المساعد الشخصي الرقمي

مشاهدة النسخة كاملة : exploit database


الصفحات : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 [45] 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63

  1. [shellcode] - All Windows Null-Free Shellcode - Functional Keylogger to File - 601 (0
  2. [remote] - Ruby on Rails Development Web Console (v2) Code Execution
  3. [local] - ImageMagick Delegate Arbitrary Command Execution
  4. [dos] - RPCScan 2.03 - Hostname/IP Field SEH Overwrite PoC
  5. [local] - Windows 7 - WebDAV Privilege Escalation Exploit (MS16-016) #2
  6. [papers] - [Persian] Ollydbg Tutorial v 1.10
  7. [local] - Certec EDV atvise SCADA Server 2.5.9 - Privilege Escalation
  8. [dos] - ASUS Memory Mapping Driver (ASMMAP/ASMMAP64): Physical Memory Read/Write
  9. [webapps] - ZeewaysCMS - Multiple Vulnerabilities
  10. [remote] - Dell SonicWall Scrutinizer
  11. [local] - i.FTP 2.21 - Host Address / URL Field SEH Exploit
  12. [webapps] - Ajaxel CMS 8.0 - Multiple Vulnerabilities
  13. [shellcode] - Windows Null-Free Shellcode - Primitive Keylogger to File - 431 (0x01AF
  14. [shellcode] - Linux x86_64 Shellcode - Reverse TCP (ipv6)
  15. [shellcode] - Linux x86_64 Shellcode - Bind TCP Port 1472 (ipv6)
  16. [shellcode] - Linux x86 Shellcode - Bind TCP Port 1472 (ipv6)
  17. [webapps] - ManageEngine Applications Manager Build 12700 - Multiple Vulnerabilities
  18. [dos] - Adobe Flash - MovieClip.duplicateMovieClip Use-After-Free
  19. [dos] - Adobe Flash - Use-After-Free When Rendering Displays From Multiple Scripts
  20. [webapps] - DotNetNuke 07.04.00 - Administration Authentication Bypass
  21. [dos] - CIScan 1.00 - Hostname/IP Field Crash PoC
  22. [dos] - RPCScan 2.03 - Hostname/IP Field Crash PoC
  23. [dos] - Baidu Spark Browser 43.23.1000.476 - Address Bar URL Spoofing
  24. [dos] - Linux (Ubuntu 16.04) - Reference Count Overflow Using BPF Maps
  25. [local] - Linux Kernel 4.4.x (Ubuntu 16.04) - Use-After-Free via double-fdput() in bp
  26. [dos] - Linux (Ubuntu 14.04.3) - perf_event_open() Can Race with execve() (/etc/shado
  27. [dos] - McAfee LiveSafe 14.0 - Relocations Processing Memory Corruption
  28. [local] - Zabbix Agent 3.0.1 - mysql.size Shell Command Injection
  29. [dos] - OpenSSL Padding Oracle in AES-NI CBC MAC Check
  30. [dos] - ImageMagick < 6.9.3-9 - Multiple Vulnerabilities
  31. [webapps] - PHP Imagick 3.3.0 - disable_functions Bypass
  32. [webapps] - IPFire < 2.19 Core Update 101 - Remote Command Execution
  33. [local] - TRN Threaded USENET News Reader 3.6-23 - Local Stack-Based Overflow
  34. [webapps] - NetCommWireless HSPA 3G10WVE Wireless Router – Multiple Vulnerabilities
  35. [webapps] - Acunetix WP Security Plugin 3.0.3 - XSS
  36. [webapps] - CMS Made Simple < 2.1.3 & < 1.12.1 - Web Server Cache Poisoning
  37. [webapps] - Alibaba Clone B2B Script - Admin Authentication Bypass
  38. [local] - QSEE - PRDiag* Commands Privilege Escalation Exploit
  39. [remote] - Apache Struts Dynamic Method Invocation Remote Code Execution
