المساعد الشخصي الرقمي

مشاهدة النسخة كاملة : exploit database


الصفحات : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 [50] 51 52 53 54 55 56 57 58 59 60 61

  1. [remote] - Liferay Portal 7.0.x
  2. [papers] - Anatomy of Exploit - World of Shellcode
  3. [shellcode] - x64 Linux reverse TCP connect shellcode (77 to 85 bytes, 90 to 98 with
  4. [shellcode] - x64 Linux bind TCP port shellcode (81 bytes, 96 with password)
  5. [remote] - WhatsApp
  6. [webapps] - PMB
  7. [webapps] - PHPLIST 3.0.6 & 3.0.10 - SQL Injection Vulnerability
  8. [webapps] - Pimcore 3.0 & 2.3.0 CMS - SQL Injection Vulnerability
  9. [dos] - Wickr Desktop 2.2.1 Windows - Denial of Service Vulnerability
  10. [webapps] - Lazarus Guestbook 1.22 - Multiple Vulnerabilities
  11. [local] - GParted 0.14.1 - OS Command Execution
  12. [webapps] - NetIQ Access Manager 4.0 SP1 - Multiple Vulnerabilities
  13. [webapps] - SysAid Server Arbitrary File Disclosure
  14. [local] - BitRaider Streaming Client 1.3.3.4098 Local Privilege Escalation Vulnerabil
  15. [dos] - jetAudio 8.1.3 Basic (mp3) - Crash POC
  16. [remote] - Lotus Mail Encryption Server (Protector for Mail) LFI to RCE
  17. [remote] - Varnish Cache CLI Interface Remote Code Execution
  18. [dos] - Ettercap 0.8.0-0.8.1 - Multiple Denial of Service Vulnerabilities
  19. [webapps] - miniBB 3.1 - Blind SQL Injection
  20. [webapps] - Cacti Superlinks Plugin 1.4-2 RCE(LFI) via SQL Injection Exploit
  21. [webapps] - CIK Telecom VoIP router SVG6000RW - Privilege Escalation and Command Exec
  22. [webapps] - SQL Buddy 1.3.3 - Remote Code Execution
  23. [webapps] - ProjectSend r-561 - Arbitrary File Upload
  24. [webapps] - CMS Papoo 6.0.0 Rev. 4701 - Stored XSS
  25. [remote] - ActualAnalyzer 'ant' Cookie Command Execution
  26. [papers] - [Turkish] Codesys SEH Exploit Tutorial Paper
  27. [remote] - Tuleap PHP Unserialize Code Execution
  28. [webapps] - Wordpress Download Manager 2.7.4 - Remote Code Execution Vulnerability
  29. [papers] - Socket Learning
  30. [webapps] - Wordpress Wp Symposium 14.11 - Unauthenticated Shell Upload Exploit
  31. [local] - CodeMeter 4.50.906.503 - Service Trusted Path Privilege Escalation
  32. [webapps] - ResourceSpace 6.4.5976 - XSS / SQL Injection / Insecure Cookie Handling
  33. [dos] - phpMyAdmin 4.0.x, 4.1.x, 4.2.x - DoS
  34. [papers] - Backdooring with netcat shellcode
  35. [local] - Avira 14.0.7.342 - (avguard.exe) Service Trusted Path Privilege Escalation
  36. [local] - HTCSyncManager 3.1.33.0 - Service Trusted Path Privilege Escalation
  37. [local] - jaangle 0.98i.977 - Denial of Service Vulnerability
  38. [local] - Mediacoder 0.8.33 build 5680 - SEH Buffer Overflow Exploit Dos (.lst)
  39. [webapps] - Flat Calendar 1.1 - HTML Injection Exploit
  40. [webapps] - OpenEMR 4.1.2(7) - Multiple SQL Injection Vulnerabilities
  41. [webapps] - Wordpress Ajax Store Locator 1.2 - Arbitrary File Download
  42. [webapps] - IceHrm 7.1 - Multiple Vulnerabilities
  43. [local] - Mobilis 3G mobiconnect 3G++ ZDServer 1.0.1.2 - (ZTE CORPORATION) Service Tr
  44. [webapps] - Humhub
  45. [webapps] - Humhub
  46. [local] - Advantech AdamView 4.30.003 - (.gni) SEH Buffer Overflow
  47. [local] - VFU 4.10-1.1 - Buffer Overflow
  48. [local] - BulletProof FTP Client 2010 - Buffer Overflow (SEH) Exploit
  49. [remote] - JourneyMap 5.0.0RC2 Ultimate Edition - DoS (Resource Consumption)
  50. [remote] - Tiny Server 1.1.9 - Arbitrary File Disclosure Exploit
