المساعد الشخصي الرقمي

مشاهدة النسخة كاملة : exploit database


الصفحات : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 [46] 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67

  1. [papers] - MySQL Injection in Update, Insert, and Delete
  2. [webapps] - Fully Featured News CMS 1.0 - 'id' Parameter SQL Injection
  3. [webapps] - MySQL File Uploader 1.0 - 'id' Parameter SQL Injection
  4. [webapps] - Easy Support Tools 1.0 - 'stt' Parameter SQL Injection
  5. [webapps] - Easy Web Search 3 - 'id' Parameter SQL Injection
  6. [webapps] - FTP Made Easy PRO 1.2 - Arbitrary File Download
  7. [webapps] - Easy File Uploader 1.2 - Arbitrary File Download
  8. [webapps] - Responsive Filemanger
  9. [papers] - MySQL Out-of-Band Hacking
  10. [papers] - Alternative for Information_Schema.Tables in MySQL
  11. [webapps] - Viral Fun Facts Sharing Script 1.1.0 - 'id' Parameter SQL Injection
  12. [webapps] - Web Inspiration Gallery Script 1.0.0 - 'id' Parameter SQL Injection
  13. [webapps] - ThisIsWhyImBroke Clone Script 4.0 - 'id' Parameter SQL Injection
  14. [webapps] - Upworthy Clone Script 1.1.0 - 'id' Parameter SQL Injection
  15. [webapps] - Ultimate Viral Media Script 1.0 - 'id' Parameter SQL Injection
  16. [webapps] - Visual Link Sharing Websites Builder Script 2.1.0 - SQL Injection
  17. [webapps] - ThisIsWhyImBroke Clone Script 4.0.0 - 'id' Parameter SQL Injection
  18. [webapps] - Funny Image and Video Script 2.0.0 - 'id' Parameter SQL Injection
  19. [webapps] - Clone Script Directory Script 1.1.0 - 'cid' Parameter SQL Injection
  20. [webapps] - Viral Pictures and Video Script 2.0.0 - 'id' Parameter SQL Injection
  21. [webapps] - NewsBee CMS - SQL Injection
  22. [webapps] - Alstrasoft Template Seller Pro 3.25e - 'tempid' Parameter SQL Injection
  23. [webapps] - Itech Job Portal Script 9.13 - Multiple Vulnerabilities
  24. [webapps] - iScripts AutoHoster 3.0 - 'siteid' Parameter SQL Injection
  25. [webapps] - Alstrasoft EPay Enterprise 5.17 - SQL Injection
  26. [webapps] - Alstrasoft ProTaxi Enterprise 3.5 - Arbitrary File Upload
  27. [webapps] - Alstrasoft e-Friends 5.12 - SQL Injection
  28. [webapps] - Alstrasoft Video Share Enterprise 4.72 - SQL Injection
  29. [webapps] - Alstrasoft Flippa Clone MarketPlace Script 4.10 - Cross-Site Request Forg
  30. [webapps] - Alstrasoft FMyLife Pro 1.02 - Cross-Site Request Forgery (Add Admin)
  31. [webapps] - Alstrasoft Forum Pay Per Post Exchange Script 2.01 - SQL Injection
  32. [local] - Debian 9 ntfs-3g - Privilege Escalation
  33. [webapps] - Zoneminder 1.29 / 1.30 - Cross-Site Scripting / SQL Injection / Session F
  34. [webapps] - Itech Multi Vendor Script 6.49 - SQL Injection
  35. [remote] - Netwave IP Camera - Password Disclosure
  36. [remote] - CUPS < 2.0.3 - Remote Command Execution
  37. [webapps] - SlimarUSER Management 1.0 - 'id' Parameter SQL Injection
  38. [webapps] - Itech Travel Portal Script 9.35 - SQL Injection
  39. [webapps] - Property Listing Script - 'propid' Parameter Blind SQL Injection
  40. [webapps] - Itech Inventory Management Software 3.77 - SQL Injection
  41. [webapps] - Itech Movie Portal Script 7.37 - SQL Injection
  42. [webapps] - Itech News Portal Script 6.28 - 'sc' Parameter SQL Injection
  43. [webapps] - Itech Auction Script 6.49 - 'pid' Parameter SQL Injection
  44. [shellcode] - Linux - Multi/Dual mode Reverse Shell Shellcode (129 bytes)
  45. [local] - Ghostscript 9.20 - 'Filename' Command Execution
  46. [webapps] - WordPress 4.7.0/4.7.1 - Unauthenticated Content Injection (PoC)
  47. [webapps] - WordPress 4.7.0/4.7.1 - Unauthenticated Content Injection Arbitrary Code
  48. [dos] - Google Android - 'cfp_ropp_new_key_reenc' and 'cfp_ropp_new_key' RKP Memory C