  40. [remote] - Acunetix WVS 10 - Remote Command Execution (System)
  41. [shellcode] - .Net Framework Execute Native x86 Shellcode
  42. [webapps] - WordPress Ghost Plugin 0.5.5 - Unrestricted Export Download
  43. [shellcode] - Linux x86 Reverse TCP Shellcode (ipv6)
  44. [webapps] - GLPi 0.90.2 - SQL Injection
  45. [dos] - Wireshark - ett_zbee_zcl_pwr_prof_enphases Static Out-of-Bounds Read
  46. [dos] - Wireshark - alloc_address_wmem Assertion Failure
  47. [dos] - Wireshark - dissect_2008_16_security_4 Stack-Based Buffer Overflow
  48. [dos] - Rough Auditing Tool for Security (RATS) 2.3 - Array Out of Block Crash
  49. [webapps] - Merit Lilin IP Cameras - Multiple Vulnerabilities
  50. [webapps] - Observium 0.16.7533 - Authenticated Arbitrary Command Execution
  51. [webapps] - Observium 0.16.7533 - Cross Site Request Forgery
  52. [dos] - Windows Kernel - win32k.sys TTF Processing EBLC / EBSC Tables Pool Corruption
  53. [remote] - PHP 7.0.5 - ZipArchive::getFrom* Integer Overflow
  54. [local] - Mach Race OS X Local Privilege Escalation Exploit
  55. [dos] - Windows - CSRSS BaseSrvCheckVDM Session 0 Process Creation Privilege Escalati
  56. [webapps] - Multiple Vendors (RomPager
  57. [webapps] - EMC ViPR SRM - Cross-Site Request Forgery
  58. [webapps] - ImpressCMS 1.3.9 - SQL Injection
  59. [remote] - libgd 2.1.1 - Signedness Heap Overflow
  60. [remote] - Advantech WebAccess Dashboard Viewer Arbitrary File Upload
  61. [local] - Yasr Screen Reader 0.6.9 - Local Buffer Overflow
  62. [dos] - Rough Auditing Tool for Security (RATS) 2.3 - Crash PoC
  63. [papers] - [Turkish] Privilege Escalation Vectors On Windows Systems
  64. [webapps] - NationBuilder Multiple Stored XSS Vulnerabilities
  65. [remote] - PCMan FTP Server 2.0.7 - RENAME Command Buffer Overflow (MSF)
  66. [shellcode] - Linux x64 - Bind Shell Shellcode Generator
  67. [local] - CompuSource Systems - Real Time Home Banking - Local Privilege Escalation
  68. [webapps] - Gemtek CPE7000 - WLTCS-106 sysconf.cgi Unauthenticated Remote Command Exe
  69. [webapps] - Gemtek CPE7000 - WLTCS-106 Administrator SID Retriever (MSF)
  70. [webapps] - C/C++ Offline Compiler and C For OS - Persistent XSS
  71. [webapps] - Totemomail 4.x and 5.x - Persistent XSS
  72. [local] - Microsoft Windows 7-10 & Server 2008-2012 - Local Privilege Escalation (x32
  73. [shellcode] - Linux/x86_64 - bindshell (Port 5600) - 86 bytes
  74. [papers] - Phorum 5.2.20 - Multiple Vulnerabilities
  75. [webapps] - Gemtek CPE7000 / WLTCS-106 - Multiple Vulnerabilities
  76. [webapps] - Symantec Brightmail 10.6.0-7- LDAP Credentials Disclosure
  77. [webapps] - phpLiteAdmin 1.9.6 - Multiple Vulnerabilities
  78. [webapps] - Webutler CMS 3.2 - Cross-Site Request Forgery
  79. [dos] - Hyper-V - vmswitch.sys VmsMpCommonPvtHandleMulticastOids Guest to Host Kernel
  80. [dos] - Windows Kernel - DrawMenuBarTemp Wild-Write (MS16-039)
  81. [webapps] - PHPBack 1.3.0 - SQL Injection
