المساعد الشخصي الرقمي

مشاهدة النسخة كاملة : exploit database


الصفحات : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 [49] 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65

  1. [webapps] - WP Symposium Pro Social Network Plugin 15.12 - Multiple Vulnerabilities
  2. [shellcode] - Linux/x86 execve "/bin/sh" - shellcode 24 byte
  3. [webapps] - AVM FRITZ!Box < 6.30 - Buffer Overflow
  4. [webapps] - OpenMRS Reporting Module 0.9.7 - Remote Code Execution
  5. [webapps] - D-Link DCS-931L File Upload
  6. [shellcode] - TCP Reverse Shell with Password Prompt - 151 bytes
  7. [webapps] - MediaAccess TG788vn - Unauthenticated File Disclosure
  8. [webapps] - Open Audit SQL Injection Vulnerability
  9. [webapps] - PHPIPAM 1.1.010 - Multiple Vulnerabilities
  10. [webapps] - Atlassian Confluence 5.2 / 5.8.14 / 5.8.15 - Multiple Vulnerabilities
  11. [dos] - Ganeti - Multiple Vulnerabilities
  12. [webapps] - Simple PHP Polling System - Multiple Vulnerabilities
  13. [webapps] - Online Airline Booking System - Multiple Vulnerabilities
  14. [local] - Ubuntu 14.04 LTS, 15.10 overlayfs - Local Root Exploit
  15. [dos] - pdfium CPDF_Function::Call - Stack-Based Buffer Overflow
  16. [dos] - pdfium IsFlagSet (v8 memory management) - SIGSEGV
  17. [dos] - pdfium CPDF_TextObject::CalcPositionData - Heap-Based Out-of-Bounds Read
  18. [dos] - pdfium CPDF_DIBSource::DownSampleScanline32Bit - Heap-Based Out-of-Bounds Rea
  19. [remote] - Rejetto HTTP File Server (HFS) 2.3.x - Remote Command Execution
  20. [shellcode] - tcp bindshell with password prompt in 162 bytes
  21. [shellcode] - x86_64 Linux bind TCP port shellcode
  22. [local] - KiTTY Portable
  23. [papers] - KiTTY Portable
  24. [local] - KiTTY Portable
  25. [remote] - KiTTY Portable
  26. [local] - DeleGate 9.9.13 - Local Root Vulnerability
  27. [webapps] - Simple Ads Manager 2.9.4.116 - SQL Injection
  28. [local] - FTPShell Client 5.24 - Buffer Overflow
  29. [papers] - [Turkish] Back To BackDoor
  30. [dos] - AccessDiver 4.301 - Buffer Overflow
  31. [local] - EasyCafe Server
  32. [webapps] - Beezfud - Remote Code Execution
  33. [webapps] - Rips Scanner 0.5 - (code.php) Local File Inclusion
  34. [webapps] - PhpSocial 2.0.0304_20222226 - CSRF Vulnerability
  35. [webapps] - Arastta 1.1.5 - SQL Injection Vulnerabilities
  36. [webapps] - Grawlix 1.0.3 - CSRF Vulnerability
  37. [webapps] - Bigware Shop 2.3.01 - Multiple Local File Inclusion Vulnerabilities
  38. [dos] - PHP 7.0.0 - Format String Vulnerability
  39. [dos] - Wireshark AirPDcapDecryptWPABroadcastKey - Heap-Based Out-of-Bounds Read
  40. [dos] - Wireshark infer_pkt_encap - Heap-Based Out-of-Bounds Read
  41. [dos] - Adobe Flash Sound.setTransform - Use-After-Free
  42. [papers] - [Portuguese] Introduçao a exploraçao de Structured Excpetion Handlers
  43. [dos] - Base64 Decoder 1.1.2 - SEH OverWrite PoC
  44. [webapps] - Ovidentia Widgets 1.0.61 - Remote Command Execution Exploit