  51. [remote] - Windows Kerberos - Elevation of Privilege (MS14-068)
  52. [webapps] - PBBoard CMS 3.0.1 - SQL Injection
  53. [local] - Offset2lib: Bypassing Full ASLR On 64bit Linux
  54. [papers] - [Hebrew] Digital Whisper Security Magazine #56
  55. [webapps] - Advertise With Pleasure! (AWP) 6.6 - SQL Injection Vulnerability
  56. [webapps] - Technicolor DT5130 V2.05.C29GV - Multiple Vulnerabilities
  57. [local] - Thomson Reuters Fixed Assets CS
  58. [webapps] - Cart66 Lite WordPress Ecommerce 1.5.1.17 - Blind SQL Injection
  59. [papers] - [Turkish] How to Bypass SafeSEH and Stack Cookie Protection
  60. [webapps] - Google Document Embedder 2.5.16 - mysql_real_escpae_string bypass SQL Inj
  61. [papers] - NMAP - Port-Scanning: A Practical Approach Modified for better
  62. [local] - Microsoft Windows Win32k.sys - Denial of Service
  63. [webapps] - Wordpress CM Download Manager Plugin 2.0.0 - Code Injection
  64. [webapps] - TYPO3 ke DomPDF Extension - Remote Code Execution
  65. [webapps] - EntryPass N5200 - Credentials Exposure
  66. [remote] - Tincd Post-Authentication Remote TCP Stack Buffer Overflow
  67. [local] - Mac OS X IOKit Keyboard Driver Root Privilege Escalation
  68. [webapps] - Wordpress Nextend Facebook Connect Plugin 1.4.59 - XSS Vulnerability
  69. [webapps] - IPUX CS7522/CS2330/CS2030 IP Camera - (UltraHVCamX.ocx) ActiveX Stack Buf
  70. [webapps] - IPUX CL5452/CL5132 IP Camera - (UltraSVCamX.ocx) ActiveX Stack Buffer Ove
  71. [webapps] - IPUX Cube Type CS303C IP Camera - (UltraMJCamX.ocx) ActiveX Stack Buffer
  72. [webapps] - Prolink PRN2001 - Multiple Vulnerabilities
  73. [webapps] - Drupal < 7.34 - Denial of Service
  74. [webapps] - Wordpress < 4.0.1 - Denial of Service
  75. [webapps] - WordPress
  76. [local] - CCH Wolters Kluwer PFX Engagement
  77. [papers] - PoC || GTFO 0x05
  78. [papers] - PoC || GTFO 0x06
  79. [webapps] - WordPress HTML 5 MP3 Player with Playlist Plugin - Full Path Disclosure
  80. [webapps] - RobotStats 1.0 - (robot param) SQL Injection Vulnerability
  81. [dos] - RobotStats 1.0 - HTML Injection Vulnerability
  82. [webapps] - Slider Revolution/Showbiz Pro Shell Upload Exploit
  83. [webapps] - Device42 WAN Emulator 2.3 Ping Command Injection
  84. [webapps] - Device42 WAN Emulator 2.3 Traceroute Command Injection
  85. [dos] - Android WAPPushManager - SQL Injection
  86. [remote] - Pandora FMS SQLi Remote Code Execution
  87. [webapps] - xEpan 1.0.1 - CSRF Vulnerability
  88. [dos] - Elipse E3 HTTP Denial of Service
  89. [local] - Mini-stream RM-MP3 Converter 3.1.2.1.2010.03.30 (.wax) SEH Buffer Overflow
  90. [webapps] - Arris VAP2500 Authentication Bypass
  91. [webapps] - Wordpress Google Document Embedder 2.5.14 - SQL Injection
  92. [local] - Linux Kernel libfutex Local Root for RHEL/CentOS 7.0.1406
  93. [papers] - [Turkish] Embedded Device Security & Zollard Botnet Analysis
  94. [webapps] - crea8social 1.3 - Stored XSS Vulnerability
  95. [webapps] - phpMyRecipes 1.2.2 (dosearch.php, words_exact param) - SQL Injection
  96. [dos] - TRENDnet SecurView Wireless Network Camera TV-IP422WN (UltraCamX.ocx) Stack B
  97. [webapps] - DukaPress 2.5.2 - Path Traversal
  98. [webapps] - Wordpress wpDataTables Plugin 1.5.3 - Unauthenticated Shell Upload Vulner
  99. [webapps] - Wordpress wpDataTables Plugin 1.5.3 - SQL Injection Vulnerability
  100. [dos] - tcpdump 4.6.2 Geonet Decoder Denial of Service
  101. [dos] - PHP 5.5.12 Locale::parseLocale Memory Corruption
