CRM - Persistent XSS Vulnerability
  32. [remote] - Internet Explorer 8 - Fixed Col Span ID Full ASLR, DEP & EMET 4.1.X Bypass
  33. [dos] - Flussonic Media Server 4.1.25 - 4.3.3 - Aribtrary File Disclosure
  34. [webapps] - IBM Algorithmics RICOS 4.5.0 - 4.7.0 - Multiple Vulnerabilities
  35. [papers] - The Ultimate XSS Protection Cheat Sheet for Developers
  36. [papers] - Asterisk Phreaking How-To
  37. [papers] - Back To The Future: Unix Wildcards Gone Wild
  38. [remote] - Gitlist
  39. [local] - check_dhcp 2.0.2 (Nagios Plugins) - Arbitrary Option File Read Race Conditi
  40. [webapps] - Mailspect Control Panel 4.0.5 - Multiple Vulnerabilities
  41. [local] - chkrootkit 0.49 - Local Root Vulnerability
  42. [papers] - PoC || GTFO 0x04
  43. [webapps] - Endeca Latitude 2.2.2 - CSRF Vulnerability
  44. [webapps] - Wordpress Simple Share Buttons Adder Plugin 4.4 - Multiple Vulnerabilitie
  45. [webapps] - Mailspect Control Panel 4.0.5 - Multiple Vulnerabilities
  46. [webapps] - Python CGIHTTPServer Encoded Path Traversal
  47. [local] - MS13-097 Registry Symlink IE Sandbox Escape
  48. [local] - MS14-009 .NET Deployment Service IE Sandbox Escape
  49. [remote] - HP AutoPass License Server File Upload
  50. [webapps] - Lunar CMS 3.3 Unauthenticated Remote Command Execution Exploit
  51. [remote] - Cogent DataHub Command Injection
  52. [remote] - AlienVault OSSIM < 4.7.0 - av-centerd 'get_log_line()' Remote Code Executi
  53. [webapps] - Wordpress TimThumb 2.8.13 WebShot - Remote Code Execution (0-day)
  54. [papers] - Hacking Blind
  55. [dos] - Internet Explorer 8, 9 & 10 - CInput Use-After-Free (MS14-035) - Crash PoC
  56. [webapps] - Thomson TWG87OUIR - POST Password CSRF
  57. [remote] - AlienVault OSSIM av-centerd Command Injection
  58. [papers] - Android KeyStore Stack Buffer Overflow
  59. [remote] - D-Link hedwig.cgi Buffer Overflow in Cookie Header
  60. [remote] - D-Link authentication.cgi Buffer Overflow
  61. [papers] - Searching SHODAN For Fun And Profit
  62. [webapps] - ZeroCMS 1.0 - (zero_transact_article.php article_id POST parameter) SQL I
  63. [webapps] - Lunar CMS 3.3 - CSRF And Stored XSS Vulnerability
  64. [webapps] - Wordpress 3.9.1 - Page Persistent XSS
  65. [local] - Linux Kernel
  66. [webapps] - Wordpress 3.9.1 - CSRF vulnerabilities
  67. [webapps] - D-link DSL-2760U-E1 - Persistent XSS
  68. [webapps] - Cacti Superlinks Plugin 1.4-2 - SQL Injection
  69. [dos] - Kojoney 0.0.4.1 - 'urllib.urlopen()' Remote Denial of Service Vulnerability
  70. [webapps] - web2Project 3.1 - Multiple Vulnerabilities
  71. [remote] - Ericom AccessNow Server Buffer Overflow
  72. [local] - docker 0.11 VMM-container Breakout
  73. [remote] - Rocket Servergraph Admin Center fileRequestor Remote Code Execution
  74. [remote] - Ubisoft Rayman Legends 1.2.103716 - Remote Stack Buffer Overflow Vulnerabi
  75. [webapps] - ZTE WXV10 W300 - Multiple Vulnerabilities
  76. [webapps] - Motorola SBG901 Wireless Modem - CSRF Vulnerability
  77. [local] - Adobe Reader for Android addJavascriptInterface Exploit
  78. [remote] - Easy File Management Web Server Stack Buffer Overflow
  79. [remote] - Java Debug Wire Protocol Remote Code Execution
  80. [papers] - [Persian] Oracle SID Detection Techniques - Part 4
  81. [papers] - [Persian] Oracle SID Detection Techniques - Part 3
