المساعد الشخصي الرقمي

مشاهدة النسخة كاملة : exploit database

الصفحات : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 [52] 53 54 55 56 57 58 59 60 61 62 63 64 65 66
  1. [webapps] - Openfire 3.10.2 - Unrestricted File Upload
  2. [local] - Total Commander 8.52 - SEH-Overwrite BOF
  3. [remote] - TP-Link NC200/NC220 Cloud Camera 300Mbps Wi-Fi - Hard-Coded Credentials
  4. [webapps] - EZ SQL Reports < 4.11.37 - Multiple Vulnerabilities
  5. [webapps] - ManageEngine OpManager 11.5 - Multiple Vulnerabilities
  6. [webapps] - ManageEngine EventLog Analyzer < 10.6 build 10060 - SQL Query Execution
  7. [dos] - IKEView.exe Fox beta 1 - Stack Buffer Overflow
  8. [dos] - IKEView.exe R60 - Stack Buffer Overflow
  9. [dos] - Microsoft Internet Explorer 11 - Stack Underflow Crash PoC
  10. [remote] - Windows Media Center Command Execution - MS15-100
  11. [webapps] - Monsta FTP 1.6.2 - Multiple Vulnerabilities
  12. [local] - Logitech Webcam Software 1.1 - eReg.exe SEH/Unicode Buffer Overflow
  13. [dos] - OpenLDAP 2.4.42 - ber_get_next Denial of Service
  14. [shellcode] - OS X x64 - tcp bind shellcode, NULL byte free (144 bytes)
  15. [local] - OS X Install.framework suid Helper Privilege Escalation
  16. [local] - OS X Install.framework Arbitrary mkdir, unlink and chown to admin Group
  17. [local] - OS X Install.framework suid root Runner Binary Privilege Escalation
  18. [webapps] - Octogate UTM 3.0.12 - Admin Interface Directory Traversal
  19. [webapps] - Synology Video Station 1.5-0757 - Multiple Vulnerabilities
  20. [webapps] - php - cgimode fpm writeprocmemfile bypass disable function demo
  21. [shellcode] - Linux/x86 - execve(/bin/bash) - 31 bytes
  22. [dos] - PHP unserialize() Use-After-Free Vulnerabilities
  23. [remote] - Android Stagefright - Remote Code Execution
  24. [dos] - PHP Session Deserializer Use-After-Free
  25. [dos] - PHP SplObjectStorage unserialize() Use-After-Free
  26. [dos] - PHP GMP unserialize() Use-After-Free
  27. [dos] - PHP SplDoublyLinkedList unserialize() Use-After-Free
  28. [webapps] - Auto-Exchanger 5.1.0 - CSRF Vulnerability
  29. [webapps] - Qlikview
  30. [papers] - Evading All Web-Application Firewalls XSS Filters
  31. [shellcode] - Linux/x86 - Create file with permission 7775 and exit (Shell Generator)
  32. [shellcode] - Linux/x86 - execve("/bin/cat", ["/bin/cat", "/etc/passwd"], NULL)
  33. [webapps] - DirectAdmin Web Control Panel 1.483 - Multiple Vulnerabilities
  34. [local] - IBM AIX High Availability Cluster Multiprocessing (HACMP) Local Privilege E
  35. [local] - Cisco Sourcefire User Agent 2.2 - Insecure File Permissions
  36. [dos] - Advantech WebAccess 8.0, 3.4.3 ActiveX - Multiple Vulnerabilities
  37. [papers] - Shoot zend_executor_globals to bypass php disable_functions
  38. [local] - VeryPDF HTML Converter 2.0 - SEH/ToLower() Bypass Buffer Overflow
  39. [remote] - Endian Firewall Proxy Password Change Command Injection
