المساعد الشخصي الرقمي

مشاهدة النسخة كاملة : exploit database


الصفحات : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 [54] 55 56 57 58 59 60 61 62 63 64 65

  1. [remote] - ManageEngine Multiple Products Authenticated File Upload
  2. [dos] - MalwareBytes Anti-Exploit 1.03.1.1220, 1.04.1.1012 Out-of-bounds Read DoS
  3. [remote] - Bsplayer 2.68 - HTTP Response Buffer Overflow
  4. [webapps] - RedaxScript 2.1.0 - Privilege Escalation
  5. [local] - Sim Editor 6.6 - Stack Based Buffer Overflow
  6. [remote] - Samsung SmartViewer BackupToAvi 3.0 - Remote Code Execution
  7. [webapps] - D-Link DSL-2730B Modem - XSS Injection Stored Exploit Lancfg2get.cgi
  8. [webapps] - D-Link DSL-2730B Modem - XSS Injection Stored Exploit DnsProxy.cmd
  9. [local] - Palringo 2.8.1 - Stack Buffer Overflow (PoC)
  10. [webapps] - vBulletin MicroCART 1.1.4 - Arbitrary File(s) Deletion, SQL Injection & X
  11. [shellcode] - Obfuscated Shellcode Windows x64 - [1218 Bytes] Add Administrator User/
  12. [shellcode] - Obfuscated Shellcode Windows x86 - [1218 Bytes] Add Administrator User/
  13. [webapps] - Ansible Tower 2.0.2 - Multiple Vulnerabilities
  14. [remote] - WordPress WP Symposium 14.11 Shell Upload
  15. [remote] - Oracle MySQL for Microsoft Windows FILE Privilege Abuse
  16. [remote] - Lexmark MarkVision Enterprise Arbitrary File Upload
  17. [webapps] - Foxit MobilePDF 4.4.0 iOS - Multiple Vulnerabilities
  18. [dos] - OS X 10.10 Bluetooth DispatchHCIWriteStoredLinkKey - Crash PoC
  19. [dos] - OS X 10.10 Bluetooth TransferACLPacketToHW - Crash PoC
  20. [dos] - OS X 10.10 Bluetooth BluetoothHCIChangeLocalName - Crash PoC
  21. [dos] - OS X 10.10 Bluetooth DispatchHCICreateConnection - Crash PoC
  22. [webapps] - Dell iDRAC IPMI 1.5 - Insufficient Session ID Randomness
  23. [webapps] - Gecko CMS 2.3 - Multiple Vulnerabilities
  24. [local] - RedStar 3.0 Desktop - Privilege Escalation (Software Manager - swmng.app)
  25. [local] - RedStar 2.0 Desktop - Privilege Escalation (World-writeable rc.sysinit)
  26. [local] - RedStar 3.0 Desktop - Privilege Escalation (Enable sudo)
  27. [local] - OS X 10.9.x - sysmond XPC Privilege Escalation
  28. [local] - Ntpdc 4.2.6p3 - Local Buffer Overflow
  29. [remote] - Pandora v3.1 Auth Bypass and Arbitrary File Upload Vulnerability
  30. [webapps] - WordPress Shopping Cart 3.0.4 - Unrestricted File Upload
  31. [webapps] - Sefrengo CMS 1.6.0 - SQL Injection
  32. [webapps] - Pirelli ADSL2/2+ Wireless Router P.DGA4001N - Information Disclosure
  33. [webapps] - Microweber CMS 0.95 - SQL Injection
  34. [local] - BulletProof FTP Client BPS Buffer Overflow
  35. [webapps] - AdaptCMS 3.0.3 - Multiple Vulnerabilities
  36. [remote] - SkinCrafter3 vs2005 3.8.1.0 - Multiple ActiveX Buffer Overflows
  37. [webapps] - Crea8Social 2.0 - XSS Change Interface
  38. [remote] - ASUSWRT 3.0.0.4.376_1071 - LAN Backdoor Command Execution
  39. [webapps] - e107 2 Bootstrap CMS - XSS Vulnerability
  40. [webapps] - PHPads
  41. [local] - i-FTP Schedule Buffer Overflow
  42. [webapps] - Absolut Engine 1.73 - Multiple Vulnerabilities
  43. [papers] - [Hebrew] Digital Whisper Security Magazine #57
  44. [local] - Windows 8.1 (32/64 bit) - Privilege Escalation (ahcache.sys/NtApphelpCacheC
  45. [remote] - ProjectSend Arbitrary File Upload
  46. [webapps] - Social Microblogging PRO 1.5 Stored XSS Vulnerability
  47. [webapps] - Easy File Sharing Webserver
  48. [webapps] - GQ File Manager 0.2.5 - Multiple Vulnerabilities