  45. [webapps] - Ovidentia online Module 2.8 - GLOBALS[babAddonPhpPath] Remote File Inclus
  46. [dos] - Notepad++ NPPFtp Plugin 0.26.3 - Buffer Overflow
  47. [dos] - Apache 2.4.17 - Denial of Service
  48. [dos] - Adobe Flash MovieClip.localToGlobal - Use-After-Free
  49. [dos] - Adobe Flash MovieClip.attachMovie - Use-After-Free
  50. [dos] - Adobe Flash TextField.tabIndex Setter - Use-After-Free
  51. [dos] - Adobe Flash TextField.text Setter - Use-After-Free
  52. [dos] - Adobe Flash TextField.type Setter - Use-After-Free
  53. [dos] - Adobe Flash TextField.htmlText Setter - Use-After-Free
  54. [dos] - Adobe Flash TextField.variable Setter - Use-After-Free
  55. [dos] - Adobe Flash TextField Variable - Use-After Free
  56. [dos] - Adobe Flash TextField.replaceText - Use-After-Free
  57. [dos] - Adobe Flash TextField.replaceSel - Use-After-Free
  58. [webapps] - PFSense
  59. [local] - Microsoft Windows win32k Local Privilege Escalation (MS15-010)
  60. [webapps] - Ovidentia maillist Module 4.0 - Remote File Inclusion Exploit
  61. [remote] - Joomla 1.5 - 3.4.5 - Object Injection RCE X-Forwarded-For Header
  62. [dos] - win32k Clipboard Bitmap - Use-After-Free Vulnerability
  63. [dos] - Samsung Galaxy S6 Samsung Gallery - Bitmap Decoding Crash
  64. [dos] - Samsung Galaxy S6 Samsung Gallery - GIF Parsing Crash
  65. [dos] - Adobe Flash GradientFill - Use-After-Frees
  66. [dos] - Adobe Flash MovieClip.lineStyle - Use-After-Frees
  67. [dos] - Adobe Flash TextField.gridFitType Setter - Use-After-Free
  68. [dos] - Adobe Flash TextField.antiAliasType Setter - Use-After-Free
  69. [webapps] - Zen Cart 1.5.4 - Local File Inclusion
  70. [local] - Gentoo Local Priv Escalation in QEMU
  71. [remote] - Easy File Sharing Web Server 7.2 - HEAD HTTP Request SEH Buffer Overflow
  72. [remote] - Easy File Sharing Web Server 7.2 - GET HTTP Request SEH Buffer Overflow
  73. [remote] - FireEye Wormable Remote Code Execution in MIP JAR Analysis
  74. [dos] - Wireshark - getRate Stack-Based Out-of-Bounds Read
  75. [dos] - Wireshark - AirPDcapPacketProcess Stack-Based Buffer Overflow
  76. [dos] - Wireshark - find_signature Stack-Based Out-of-Bounds Read
  77. [dos] - Wireshark - dissect_diameter_base_framed_ipv6_prefix Stack-Based Buffer Overf
  78. [dos] - Wireshark - addresses_equal (dissect_rsvp_common) Use-After-Free
  79. [dos] - Wireshark - ascend_seek Static Out-of-Bounds Read
  80. [dos] - Wireshark - my_dgt_tbcd_unpack Static Buffer Overflow
  81. [dos] - Wireshark - dissect_nbap_MACdPDU_Size SIGSEGV
  82. [dos] - Wireshark - memcpy (get_value / dissect_btatt) SIGSEGV
  83. [webapps] - Ovidentia bulletindoc Module 2.9 - Multiple Remote File Inclusion Vulnera
  84. [remote] - Jenkins CLI RMI Java Deserialization Vulnerability
  85. [remote] - ManageEngine Desktop Central 9 FileUploadServlet ConnectionId Vulnerabilit
  86. [webapps] - Ovidentia absences Module 2.64 - Remote File Inclusion
  87. [dos] - IBM Tivoli Storage Manager FastBack Server 5.5.4.2 - _FXCLI_GetConfFileChunk