  49. [dos] - Google Android - Unprotected MSRs in EL1 RKP Privilege Escalation
  50. [local] - Google Android - RKP EL1 Code Loading Bypass
  51. [dos] - Google Android - RKP Information Disclosure via s2-remapping Physical Ranges
  52. [dos] - QNAP NVR/NAS - Buffer Overflow
  53. [dos] - Apple WebKit - 'HTMLFormElement::reset()' Use-After Free
  54. [dos] - Google Chrome - 'HTMLKeygenElement::shadowSelect()' Type Confusion
  55. [dos] - Apple WebKit - 'HTMLKeygenElement' Type Confusion
  56. [dos] - Apple WebKit - Type Confusion in RenderBox with Accessibility Enabled
  57. [webapps] - LogoStore - SQL Injection
  58. [webapps] - Netman 204 - Backdoor Account / Password Reset
  59. [local] - Viscosity 1.6.7 - Privilege Escalation
  60. [webapps] - Itech Multi Vendor Script 6.49 - SQL Injection
  61. [webapps] - Itech News Portal Script 6.28 - SQL Injection
  62. [webapps] - Itech Real Estate Script 3.12 - SQL Injection
  63. [webapps] - Caregiver Script 2.57 - SQL Injection
  64. [webapps] - Auction Script 6.49 - SQL Injection
  65. [webapps] - Itech B2B Script 4.28 - SQL Injection
  66. [webapps] - Itech Classifieds Script 7.27 - SQL Injection
  67. [webapps] - Itech Dating Script 3.26 - SQL Injection
  68. [webapps] - Itech Freelancer Script 5.13 - SQL Injection
  69. [webapps] - PEAR Base System 1.10.1 - Arbitrary File Download
  70. [webapps] - TrueConf Server 4.3.7 - Multiple Vulnerabilities
  71. [shellcode] - Linux - Multi/Dual mode execve("/bin/sh", NULL, 0) Shellcode (37 bytes)
  72. [webapps] - WordPress Plugin WP Private Messages 1.0.1 - SQL Injection
  73. [webapps] - Online Hotel Booking System Pro 1.2 - SQL Injection
  74. [webapps] - WordPress Plugin Online Hotel Booking System Pro 1.0 - SQL Injection
  75. [webapps] - My Photo Gallery 1.0 - SQL Injection
  76. [webapps] - Maian Weblog 4.0 - SQL Injection
  77. [dos] - Google Android - 'pm_qos' KASLR Bypass
  78. [remote] - Haraka
  79. [dos] - macOS 10.12.1 / iOS Kernel - 'IOService::matchPassive' Use-After-Free
  80. [dos] - macOS 10.12.1 / iOS Kernel - 'host_self_trap' Use-After-Free
  81. [webapps] - KB Affiliate Referral Script 1.0 - Authentication Bypass
  82. [webapps] - KB Login Authentication Script 1.1 - Authentication Bypass
  83. [webapps] - KB Messages PHP Script 1.0 - Authentication Bypass
  84. [remote] - Autodesk Backburner Manager 3 < 2016.0.0.2150 - Null Dereference Denial of
  85. [webapps] - Pear HTTP_Upload 1.0.0b3 - Arbitrary File Upload
  86. [webapps] - Movie Portal Script 7.36 - Multiple Vulnerabilities
  87. [local] - GNU Screen 4.5.0 - Privilege Escalation (Bash)
  88. [remote] - Geutebrueck GCore 1.3.8.42/1.4.2.37 - Remote Code Execution (Metasploit)
  89. [local] - GNU Screen 4.5.0 - Privilege Escalation
  90. [remote] - Mozilla Firefox < 50.0.2 - nsSMILTimeContainer::NotifyTimeChange() Remote
  91. [webapps] - WD My Cloud Mirror 2.11.153 - Authentication Bypass / Remote Code Executi
  92. [remote] - Cisco WebEx - 'nativeMessaging' Arbitrary Remote Command Execution
  93. [local] - Microsoft Remote Desktop Client for Mac 8.0.36 - Remote Code Execution
  94. [dos] - Oracle OpenJDK Runtime Environment 1.8.0_112-b15 - Java Serialization Denial
  95. [remote] - DiskSavvy Enterprise - GET Buffer Overflow (Metasploit)
  96. [webapps] - NTOPNG 2.4 Web Interface - Cross-Site Request Forgery
  97. [dos] - SunOS 5.11 ICMP - Denial of Service
  98. [webapps] - PageKit 1.0.10 - Password Reset
  99. [webapps] - B2B Alibaba Clone Script - SQL Injection
  100. [webapps] - ICGames-Games Site Script 1.2 - Authentication Bypass
  101. [webapps] - Domains Marketplace Script 1.1 - Authentication Bypass
  102. [webapps] - ICTutors Tutoring Site Script 1.1 - Authentication Bypass
  103. [webapps] - Mini Blog 1.1 - Authentication Bypass