  49. [shellcode] - Linux x86 rmdir - 37 bytes Stack shellcode
  50. [remote] - Liferay Portal 7.0.x
  51. [papers] - Anatomy of Exploit - World of Shellcode
  52. [shellcode] - x64 Linux reverse TCP connect shellcode (77 to 85 bytes, 90 to 98 with
  53. [shellcode] - x64 Linux bind TCP port shellcode (81 bytes, 96 with password)
  54. [remote] - WhatsApp
  55. [webapps] - PMB
  56. [webapps] - PHPLIST 3.0.6 & 3.0.10 - SQL Injection Vulnerability
  57. [webapps] - Pimcore 3.0 & 2.3.0 CMS - SQL Injection Vulnerability
  58. [dos] - Wickr Desktop 2.2.1 Windows - Denial of Service Vulnerability
  59. [webapps] - Lazarus Guestbook 1.22 - Multiple Vulnerabilities
  60. [local] - GParted 0.14.1 - OS Command Execution
  61. [webapps] - NetIQ Access Manager 4.0 SP1 - Multiple Vulnerabilities
  62. [webapps] - SysAid Server Arbitrary File Disclosure
  63. [local] - BitRaider Streaming Client 1.3.3.4098 Local Privilege Escalation Vulnerabil
  64. [dos] - jetAudio 8.1.3 Basic (mp3) - Crash POC
  65. [remote] - Lotus Mail Encryption Server (Protector for Mail) LFI to RCE
  66. [remote] - Varnish Cache CLI Interface Remote Code Execution
  67. [dos] - Ettercap 0.8.0-0.8.1 - Multiple Denial of Service Vulnerabilities
  68. [webapps] - miniBB 3.1 - Blind SQL Injection
  69. [webapps] - Cacti Superlinks Plugin 1.4-2 RCE(LFI) via SQL Injection Exploit
  70. [webapps] - CIK Telecom VoIP router SVG6000RW - Privilege Escalation and Command Exec
  71. [webapps] - SQL Buddy 1.3.3 - Remote Code Execution
  72. [webapps] - ProjectSend r-561 - Arbitrary File Upload
  73. [webapps] - CMS Papoo 6.0.0 Rev. 4701 - Stored XSS
  74. [remote] - ActualAnalyzer 'ant' Cookie Command Execution
  75. [papers] - [Turkish] Codesys SEH Exploit Tutorial Paper
  76. [remote] - Tuleap PHP Unserialize Code Execution
  77. [webapps] - Wordpress Download Manager 2.7.4 - Remote Code Execution Vulnerability
  78. [papers] - Socket Learning
  79. [webapps] - Wordpress Wp Symposium 14.11 - Unauthenticated Shell Upload Exploit
  80. [local] - CodeMeter 4.50.906.503 - Service Trusted Path Privilege Escalation
  81. [webapps] - ResourceSpace 6.4.5976 - XSS / SQL Injection / Insecure Cookie Handling
  82. [dos] - phpMyAdmin 4.0.x, 4.1.x, 4.2.x - DoS
  83. [papers] - Backdooring with netcat shellcode
  84. [local] - Avira 14.0.7.342 - (avguard.exe) Service Trusted Path Privilege Escalation
  85. [local] - HTCSyncManager 3.1.33.0 - Service Trusted Path Privilege Escalation
  86. [local] - jaangle 0.98i.977 - Denial of Service Vulnerability
  87. [local] - Mediacoder 0.8.33 build 5680 - SEH Buffer Overflow Exploit Dos (.lst)
  88. [webapps] - Flat Calendar 1.1 - HTML Injection Exploit
  89. [webapps] - OpenEMR 4.1.2(7) - Multiple SQL Injection Vulnerabilities
  90. [webapps] - Wordpress Ajax Store Locator 1.2 - Arbitrary File Download
  91. [webapps] - IceHrm 7.1 - Multiple Vulnerabilities
  92. [local] - Mobilis 3G mobiconnect 3G++ ZDServer 1.0.1.2 - (ZTE CORPORATION) Service Tr
  93. [webapps] - Humhub
  94. [webapps] - Humhub
  95. [local] - Advantech AdamView 4.30.003 - (.gni) SEH Buffer Overflow
  96. [local] - VFU 4.10-1.1 - Buffer Overflow
  97. [local] - BulletProof FTP Client 2010 - Buffer Overflow (SEH) Exploit
  98. [remote] - JourneyMap 5.0.0RC2 Ultimate Edition - DoS (Resource Consumption)
  99. [remote] - Tiny Server 1.1.9 - Arbitrary File Disclosure Exploit
  100. [remote] - Windows Kerberos - Elevation of Privilege (MS14-068)
