المساعد الشخصي الرقمي

مشاهدة النسخة كاملة : exploit database


الصفحات : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 [49] 50 51 52 53 54 55 56 57 58 59

  1. [webapps] - MyBB User Social Networks Plugin 1.2 - Stored XSS
  2. [webapps] - Wordpress Plugins Premium Gallery Manager Unauthenticated Configuration A
  3. [webapps] - vBulletin 4.0.x - 4.1.2 (search.php, cat param) - SQL Injection Exploit
  4. [webapps] - Wordpress Huge-IT Image Gallery 1.0.1 Authenticated SQL Injection
  5. [webapps] - ManageEngine EventLog Analyzer Multiple Vulnerabilities
  6. [webapps] - ManageEngine Desktop Central - Arbitrary File Upload / RCE
  7. [remote] - Wing FTP Server Authenticated Command Execution
  8. [papers] - Outsmarted - Why Malware Works in face of Antivirus Software
  9. [papers] - [Spanish] Design and Implementation of a Voice Encryption System for Telep
  10. [webapps] - WordPress Slideshow Gallery Plugin 1.4.6 - Shell Upload Vulnerability
  11. [webapps] - Arachni Web Application Scanner Web UI - Stored XSS Vulnerability
  12. [webapps] - Mulitple WordPress Themes (admin-ajax.php, img param) - Arbitrary File Do
  13. [remote] - NRPE 2.15 - Remote Code Execution Vulnerability
  14. [remote] - F5 Big-IP - Unauthenticated rsync Access
  15. [local] - HTML Help Workshop 1.4 - (SEH) Buffer Overflow
  16. [dos] - Internet Explorer MS14-029 Memory Corruption PoC
  17. [webapps] - Plogger 1.0-RC1 - Authenticated Arbitrary File Upload
  18. [remote] - Firefox WebIDL Privileged Javascript Injection
  19. [webapps] - ManageEngine DeviceExpert 5.9 - User Credential Disclosure
  20. [webapps] - ActualAnalyzer Lite 2.81 - Unauthenticated Command Execution
  21. [webapps] - PhpWiki - Remote Command Execution
  22. [webapps] - XRMS - Blind SQL Injection and Command Execution
  23. [webapps] - WordPress ShortCode Plugin 1.1 - Local File Inclusion Vulnerability
  24. [webapps] - WooCommerce Store Exporter 1.7.5 - SXSS and RXSS
  25. [local] - glibc Off-by-One NUL Byte gconv_translit_find Exploit
  26. [webapps] - ntopng 1.2.0 - XSS Injection
  27. [webapps] - VTLS Virtua InfoStation.cgi - SQL Injection
  28. [webapps] - ManageEngine Password Manager MetadataServlet.dat SQL Injection
  29. [webapps] - Innovaphone PBX Admin-GUI - CSRF Vulnerability
  30. [remote] - Air Transfer Iphone 1.3.9 - Multiple Vulnerabilities
  31. [local] - BlazeDVD Pro 7.0 (.plf) - Buffer Overflow (SEH)
  32. [remote] - HybridAuth install.php PHP Code Execution
  33. [webapps] - MyBB 1.8 Beta 3 - Multiple Vulnerabilities
  34. [remote] - Gitlab-shell Code Execution
  35. [remote] - Firefox toString console.time Privileged Javascript Injection
  36. [webapps] - Feng Office - Stored XSS
  37. [webapps] - Tenda A5s Router 3.02.05_CN - Authentication Bypass Vulnerability
  38. [remote] - VirtualBox 3D Acceleration Virtual Machine Escape
  39. [remote] - VMTurbo Operations Manager 4.6 vmtadmin.cgi Remote Command Execution
  40. [webapps] - Disqus for Wordpress 2.7.5 Admin Stored CSRF and XSS
  41. [local] - VirtualBox Guest Additions VBoxGuest.sys Privilege Escalation
  42. [webapps] - HybridAuth 2.2.2 - Remote Code Execution
  43. [local] - BlazeDVD Pro 7.0 - (.plf) Stack Based Buffer Overflow (Direct RET)
  44. [webapps] - TomatoCart 1.x - SQL Injection Vulnerability
  45. [dos] - Sky Broadband Router SR101 - Weak WPA-PSK Generation Algorithm
  46. [dos] - SHARP MX Series - Denial of Service
  47. [webapps] - Easy FTP Pro 4.2 iOS - Command Injection Vulnerabilities
