المساعد الشخصي الرقمي

مشاهدة النسخة كاملة : exploit database


الصفحات : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 [51] 52 53 54 55 56 57 58 59 60 61 62 63

  1. [remote] - WebGate eDVR Manager 2.6.4 SiteName Stack Overflow
  2. [remote] - WebGate Control Center 4.8.7 GetThumbnail Stack Overflow
  3. [remote] - WebGate WinRDS 2.0.8 StopSiteAllChannel Stack Overflow
  4. [remote] - Acunetix OLE Automation Array Remote Code Execution
  5. [remote] - WebGate eDVR Manager Stack Buffer Overflow
  6. [remote] - QNAP Web Server Remote Code Execution via Bash Environment Variable Code I
  7. [remote] - QNAP admin shell via Bash Environment Variable Code Injection
  8. [local] - RM Downloader 2.7.5.400 Local Buffer Overflow
  9. [local] - Mini-stream Ripper v2.7.7.100 Local Buffer Overflow
  10. [webapps] - pfSense 2.2 - Multiple Vulnerabilities
  11. [remote] - Adobe Flash Player Arbitrary Code Execution
  12. [webapps] - WP Marketplace 2.4.0 - Remote Code Execution (Add WP Admin)
  13. [remote] - Firefox Proxy Prototype Privileged Javascript Injection
  14. [webapps] - WordPress Plugin InBoundio Marketing 1.0 - Shell Upload Vulnerability
  15. [remote] - Bsplayer 2.68 - HTTP Response Exploit (Universal)
  16. [webapps] - Wordpress Marketplace 2.4.0 - Arbitrary File Download
  17. [local] - Free MP3 CD Ripper 2.6 - Local Buffer Overflow
  18. [webapps] - Joomla Spider FAQ Component - SQL Injection Vulnerability
  19. [webapps] - Telescope
  20. [papers] - PoC || GTFO 0x07
  21. [local] - Windows 8.1 - Local WebDAV NTLM Reflection Elevation of Privilege
  22. [webapps] - Citrix NITRO SDK - Command Injection Vulnerability
  23. [webapps] - Citrix Command Center - Credential Disclosure
  24. [webapps] - EMC M&R (Watch4net) - Directory Traversal
  25. [webapps] - Joomla ECommerce-WD Plugin 1.2.5 - SQL Injection Vulnerabilities
  26. [remote] - TWiki Debugenableplugins Remote Code Execution
  27. [local] - Publish-It PUI Buffer Overflow (SEH)
  28. [webapps] - EMC M&R (Watch4net) - Credential Disclosure
  29. [webapps] - Chamilo LMS 1.9.10 - Multiple Vulnerabilities
  30. [dos] - FastStone Image Viewer 5.3 .tga Crash PoC
  31. [webapps] - Websense Appliance Manager Command Injection Vulnerability
  32. [dos] - Fortinet Single Sign On Stack Overflow
  33. [remote] - Exim GHOST (glibc gethostbyname) Buffer Overflow
  34. [remote] - Adobe Flash Player PCRE Regex Vulnerability
  35. [webapps] - Metasploit Project < 4.11.1 Initial User Creation CSRF
  36. [webapps] - Moodle 2.5.9/2.6.8/2.7.5/2.8.3 - Block Title Handler Cross-Site Scripting
  37. [local] - Spybot Search & Destroy 1.6.2 Security Center Service - Privilege Escalatio
  38. [remote] - ElasticSearch Search Groovy Sandbox Bypass
  39. [webapps] - WordPress WPML - Multiple Vulnerabilities
  40. [dos] - WordPress SEO by Yoast 1.7.3.3 - Blind SQL Injection
  41. [remote] - IPass Control Pipe Remote Command Execution
  42. [shellcode] - Shellcode - Linux/x86 - TCP Bind Shell (96 bytes)