  82. [papers] - [Persian] Oracle SID Detection Techniques - Part 2
  83. [papers] - [Persian] Oracle SID Detection Techniques - Part 1
  84. [webapps] - ZeroCMS 1.0 - zero_transact_user.php, Handling Privilege Escalation
  85. [remote] - Yealink VoIP Phone SIP-T38G - Privileges Escalation
  86. [remote] - Yealink VoIP Phone SIP-T38G - Remote Command Execution
  87. [remote] - Yealink VoIP Phone SIP-T38G - Local File Inclusion
  88. [remote] - Yealink VoIP Phone SIP-T38G - Default Credentials
  89. [remote] - ZTE and TP-Link RomPager - DoS Exploit
  90. [webapps] - Plesk 10.4.4/11.0.9 - SSO XXE/XSS Injection Exploit
  91. [dos] - PostgreSQL
  92. [local] - IBM AIX 6.1.8 libodm - Arbitrary File Write
  93. [webapps] - SHOUTcast DNAS 2.2.1 - Stored XSS
  94. [dos] - Core FTP LE 2.2 - Heap Overflow PoC
  95. [webapps] - ZeroCMS 1.0 (zero_view_article.php, article_id param) - SQL Injection Vul
  96. [webapps] - DevExpress ASPxFileManager 10.2 to 13.2.8 - Directory Traversal
  97. [webapps] - WebTitan 4.01 (Build 68) - Multiple Vulnerabilities
  98. [papers] - 64 bits Linux Stack Based Buffer Overflow
  99. [webapps] - eFront 3.6.14.4 (surname param) - Persistent XSS Vulnerability
  100. [webapps] - Wordpress Theme Infocus - Post Local File Disclosure
  101. [webapps] - Wordpress Theme Elegance - Post Local File Disclosure
  102. [webapps] - Madness Pro
  103. [webapps] - Madness Pro
  104. [webapps] - IPSwitch IMail Server WEB client 12.4 persistent XSS
  105. [webapps] - Bluetooth Photo-File Share 2.1 iOS - Multiple Vulnerabilities
  106. [webapps] - Privacy Pro v1.2 HZ iOS - Local File Inclusion
  107. [webapps] - TigerCom My Assistant 1.1 iOS - Local File Inclusion
  108. [webapps] - AllReader 1.0 iOS - Multiple Vulnerabilities
  109. [webapps] - Files Desk Pro v1.4 iOS - Local File Inclusion
  110. [webapps] - NG WifiTransfer Pro 1.1 - Local File Inclusion
  111. [webapps] - PHPBTTracker+ 2.2 - SQL Injection
  112. [local] - dbus-glib pam_fprintd - Local Root Exploit
  113. [webapps] - Wordpress Participants Database 1.5.4.8 - SQL Injection
  114. [papers] - [Hebrew] Digital Whisper Security Magazine #51
  115. [remote] - Easy File Management Web Server v5.3 - UserID Remote Buffer Overflow (ROP)
  116. [webapps] - AuraCMS 3.0 - Multiple Vulnerabilities
  117. [local] - Ubuntu 12.04.0-2LTS x64 perf_swevent_init - Kernel Local Root Exploit
  118. [dos] - Microsoft Internet Explorer 11 - WeakMap Integer Divide-by-Zero
  119. [remote] - ElasticSearch Dynamic Script Arbitrary Java Execution
  120. [webapps] - Multiple Stored XSS in Mayan-EDMS web-based document management OS system
  121. [webapps] - Sharetronix 3.3 - Multiple Vulnerabilities
  122. [dos] - Wireshark CAPWAP Dissector - Denial of Service (msf)
  123. [remote] - TORQUE Resource Manager 2.5.x-2.5.13 - Stack Based Buffer Overflow Stub
  124. [webapps] - Web Terra 1.1 - books.cgi Remote Command Execution
  125. [remote] - Easy File Sharing FTP Server 3.5 - Stack Buffer Overflow
  126. [webapps] - Zyxel P-660HW-T1 v3 Wireless Router - CSRF Vulnerability
  127. [remote] - Symantec Workspace Streaming Arbitrary File Upload
  128. [webapps] - D-Link Routers - Multiple Vulnerabilities
  129. [local] - Linux kernel 3.14-rc1
  130. [dos] - Core FTP Server Version 1.2, build 535, 32-bit - Crash P.O.C.