  48. [papers] - [Romanian] Stack Based Buffer Overflow
  49. [webapps] - PhotoSync Wifi & Bluetooth 1.0 - File Include Vulnerability
  50. [webapps] - Pro Chat Rooms 8.2.0 - Multiple Vulnerabilities
  51. [local] - Symantec Endpoint Protection 11.x, 12.x - Kernel Pool Overflow
  52. [shellcode] - Shellcode Linux x86 - chmod (777 /etc/passwd & /etc/shadow), Add New Ro
  53. [webapps] - Video WiFi Transfer 1.01 - Directory Traversal Vulnerability
  54. [webapps] - FreeDisk v1.01 iOS - Multiple Vulnerabilities
  55. [webapps] - TP-Link TL-WR740N v4 Router (FW-Ver. 3.16.6 Build 130529 Rel.47286n) - Co
  56. [webapps] - ArticleFR 11.06.2014 (data.php) - Privilege Escalation
  57. [webapps] - Photo WiFi Transfer 1.01 - Directory Traversal Vulnerability
  58. [webapps] - Status2k Server Monitoring Software - Multiple Vulnerabilities
  59. [webapps] - ISPConfig 3.0.54p1 - Authenticated Admin Local root Vulnerability
  60. [webapps] - TigerCom iFolder+ v1.2 iOS - Multiple Vulnerabilities
  61. [webapps] - Sphider Search Engine - Multiple Vulnerabilities
  62. [webapps] - D-Link AP 3200 Multiple Vulnerabilities
  63. [webapps] - SkaDate Lite 2.0 - Remote Code Execution Exploit
  64. [webapps] - SkaDate Lite 2.0 - Multiple CSRF And Persistent XSS Vulnerabilities
  65. [webapps] - Sphider 1.3.6 - Multiple Vulnerabilities
  66. [webapps] - Dlink DWR-113 Rev. Ax - CSRF Denial of Service
  67. [webapps] - WiFi HD v7.3.0 iOS - Multiple Vulnerabilities
  68. [papers] - [Turkish] SQLMap CSRF Bypass
  69. [remote] - Oxwall 1.7.0 - Remote Code Execution Exploit
  70. [webapps] - Oxwall 1.7.0 - Multiple CSRF And HTML Injection Vulnerabilities
  71. [webapps] - Ubiquiti UbiFi / mFi / AirVision - CSRF Vulnerability
  72. [webapps] - DirPHP 1.0 - LFI Vulnerability
  73. [webapps] - Sagem Fast 3304-V1 - Denial Of Service Vulnerability
  74. [webapps] - ZeroCMS 1.0 - Persistent Cross-Site Scripting Vulnerability
  75. [webapps] - Moodle 2.7 - Persistent XSS
  76. [webapps] - Pligg 2.0.1 - Multiple Vulnerabilities
  77. [local] - MQAC.sys Arbitrary Write Privilege Escalation
  78. [webapps] - Zenoss Monitoring System 4.2.5-2108 64bit - Stored XSS
  79. [dos] - Make 3.81 - Heap Overflow PoC
  80. [webapps] - Lian Li NAS - Multiple Vulnerabilities
  81. [dos] - BulletProof FTP Client 2010 - Buffer Overflow (SEH)
  82. [remote] - Omeka 2.2.1 - Remote Code Execution Exploit
  83. [webapps] - Wordpress Video Gallery Plugin 2.5 - Multiple Vulnerabilities
  84. [webapps] - NETGEAR DGN2200 1.0.0.29_1.7.29_HotS - Password Disclosure vulnerability
  85. [webapps] - Barracuda Networks #35 Web Firewall 610 6.0.1 - Filter Bypass & Persisten
  86. [local] - Microsoft XP SP3 - BthPan.sys Arbitrary Write Privilege Escalation
  87. [shellcode] - Socket Re-use Shellcode for Linux x86 (50 bytes)
  88. [remote] - Kolibri WebServer 2.0 - GET Request SEH Exploit
  89. [webapps] - Aerohive HiveOS 5.1r5 - 6.1r5 - XSS & LFI Vulnerability
  90. [local] - Microsoft XP SP3 MQAC.sys - Arbitrary Write Privilege Escalation
  91. [shellcode] - Windows All Versions - Add Admin User Shellcode (194 bytes)
  92. [dos] - DjVuLibre
  93. [webapps] - Wordpress WP BackupPlus - Database And Files Backup Download (0day)
  94. [local] - Linux Kernel ptrace/sysret - Local Privilege Escalation
  95. [dos] - Apache 2.4.7 mod_status Scoreboard Handling Race Condition
  96. [remote] - IBM GCM16/32 1.20.0.22575 - Multiple Vulnerabilities
  97. [dos] - World Of Warcraft 3.3.5a (macros-cache.txt) - Stack Overflow