  43. [shellcode] - Shellcode - Linux/x86 - Reverse TCP Shell (72 bytes)
  44. [shellcode] - Shellcode - linux/x86 - Obfuscated execve("/bin/sh") (40 bytes)
  45. [shellcode] - Shellcode - linux/x86 - Obfuscated - map google.com to 127.1.1.1 (98 by
  46. [shellcode] - Shellcode - Linux/x86 - chmod 0777 /etc/shadow obfuscated (84 bytes)
  47. [dos] - Intel Network Adapter Diagnostic Driver - IOCTL Handling Vulnerability
  48. [shellcode] - Shellcode - linux/x86 - ROT13 encoded execve("/bin/sh") (68 bytes)
  49. [local] - Foxit Reader 7.0.6.1126 - Unquoted Service Path Elevation Of Privilege
  50. [local] - Brasero CD/DVD Burner 3.4.1 - 'm3u' Buffer Overflow Crash PoC
  51. [webapps] - Smart PHP Poll - Auth Bypass Vulnerability
  52. [remote] - Adobe Flash Player ByteArray UncompressViaZlibVariant Use After Free
  53. [webapps] - PHP Betoffice (Betster) 1.0.4 - Authentication Bypass And SQL Injection
  54. [webapps] - Elastix 2.x - Blind SQL Injection Vulnerability
  55. [dos] - Sagem F@st 3304-V2 - Telnet Crash PoC
  56. [remote] - ElasticSearch Unauthenticated Remote Code Execution
  57. [dos] - Microsoft Windows Text Services Memory Corruption (MS15-020)
  58. [dos] - Foxit Products GIF Conversion Memory Corruption (DataSubBlock)
  59. [dos] - Foxit Products GIF Conversion Memory Corruption (LZWMinimumCodeSize)
  60. [webapps] - GeniXCMS 0.0.1 - Multiple Vulnerabilities
  61. [webapps] - Codoforum 2.5.1 - Arbitrary File Download
  62. [local] - Rowhammer: NaCl Sandbox Escape PoC
  63. [local] - Rowhammer: Linux Kernel Privilege Escalation PoC
  64. [papers] - [Hebrew] Digital Whisper Security Magazine #59
  65. [webapps] - WordPress Download Manager 2.7.2 - Privilege Escalation
  66. [webapps] - ProjectSend r561 - SQL Injection Vulnerability
  67. [remote] - HP Data Protector 8.10 Remote Command Execution
  68. [webapps] - Sagem F@st 3304-V2 - LFI
  69. [webapps] - Calculated Fields Form Wordpress Plugin
  70. [local] - VFU 4.10-1.1 - Move Entry Buffer Overflow
  71. [dos] - Linux Kernel Associative Array Garbage Collection - Crash PoC
  72. [dos] - Linux Kernel PPP-over-L2TP Socket Level Handling - Crash PoC
  73. [dos] - Linux Kernel IRET Instruction #SS Fault Handling - Crash PoC
  74. [webapps] - BEdita CMS 3.5.0 - Multiple Vulnerabilities
  75. [remote] - Seagate Business NAS Unauthenticated Remote Command Execution
  76. [papers] - [TURKISH] Penetration and Security Testing on Microsoft SQL Server
  77. [remote] - Symantec Web Gateway 5 restore.php Post Authentication Command Injection
  78. [webapps] - Solarwinds Orion Service - SQL Injection Vulnerabilities
  79. [webapps] - PHPMoAdmin Unauthorized Remote Code Execution (0-Day)
  80. [dos] - SQLite3 3.8.6 - Controlled Memory Corruption PoC
  81. [webapps] - vBulletin vBSEO 4.x.x 'visitormessage.php' Remote Code Injection Vulnerab
  82. [webapps] - Seagate Business NAS
  83. [remote] - Persistent Systems Client Automation Command Injection RCE