  82. [webapps] - modified eCommerce Shopsoftware 2.0.0.0 rev 9678 - Blind SQL Injection
  83. [webapps] - pfSense Community Edition 2.2.6 - Multiple Vulnerabilities
  84. [remote] - Novell ServiceDesk Authenticated File Upload
  85. [dos] - TH692 Outdoor P2P HD Waterproof IP Camera - Hard Coded Credentials
  86. [webapps] - WordPress Kento Post View Counter Plugin 2.8 - CSRF/XSS
  87. [webapps] - WordPress leenk.me Plugin 2.5.0 - CSRF/XSS
  88. [local] - Exim "perl_startup" Privilege Escalation
  89. [webapps] - AirOS 6.x - Arbitrary File Upload
  90. [shellcode] - Linux/x86_64 - Read /etc/passwd - 65 bytes
  91. [remote] - Internet Explorer 9, 10, 11 - CDOMStringDataList::InitFromString Out-of-Bo
  92. [webapps] - PHPmongoDB 1.0.0 - Multiple Vulnerabilities
  93. [webapps] - Brickcom Corporation Network Cameras - Multiple Vulnerabilities
  94. [webapps] - pfSense Firewall
  95. [dos] - Microsoft Office Excel Out-of-Bounds Read Remote Code Execution (MS16-042)
  96. [remote] - Dell KACE K1000 File Upload
  97. [local] - Texas Instrument Emulator 3.03 - Local Buffer Overflow
  98. [webapps] - Oracle Application Testing Suite 12.4.0.2.0 - Authentication Bypass and A
  99. [papers] - Avactis PHP Shopping Cart - Multiple Vulnerabilities
  100. [papers] - [Persian] XML Injection
  101. [webapps] - Ovidentia troubleticketsModule 7.6 - Remote File Inclusion
  102. [webapps] - Novell Service Desk 7.1.0, 7.0.3 and 6.5 - Multiple Vulnerabilities
  103. [dos] - Android - IMemory Native Interface is Insecure for IPC Use
  104. [dos] - Android - IOMX getConfig/getParameter Information Disclosure
  105. [shellcode] - Linux/x86_64 - bindshell (PORT: 5600) - 81 bytes
  106. [webapps] - Axis Network Cameras - Multiple Vulnerabilities
  107. [local] - CAM UnZip 5.1 - Archive Path Traversal
  108. [webapps] - OpenCart 2.1.0.2 to 2.2.0.0 - json_decode Function Remote Code Execution
  109. [webapps] - WPN-XM Serverstack 0.8.6 - Cross Site Request Forgery
  110. [webapps] - Hikvision Digital Video Recorder - Cross-Site Request Forgery
  111. [webapps] - op5 7.1.9 - Remote Command Execution
  112. [local] - Apple Intel HD 3000 Graphics driver 10.0.0 - Local Privilege Escalation
  113. [local] - Express Zip
  114. [local] - Mess Emulator 0.154-3.1 - Local Buffer Overflow
  115. [webapps] - PLANET Technology IP Surveillance Cameras - Multiple Vulnerabilities
  116. [local] - Panda Security URL Filtering < 4.3.1.9 - Privilege Escalation
  117. [dos] - Linux x86 - Disable ASLR by Setting the RLIMIT_STACK Resource to Unlimited
  118. [webapps] - SocialEngine 4.8.9 - SQL Injection
  119. [webapps] - Asbru Web Content Management System 9.2.7 - Multiple Vulnerabilities
  120. [local] - Windows Kernel Win32k.sys Privilege Escalation Exploit (MS14-058)
  121. [papers] - Windows Kernel Exploitation 101: Exploiting CVE-2014-4113
  122. [webapps] - ManageEngine Password Manager Pro 8102 to 8302 - Multiple Vulnerabilities
  123. [remote] - PCMAN FTP Server Buffer Overflow - PUT Command