  98. [webapps] - Raritan PowerIQ 4.1.0 - SQL Injection Vulnerability
  99. [remote] - OpenVAS Manager 4.0 - Authentication Bypass Vulnerability PoC
  100. [webapps] - MTS MBlaze Ultra Wi-Fi / ZTE AC3633 - Multiple Vulnerabilities
  101. [webapps] - Bilboplanet 2.0 - Multiple XSS Vulnerabilities
  102. [webapps] - Barracuda Networks Message Archiver 650 - Persistent XSS Vulnerability
  103. [dos] - ACME micro_httpd - Denial of Service
  104. [webapps] - Omeka 2.2 - CSRF And Stored XSS Vulnerability
  105. [webapps] - Bitdefender GravityZone 5.1.5.386 - Multiple Vulnerabilities
  106. [webapps] - Joomla Youtube Gallery Component - SQL Injection Vulnerability
  107. [remote] - Boat Browser 8.0 and 8.0.1 - Remote Code Execution Vulnerability
  108. [dos] - Node Browserify 4.2.0 - Remote Code Execution Vulnerability
  109. [remote] - D-Link info.cgi POST Request Buffer Overflow
  110. [local] - OpenVPN Private Tunnel Core Service - Unquoted Service Path Elevation Of Pr
  111. [webapps] - Shopizer 1.1.5 - Multiple Vulnerabilities
  112. [remote] - HP Data protector manager 8.10 remote command execution
  113. [remote] - D-Link Unauthenticated UPnP M-SEARCH Multicast Command Injection
  114. [remote] - D-Link HNAP Request Remote Buffer Overflow
  115. [remote] - D-Link info.cgi POST Request Buffer Overflow
  116. [webapps] - Infoblox 6.8.2.11 - OS Command Injection
  117. [webapps] - C99.php Shell - Authentication Bypass
  118. [webapps] - Frog CMS 0.9.5 - Arbitrary File Upload
  119. [remote] - Yokogawa CS3000 BKFSim_vhfd.exe Buffer Overflow
  120. [webapps] - Dolibarr CMS 3.5.3 - Multiple Security Vulnerabilities
  121. [webapps] - Photo Org WonderApplications 8.3 iOS - File Include Vulnerability
  122. [remote] - Wordpress MailPoet (wysija-newsletters) Unauthenticated File Upload
  123. [remote] - Gitlist Unauthenticated Remote Command Execution
  124. [remote] - Oracle Event Processing FileUploadServlet Arbitrary File Upload
  125. [webapps] - FireEye Malware Analysis System (MAS) 6.4.1 - Multiple Vulnerabilities
  126. [webapps] - Netgear WNR1000v3 - Password Recovery Credential Disclosure Vulnerability
  127. [local] - Ubisoft Uplay 4.6 - Insecure File Permissions Local Privilege Escalation
  128. [dos] - Baidu Spark Browser v26.5.9999.3511 - Remote Stack Overflow Vulnerability (Do
  129. [papers] - [Hebrew] Digital Whisper Security Magazine #52
  130. [webapps] - Kerio Control 8.3.1 - Blind SQL Injection
  131. [webapps] - Zurmo CRM - Persistent XSS Vulnerability
  132. [remote] - Internet Explorer 8 - Fixed Col Span ID Full ASLR, DEP & EMET 4.1.X Bypass
  133. [dos] - Flussonic Media Server 4.1.25 - 4.3.3 - Aribtrary File Disclosure
  134. [webapps] - IBM Algorithmics RICOS 4.5.0 - 4.7.0 - Multiple Vulnerabilities
  135. [papers] - The Ultimate XSS Protection Cheat Sheet for Developers
  136. [papers] - Asterisk Phreaking How-To
  137. [papers] - Back To The Future: Unix Wildcards Gone Wild
  138. [remote] - Gitlist
  139. [local] - check_dhcp 2.0.2 (Nagios Plugins) - Arbitrary Option File Read Race Conditi
  140. [webapps] - Mailspect Control Panel 4.0.5 - Multiple Vulnerabilities
  141. [local] - chkrootkit 0.49 - Local Root Vulnerability
  142. [papers] - PoC || GTFO 0x04
  143. [webapps] - Endeca Latitude 2.2.2 - CSRF Vulnerability
  144. [webapps] - Wordpress Simple Share Buttons Adder Plugin 4.4 - Multiple Vulnerabilitie
  145. [webapps] - Mailspect Control Panel 4.0.5 - Multiple Vulnerabilities
  146. [webapps] - Python CGIHTTPServer Encoded Path Traversal