  40. [webapps] - NETGEAR Wireless Management System 2.1.4.15 (Build 1236) - Privilege Esca
  41. [webapps] - JSPMySQL Administrador - Multiple Vulnerabilities
  42. [webapps] - HooToo Tripmate HT-TM01 2.000.022 - CSRF Vulnerabilities
  43. [webapps] - Zhone ADSL2+ 4P Bridge & Router (Broadcom) - Multiple Vulnerabilities
  44. [local] - Disconnect.me Mac OS X Client
  45. [webapps] - FireEye Appliance Unauthorized File Disclosure
  46. [webapps] - Elastix < 2.5 , PHP Code Injection Exploit
  47. [webapps] - WordPress Contact Form Generator
  48. [dos] - ActiveState Perl.exe x64 Client 5.20.2 - Crash PoC
  49. [local] - AutoCAD DWG and DXF To PDF Converter 2.2 - Buffer Overflow
  50. [papers] - Compromising ISP Issued 802.11 Wireless Cable Modem Networks for Profit
  51. [papers] - [Hebrew] Digital Whisper Security Magazine #63
  52. [papers] - [Hebrew] Digital Whisper Security Magazine #64
  53. [webapps] - YesWiki 0.2 - Path Traversal Vulnerability
  54. [shellcode] - Mainframe/System Z Bind Shell
  55. [webapps] - Cerb 7.0.3 - CSRF Vulnerability
  56. [webapps] - GPON Home Router FTP G-93RG1 - CSRF Command Execution Vulnerability
  57. [dos] - SphereFTP Server 2.0 - Crash PoC
  58. [papers] - [Persian] Pyrit Cluster with Kali Linux
  59. [papers] - [Persian] Cracking WPA/WPA2 with Rainbow Table
  60. [shellcode] - OS X x64 /bin/sh Shellcode, NULL Byte Free, 34 bytes
  61. [webapps] - Thomson Wireless VoIP Cable Modem TWG850-4B ST9C.05.08 - Authentication B
  62. [webapps] - Edimax BR6228nS/BR6228nC - Multiple Vulnerabilities
  63. [dos] - XGI Windows VGA Display Manager 6.14.10.1090 - Arbitrary Write PoC
  64. [dos] - SiS Windows VGA Display Manager 6.14.10.3930 - Write-What-Where PoC
  65. [dos] - Mpxplay Multimedia Commander 2.00a - .m3u Stack-Based Buffer Overflow
  66. [webapps] - Bedita 3.5.1 - XSS Vulnerabilities
  67. [dos] - PFTP Server 8.0f Lite - textfield Local SEH Buffer Overflow
  68. [local] - Boxoft WAV to MP3 Converter - convert Feature Buffer Overflow
  69. [local] - Apple OS X Entitlements Rootpipe Privilege Escalation
  70. [webapps] - Cyberoam Firewall CR500iNG-XP - 10.6.2 MR-1 - Blind SQL Injection Vulnera
  71. [papers] - How to HeapSpray and Exploit Memory Corruption in IIS6
  72. [dos] - Viber 4.2.0 - Non-Printable Characters Handling Denial of Service Vulnerabili
  73. [dos] - Microsoft Office 2007 - msxml5.dll Crash PoC
  74. [webapps] - Ganglia Web Frontend < 3.5.1 - PHP Code Execution
  75. [webapps] - Edimax PS-1206MF - Web Admin Auth Bypass
  76. [webapps] - PhpWiki 1.5.4 - Multiple Vulnerabilities
  77. [remote] - PCMan FTP Server 2.0.7 - RENAME Command Buffer Overflow
  78. [remote] - PCMan FTP Server 2.0.7 - GET Command Buffer Overflow
  79. [dos] - Sysax Multi Server 6.40 SSH Component Denial of Service
  80. [remote] - MS SQL Server 2000/2005 SQLNS.SQLNamespace COM Object Refresh() Unhandled
  81. [webapps] - Samsung SyncThruWeb 2.01.00.26 - SMB Hash Disclosure
  82. [webapps] - Pluck CMS 4.7.3 - Multiple Vulnerabilities