  84. [local] - Ubisoft Uplay 5.0 - Insecure File Permissions Local Privilege Escalation
  85. [local] - Electronic Arts Origin Client 9.5.5 - Multiple Privilege Escalation Vulnera
  86. [remote] - HP Client Automation Command Injection
  87. [webapps] - Beehive Forum 1.4.4 - Stored XSS Vulnerability
  88. [webapps] - WonderPlugin Audio Player 2.0 - Blind SQL Injection and XSS
  89. [remote] - PCMan FTP Server 2.0.7 - Buffer Overflow - MKD Command
  90. [local] - Realtek 11n Wireless LAN utility - Privilege Escalation
  91. [webapps] - WordPress Webdorado Spider Event Calendar 1.4.9 - SQL Injection
  92. [webapps] - WordPress Easy Social Icons Plugin 1.2.2 - CSRF Vulnerability
  93. [webapps] - phpBugTracker 1.6.0 - Multiple Vulnerabilities
  94. [webapps] - Zeuscart v.4 - Multiple Vulnerabilities
  95. [dos] - PHP DateTime Use After Free Vulnerability
  96. [webapps] - Zabbix 2.0.5 - Cleartext ldap_bind_password Password Disclosure (MSF)
  97. [webapps] - Clipbucket 2.7 RC3 0.9 - Blind SQL Injection
  98. [webapps] - WeBid 1.1.1 Unrestricted File Upload Exploit
  99. [dos] - Samsung iPOLiS 1.12.2 - iPOLiS XnsSdkDeviceIpInstaller ActiveX WriteConfigVal
  100. [webapps] - Piwigo 2.7.3 - Multiple Vulnerabilities
  101. [webapps] - CrushFTP 7.2.0 - Multiple Vulnerabilities
  102. [remote] - jQuery jui_filter_rules PHP Code Execution
  103. [webapps] - Piwigo 2.7.3 - SQL Injection
  104. [webapps] - D-Link DSL-2640B - Unauthenticated Remote DNS Change Exploit
  105. [webapps] - Duplicator 0.5.8 Privilege Escalation
  106. [remote] - Java JMX Server Insecure Configuration Java Code Execution
  107. [remote] - X360 VideoPlayer ActiveX Control Buffer Overflow
  108. [webapps] - GuppY CMS 5.0.9 & 5.00.10 Multiple CSRF Vulnerabilities
  109. [webapps] - Guppy CMS 5.0.9 & 5.00.10 Authentication Bypass/Change Email
  110. [webapps] - eTouch SamePage 4.4.0.0.239 - Multiple Vulnerabilities
  111. [papers] - [Hebrew] Digital Whisper Security Magazine #58
  112. [webapps] - Exponent CMS 2.3.1 - Multiple XSS Vulnerabilities
  113. [webapps] - Wordpress Video Gallery 2.7.0 - SQL Injection Vulnerability
  114. [remote] - Achat v0.150 beta7 Buffer Overflow
  115. [webapps] - Pandora FMS 5.1 SP1 - SQL Injection Vulnerability
  116. [webapps] - Wordpress Survey and Poll Plugin 1.1 - Blind SQL Injection
  117. [local] - MooPlayer 1.3.0 'm3u' SEH Buffer Overflow
  118. [local] - SoftSphere DefenseWall FW/IPS 3.24 - Privilege Escalation
  119. [remote] - WordPress WP EasyCart Unrestricted File Upload
  120. [webapps] - LG DVR LE6016D - Remote File Disclosure Vulnerability
  121. [webapps] - Wordpress Theme Divi Arbitrary File Download Vulnerability
  122. [webapps] - StaMPi - Local File Inclusion
  123. [papers] - Exploit-Sources (Part One)
  124. [webapps] - u5CMS 3.9.3 - Multiple Stored And Reflected XSS Vulnerabilities
  125. [webapps] - u5CMS 3.9.3 - (thumb.php) Local File Inclusion Vulnerability