  131. [webapps] - kesako script SQL Injection
  132. [webapps] - Binatone DT 850W Wireless Router - Multiple CSRF Vulnerabilities
  133. [remote] - Easy Address Book Web Server 1.6 - Stack Buffer Overflow
  134. [remote] - Easy File Management Web Server 5.3 - Stack Buffer Overflow
  135. [webapps] - SPIP - CMS < 3.0.9 / 2.1.22 / 2.0.23 - Privilege Escalation
  136. [remote] - AoA DVD Creator 2.6.2 - ActiveX Exploit
  137. [remote] - AoA Audio Extractor Basic 2.3.7 - ActiveX Exploit
  138. [papers] - Bypassing SSL Pinning on Android via Reverse Engineering
  139. [papers] - Reverse Engineering of x86 Linux Shellcodes the Easy Way
  140. [webapps] - SafeNet Sentinel Protection Server 7.0 - 7.4 and Sentinel Keys Server 1.0
  141. [local] - CyberLink Power2Go Essential 9.0.1002.0 - Registry SEH/Unicode Buffer Overf
  142. [webapps] - HP Release Control Authenticated XXE
  143. [remote] - AoA MP4 Converter 4.1.2 - ActiveX Exploit
  144. [webapps] - EGroupware 1.8.006 - Multiple Vulnerabilities
  145. [local] - check_dhcp - Nagios Plugins
  146. [dos] - Mozilla Firefox 29.0 - Null Pointer Dereference Vulnerability
  147. [dos] - Wireshark 1.10.7 - DoS PoC
  148. [webapps] - ElasticSearch Remote Code Execution
  149. [papers] - TP-Link TD-W89 Config File Download / Exploiting the Host
  150. [webapps] - Broadcom PIPA C211 - Sensitive Information Disclosure
  151. [remote] - Easy File Sharing Web Server 6.8 - Stack Buffer Overflow
  152. [dos] - TFTPD32 4.5 / TFTPD64 4.5 - DoS PoC
  153. [local] - Linux Kernel 3.3-3.8 - SOCK_DIAG Local Root Exploit
  154. [webapps] - AlienVault OSSIM 4.6.1 - Authenticated SQL Injection
  155. [webapps] - SpiceWorks 7.2.00174 - Persistent XSS Vulnerabilities
  156. [dos] - GOM Player 2.2.57.5189 (.ogg) - Crash PoC
  157. [dos] - JetAudio 8.1.1 (.ogg) - Crash PoC
  158. [webapps] - VM Turbo Operations Manager 4.5x - Directory Traversal
  159. [remote] - Adobe Flash Player Shader Buffer Overflow
  160. [remote] - Yokogawa CS3000 BKESimmgr.exe Buffer Overflow
  161. [remote] - Easy Chat Server 3.1 - Stack Buffer Overflow
  162. [webapps] - Skybox Security 6.3.x - 6.4.x - Multiple Information Disclosure
  163. [dos] - Skybox Security 6.3.x - 6.4.x - Multiple Denial Of Service Issue
  164. [local] - Python - Interpreter Heap Memory Corruption (PoC)
  165. [webapps] - Collabtive 1.2 - Stored XSS
  166. [webapps] - Cobbler 2.4.x - 2.6.x - LFI Vulnerability
  167. [papers] - SQL Injection in Insert, Update and Delete Statements
  168. [webapps] - OpenFiler 2.99.1 - Multiple persistent XSS Vulnerabilities
  169. [webapps] - OpenFiler 2.99.1 - Arbitrary Code Execution
  170. [webapps] - Collabtive 1.2 - SQL Injection
  171. [local] - Windows NTUserMessageCall Win32k Kernel Pool Overflow (Schlamperei)