  83. [dos] - freeSSHd 1.3.1 - Denial of Service Vulnerability
  84. [webapps] - Wolf CMS Arbitrary File Upload To Command Execution
  85. [webapps] - Jenkins 1.626 - Cross Site Request Forgery / Code Execution
  86. [webapps] - WordPress Responsive Thumbnail Slider Plugin 1.0 - Arbitrary File Upload
  87. [dos] - Photo Transfer (2) 1.0 iOS - Denial of Service Vulnerability
  88. [dos] - QEMU Programmable Interrupt Timer Controller Heap Overflow
  89. [webapps] - IP.Board 4.X - Stored XSS
  90. [local] - BSIGN 0.4.5 - Buffer Overflow
  91. [local] - FENIX 0.92 - Buffer Overflow
  92. [dos] - Xion Audio Player 1.5 build 155 Stack Based Buffer Overflow
  93. [remote] - FHFS - FTP/HTTP File Server 2.1.2 Remote Command Execution
  94. [webapps] - Magento eCommerce - Remote Code Execution
  95. [dos] - VLC Media Player 2.2.1 - m3u8/m3u Crash PoC
  96. [local] - ZSNES 1.51 - Buffer Overflow
  97. [dos] - Microsoft Office 2007 Malformed Document Stack-Based Buffer Overflow
  98. [dos] - Microsoft Office 2007 OneTableDocumentStream Invalid Object
  99. [webapps] - Keeper IP Camera 3.2.2.10 - Authentication Bypass
  100. [remote] - Firefox PDF.js Privileged Javascript Injection
  101. [dos] - GOM Audio 2.0.8 - (.gas) Crash POC
  102. [webapps] - WordPress GeoPlaces3 Theme - Arbitrary File Upload Vulnerbility
  103. [webapps] - Pligg CMS 2.0.2 - CSRF Add Admin Exploit
  104. [dos] - Mock SMTP Server 1.0 Remote Crash PoC
  105. [papers] - MySQL Error Based SQL Injection Using EXP
  106. [remote] - Easy Address Book Web Server 1.6 - USERID Remote Buffer Overflow
  107. [webapps] - Netsweeper 4.0.8 - Authentication Bypass
  108. [remote] - Easy File Sharing Web Server 6.9 - USERID Remote Buffer Overflow
  109. [local] - Multiple ChiefPDF Software 2.0 - Buffer Overflow
  110. [webapps] - Netsweeper 4.0.8 - Arbitrary File Upload and Execution
  111. [webapps] - Netsweeper 3.0.6 - Authentication Bypass
  112. [webapps] - Netsweeper 4.0.9 - Arbitrary File Upload And Execution
  113. [webapps] - Netsweeper 4.0.8 - Authentication Bypass Issue
  114. [webapps] - Netsweeper 4.0.8 - SQL Injection Authentication Bypass
  115. [webapps] - Netsweeper 4.0.4 - SQL Injection
  116. [webapps] - Netsweeper 2.6.29.8 - SQL Injection
  117. [local] - Mozilla Maintenance Service Log File Overwrite Elevation of Privilege
  118. [dos] - Microsoft Office 2007 MSPTLS Heap Index Integer Underflow
  119. [dos] - Windows ATMFD.DLL CharString Stream Out-of-Bounds Reads
  120. [dos] - Windows ATMFD.DLL Write to Uninitialized Address Due to Malformed CFF Table
  121. [dos] - Windows win32k.sys TTF Font Processing IUP[] Program Instruction Pool-Based B
  122. [dos] - Windows win32k.sys TTF Font Processing win32k!scl_ApplyTranslation Pool-Based
  123. [dos] - Windows ATMFD.DLL Out-of-Bounds Read Due to Malformed Name INDEX in the CFF T
  124. [dos] - Windows ATMFD.DLL Out-of-Bounds Read Due to Malformed FDSelect Offset in the