  126. [webapps] - u5CMS 3.9.3 - Multiple SQL Injection Vulnerabilities
  127. [webapps] - u5CMS 3.9.3 - (deletefile.php) Arbitrary File Deletion Vulnerability
  128. [webapps] - u5CMS 3.9.3 - Multiple Open Redirect Vulnerabilities
  129. [dos] - Chemtool 1.6.14 - Memory Corruption Vulnerability
  130. [webapps] - Redaxscript CMS 2.2.0 - SQL Injection Vulnerability
  131. [dos] - MooPlayer 1.3.0 - 'm3u' SEH Buffer Overflow PoC
  132. [remote] - Shuttle Tech ADSL Modem-Router 915 WM - Unauthenticated Remote DNS Change
  133. [webapps] - Pragyan CMS 3.0 - SQL Injection
  134. [local] - K7 Computing Multiple Products Arbitrary Write Privilege Escalation
  135. [local] - BullGuard Multiple Products Arbitrary Write Privilege Escalation
  136. [local] - AVG Internet Security 2015 Arbitrary Write Privilege Escalation
  137. [dos] - Exim ESMTP 4.80 glibc gethostbyname - Denial of Service
  138. [local] - MS15-004 Microsoft Remote Desktop Services Web Proxy IE Sandbox Escape
  139. [webapps] - Hewlett-Packard UCMDB - JMX-Console Authentication Bypass
  140. [local] - Symantec Altiris Agent 6.9 (Build 648) - Privilege Escalation
  141. [local] - Trend Micro Multiple Products 8.0.1133 - Privilege Escalation
  142. [remote] - HP Data Protector 8.x - Remote Command Execution
  143. [webapps] - NPDS CMS Revolution-13 - SQL Injection Vulnerability
  144. [remote] - Symantec Encryption Management Server < 3.2.0 MP6 - Remote Command Injecti
  145. [remote] - X360 VideoPlayer ActiveX Control 2.6 - Full ASLR & DEP Bypass
  146. [webapps] - Wordpress Photo Gallery Plugin 1.2.5 - Unrestricted File Upload
  147. [webapps] - ManageEngine Desktop Central 9 Build 90087 - CSRF Vulnerability
  148. [dos] - IceCream Ebook Reader 1.41 - Crash PoC
  149. [webapps] - Wordpress Cforms Plugin 14.7 - Remote Code Execution
  150. [webapps] - Sefrengo CMS 1.6.1 - Multiple SQL Injection Vulnerabilities
  151. [papers] - Ghost Vulnerability CVE-2015-0235 White Paper
  152. [dos] - FreeBSD Kernel Multiple Vulnerabilities
  153. [papers] - Analysis of CVE-2014-4113 (Windows Privilege Escalation Vulnerability)
  154. [local] - Microsoft Windows Server 2003 SP2 - Privilege Escalation
  155. [local] - UniPDF 1.1 - Crash PoC (SEH overwritten)
  156. [local] - OS X < 10.10.x - Gatekeeper bypass Vulnerability
  157. [webapps] - ManageEngine Firewall Analyzer 8.0 - Directory Traversal/XSS Vulnerabilit
  158. [remote] - VSAT Sailor 900 - Remote Exploit
  159. [remote] - ClearSCADA - Remote Authentication Bypass Exploit
  160. [remote] - D-Link DSL-2740R - Unauthenticated Remote DNS Change Exploit
  161. [webapps] - Symantec Data Center Security - Multiple Vulnerabilities
  162. [webapps] - ferretCMS 1.0.4-alpha - Multiple Vulnerabilities
  163. [dos] - Android WiFi-Direct Denial of Service
  164. [webapps] - jclassifiedsmanager - Multiple Vulnerabilities
  165. [webapps] - ManageEngine EventLog Analyzer 9.0 - Directory Traversal / XSS Vulnerabil