  102. [webapps] - Advantech EKI-6340 Command Injection
  103. [remote] - Hikvision DVR RTSP Request Remote Code Execution
  104. [papers] - Deep Dive into ROP Payload Analysis
  105. [webapps] - TP-Link TL-WR740N - Denial Of Service
  106. [webapps] - Netgear Wireless Router WNR500 - Parameter Traversal Arbitrary File Acces
  107. [webapps] - MyBB
  108. [local] - Privacyware Privatefirewall 7.0 - Unquoted Service Path Privilege Escalatio
  109. [webapps] - Supr Shopsystem 5.1.0 - Persistent UI Vulnerability
  110. [webapps] - Maarch LetterBox 2.8 - Insecure Cookies (Login Bypass)
  111. [remote] - Internet Explorer < 11 - OLE Automation Array Remote Code Execution (#2)
  112. [webapps] - Paid Memberships Pro 1.7.14.2 Path Traversal
  113. [dos] - MINIX 3.3.0 Remote TCP/IP Stack DoS
  114. [webapps] - Snowfox CMS 1.0 - CSRF Add Admin Exploit
  115. [remote] - MantisBT XmlImportExport Plugin PHP Code Injection Vulnerability
  116. [remote] - Samsung Galaxy KNOX Android Browser RCE
  117. [remote] - Internet Explorer OLE Automation Array Remote Code Execution
  118. [remote] - .NET Remoting Services Remote Command Execution
  119. [dos] - Safari 8.0 / OS X 10.10 - Crash PoC
  120. [webapps] - Zoph 0.9.1 - Multiple Vulnerabilities
  121. [webapps] - WebsiteBaker 2.8.3 - Multiple Vulnerabilities
  122. [webapps] - ZTE ZXHN H108L - Authentication Bypass
  123. [webapps] - Proticaret E-Commerce Script 3.0 - SQL Injection
  124. [webapps] - PHPFox - Stored XSS Vulnerability
  125. [webapps] - ZTE ZXHN H108L - Authentication Bypass
  126. [webapps] - clientResponse Client Management 4.1 - XSS Vulnerability
  127. [webapps] - Joomla HD FLV Player < 2.1.0.1 - Arbitrary File Download Vulnerability
  128. [webapps] - Joomla HD FLV Player < 2.1.0.1 - SQL Injection Vulnerability
  129. [webapps] - Proticaret E-Commerce Script 3.0 - SQL Injection
  130. [webapps] - Barracuda - Multiple Anauthentificated Logfile Download
  131. [dos] - Internet Explorer 11 - Denial Of Service
  132. [webapps] - MyBB Forums 1.8.2 - Stored XSS Vulnerability
  133. [webapps] - Modx CMS 2.2.14 - CSRF Bypass, Reflected XSS, Stored XSS Vulnerability
  134. [webapps] - PHP 5.x - Bypass Disable Functions (via Shellshock)
  135. [webapps] - Subex FMS 7.4 - Unauthenticated SQLi
  136. [webapps] - Rejetto HTTP File Server (HFS) 2.3.x - Remote Command Execution (MSF)
  137. [webapps] - Gogs (users and repos q pararm) - SQL Injection Vulnerabilities
  138. [webapps] - Gogs (label pararm) - SQL Injection
  139. [local] - MS14-064 Microsoft Windows OLE Package Manager Code Execution
  140. [local] - MS14-064 Microsoft Windows OLE Package Manager Code Execution Through Pytho
  141. [local] - OSSEC 2.8 Insecure Temporary File Creation Vulnerability Privilege Escalati
  142. [remote] - Internet Explorer OLE Automation Array Remote Code Execution (msf)
  143. [remote] - Internet Explorer OLE Automation Array Remote Code Execution
  144. [webapps] - MyBB 1.8.X - Multiple Vulnerabilities
  145. [webapps] - Digi Online Examination System 2.0 - Unrestricted File Upload
  146. [webapps] - F5 BIG-IP 10.1.0 - Directory Traversal Vulnerability
  147. [webapps] - Piwigo 2.6.0 (picture.php, rate param) - SQL Injection
  148. [webapps] - Esotalk CMS 1.0.0g4 - XSS Vulnerability
  149. [webapps] - WordPress SupportEzzy Ticket System Plugin 1.2.5 - Stored XSS Vulnerabili
  150. [dos] - CorelDRAW X7 CDR File (CdrTxt.dll) Off-By-One Stack Corruption Vulnerability