  88. [dos] - IBM Tivoli Storage Manager FastBack Server 5.5.4.2 - _FXCLI_SetConfFileChunk
  89. [remote] - Joomla 1.5 - 3.4.5 - Object Injection Remote Command Execution
  90. [dos] - Adobe Flash Type Confusion in Serialization with ObjectEncoder.dynamicPropert
  91. [dos] - Adobe Flash Type Confusion in IExternalizable.readExternal When Performing Lo
  92. [remote] - Microsoft Office / COM Object DLL Planting with comsvcs.dll Delay Load of
  93. [webapps] - Bitrix bitrix.xscan Module 1.0.3 - Directory Traversal
  94. [webapps] - Bitrix bitrix.mpbuilder Module 1.0.10 - Local File Inclusion
  95. [remote] - Xdh / LinuxNet Perlbot / fBot IRC Bot Remote Code Execution
  96. [remote] - Legend Perl IRC Bot Remote Code Execution
  97. [dos] - Internet Explorer 11 MSHTML!CObjectElement Use-After-Free Vulnerability (MS15
  98. [webapps] - Polycom VVX-Series Business Media Phones - Path Traversal Vulnerability
  99. [remote] - Siemens Simatic S7 1200 CPU Command Module (MSF)
  100. [papers] - [Persian] Bypass PowerShell Execution Policy
  101. [papers] - [Persian] Exposing the WiFi Password Using C and PowerShell
  102. [papers] - [Persian] Windows Hacking And Security Only in Physical Access
  103. [webapps] - WordPress Admin Management Xtended Plugin 2.4.0 - Privilege escalation
  104. [webapps] - ECommerceMajor - (productdtl.php, prodid param) SQL Injection Vulnerabili
  105. [shellcode] - Windows XP-10 - Null-Free WinExec Shellcode (Python)
  106. [dos] - Avast Integer Overflow Verifying numFonts in TTC Header
  107. [dos] - Avast Heap Overflow Unpacking MoleBox Archives
  108. [dos] - Avast JetDb::IsExploited4x - Performs Unbounded Search on Input
  109. [dos] - Avast OOB Write Decrypting PEncrypt Packed Executables
  110. [dos] - Rar CmdExtract::UnstoreFile Integer Truncation Memory Corruption
  111. [webapps] - Skybox Platform
  112. [webapps] - Gokhan Balbal Script 2.0 - CSRF Vulnerability
  113. [webapps] - iy10 Dizin Scripti - Multiple Vulnerabilities
  114. [papers] - [Persian] Image File Execution Vulnerability
  115. [papers] - [Persian] Advanced NTFS Alternate Data Stream in Windows 8 and 10
  116. [remote] - Microsoft Office / COM Object els.dll DLL Planting (MS15-134)
  117. [dos] - MacOS X 10.11 FTS Deep Structure of the File System Buffer Overflow
  118. [dos] - IE 11.0.9600.18097 COmWindowProxy::SwitchMarkup NULL PTR
  119. [webapps] - Wordpress Plugin WP Easy Poll 1.1.3 - XSS and CSRF
  120. [webapps] - WIMAX MT711x - Multiple Vulnerabilities
  121. [webapps] - WIMAX LX350P(WIXFMR-108) - Multiple Vulnerabilities
  122. [remote] - Microsoft Windows Media Center Link File Incorrectly Resolved Reference
  123. [remote] - Microsoft Windows Media Center Library Parsing RCE Vulnerability aka "self
  124. [webapps] - dotCMS 3.2.4 - Multiple Vulnerabilities
  125. [remote] - Atlassian HipChat for Jira Plugin Velocity Template Injection
  126. [local] - iniNet SpiderControl PLC Editor Simatic 6.30.04 - Insecure File Permissions