  125. [dos] - Windows win32k.sys TTF Font Processing win32k!fsc_RemoveDups Out-of-Bounds Po
  126. [dos] - Windows win32k.sys TTF Font Processing win32k!fsc_BLTHoriz Out-of-Bounds Pool
  127. [dos] - Microsoft Office 2007 MSO.dll Use-After-Free
  128. [dos] - Microsoft Office 2007 MSO.dll Arbitrary Free
  129. [dos] - Microsoft Office 2007 OGL.dll DpOutputSpanStretch::OutputSpan Out of Bounds W
  130. [webapps] - WordPress MDC Private Message Plugin 1.0.0 - Persistent XSS
  131. [shellcode] - Win2003 x64 - Token Stealing shellcode - 59 bytes
  132. [webapps] - Pligg CMS 2.0.2 - Arbitrary Code Execution
  133. [dos] - Valhala Honeypot 1.8 - Stack-Based Buffer Overflow
  134. [webapps] - Vifi Radio v1 - CSRF Vulnerability
  135. [webapps] - Aruba Mobility Controller 6.4.2.8 - Multiple vulnerabilities
  136. [webapps] - up.time 7.5.0 Upload And Execute File Exploit
  137. [webapps] - up.time 7.5.0 Arbitrary File Disclose And Delete Exploit
  138. [webapps] - up.time 7.5.0 XSS And CSRF Add Admin Exploit
  139. [webapps] - up.time 7.5.0 Superadmin Privilege Escalation Exploit
  140. [dos] - Adobe Flash Heap Use-After-Free in SurfaceFilterList::CreateFromScriptAtom
  141. [dos] - Adobe Flash AS2 Use-After-Free in TextField.filters
  142. [dos] - Adobe Flash Overflow in ID3 Tag Parsing
  143. [dos] - Adobe Flash Shared Object Type Confusion
  144. [dos] - Adobe Flash Heap-Based Buffer Overflow Due to Indexing Error When Loading FLV
  145. [dos] - Adobe Flash Heap-Based Buffer Overflow Loading FLV File with Nellymoser Audio
  146. [dos] - Adobe Flash: FileReference Class Type Confusion
  147. [dos] - Adobe Flash Use-After-Free in TextField.gridFitType
  148. [dos] - Adobe Flash XMLSocket Destructor Not Cleared Before Setting User Data in conn
  149. [dos] - Adobe Flash URL Resource Use-After-Free
  150. [dos] - Adobe Flash Type Confusion in TextRenderer.setAdvancedAntialiasingTable
  151. [dos] - Adobe Flash Use-After-Free in attachMovie
  152. [dos] - Adobe Flash Use-After-Free in Drawing Methods "this"
  153. [dos] - Adobe Flash Use-After-Free in scale9Grid
  154. [dos] - Adobe Flash Out-of-Bounds Read in UTF Conversion
  155. [dos] - Flash AS2 Use-After-Free in DisplacementMapFilter.mapBitmap (2)
  156. [dos] - Flash Use-After-Free with Color.setRGB in AS2
  157. [dos] - Adobe Flash Use-After-Free in XML.childNodes
  158. [dos] - Adobe Flash Out-of-Bounds Memory Read While Parsing a Mutated TTF File Embedd
  159. [dos] - Adobe Flash Use-After-Free When Setting Variable
  160. [remote] - Flash Boundless Tunes - Universal SOP Bypass Through ActionSctipt's Sound
  161. [dos] - Flash Use-After-Free in NetConnection.connect
  162. [dos] - Flash Use-After-Free in Display List Handling
  163. [dos] - Flash AS2 Use After Free While Setting TextField.filters
  164. [dos] - Flash AS2 Use After Free in TextField.filters
  165. [dos] - Flash Issues in DefineBitsLossless and DefineBitsLossless2 Leads to Using Uni