  104. [webapps] - Job Site PHP Script 1.1 - Authentication Bypass
  105. [webapps] - Music Site Script 1.2 - Authentication Bypass
  106. [webapps] - Affiliate Tracking Script 1.1 - Authentication Bypass
  107. [webapps] - Mini CMS 1.1 - Authentication Bypass
  108. [webapps] - Complain Management System - SQL injection
  109. [webapps] - Viral Image & Video Sharing GagZone Script - SQL Injection
  110. [webapps] - Image and Video Script - SQL Injection
  111. [webapps] - Social News and Bookmarking Script - SQL Injection
  112. [webapps] - Viral Image Sharing Script - SQL Injection
  113. [webapps] - Vine VideoSite Creator Script - SQL Injection
  114. [webapps] - Job Vacancy Script - SQL Injection
  115. [webapps] - Home of Viral Images, Videos and Articles Script - SQL Injection
  116. [webapps] - Video Site Creator Script - SQL Injection
  117. [webapps] - Tenda ADSL2/2+ Modem D820R - Unauthenticated DNS Change
  118. [webapps] - Pirelli DRG A115 v3 ADSL Router - Unauthenticated DNS Change
  119. [local] - SentryHD 02.01.12e - Privilege Escalation
  120. [webapps] - Medical Clinic Website Script - SQL Injection
  121. [webapps] - Fileserve Clone Script - Authentication Bypass
  122. [webapps] - Auction Website Script - SQL Injection
  123. [webapps] - Wetransfer Clone Script - Authentication Bypass
  124. [webapps] - Finance Website Script - SQL Injection
  125. [webapps] - Justdial Clone Script - Authentication Bypass
  126. [webapps] - Business Directory Script - SQL Injection
  127. [webapps] - Buy and Sell Market Place Software - SQL Injection
  128. [shellcode] - Linux/x86-64 - mkdir Shellcode (25 bytes)
  129. [webapps] - Check Box 2016 Q2 Survey - Multiple Vulnerabilities
  130. [webapps] - Openexpert 0.5.17 - SQL Injection
  131. [webapps] - dirLIST 0.3.0 - Arbitrary File Upload
  132. [webapps] - BoZoN 2.4 - Remote Code Execution
  133. [webapps] - Million Pixels 3 - Authentication Bypass
  134. [webapps] - Business Networking Script 8.11 - SQL Injection / Cross-Site Scripting
  135. [local] - iSelect v1.4 - Local Buffer Overflow
  136. [webapps] - Pirelli DRG A115 ADSL Router - Unauthenticated DNS Change
  137. [webapps] - Tenda ADSL2/2+ Modem D840R - Unauthenticated DNS Change
  138. [remote] - DiskBoss Enterprise - GET Buffer Overflow (Metasploit)
  139. [webapps] - Image Sharing Script 4.13 - Multiple Vulnerabilities
  140. [remote] - WinaXe Plus 8.7 - Buffer Overflow
  141. [shellcode] - Windows x64 - CreateRemoteThread() DLL Injection Shellcode (584 bytes)
  142. [webapps] - 9 Network Linkedin Clone Script - Improper Access Restrictions
  143. [webapps] - Article Directory Script Seo 3.2 - Improper Access Restrictions
  144. [webapps] - e-Soft24 Jokes Portal Script Seo 1.3 - Authentication Bypass
  145. [webapps] - MC Smart Shop Script - SQL Injection
  146. [webapps] - MC Buy and Sell Cars Script 1.1 - SQL Injection
  147. [webapps] - MC Yellow Pages Script - SQL Injection
  148. [webapps] - MC Real Estate Pro Script - Improper Access Restrictions
  149. [webapps] - MC Hosting Coupons Script - Cross-Site Request Forgery
  150. [webapps] - MC Inventory Manager Script - Multiple Vulnerabilities
  151. [webapps] - MC Coming Soon Script - Arbitrary File Upload / Improper Access Restricti
  152. [webapps] - My Private Tutor Website Script - Authentication Bypass
  153. [webapps] - Hindu Matrimonial Script - Authentication Bypass
  154. [webapps] - Just Dial Marketplace Script - Authentication Bypass
  155. [webapps] - Entrepreneur Matrimonial Script - Authentication Bypass
  156. [webapps] - Open Source Real-Estate Script - SQL Injection
  157. [webapps] - Inout StickBoard 1.0 Script - Improper Access Restrictions
  158. [webapps] - Inout Search Engine Ultimate Edition 7.0/8.0 Script - Improper Access Res