  101. [webapps] - PBBoard CMS 3.0.1 - SQL Injection
  102. [local] - Offset2lib: Bypassing Full ASLR On 64bit Linux
  103. [papers] - [Hebrew] Digital Whisper Security Magazine #56
  104. [webapps] - Advertise With Pleasure! (AWP) 6.6 - SQL Injection Vulnerability
  105. [webapps] - Technicolor DT5130 V2.05.C29GV - Multiple Vulnerabilities
  106. [local] - Thomson Reuters Fixed Assets CS
  107. [webapps] - Cart66 Lite WordPress Ecommerce 1.5.1.17 - Blind SQL Injection
  108. [papers] - [Turkish] How to Bypass SafeSEH and Stack Cookie Protection
  109. [webapps] - Google Document Embedder 2.5.16 - mysql_real_escpae_string bypass SQL Inj
  110. [papers] - NMAP - Port-Scanning: A Practical Approach Modified for better
  111. [local] - Microsoft Windows Win32k.sys - Denial of Service
  112. [webapps] - Wordpress CM Download Manager Plugin 2.0.0 - Code Injection
  113. [webapps] - TYPO3 ke DomPDF Extension - Remote Code Execution
  114. [webapps] - EntryPass N5200 - Credentials Exposure
  115. [remote] - Tincd Post-Authentication Remote TCP Stack Buffer Overflow
  116. [local] - Mac OS X IOKit Keyboard Driver Root Privilege Escalation
  117. [webapps] - Wordpress Nextend Facebook Connect Plugin 1.4.59 - XSS Vulnerability
  118. [webapps] - IPUX CS7522/CS2330/CS2030 IP Camera - (UltraHVCamX.ocx) ActiveX Stack Buf
  119. [webapps] - IPUX CL5452/CL5132 IP Camera - (UltraSVCamX.ocx) ActiveX Stack Buffer Ove
  120. [webapps] - IPUX Cube Type CS303C IP Camera - (UltraMJCamX.ocx) ActiveX Stack Buffer
  121. [webapps] - Prolink PRN2001 - Multiple Vulnerabilities
  122. [webapps] - Drupal < 7.34 - Denial of Service
  123. [webapps] - Wordpress < 4.0.1 - Denial of Service
  124. [webapps] - WordPress
  125. [local] - CCH Wolters Kluwer PFX Engagement
  126. [papers] - PoC || GTFO 0x05
  127. [papers] - PoC || GTFO 0x06
  128. [webapps] - WordPress HTML 5 MP3 Player with Playlist Plugin - Full Path Disclosure
  129. [webapps] - RobotStats 1.0 - (robot param) SQL Injection Vulnerability
  130. [dos] - RobotStats 1.0 - HTML Injection Vulnerability
  131. [webapps] - Slider Revolution/Showbiz Pro Shell Upload Exploit
  132. [webapps] - Device42 WAN Emulator 2.3 Ping Command Injection
  133. [webapps] - Device42 WAN Emulator 2.3 Traceroute Command Injection
  134. [dos] - Android WAPPushManager - SQL Injection
  135. [remote] - Pandora FMS SQLi Remote Code Execution
  136. [webapps] - xEpan 1.0.1 - CSRF Vulnerability
  137. [dos] - Elipse E3 HTTP Denial of Service
  138. [local] - Mini-stream RM-MP3 Converter 3.1.2.1.2010.03.30 (.wax) SEH Buffer Overflow
  139. [webapps] - Arris VAP2500 Authentication Bypass
  140. [webapps] - Wordpress Google Document Embedder 2.5.14 - SQL Injection
  141. [local] - Linux Kernel libfutex Local Root for RHEL/CentOS 7.0.1406
  142. [papers] - [Turkish] Embedded Device Security & Zollard Botnet Analysis
  143. [webapps] - crea8social 1.3 - Stored XSS Vulnerability
  144. [webapps] - phpMyRecipes 1.2.2 (dosearch.php, words_exact param) - SQL Injection
  145. [dos] - TRENDnet SecurView Wireless Network Camera TV-IP422WN (UltraCamX.ocx) Stack B
  146. [webapps] - DukaPress 2.5.2 - Path Traversal
  147. [webapps] - Wordpress wpDataTables Plugin 1.5.3 - Unauthenticated Shell Upload Vulner
  148. [webapps] - Wordpress wpDataTables Plugin 1.5.3 - SQL Injection Vulnerability
  149. [dos] - tcpdump 4.6.2 Geonet Decoder Denial of Service
  150. [dos] - PHP 5.5.12 Locale::parseLocale Memory Corruption
  151. [webapps] - Advantech EKI-6340 Command Injection