  166. [dos] - Flash Uninitialized Stack Variable MPD Parsing Memory Corruption
  167. [dos] - Flash AVSS.setSubscribedTags Use After Free Memory Corruption
  168. [dos] - Flash Player Integer Overflow in Function.apply
  169. [remote] - Flash Broker-Based Sandbox Escape via Unexpected Directory Lock
  170. [remote] - Flash Broker-Based Sandbox Escape via Forward Slash Instead of Backslash
  171. [dos] - Flash PCRE Regex Compilation Zero-Length Assertion Arbitrary Bytecode Executi
  172. [remote] - Easy File Management Web Server 5.6 - USERID Remote Buffer Overflow
  173. [webapps] - WordPress WP Symposium Plugin 15.1 - Blind SQL Injection
  174. [webapps] - BigTree CMS 4.2.3 - Authenticated SQL Injection Vulnerabilities
  175. [webapps] - CodoForum 3.3.1 - Multiple SQL Injection Vulnerabilities
  176. [webapps] - PHPfileNavigator 2.3.3 - Privilege Escalation
  177. [webapps] - PHPfileNavigator 2.3.3 - CSRF Vulnerability
  178. [webapps] - PHPfileNavigator 2.3.3 - XSS Vulnerabilities
  179. [remote] - Werkzeug Debug Shell Command Execution
  180. [local] - VideoCharge Studio Buffer Overflow (SEH)
  181. [webapps] - Magento CE < 1.9.0.1 Post Auth RCE
  182. [dos] - FTP Commander 8.02 - SEH Overwrite
  183. [webapps] - Nuts CMS Remote PHP Code Injection / Execution
  184. [remote] - Microsoft Windows HTA (HTML Application) - Remote Code Execution (MS14-064
  185. [webapps] - Sagemcom F@ST 3864 V2 - Get Admin Password
  186. [local] - MASM321 11 Quick Editor (.qeditor) 4.0g- .qse SEH Based Buffer Overflow (AS
  187. [dos] - XMPlay 3.8.1.12 - .pls Local Crash PoC
  188. [shellcode] - Windows x86 All Versions - user32!MessageBox "Hello World!" (199 Bytes
  189. [webapps] - Security IP Camera Star Vision DVR - Authentication Bypass
  190. [dos] - Ubuntu 14.04 NetKit FTP Client - Crash/DoS PoC
  191. [dos] - Ability FTP Server 2.1.4 - Admin Panel AUTHCODE Command Remote DoS
  192. [dos] - Ability FTP Server 2.1.4 - afsmain.exe USER Command Remote DoS
  193. [webapps] - Joomla com_informations component - SQL Injection vulnerability
  194. [webapps] - Joomla com_memorix component - SQL Injection vulnerability
  195. [local] - Firefox < 39.03 - pdf.js Same Origin Policy Exploit
  196. [local] - Microsoft HTML Help Compiler 4.74.8702.0 - SEH Based Overflow
  197. [webapps] - TOTOLINK Routers - Backdoor and RCE Exploit PoC
  198. [webapps] - Gkplugins Picasaweb - Download File
  199. [local] - PDF Shaper 3.5 - Buffer Overflow
  200. [local] - Windows 8.1 DCOM DCE/RPC Local NTLM Reflection Privilege Escalation (MS15-0
  201. [shellcode] - Linux x86 - /bin/sh ROL/ROR Encoded Shellcode
  202. [dos] - Internet Explorer CTreeNode::GetCascadedLang Use-After-Free Vulnerability (MS
  203. [webapps] - WordPress Candidate Application Form Plugin 1.0 - Arbitrary File Download
  204. [webapps] - WordPress Simple Image Manipulator Plugin 1.0 - Arbitrary File Download
  205. [webapps] - WordPress Recent Backups Plugin 0.7 - Arbitrary File Download