  127. [local] - iniNet SpiderControl SCADA Web Server Service 2.02 - Insecure File Permissi
  128. [webapps] - WordPress Polls Widget Plugin 1.0.7 - SQL Injection Vulnerability
  129. [webapps] - PHP Utility Belt - Remote Code Execution
  130. [remote] - phpFileManager 0.9.8 Remote Code Execution
  131. [webapps] - OpenMRS 2.3 (1.11.4) - Local File Disclosure Vulnerability
  132. [webapps] - OpenMRS 2.3 (1.11.4) - Multiple Cross-Site Scripting Vulnerabilities
  133. [webapps] - OpenMRS 2.3 (1.11.4) - Expression Language Injection Vulnerability
  134. [webapps] - OpenMRS 2.3 (1.11.4) - XML External Entity (XXE) Processing Exploit
  135. [webapps] - SIMOGEO FileManager 2.3.0 - Multiple Vulnerabilities
  136. [papers] - [Persian] Change Powershell Command Line Job
  137. [papers] - [Turkish] Beurk Rootkit Password Cracking and Injection (Gizliligin Anatom
  138. [dos] - WinAsm Studio 5.1.8.8 - Buffer Overflow Crash PoC
  139. [local] - Cyclope Employee Surveillance
  140. [webapps] - Wordpress Plugin TheCartPress v1.4.7 - Multiple Vulnerabilities
  141. [webapps] - Wordpress Plugin Sell Download v1.0.16 - Local File Disclosure
  142. [webapps] - Wordpress Plugin Advanced uploader v2.10 - Multiple Vulnerabilities
  143. [webapps] - WordPress Gwolle Guestbook Plugin 1.5.3 - Remote File Inclusion
  144. [remote] - Oracle BeeHive 2 voice-servlet prepareAudioToPlay() Arbitrary File Upload
  145. [remote] - Oracle BeeHive 2 voice-servlet processEvaluation() Vulnerability
  146. [dos] - Malwarebytes Antivirus 2.2.0 - DoS PoC
  147. [dos] - Gnome Nautilus 3.16 - Denial of Service
  148. [webapps] - WordPress Users Ultra Plugin 1.5.50 - Persistent XSS
  149. [webapps] - WordPress Users Ultra Plugin 1.5.50 - Blind SQL injection
  150. [webapps] - IP.Board 4.1.4.x - Persistent XSS Vulnerability
  151. [webapps] - Sysaid Helpdesk Software 14.4.32 b25 - SQL Injection
  152. [remote] - Advantech Switch Bash Environment Variable Code Injection (Shellshock)
  153. [local] - Acunetix WVS 10 - Local Privilege escalation
  154. [webapps] - Zenphoto 1.4.10 - Local File Inclusion
  155. [webapps] - ntop-ng
  156. [webapps] - Belkin N150 Wireless Home Router F9K1009 v1 - Multiple Vulnerabilities
  157. [papers] - [Hebrew] Digital Whisper Security Magazine #66
  158. [papers] - [Hebrew] Digital Whisper Security Magazine #67
  159. [local] - Centos 7.1/Fedora 22 - abrt Local Root
  160. [webapps] - Kodi 15 - Arbitrary File Aaccess (Web Interface)
  161. [local] - RHEL 7.0/7.1 - abrt/sosreport Local Root
  162. [webapps] - HumHub 0.11.2 and 0.20.0-beta.2 - SQL Injection
  163. [remote] - Easy File Sharing Web Server 7.2 - Remote SEH Buffer Overflow (DEP Bypass
  164. [shellcode] - Linux x86_64 Polymorphic execve Shellcode - 31 bytes
  165. [remote] - SAP Sybase Adaptive Server Enterprise XML External Entity Information Disc
  166. [webapps] - WP-Client 3.8.7 - Stored XSS Vulnerability