  166. [webapps] - SWFupload 2.5.0 - Cross Frame Scripting (XFS) Vulnerability
  167. [webapps] - PHP Webquest 2.6 - SQL Injection
  168. [webapps] - ManageEngine ServiceDesk Plus 9.0 (< Build 9031) - User Privileges Manag
  169. [local] - VLC Player 2.1.5 - Write Access Violation Vulnerability
  170. [local] - VLC Player 2.1.5 - DEP Access Violation Vulnerability
  171. [webapps] - Barracuda Networks Cloud Series - Filter Bypass Vulnerability
  172. [webapps] - Mangallam CMS - SQL Injection Web Vulnerability
  173. [dos] - Crystal Player 1.99 - Memory Corruption Vulnerability
  174. [local] - Windows < 8.1 (32/64 bit) - Privilege Escalation (User Profile Service) (MS
  175. [dos] - Exif Pilot 4.7.2 - SEH Based Buffer Overflow
  176. [local] - OS X networkd "effective_audit_token" XPC Type Confusion Sandbox Escape
  177. [webapps] - WordPress Pixarbay Images Plugin 2.3 - Multiple Vulnerabilities
  178. [remote] - ManageEngine Multiple Products Authenticated File Upload
  179. [dos] - MalwareBytes Anti-Exploit 1.03.1.1220, 1.04.1.1012 Out-of-bounds Read DoS
  180. [remote] - Bsplayer 2.68 - HTTP Response Buffer Overflow
  181. [webapps] - RedaxScript 2.1.0 - Privilege Escalation
  182. [local] - Sim Editor 6.6 - Stack Based Buffer Overflow
  183. [remote] - Samsung SmartViewer BackupToAvi 3.0 - Remote Code Execution
  184. [webapps] - D-Link DSL-2730B Modem - XSS Injection Stored Exploit Lancfg2get.cgi
  185. [webapps] - D-Link DSL-2730B Modem - XSS Injection Stored Exploit DnsProxy.cmd
  186. [local] - Palringo 2.8.1 - Stack Buffer Overflow (PoC)
  187. [webapps] - vBulletin MicroCART 1.1.4 - Arbitrary File(s) Deletion, SQL Injection & X
  188. [shellcode] - Obfuscated Shellcode Windows x64 - [1218 Bytes] Add Administrator User/
  189. [shellcode] - Obfuscated Shellcode Windows x86 - [1218 Bytes] Add Administrator User/
  190. [webapps] - Ansible Tower 2.0.2 - Multiple Vulnerabilities
  191. [remote] - WordPress WP Symposium 14.11 Shell Upload
  192. [remote] - Oracle MySQL for Microsoft Windows FILE Privilege Abuse
  193. [remote] - Lexmark MarkVision Enterprise Arbitrary File Upload
  194. [webapps] - Foxit MobilePDF 4.4.0 iOS - Multiple Vulnerabilities
  195. [dos] - OS X 10.10 Bluetooth DispatchHCIWriteStoredLinkKey - Crash PoC
  196. [dos] - OS X 10.10 Bluetooth TransferACLPacketToHW - Crash PoC
  197. [dos] - OS X 10.10 Bluetooth BluetoothHCIChangeLocalName - Crash PoC
  198. [dos] - OS X 10.10 Bluetooth DispatchHCICreateConnection - Crash PoC
  199. [webapps] - Dell iDRAC IPMI 1.5 - Insufficient Session ID Randomness
  200. [webapps] - Gecko CMS 2.3 - Multiple Vulnerabilities
  201. [local] - RedStar 3.0 Desktop - Privilege Escalation (Software Manager - swmng.app)
  202. [local] - RedStar 2.0 Desktop - Privilege Escalation (World-writeable rc.sysinit)
  203. [local] - RedStar 3.0 Desktop - Privilege Escalation (Enable sudo)
  204. [local] - OS X 10.9.x - sysmond XPC Privilege Escalation
  205. [local] - Ntpdc 4.2.6p3 - Local Buffer Overflow