  206. [webapps] - WordPress WPTF Image Gallery 1.03 - Aribtrary File Download
  207. [webapps] - WDS CMS - SQL Injection
  208. [shellcode] - Linux x86 Egg Hunter Shellcode (19 bytes)
  209. [webapps] - WordPress Video Gallery 2.7 SQL Injection
  210. [dos] - Havij Pro - Crash POC
  211. [dos] - OSX Keychain - EXC_BAD_ACCESS DoS
  212. [dos] - Classic FTP 2.36 - CWD Reconnection DoS
  213. [dos] - Brasero - Crash Proof Of Concept
  214. [dos] - Acunetix Web Vulnerability Scanner 9.5 - Crash PoC
  215. [webapps] - JoomShopping - Blind SQL Injection
  216. [local] - Tomabo MP4 Player 3.11.3 - (.m3u) SEH Buffer Overflow
  217. [dos] - Dell Netvault Backup 10.0.1.24 - Denial of Service
  218. [webapps] - WordPress Job Manager Plugin 0.7.22 - Persistent XSS
  219. [webapps] - Microweber 1.0.3 File Upload Filter Bypass Remote PHP Code Execution
  220. [webapps] - Microweber 1.0.3 - Stored XSS And CSRF Add Admin Exploit
  221. [papers] - BIGINT Overflow Error Based SQL Injection
  222. [local] - Windows NDProxy Privilege Escalation XP SP3 x86 and 2003 SP2 x86 (MS14-002)
  223. [remote] - PCMan FTP Server 2.0.7 - PUT Command Buffer Overflow
  224. [webapps] - PHP News Script 4.0.0 - SQL Injection
  225. [webapps] - Froxlor Server Management Panel 0.9.33.1 - MySQL Login Information Disclo
  226. [local] - Linux x86 Memory Sinkhole Privilege Escalation PoC
  227. [local] - Linux Privilege Escalation Due to Nested NMIs Interrupting espfix64
  228. [dos] - ISC BIND9 TKEY Remote DoS PoC
  229. [dos] - BIND9 - TKEY PoC
  230. [dos] - KMPlayer 3.9.x - .srt Crash PoC
  231. [dos] - T-Mobile Internet Manager - Contact Name Crash PoC
  232. [webapps] - Tendoo CMS 1.3 - XSS Vulnerabilities
  233. [local] - Sudo
  234. [local] - Heroes of Might and Magic III - Map Parsing Arbitrary Code Execution
  235. [webapps] - phpFileManager 0.9.8 - CSRF Vulnerability
  236. [webapps] - phpFileManager 0.9.8 - Remote Command Execution Vulnerability
  237. [webapps] - Xceedium Xsuite - Multiple Vulnerabilities
  238. [webapps] - WordPress Count Per Day Plugin 3.4 - SQL Injection
  239. [webapps] - WordPress Unite Gallery Lite Plugin 1.4.6 - Multiple Vulnerabilities
  240. [dos] - Libuser Library - Multiple Vulnerabilities
  241. [webapps] - Hawkeye-G v3.0.1.4912 Persistent XSS & Information Leakage
  242. [local] - Foxit Reader - PNG Conversion Parsing tEXt Chunk Arbitrary Code Execution
  243. [webapps] - Airdroid iOS, Android & Win 3.1.3 - Persistent Vulnerability
  244. [webapps] - Hawkeye-G v3.0.1.4912 CSRF Vulnerability
  245. [webapps] - phpVibe < 4.20 Stored XSS
  246. [webapps] - WordPress Download Manager Free 2.7.94 & Pro 4 Authenticated Stored XSS
  247. [local] - OS X 10.10 DYLD_PRINT_TO_FILE Local Privilege Escalation
  248. [dos] - Counter-Strike 1.6 'GameInfo' Query Reflection DoS PoC
  249. [remote] - Internet Download Manager - OLE Automation Array Remote Code Execution
  250. [remote] - SysAid Help Desk 'rdslogs' Arbitrary File Upload