  167. [remote] - Joomla Content History SQLi Remote Code Execution
  168. [dos] - Windows Kernel Device Contexts and NtGdiSelectBitmap Use-After-Free (MS15-115
  169. [dos] - Windows Race Condition DestroySMWP Use-After-Free (MS15-115)
  170. [dos] - Windows Cursor Object Potential Memory Leak (MS15-115)
  171. [dos] - Windows ndis.sys IOCTL 0x170034 (ndis!ndisNsiGetIfNameForIfIndex) - Pool Buff
  172. [local] - NVIDIA Stereoscopic 3D Driver Service 7.17.13.5382 - Arbitrary Run Key Crea
  173. [dos] - Audacious 3.7 - ID3 Local Crash PoC
  174. [webapps] - vBulletin 5.x - Remote Code Execution Exploit
  175. [dos] - Oracle Outside In PDF 8.5.2 - Parsing Memory Corruption Vulnerability 2
  176. [dos] - Oracle Outside In PDF 8.5.2 - Parsing Memory Corruption Vulnerability
  177. [dos] - Acrobat Reader DC 15.008.20082.15957 - PDF Parsing Memory Corruption Vulnerab
  178. [webapps] - Cambium ePMP 1000 - Multiple Vulnerabilities
  179. [local] - Chkrootkit Local Privilege Escalation
  180. [webapps] - ZTE ZXHN H108N R1A, ZXV10 W300 Routers - Multiple Vulnerabilities
  181. [webapps] - ZTE ADSL ZXV10 W300 Modems - Multiple Vulnerabilities
  182. [webapps] - Horde Groupware 5.2.10 - CSRF Vulnerability
  183. [remote] - F5 iControl iCall::Script Root Command Execution
  184. [dos] - Chrome - open-vcdiff OOB Read in Browser Process Integer Overflow
  185. [webapps] - Netwin SurgeFTP Sever 23d6 - Stored Cross Site Scripting Vulnerabilities.
  186. [dos] - Sam Spade 1.14 - Decode URL Buffer Overflow Crash PoC
  187. [dos] - SuperScan 4.1 - Windows Enumeration Hostname/IP/URL Field SEH Overflow
  188. [dos] - SuperScan 4.1 - Tools Hostname/IP/URL Field Buffer Overflow
  189. [dos] - SuperScan 4.1 - Scan Hostname/IP Field Buffer Overflow
  190. [local] - IBM i Access 7.1 - Buffer Overflow Code Execution
  191. [webapps] - WordPress Users Ultra Plugin 1.5.50 - Unrestricted File Upload
  192. [papers] - [Portuguese] Ataques Avancados contra CPL (Control Panel Applets)
  193. [dos] - Kaspersky Antivirus - ZIP File Format Use-After-Free Vulnerability
  194. [dos] - Kaspersky Antivirus - DEX File Format Memory Corruption
  195. [dos] - foobar2000 1.3.9 - (.asx) Local Crash PoC
  196. [dos] - Kaspersky Antivirus - Certificate Handling Path Traversal
  197. [remote] - Idera Up.Time Monitoring Station 7.4 post2file.php Arbitrary File Upload
  198. [remote] - Idera Up.Time Monitoring Station 7.0 post2file.php Arbitrary File Upload
  199. [remote] - XCart 5.2.6 - Code Execution Vulnerability
  200. [remote] - ClipperCMS 1.3.0 - Code Execution Vulnerability
  201. [webapps] - ClipperCMS 1.3.0 - Multiple SQL Injection Vulnerabilities
  202. [webapps] - AlegroCart 1.2.8 - LFI/RFI Vulnerability
  203. [webapps] - AlegroCart 1.2.8 - Multiple SQL Injection Vulnerabilities
  204. [remote] - D-Link DGL5500 - HNAP Buffer Overflow Vulnerability
  205. [remote] - D-Link DIR-880L - Multiple Buffer Overflow Vulnerabilities
  206. [shellcode] - x64 Linux egghunter in 24 bytes