  152. [remote] - Hikvision DVR RTSP Request Remote Code Execution
  153. [papers] - Deep Dive into ROP Payload Analysis
  154. [webapps] - TP-Link TL-WR740N - Denial Of Service
  155. [webapps] - Netgear Wireless Router WNR500 - Parameter Traversal Arbitrary File Acces
  156. [webapps] - MyBB
  157. [local] - Privacyware Privatefirewall 7.0 - Unquoted Service Path Privilege Escalatio
  158. [webapps] - Supr Shopsystem 5.1.0 - Persistent UI Vulnerability
  159. [webapps] - Maarch LetterBox 2.8 - Insecure Cookies (Login Bypass)
  160. [remote] - Internet Explorer < 11 - OLE Automation Array Remote Code Execution (#2)
  161. [webapps] - Paid Memberships Pro 1.7.14.2 Path Traversal
  162. [dos] - MINIX 3.3.0 Remote TCP/IP Stack DoS
  163. [webapps] - Snowfox CMS 1.0 - CSRF Add Admin Exploit
  164. [remote] - MantisBT XmlImportExport Plugin PHP Code Injection Vulnerability
  165. [remote] - Samsung Galaxy KNOX Android Browser RCE
  166. [remote] - Internet Explorer OLE Automation Array Remote Code Execution
  167. [remote] - .NET Remoting Services Remote Command Execution
  168. [dos] - Safari 8.0 / OS X 10.10 - Crash PoC
  169. [webapps] - Zoph 0.9.1 - Multiple Vulnerabilities
  170. [webapps] - WebsiteBaker 2.8.3 - Multiple Vulnerabilities
  171. [webapps] - ZTE ZXHN H108L - Authentication Bypass
  172. [webapps] - Proticaret E-Commerce Script 3.0 - SQL Injection
  173. [webapps] - PHPFox - Stored XSS Vulnerability
  174. [webapps] - ZTE ZXHN H108L - Authentication Bypass
  175. [webapps] - clientResponse Client Management 4.1 - XSS Vulnerability
  176. [webapps] - Joomla HD FLV Player < 2.1.0.1 - Arbitrary File Download Vulnerability
  177. [webapps] - Joomla HD FLV Player < 2.1.0.1 - SQL Injection Vulnerability
  178. [webapps] - Proticaret E-Commerce Script 3.0 - SQL Injection
  179. [webapps] - Barracuda - Multiple Anauthentificated Logfile Download
  180. [dos] - Internet Explorer 11 - Denial Of Service
  181. [webapps] - MyBB Forums 1.8.2 - Stored XSS Vulnerability
  182. [webapps] - Modx CMS 2.2.14 - CSRF Bypass, Reflected XSS, Stored XSS Vulnerability
  183. [webapps] - PHP 5.x - Bypass Disable Functions (via Shellshock)
  184. [webapps] - Subex FMS 7.4 - Unauthenticated SQLi
  185. [webapps] - Rejetto HTTP File Server (HFS) 2.3.x - Remote Command Execution (MSF)
  186. [webapps] - Gogs (users and repos q pararm) - SQL Injection Vulnerabilities
  187. [webapps] - Gogs (label pararm) - SQL Injection
  188. [local] - MS14-064 Microsoft Windows OLE Package Manager Code Execution
  189. [local] - MS14-064 Microsoft Windows OLE Package Manager Code Execution Through Pytho
  190. [local] - OSSEC 2.8 Insecure Temporary File Creation Vulnerability Privilege Escalati
  191. [remote] - Internet Explorer OLE Automation Array Remote Code Execution (msf)
  192. [remote] - Internet Explorer OLE Automation Array Remote Code Execution
  193. [webapps] - MyBB 1.8.X - Multiple Vulnerabilities
  194. [webapps] - Digi Online Examination System 2.0 - Unrestricted File Upload
  195. [webapps] - F5 BIG-IP 10.1.0 - Directory Traversal Vulnerability
  196. [webapps] - Piwigo 2.6.0 (picture.php, rate param) - SQL Injection
  197. [webapps] - Esotalk CMS 1.0.0g4 - XSS Vulnerability
  198. [webapps] - WordPress SupportEzzy Ticket System Plugin 1.2.5 - Stored XSS Vulnerabili
  199. [dos] - CorelDRAW X7 CDR File (CdrTxt.dll) Off-By-One Stack Corruption Vulnerability
  200. [local] - MS Office 2007 and 2010 - OLE Arbitrary Command Execution