  124. [remote] - Easy File Sharing HTTP Server 7.2 SEH Overflow
  125. [papers] - A New CVE-2015-0057 Exploit Technology
  126. [webapps] - PQI Air Pen Express 6W51-0000R2 and 6W51-0000R2XXX - Multiple Vulnerabili
  127. [papers] - Exploiting Buffer Overflows on MIPS Architecture
  128. [dos] - Hexchat IRC Client 2.11.0 - CAP LS Handling Buffer Overflow
  129. [local] - Hexchat IRC Client 2.11.0 - Directory Traversal
  130. [dos] - Xion Audio Player
  131. [webapps] - WordPress Advanced Video Plugin 1.0 - Local File Inclusion (LFI)
  132. [dos] - PHP 5.5.33 - Invalid Memory Write
  133. [dos] - Adobe Flash - Color.setTransform Use-After-Free
  134. [dos] - Android - ih264d_process_intra_mb Memory Corruption
  135. [dos] - Adobe Flash - TextField.maxChars Use-After-Free
  136. [dos] - Adobe Flash - URLStream.readObject Use-After-Free
  137. [dos] - Windows Kernel - NtGdiGetTextExtentExW Out-of-Bounds Memory Read
  138. [dos] - Windows Kernel - Bitmap Use-After-Free
  139. [remote] - PHP
  140. [dos] - Wireshark - dissect_pktc_rekey Heap-based Out-of-Bounds Read
  141. [remote] - Apache Jetspeed Arbitrary File Upload
  142. [webapps] - Apache OpenMeetings 1.9.x - 3.1.0 - ZIP File path Traversal
  143. [webapps] - MOBOTIX Video Security Cameras - CSRF Add Admin Exploit
  144. [remote] - Metaphor - Stagefright Exploit with ASLR Bypass
  145. [remote] - ATutor 2.2.1 Directory Traversal / Remote Code Execution
  146. [dos] - Kamailio 4.3.4 - Heap-Based Buffer Overflow
  147. [webapps] - CubeCart 6.0.10 - Multiple Vulnerabilities
  148. [dos] - Apple Quicktime < 7.7.79.80.95 - PSD File Parsing Memory Corruption
  149. [dos] - Apple Quicktime < 7.7.79.80.95 - FPX File Parsing Memory Corruption 2
  150. [dos] - Apple Quicktime < 7.7.79.80.95 - FPX File Parsing Memory Corruption 1
  151. [webapps] - WordPress Photocart Link Plugin 1.6 - Local File Inclusion
  152. [webapps] - Wordpress Plugin IMDb Profile Widget 1.0.8 - Local File Inclusion
  153. [remote] - LShell
  154. [remote] - Adobe Flash - Object.unwatch Use-After-Free Exploit
  155. [local] - Cogent Datahub
  156. [dos] - Android One mt_wifi IOCTL_GET_STRUCT Privilege Escalation
  157. [local] - FireEye - Privilege Escalation to root from Malware Input Processor (uid=mi
  158. [dos] - TallSoft SNMP TFTP Server 1.0.0 - Denial of Service
  159. [shellcode] - Linux/x86_x64 - execve(/bin/bash) - 33 bytes
  160. [shellcode] - Linux/x86_x64 - execve(/bin/sh) - 25 bytes
  161. [webapps] - Trend Micro Deep Discovery Inspector 3.8, 3.7 - CSRF Vulnerabilities
  162. [webapps] - Liferay Portal 5.1.2 - Persistent XSS
  163. [webapps] - Monstra CMS 3.0.3 - Multiple Vulnerabilities
  164. [shellcode] - Linux/x86_x64 - execve(/bin/sh) - 26 bytes
  165. [dos] - OS X Kernel Use-After-Free and Double Delete Due to Incorrect Locking in Inte
  166. [dos] - OS X Kernel - AppleKeyStore Use-After-Free
  167. [dos] - Adobe Flash - Uninitialized Stack Parameter Access in MovieClip.swapDepths Ua