  172. [remote] - Adobe Flash Player Integer Underflow Remote Code Execution
  173. [papers] - Windows Heap Overflow Exploitation
  174. [webapps] - TeamHelpdesk Customer Web Service (CWS) 8.3.5 & Technician Web Access (TW
  175. [webapps] - Seagate BlackArmor NAS - Multiple Vulnerabilities
  176. [webapps] - Crime24 Stealer Panel 1.0 - Multiple Vulnerabilities
  177. [webapps] - HP Laser Jet - JavaScript Persistent XSS via PJL Directory Traversal
  178. [webapps] - miSecureMessages 4.0.1 - Session Management & Authentication Bypass Vulne
  179. [webapps] - NETGEAR DGN2200 1.0.0.29_1.7.29_HotS - CSRF Vulnerability
  180. [remote] - AlienVault OSSIM SQL Injection and Remote Code Execution
  181. [remote] - Apache Struts ClassLoader Manipulation Remote Code Execution
  182. [remote] - F5 BIG-IQ 4.1.0.2013.0 - Privilege Escalation
  183. [papers] - [Hebrew] Digital Whisper Security Magazine #50
  184. [webapps] - Fritz!Box - Remote command Execution Exploit
  185. [webapps] - NETGEAR DGN2200 1.0.0.29_1.7.29_HotS - Stored XSS Vulnerability
  186. [papers] - Exploitation notes on CVE-2014-0160
  187. [webapps] - Beetel 450TC2 Router Admin Password CSRF Vulnerability
  188. [papers] - Introduction to Android Malware Analysis
  189. [remote] - Adobe Flash Player Type Confusion Remote Code Execution
  190. [webapps] - TRENDnet TEW-634GRU 1.00.23 - Multiple Vulnerabilities
  191. [webapps] - NULL NUKE CMS 2.2 - Multiple Vulnerabilities
  192. [papers] - [Turkish] WAF Bypass Methods
  193. [webapps] - GeoCore MAX DB Ver. 7.3.3 - Time-Based Blind Injection
  194. [webapps] - Wordpress iMember360 Plugin 3.8.012 - 3.9.001 - Multiple Vulnerabilities
  195. [local] - Wireshark
  196. [remote] - McAfee ePolicy Orchestrator 4.6.0-4.6.5 (ePowner) - Multiple Vulnerabiliti
  197. [webapps] - Adem 0.5.1 - Local File Inclusion
  198. [dos] - NTP ntpd monlist Query Reflection - Denial of Service
  199. [dos] - Symantec Endpoint Protection Manager 12.1.x - SEH Overflow POC
  200. [dos] - cFos Personal Net 3.09 - Remote Heap Memory Corruption Denial of Service
  201. [webapps] - Depot WiFi 1.0.0 iOS - Multiple Vulnerabilities
  202. [remote] - Kolibri 2.0 GET Request - Stack Buffer Overflow
  203. [webapps] - ApPHP MicroBlog 1.0.1 - Multiple Vulnerability (LFI/RCE)
  204. [local] - JRuby Sandbox 0.2.2 - Sandbox Escape
  205. [remote] - Kolibri 2.0 GET Request - Stack Buffer Overflow
  206. [webapps] - Wordpress Work-The-Flow Plugin 1.2.1 - Arbitrary File Upload
  207. [remote] - Heartbleed OpenSSL - Information Leak Exploit (2) - DTLS Support
  208. [remote] - Acunetix 8 build 20120704 - Remote Stack Based Overflow
  209. [webapps] - Bonefire v.0.7.1 - Reinstall Admin Account Exploit
  210. [webapps] - dompdf 0.6.0 (dompdf.php, read param) - Arbitrary File Read