  151. [local] - MS Office 2007 and 2010 - OLE Arbitrary Command Execution
  152. [webapps] - phpSound Music Sharing Platform 1.0.5 - Multiple XSS Vulnerabilities
  153. [webapps] - Serenity Client Management Portal 1.0.1 - Multiple Vulnerabilities
  154. [webapps] - Mouse Media Script 1.6 0 - Stored XSS Vulnerability
  155. [webapps] - Who's Who Script - CSRF Exploit (Add Admin Account)
  156. [remote] - Internet Explorer 8 MS14-035 Use-After-Free Exploit
  157. [webapps] - Another Wordpress Classifieds Plugin - SQL Injection
  158. [webapps] - Password Manager Pro / Pro MSP - Blind SQL Injection
  159. [remote] - Visual Mining NetCharts Server Remote Code Execution
  160. [webapps] - XCloner Wordpress/Joomla! Plugin - Multiple Vulnerabilities
  161. [webapps] - ManageEngine OpManager, Social IT Plus and IT360 - Multiple Vulnerabiliti
  162. [webapps] - Progress OpenEdge 11.2 - Directory Traversal
  163. [webapps] - PHP-Fusion 7.02.07 - SQL Injection
  164. [shellcode] - Position independent & Alphanumeric 64-bit execve("/bin/sh\0",NULL,NULL
  165. [webapps] - ZTE ZXDSL 831CII - Insecure Direct Object Reference
  166. [webapps] - Progress OpenEdge 11.2 - Directory Traversal
  167. [remote] - Belkin n750 jump login Parameter Buffer Overflow
  168. [remote] - X7 Chat 2.0.5 lib/message.php preg_replace() PHP Code Execution
  169. [dos] - VMware Workstations 10.0.0.40273 vmx86.sys Arbitrary Kernel Read
  170. [remote] - Citrix NetScaler SOAP Handler Remote Code Execution
  171. [dos] - i.Mage 1.11 - Local Crash PoC
  172. [dos] - i.Hex 0.98 - Local Crash PoC
  173. [local] - i-FTP 2.20 - Buffer Overflow SEH Exploit
  174. [papers] - [Hebrew] Digital Whisper Security Magazine #55
  175. [papers] - [Hebrew] Digital Whisper Security Magazine #54
  176. [papers] - [Hebrew] Digital Whisper Security Magazine #53
  177. [dos] - MINIX 3.3.0 Local Denial of Service PoC
  178. [local] - Linux Local Root => 2.6.39 (32-bit & 64-bit) - Mempodipper #2
  179. [shellcode] - Linux/x86 Add map in /etc/hosts file
  180. [dos] - Mac OS X Mavericks IOBluetoothHCIUserClient Privilege Escalation
  181. [papers] - Exploiting CVE-2014-4113 on Windows 8.1
  182. [remote] - Xerox Multifunction Printers (MFP) "Patch" DLM Vulnerability
  183. [webapps] - Drupal 7.32 Pre Auth SQL Injection
  184. [webapps] - ZTE Modem ZXDSL 531BIIV7.3.0f_D09_IN - Stored XSS Vulnerability
  185. [remote] - CUPS Filter Bash Environment Variable Code Injection
  186. [webapps] - MAARCH 1.4 - SQL Injection
  187. [webapps] - MAARCH 1.4 - Arbitrary File Upload
  188. [local] - IBM Tivoli Monitoring 6.2.2 kbbacf1 - Privilege Escalation
  189. [remote] - Konke Smart Plug K - Authentication Bypass Vulnerability
  190. [webapps] - vBulletin Tapatalk - Blind SQL Injection
  191. [webapps] - Enalean Tuleap 7.4.99.5 - Remote Command Execution
  192. [webapps] - Enalean Tuleap 7.2 - XXE File Disclosure
  193. [webapps] - Enalean Tuleap 7.4.99.5 - Blind SQL Injection
  194. [local] - Filemaker Pro 13.03 & Advanced 12.04 - Login Bypass and Privilege Escala
  195. [webapps] - Folder Plus 2.5.1 iOS - Persistent XSS Vulnerability
  196. [webapps] - WebDisk+ 2.1 iOS - Code Execution Vulnerability
  197. [dos] - Binary File Descriptor Library (libbfd) - Out-of-Bounds Crash
  198. [webapps] - Incredible PBX 2.0.6.5.0 - Remote Command Execution
  199. [webapps] - Mulesoft ESB Runtime 3.5.1 - Privilege Escalation Vulnerability
  200. [remote] - Centreon SQL and Command Injection