  168. [dos] - Adobe Flash - Uninitialized Stack Parameter Access in Object.unwatch UaF Fix
  169. [dos] - Adobe Flash - Uninitialized Stack Parameter Access in AsBroadcaster.broadcast
  170. [dos] - Adobe Flash - Sprite Creation Use-After-Free
  171. [dos] - Adobe Flash - Zlib Codec Heap Overflow
  172. [dos] - Adobe Flash - Shape Rendering Crash
  173. [dos] - OS X Kernel - Code Execution Due to Lack of Bounds Checking in AppleUSBPipe::
  174. [dos] - Wireshark - dissect_ber_integer Static Out-of-Bounds Write
  175. [dos] - Comodo - Integer Overlow Leading to Heap Overflow Parsing Composite Documents
  176. [dos] - Comodo - LZMA Decoder Heap Overflow via Insufficient Parameter Checks
  177. [dos] - Comodo - PackMan Unpacker Insufficient Parameter Validation
  178. [dos] - Avira - Heap Underflow Parsing PE Section Headers
  179. [remote] - Comodo Antivirus Forwards Emulated API Calls to the Real API During Scans
  180. [webapps] - MiCollab 7.0 - SQL Injection Vulnerability
  181. [remote] - Multiple CCTV-DVR Vendors - Remote Code Execution
  182. [local] - OS X / iOS Suid Binary Logic Error Kernel Code Execution
  183. [webapps] - WordPress Memphis Document Library Plugin 3.1.5 - Arbitrary File Download
  184. [webapps] - WordPress Dharma booking Plugin 2.38.3 - File Inclusion Vulnerability
  185. [webapps] - WordPress Brandfolder Plugin 3.0 - RFI / LFI Vulnerability
  186. [webapps] - Joomla Easy Youtube Gallery 1.0.2 - SQL Injection Vulnerability
  187. [webapps] - WordPress HB Audio Gallery Lite Plugin 1.0.0 - Arbitrary File Download
  188. [webapps] - ProjectSend r582 - Multiple XSS Vulnerabilities
  189. [webapps] - iTop 2.2.1 - CSRF Vulnerability
  190. [webapps] - Dating Pro Genie 2015.7 - CSRF Vulnerabilities
  191. [remote] - Sysax Multi Server 6.50 - HTTP File Share SEH Overflow RCE Exploit
  192. [local] - Internet Download Manager 6.25 Build 14 - 'Find file' Unicode SEH Exploit
  193. [webapps] - WordPress Image Export Plugin 1.1.0 - Arbitrary File Disclosure
  194. [webapps] - Xoops 2.5.7.2 - Directory Traversal Bypass
  195. [webapps] - Xoops 2.5.7.2 - Arbitrary User Deletions CSRF
  196. [webapps] - D-Link DWR-932 Firmware 4.00 - Authentication Bypass
  197. [webapps] - Disc ORGanizer - DORG - Multiple Vulnerabilities
  198. [webapps] - WordPress Abtest Plugin - Local File Inclusion
  199. [webapps] - WordPress Import CSV Plugin 1.0 - Directory Traversal
  200. [webapps] - WordPress eBook Download Plugin 1.1 - Directory Traversal
  201. [local] - Windows - Secondary Logon Standard Handles Missing Sanitization Privilege E
  202. [webapps] - Wildfly - WEB-INF and META-INF Information Disclosure via Filter Restrict
  203. [webapps] - PivotX 2.3.11 - Directory Traversal
  204. [webapps] - Zenphoto 1.4.11 - Remote File Inclusion
  205. [dos] - FreeBSD 10.2 amd64 Kernel - amd64_set_ldt Heap Overflow
  206. [remote] - OpenSSH
  207. [remote] - Cisco UCS Manager 2.1(1b) - Shellshock Exploit