  147. [local] - MS13-097 Registry Symlink IE Sandbox Escape
  148. [local] - MS14-009 .NET Deployment Service IE Sandbox Escape
  149. [remote] - HP AutoPass License Server File Upload
  150. [webapps] - Lunar CMS 3.3 Unauthenticated Remote Command Execution Exploit
  151. [remote] - Cogent DataHub Command Injection
  152. [remote] - AlienVault OSSIM < 4.7.0 - av-centerd 'get_log_line()' Remote Code Executi
  153. [webapps] - Wordpress TimThumb 2.8.13 WebShot - Remote Code Execution (0-day)
  154. [papers] - Hacking Blind
  155. [dos] - Internet Explorer 8, 9 & 10 - CInput Use-After-Free (MS14-035) - Crash PoC
  156. [webapps] - Thomson TWG87OUIR - POST Password CSRF
  157. [remote] - AlienVault OSSIM av-centerd Command Injection
  158. [papers] - Android KeyStore Stack Buffer Overflow
  159. [remote] - D-Link hedwig.cgi Buffer Overflow in Cookie Header
  160. [remote] - D-Link authentication.cgi Buffer Overflow
  161. [papers] - Searching SHODAN For Fun And Profit
  162. [webapps] - ZeroCMS 1.0 - (zero_transact_article.php article_id POST parameter) SQL I
  163. [webapps] - Lunar CMS 3.3 - CSRF And Stored XSS Vulnerability
  164. [webapps] - Wordpress 3.9.1 - Page Persistent XSS
  165. [local] - Linux Kernel
  166. [webapps] - Wordpress 3.9.1 - CSRF vulnerabilities
  167. [webapps] - D-link DSL-2760U-E1 - Persistent XSS
  168. [webapps] - Cacti Superlinks Plugin 1.4-2 - SQL Injection
  169. [dos] - Kojoney 0.0.4.1 - 'urllib.urlopen()' Remote Denial of Service Vulnerability
  170. [webapps] - web2Project 3.1 - Multiple Vulnerabilities
  171. [remote] - Ericom AccessNow Server Buffer Overflow
  172. [local] - docker 0.11 VMM-container Breakout
  173. [remote] - Rocket Servergraph Admin Center fileRequestor Remote Code Execution
  174. [remote] - Ubisoft Rayman Legends 1.2.103716 - Remote Stack Buffer Overflow Vulnerabi
  175. [webapps] - ZTE WXV10 W300 - Multiple Vulnerabilities
  176. [webapps] - Motorola SBG901 Wireless Modem - CSRF Vulnerability
  177. [local] - Adobe Reader for Android addJavascriptInterface Exploit
  178. [remote] - Easy File Management Web Server Stack Buffer Overflow
  179. [remote] - Java Debug Wire Protocol Remote Code Execution
  180. [papers] - [Persian] Oracle SID Detection Techniques - Part 4
  181. [papers] - [Persian] Oracle SID Detection Techniques - Part 3
  182. [papers] - [Persian] Oracle SID Detection Techniques - Part 2
  183. [papers] - [Persian] Oracle SID Detection Techniques - Part 1
  184. [webapps] - ZeroCMS 1.0 - zero_transact_user.php, Handling Privilege Escalation
  185. [remote] - Yealink VoIP Phone SIP-T38G - Privileges Escalation
  186. [remote] - Yealink VoIP Phone SIP-T38G - Remote Command Execution
  187. [remote] - Yealink VoIP Phone SIP-T38G - Local File Inclusion
  188. [remote] - Yealink VoIP Phone SIP-T38G - Default Credentials
  189. [remote] - ZTE and TP-Link RomPager - DoS Exploit
  190. [webapps] - Plesk 10.4.4/11.0.9 - SSO XXE/XSS Injection Exploit
  191. [dos] - PostgreSQL
  192. [local] - IBM AIX 6.1.8 libodm - Arbitrary File Write
  193. [webapps] - SHOUTcast DNAS 2.2.1 - Stored XSS
  194. [dos] - Core FTP LE 2.2 - Heap Overflow PoC
  195. [webapps] - ZeroCMS 1.0 (zero_view_article.php, article_id param) - SQL Injection Vul
  196. [webapps] - DevExpress ASPxFileManager 10.2 to 13.2.8 - Directory Traversal
  197. [webapps] - WebTitan 4.01 (Build 68) - Multiple Vulnerabilities
  198. [papers] - 64 bits Linux Stack Based Buffer Overflow
  199. [webapps] - eFront 3.6.14.4 (surname param) - Persistent XSS Vulnerability