  201. [webapps] - HP Operations Agent Remote XSS iFrame Injection
  202. [webapps] - CBN CH6640E/CG6640E Wireless Gateway Series Multiple Vulnerabilities
  203. [local] - Free WMA MP3 Converter 1.8 (.wav) - Buffer Overflow
  204. [webapps] - Wordpress CP Multi View Event Calendar 1.01 - SQL Injection
  205. [webapps] - Dell SonicWall GMS 7.2.x - Code Injection
  206. [webapps] - Axway Secure Transport 5.1 SP2 - Arbitary File Upload via CSRF
  207. [webapps] - Change CMS 3.6.8 - Multiple CSRF Vulnerabilities
  208. [webapps] - HttpCombiner ASP.NET - Remote File Disclosure Vulnerability
  209. [webapps] - vBulletin 4.x Verify Email Before Registration Plugin - SQL Injection
  210. [webapps] - Parallels Plesk Sitebuilder 9.5 - Multiple Vulnerabilities
  211. [remote] - Ammyy Admin 3.5 - RCE
  212. [webapps] - File Manager 4.2.10 iOS - Code Execution Vulnerability
  213. [dos] - OpenBSD
  214. [webapps] - Creative Contact Form (Wordpress 0.9.7 and Joomla 2.0.0) - Shell Upload V
  215. [webapps] - Dell EqualLogic Storage - Remote File Inclusion
  216. [remote] - Windows OLE - Remote Code Execution "Sandworm" Exploit (MS14-060)
  217. [webapps] - Magento Server MAGMI Plugin - Remote File Inclusion (RFI)
  218. [webapps] - Feng Office 1.7.4 - Cross Site Scripting Vulnerabilities
  219. [webapps] - Feng Office 1.7.4 - Arbitrary File Upload
  220. [webapps] - Creative Contact Form - Arbitrary File Upload
  221. [webapps] - DotNetNuke DNNspot Store 3.0.0 Arbitary File Upload
  222. [local] - iBackup 10.0.0.32 - Local Privilege Escalation
  223. [webapps] - File Manager 4.2.10 iOS - Code Execution Vulnerability
  224. [webapps] - iFunBox Free 1.1 iOS - File Inclusion Vulnerability
  225. [remote] - HP Data Protector EXEC_INTEGUTIL Remote Code Execution
  226. [remote] - Joomla Akeeba Kickstart Unserialize Remote Code Execution
  227. [remote] - Numara / BMC Track-It! FileStorageService Arbitrary File Upload
  228. [local] - MS14-060 Microsoft Windows OLE Package Manager Code Execution
  229. [local] - Linux PolicyKit Race Condition Privilege Escalation
  230. [local] - Windows OLE Package Manager SandWorm Exploit
  231. [webapps] - ZTE ZXDSL-931VII - Unauthenticated Configuration Dump
  232. [webapps] - Typo3 JobControl 2.14.0 - Cross Site Scripting / SQL Injection
  233. [dos] - SAP Netweaver Enqueue Server - Denial of Service
  234. [webapps] - Drupal Core
  235. [webapps] - Drupal Core
  236. [webapps] - Drupal Core
  237. [local] - Microsoft Bluetooth Personal Area Networking (BthPan.sys) Privilege Escalat
  238. [webapps] - Indeed Job Search 2.5 iOS API - Multiple Vulnerabilities
  239. [webapps] - YourMembers Plugin - Blind SQL Injection
  240. [webapps] - SEO Control Panel 3.6.0 - Authenticated SQL Injection
  241. [webapps] - Croogo 2.0.0 - Multiple Stored XSS Vulnerabilities
  242. [webapps] - Croogo 2.0.0 - Arbitrary PHP Code Execution Exploit
  243. [webapps] - Tenda A32 Router - CSRF Vulnerability
  244. [local] - Telefonica O2 Connection Manager 8.7 - Service Trusted Path Privilege Escal
  245. [local] - Telefonica O2 Connection Manager 3.4 - Local Privilege Escalation Vulnerabi
  246. [webapps] - PayPal Inc BB #85 MB iOS 4.6 - Auth Bypass Vulnerability
  247. [webapps] - Bosch Security Systems DVR 630/650/670 Series - Multiple Vulnerabilities
  248. [local] - Comodo Internet Security - HIPS/Sandbox Escape PoC
  249. [webapps] - Nessus Web UI 2.3.3 - Stored XSS
  250. [webapps] - DrayTek VigorACS SI 1.3.0 - Multiple Vulnerabilities