  201. [webapps] - phpSound Music Sharing Platform 1.0.5 - Multiple XSS Vulnerabilities
  202. [webapps] - Serenity Client Management Portal 1.0.1 - Multiple Vulnerabilities
  203. [webapps] - Mouse Media Script 1.6 0 - Stored XSS Vulnerability
  204. [webapps] - Who's Who Script - CSRF Exploit (Add Admin Account)
  205. [remote] - Internet Explorer 8 MS14-035 Use-After-Free Exploit
  206. [webapps] - Another Wordpress Classifieds Plugin - SQL Injection
  207. [webapps] - Password Manager Pro / Pro MSP - Blind SQL Injection
  208. [remote] - Visual Mining NetCharts Server Remote Code Execution
  209. [webapps] - XCloner Wordpress/Joomla! Plugin - Multiple Vulnerabilities
  210. [webapps] - ManageEngine OpManager, Social IT Plus and IT360 - Multiple Vulnerabiliti
  211. [webapps] - Progress OpenEdge 11.2 - Directory Traversal
  212. [webapps] - PHP-Fusion 7.02.07 - SQL Injection
  213. [shellcode] - Position independent & Alphanumeric 64-bit execve("/bin/sh\0",NULL,NULL
  214. [webapps] - ZTE ZXDSL 831CII - Insecure Direct Object Reference
  215. [webapps] - Progress OpenEdge 11.2 - Directory Traversal
  216. [remote] - Belkin n750 jump login Parameter Buffer Overflow
  217. [remote] - X7 Chat 2.0.5 lib/message.php preg_replace() PHP Code Execution
  218. [dos] - VMware Workstations 10.0.0.40273 vmx86.sys Arbitrary Kernel Read
  219. [remote] - Citrix NetScaler SOAP Handler Remote Code Execution
  220. [dos] - i.Mage 1.11 - Local Crash PoC
  221. [dos] - i.Hex 0.98 - Local Crash PoC
  222. [local] - i-FTP 2.20 - Buffer Overflow SEH Exploit
  223. [papers] - [Hebrew] Digital Whisper Security Magazine #55
  224. [papers] - [Hebrew] Digital Whisper Security Magazine #54
  225. [papers] - [Hebrew] Digital Whisper Security Magazine #53
  226. [dos] - MINIX 3.3.0 Local Denial of Service PoC
  227. [local] - Linux Local Root => 2.6.39 (32-bit & 64-bit) - Mempodipper #2
  228. [shellcode] - Linux/x86 Add map in /etc/hosts file
  229. [dos] - Mac OS X Mavericks IOBluetoothHCIUserClient Privilege Escalation
  230. [papers] - Exploiting CVE-2014-4113 on Windows 8.1
  231. [remote] - Xerox Multifunction Printers (MFP) "Patch" DLM Vulnerability
  232. [webapps] - Drupal 7.32 Pre Auth SQL Injection
  233. [webapps] - ZTE Modem ZXDSL 531BIIV7.3.0f_D09_IN - Stored XSS Vulnerability
  234. [remote] - CUPS Filter Bash Environment Variable Code Injection
  235. [webapps] - MAARCH 1.4 - SQL Injection
  236. [webapps] - MAARCH 1.4 - Arbitrary File Upload
  237. [local] - IBM Tivoli Monitoring 6.2.2 kbbacf1 - Privilege Escalation
  238. [remote] - Konke Smart Plug K - Authentication Bypass Vulnerability
  239. [webapps] - vBulletin Tapatalk - Blind SQL Injection
  240. [webapps] - Enalean Tuleap 7.4.99.5 - Remote Command Execution
  241. [webapps] - Enalean Tuleap 7.2 - XXE File Disclosure
  242. [webapps] - Enalean Tuleap 7.4.99.5 - Blind SQL Injection
  243. [local] - Filemaker Pro 13.03 & Advanced 12.04 - Login Bypass and Privilege Escala
  244. [webapps] - Folder Plus 2.5.1 iOS - Persistent XSS Vulnerability
  245. [webapps] - WebDisk+ 2.1 iOS - Code Execution Vulnerability
  246. [dos] - Binary File Descriptor Library (libbfd) - Out-of-Bounds Crash
  247. [webapps] - Incredible PBX 2.0.6.5.0 - Remote Command Execution
  248. [webapps] - Mulesoft ESB Runtime 3.5.1 - Privilege Escalation Vulnerability
  249. [remote] - Centreon SQL and Command Injection
  250. [webapps] - HP Operations Agent Remote XSS iFrame Injection