  200. [webapps] - Wordpress Theme Infocus - Post Local File Disclosure
  201. [webapps] - Wordpress Theme Elegance - Post Local File Disclosure
  202. [webapps] - Madness Pro
  203. [webapps] - Madness Pro
  204. [webapps] - IPSwitch IMail Server WEB client 12.4 persistent XSS
  205. [webapps] - Bluetooth Photo-File Share 2.1 iOS - Multiple Vulnerabilities
  206. [webapps] - Privacy Pro v1.2 HZ iOS - Local File Inclusion
  207. [webapps] - TigerCom My Assistant 1.1 iOS - Local File Inclusion
  208. [webapps] - AllReader 1.0 iOS - Multiple Vulnerabilities
  209. [webapps] - Files Desk Pro v1.4 iOS - Local File Inclusion
  210. [webapps] - NG WifiTransfer Pro 1.1 - Local File Inclusion
  211. [webapps] - PHPBTTracker+ 2.2 - SQL Injection
  212. [local] - dbus-glib pam_fprintd - Local Root Exploit
  213. [webapps] - Wordpress Participants Database 1.5.4.8 - SQL Injection
  214. [papers] - [Hebrew] Digital Whisper Security Magazine #51
  215. [remote] - Easy File Management Web Server v5.3 - UserID Remote Buffer Overflow (ROP)
  216. [webapps] - AuraCMS 3.0 - Multiple Vulnerabilities
  217. [local] - Ubuntu 12.04.0-2LTS x64 perf_swevent_init - Kernel Local Root Exploit
  218. [dos] - Microsoft Internet Explorer 11 - WeakMap Integer Divide-by-Zero
  219. [remote] - ElasticSearch Dynamic Script Arbitrary Java Execution
  220. [webapps] - Multiple Stored XSS in Mayan-EDMS web-based document management OS system
  221. [webapps] - Sharetronix 3.3 - Multiple Vulnerabilities
  222. [dos] - Wireshark CAPWAP Dissector - Denial of Service (msf)
  223. [remote] - TORQUE Resource Manager 2.5.x-2.5.13 - Stack Based Buffer Overflow Stub
  224. [webapps] - Web Terra 1.1 - books.cgi Remote Command Execution
  225. [remote] - Easy File Sharing FTP Server 3.5 - Stack Buffer Overflow
  226. [webapps] - Zyxel P-660HW-T1 v3 Wireless Router - CSRF Vulnerability
  227. [remote] - Symantec Workspace Streaming Arbitrary File Upload
  228. [webapps] - D-Link Routers - Multiple Vulnerabilities
  229. [local] - Linux kernel 3.14-rc1
  230. [dos] - Core FTP Server Version 1.2, build 535, 32-bit - Crash P.O.C.
  231. [webapps] - kesako script SQL Injection
  232. [webapps] - Binatone DT 850W Wireless Router - Multiple CSRF Vulnerabilities
  233. [remote] - Easy Address Book Web Server 1.6 - Stack Buffer Overflow
  234. [remote] - Easy File Management Web Server 5.3 - Stack Buffer Overflow
  235. [webapps] - SPIP - CMS < 3.0.9 / 2.1.22 / 2.0.23 - Privilege Escalation
  236. [remote] - AoA DVD Creator 2.6.2 - ActiveX Exploit
  237. [remote] - AoA Audio Extractor Basic 2.3.7 - ActiveX Exploit
  238. [papers] - Bypassing SSL Pinning on Android via Reverse Engineering
  239. [papers] - Reverse Engineering of x86 Linux Shellcodes the Easy Way
  240. [webapps] - SafeNet Sentinel Protection Server 7.0 - 7.4 and Sentinel Keys Server 1.0
  241. [local] - CyberLink Power2Go Essential 9.0.1002.0 - Registry SEH/Unicode Buffer Overf
  242. [webapps] - HP Release Control Authenticated XXE
  243. [remote] - AoA MP4 Converter 4.1.2 - ActiveX Exploit
  244. [webapps] - EGroupware 1.8.006 - Multiple Vulnerabilities
  245. [local] - check_dhcp - Nagios Plugins
  246. [dos] - Mozilla Firefox 29.0 - Null Pointer Dereference Vulnerability
  247. [dos] - Wireshark 1.10.7 - DoS PoC
  248. [webapps] - ElasticSearch Remote Code Execution
  249. [papers] - TP-Link TD-W89 Config File Download / Exploiting the Host
  250. [webapps] - Broadcom PIPA C211 - Sensitive Information Disclosure