  207. [webapps] - D-link Wireless Router DIR-816L – CSRF Vulnerability
  208. [webapps] - VLC Web Interface 2.2.1 - Metadata Title XSS Vulnerability
  209. [dos] - TECO AP-PCLINK 1.094 - .tpc File Handling Buffer Overflow Vulnerability
  210. [dos] - TECO TP3-PCLINK 2.1 - .tpc File Handling Buffer Overflow Vulnerability
  211. [dos] - TECO SG2 FBD Client 3.51 - .gfb SEH Overwrite Buffer Overflow Vulnerability
  212. [dos] - Sam Spade 1.14 - Browse URL Buffer Overflow PoC
  213. [local] - TECO JN5 L510-DriveLink 1.482 - .lf5 SEH Overwrite Buffer Overflow Exploit
  214. [local] - TECO SG2 LAD Client 3.51 - .gen SEH Overwrite Buffer Overflow Exploit
  215. [webapps] - CF Image Host 1.65 - PHP Command Injection
  216. [webapps] - CF Image Host 1.65 - CSRF Vulnerability
  217. [webapps] - b374k Web Shell - CSRF Command Injection
  218. [dos] - Sam Spade 1.14 - S-Lang Command Field SEH Overflow
  219. [local] - TUDU 0.82 - Local Stack-Based Buffer Overflow
  220. [local] - TACK 1.07 - Local Stack-Based Buffer Overflow
  221. [webapps] - R-Scripts Vacation Rental Script 7R - Multiple Vulnerabilities
  222. [local] - FBZX 2.10 - Local Stack-Based Buffer Overflow
  223. [webapps] - WordPress WP Fastest Cache Plugin 0.8.4.8 - Blind SQL Injection
  224. [webapps] - YESWIKI 0.2 - Path Traversal Vulnerability
  225. [webapps] - Jenkins 1.633 - Unauthenticated Credential Recovery
  226. [remote] - Huawei HG630a and HG630a-50 - Default SSH Admin Password on ADSL Modems
  227. [webapps] - Google AdWords
  228. [webapps] - eBay Magento CE
  229. [webapps] - Google AdWords API PHP client library
  230. [dos] - PHPMyLicense 3.0.0 - 3.1.4 - DoS
  231. [dos] - FreeType 2.6.1 TrueType tt_sbit_decoder_load_bit_aligned Heap-Based Out-of-Bo
  232. [webapps] - TestLink 1.9.14 - CSRF Vulnerability
  233. [remote] - Wordpress Ajax Load More PHP Upload Vulnerability
  234. [dos] - POP Peeper 4.0.1 - SEH Over-Write
  235. [webapps] - Arris TG1682G Modem - Stored XSS Vulnerability
  236. [dos] - QNap QVR Client 5.1.0.11290 - Crash PoC
  237. [papers] - Win32_bind Shellcode Review
  238. [webapps] - NXFilter 3.0.3 - Multiple XSS Vulnerabilities
  239. [webapps] - NXFilter 3.0.3 - CSRF Vulnerabilities
  240. [remote] - Solarwinds Log and Event Manager/Trigeo SIM 6.1.0 - Remote Command Executi
  241. [webapps] - OpenSSL Alternative Chains Certificate Forgery
  242. [webapps] - JSSE SKIP-TLS Exploit
  243. [remote] - Cryptocat Arbitrary Script Injection Vulnerability
  244. [remote] - Symantec pcAnywhere 12.5.0 Windows x86 - Remote Code Execution
  245. [webapps] - vBulletin 5.1.x - PreAuth 0day Remote Code Execution Exploit
  246. [dos] - FreeType 2.6.1 TrueType tt_cmap14_validate Parsing Heap-Based Out-of-Bounds R
  247. [webapps] - vBulletin 5 PreAuth Remote Code Execution
  248. [local] - Gold MP4 Player - .swf Local Exploit
  249. [dos] - Python 3.3 - 3.5 product_setstate() Function - Out-of-bounds Read
  250. [dos] - Python 2.7 strop.replace() Method - Integer Overflow