  208. [dos] - Netwrix Auditor 7.1.322.0 - ActiveX (sourceFile) Stack Buffer Overflow
  209. [webapps] - AKIPS Network Monitor 15.37 through 16.5 - OS Command Injection
  210. [webapps] - Kaltura Community Edition
  211. [dos] - Internet Explorer - Read AV in MSHTML!Layout::LayoutBuilderDivider::BuildPage
  212. [dos] - Windows Kernel ATMFD.DLL OTF Font Processing Stack Corruption (MS16-026)
  213. [dos] - Windows Kernel ATMFD.DLL OTF Font Processing Pool-Based Buffer Overflow (MS16
  214. [webapps] - TeamPass 2.1.24 - Multiple Vulnerabilities
  215. [webapps] - Wordpress Site Import Plugin 1.0.1 - Local and Remote File Inclusion
  216. [dos] - Zortam Mp3 Media Studio 20.15 - SEH Overflow DoS
  217. [dos] - RHEL 7.1 Kernel - iowarrior driver Crash PoC
  218. [dos] - RHEL 7.1 Kernel - snd-usb-audio Crash PoC
  219. [remote] - PHP Utility Belt Remote Code Execution
  220. [webapps] - WordPress DZS Videogallery Plugin
  221. [webapps] - Wordpress Beauty & Clean Theme 1.0.8 - Arbitrary File Upload Vulnerabilit
  222. [dos] - Putty pscp
  223. [dos] - libotr
  224. [local] - Exim < 4.86.2 - Local Root Privilege Escalation
  225. [webapps] - WordPress WP Advanced Comment Plugin 0.10 - Persistent XSS
  226. [webapps] - WordPress Best Web Soft Captcha Plugin
  227. [dos] - Nitro Pro
  228. [dos] - Linux - netfilter IPT_SO_SET_REPLACE Memory Corruption
  229. [webapps] - WordPress SiteMile Project Theme 2.0.9.5 - Multiple Vulnerabilities
  230. [local] - exim
  231. [local] - McAfee VirusScan Enterprise 8.8 - Security Restrictions Bypass
  232. [papers] - Metaphor - A (real) real-*life Stagefright exploit
  233. [local] - Microsoft Windows - AFD.SYS Privilege Escalation (MS14-040) Win7x64
  234. [webapps] - ATutor LMS install_modules.php CSRF Remote Code Execution Vulnerability
  235. [local] - AppLocker Execution Prevention Bypass
  236. [remote] - Schneider Electric SBO / AS - Multiple Vulnerabilities
  237. [webapps] - WordPress Bulk Delete Plugin 5.5.3 - Privilege Escalation
  238. [dos] - PictureTrails Photo Editor GE.exe 2.0.0 - .bmp Crash PoC
  239. [local] - Secret Net 7 and Secret Net Studio 8 - Local Privilege Escalation
  240. [shellcode] - x86 Windows Null-Free Download & Run via WebDAV Shellcode (96 bytes)
  241. [dos] - Freeproxy Internet Suite 4.10 - Denial of Service
  242. [dos] - Quick Tftp Server Pro 2.3 - Read Mode Denial of Service
  243. [remote] - NETGEAR ProSafe Network Management System 300 Arbitrary File Upload
  244. [remote] - ATutor 2.2.1 SQL Injection / Remote Code Execution
  245. [webapps] - WordPress CP Polls Plugin 1.0.8 - Multiple Vulnerabilities
  246. [dos] - Viscomsoft Calendar Active-X 2.0 - Multiple Crash PoCs
  247. [papers] - [Hebrew] Digital Whisper Security Magazine #70
  248. [local] - Crouzet em4 soft 1.1.04 and M3 soft 3.1.2.0 - Insecure File Permissions
  249. [dos] - Crouzet em4 soft 1.1.04 - .pm4 Integer Division By Zero
  250. [local] - Comodo Anti-Virus SHFolder.DLL - Local Privilege Elevation Exploit