  206. [remote] - Pandora v3.1 Auth Bypass and Arbitrary File Upload Vulnerability
  207. [webapps] - WordPress Shopping Cart 3.0.4 - Unrestricted File Upload
  208. [webapps] - Sefrengo CMS 1.6.0 - SQL Injection
  209. [webapps] - Pirelli ADSL2/2+ Wireless Router P.DGA4001N - Information Disclosure
  210. [webapps] - Microweber CMS 0.95 - SQL Injection
  211. [local] - BulletProof FTP Client BPS Buffer Overflow
  212. [webapps] - AdaptCMS 3.0.3 - Multiple Vulnerabilities
  213. [remote] - SkinCrafter3 vs2005 3.8.1.0 - Multiple ActiveX Buffer Overflows
  214. [webapps] - Crea8Social 2.0 - XSS Change Interface
  215. [remote] - ASUSWRT 3.0.0.4.376_1071 - LAN Backdoor Command Execution
  216. [webapps] - e107 2 Bootstrap CMS - XSS Vulnerability
  217. [webapps] - PHPads
  218. [local] - i-FTP Schedule Buffer Overflow
  219. [webapps] - Absolut Engine 1.73 - Multiple Vulnerabilities
  220. [papers] - [Hebrew] Digital Whisper Security Magazine #57
  221. [local] - Windows 8.1 (32/64 bit) - Privilege Escalation (ahcache.sys/NtApphelpCacheC
  222. [remote] - ProjectSend Arbitrary File Upload
  223. [webapps] - Social Microblogging PRO 1.5 Stored XSS Vulnerability
  224. [webapps] - Easy File Sharing Webserver
  225. [webapps] - GQ File Manager 0.2.5 - Multiple Vulnerabilities
  226. [shellcode] - Linux x86 rmdir - 37 bytes Stack shellcode
  227. [remote] - Liferay Portal 7.0.x
  228. [papers] - Anatomy of Exploit - World of Shellcode
  229. [shellcode] - x64 Linux reverse TCP connect shellcode (77 to 85 bytes, 90 to 98 with
  230. [shellcode] - x64 Linux bind TCP port shellcode (81 bytes, 96 with password)
  231. [remote] - WhatsApp
  232. [webapps] - PMB
  233. [webapps] - PHPLIST 3.0.6 & 3.0.10 - SQL Injection Vulnerability
  234. [webapps] - Pimcore 3.0 & 2.3.0 CMS - SQL Injection Vulnerability
  235. [dos] - Wickr Desktop 2.2.1 Windows - Denial of Service Vulnerability
  236. [webapps] - Lazarus Guestbook 1.22 - Multiple Vulnerabilities
  237. [local] - GParted 0.14.1 - OS Command Execution
  238. [webapps] - NetIQ Access Manager 4.0 SP1 - Multiple Vulnerabilities
  239. [webapps] - SysAid Server Arbitrary File Disclosure
  240. [local] - BitRaider Streaming Client 1.3.3.4098 Local Privilege Escalation Vulnerabil
  241. [dos] - jetAudio 8.1.3 Basic (mp3) - Crash POC
  242. [remote] - Lotus Mail Encryption Server (Protector for Mail) LFI to RCE
  243. [remote] - Varnish Cache CLI Interface Remote Code Execution
  244. [dos] - Ettercap 0.8.0-0.8.1 - Multiple Denial of Service Vulnerabilities
  245. [webapps] - miniBB 3.1 - Blind SQL Injection
  246. [webapps] - Cacti Superlinks Plugin 1.4-2 RCE(LFI) via SQL Injection Exploit
  247. [webapps] - CIK Telecom VoIP router SVG6000RW - Privilege Escalation and Command Exec
  248. [webapps] - SQL Buddy 1.3.3 - Remote Code Execution
  249. [webapps] - ProjectSend r-561 - Arbitrary File Upload
  250. [webapps] - CMS Papoo 6.0.0 Rev. 4701 - Stored XSS