  211. [webapps] - WD Arkeia Virtual Appliance 10.2.9 - Local File Inclusion
  212. [webapps] - AlienVault 4.3.1 - Unauthenticated SQL Injection
  213. [papers] - [EZINE] (FuckTheSystem) FTS Zine 5
  214. [webapps] - kitForm CRM Extension 0.43 (sorter.php, sorter_value param) - SQL Injecti
  215. [webapps] - Sixnet Sixview 2.4.1 - Web Console Directory Traversal
  216. [webapps] - No-CMS 0.6.6 rev 1 - Admin Account Hijacking / RCE Exploit via Static Enc
  217. [remote] - Adobe Flash Player Regular Expression Heap Overflow
  218. [webapps] - Teracom Modem T2-B-Gawv1.4U10Y-BI - CSRF Vulnerability
  219. [webapps] - PTCeffect 4.6 - LFI & SQL Injection Vulnerabilities
  220. [remote] - Sercomm TCP/32674 Backdoor Reactivation
  221. [webapps] - CMSimple 4.4, 4.4.2 - Remote File Inclusion
  222. [remote] - NRPE
  223. [dos] - Linux group_info refcounter - Overflow Memory Corruption
  224. [dos] - Jzip SEH Unicode Buffer Overflow (Denial of Service)
  225. [remote] - SAP Router - Timing Attack Password Disclosure
  226. [remote] - MS14-012 Microsoft Internet Explorer CMarkup Use-After-Free
  227. [remote] - Unitrends Enterprise Backup 7.3.0 - Unauthenticated Root RCE
  228. [webapps] - Xerox DocuShare - SQL Injection
  229. [webapps] - NETGEAR N600 WIRELESS DUAL BAND WNDR3400 - Multiple Vulnerabilities
  230. [local] - Adobe Reader for Android 11.1.3 - Arbitrary JavaScript Execution
  231. [webapps] - Wordpress Quick Page/Post Redirect Plugin 5.0.3 - Multiple Vulnerabilitie
  232. [webapps] - Wordpress Twitget Plugin 3.3.1 - Multiple Vulnerabilities
  233. [webapps] - eScan Web Management Console Command Injection
  234. [webapps] - WordPress Theme LineNity 1.20 - Local File Inclusion
  235. [webapps] - PDF Album v1.7 iOS - File Include Web Vulnerability
  236. [dos] - WhatsApp < v2.11.7 - Remote Crash
  237. [webapps] - Sagem Fast 3304-V2 - Authentification Bypass
  238. [local] - Internet Explorer 10 & Adobe Flash Player (12.0.0.70, 12.0.0.77) - CMarkup
  239. [webapps] - CubeCart 5.2.8 - Session Fixation
  240. [webapps] - Microweber CMS 0.93 - CSRF Vulnerability
  241. [local] - Apple Mac OS X Lion Kernel
  242. [webapps] - Sendy 1.1.9.1 - SQL Injection Vulnerability
  243. [webapps] - XCloner Standalone 3.5 - CSRF Vulnerability
  244. [remote] - Heartbleed OpenSSL Information Leak Exploit
  245. [webapps] - Orbit Open Ad Server 1.1.0 - SQL Injection
  246. [local] - MS14-017 Microsoft Word RTF Object Confusion
  247. [remote] - Vtiger Install Unauthenticated Remote Command Execution
  248. [remote] - Sophos Web Protection Appliance Interface Authenticated Arbitrary Command
  249. [webapps] - QuickCms 5.4 - Multiple Vulnerabilites
  250. [remote] - GSC Client 1.00 2067 - Privilege Escalation Vulnerability