  159. [dos] - Mozilla Firefox < 50.1.0 - Use After Free
  160. [remote] - Cisco Firepower Management Console 6.0 - Post Authentication UserAdd
  161. [webapps] - Zeroshell 3.6.0/3.7.0 Net Services - Remote Code Execution
  162. [local] - aSc Timetables 2017 - Buffer Overflow
  163. [webapps] - Airbnb Clone Script - Arbitrary File Upload
  164. [webapps] - School Management Software 2.75 - SQL Injection
  165. [webapps] - Penny Auction Script - Arbitrary File Upload
  166. [webapps] - ECommerce-TIBSECART - Arbitrary File Upload
  167. [webapps] - ECommerce-Multi-Vendor Software - Arbitrary File Upload
  168. [webapps] - Job Portal Script 9.11 - Authentication Bypass
  169. [webapps] - Online Food Delivery 2.04 - Authentication Bypass
  170. [webapps] - Dating Script 3.25 - SQL Injection
  171. [webapps] - Travel Portal Script 9.33 - SQL Injection
  172. [webapps] - Movie Portal Script 7.35 - SQL Injection
  173. [dos] - Boxoft Wav 1.0 - Buffer Overflow
  174. [papers] - OpenSSL - Weak KDF
  175. [webapps] - Starting Page 1.3 - 'category' Parameter SQL Injection
  176. [webapps] - My link trader 1.1 - 'id' Parameter SQL Injection
  177. [dos] - Adobe Flash Player 24.0.0.186 - 'ActionGetURL2' Out-of-Bounds Memory Corrupti
  178. [dos] - Adobe Flash Player 24.0.0.186 - 'ActionGetURL2' Out-of-Bounds Memory Corrupti
  179. [webapps] - WordPress Plugin WP Support Plus Responsive Ticket System 7.1.3 - Privile
  180. [webapps] - FMyLife Clone Script (Pro Edition) 1.1 - Cross-Site Request Forgery (Add
  181. [webapps] - Starting Page 1.3 - SQL Injection
  182. [remote] - DiskBoss Enterprise 7.5.12 - 'POST' Buffer Overflow (SEH)
  183. [webapps] - Friends in War Make or Break 1.7 - 'imgid' Parameter SQL Injection
  184. [webapps] - My Php Dating 2.0 - 'id' Parameter SQL Injection
  185. [webapps] - My Php Dating 2.0 - SQL Injection
  186. [webapps] - Splunk 6.1.1 - 'Referer' Header Cross-Site Scripting
  187. [webapps] - My Link Trader 1.1 - Authentication Bypass
  188. [local] - Advanced Desktop Locker 6.0.0 - Lock Screen Bypass
  189. [webapps] - DirectAdmin 1.50.1 - Denial of Service
  190. [dos] - Brave Browser 1.2.16/1.9.56 - Address Bar URL Spoofing
  191. [dos] - Google Android max86902 Driver - 'sysfs' Interfaces Race Condition
  192. [papers] - Web App Penetration Testing - Local File Inclusion (LFI)
  193. [remote] - Microsoft Windows 10 Edge - 'chakra.dll' Info Leak / Type Confusion Remote
  194. [webapps] - Atlassian Confluence Jira 5.9.12 - Persistent Cross-Site Scripting
  195. [local] - Kaspersky 17.0.0 - Local CA root is Incorrectly Protected
  196. [webapps] - My Click Counter 1.0 - Authentication Bypass
  197. [webapps] - PHPMailer < 5.2.20 / SwiftMailer
  198. [dos] - QNAP NAS Devices - Heap Overflow
  199. [remote] - Internet Download Accelerator 6.10.1.1527 - FTP Buffer Overflow (SEH)
  200. [papers] - [Hebrew] Digital Whisper Security Magazine #79
  201. [shellcode] - Windows x64 - Password Protected Bind Shellcode (825 bytes)
  202. [webapps] - Zend Framework / zend-mail < 2.4.11 - Remote Code Execution
  203. [webapps] - WordPress Plugin Slider Templatic Tevolution
  204. [webapps] - Dell SonicWALL Global Management System GMS 8.1 - Blind SQL Injection
  205. [webapps] - Dell SonicWALL Secure Mobile Access SMA 8.1 - Cross-Site Scripting / Cros
  206. [local] - Android - get_user/put_user Exploit (Metasploit)
  207. [webapps] - Joomla! Component aWeb Cart Watching System for Virtuemart 2.6.0 - SQL In
  208. [webapps] - PHPMailer < 5.2.18 - Remote Code Execution (Python)
  209. [webapps] - SwiftMailer < 5.4.5-DEV - Remote Code Execution
  210. [webapps] - WordPress Plugin Simply Poll 1.4.1 - SQL Injection
  211. [webapps] - PHPMailer < 5.2.20 - Remote Code Execution
  212. [webapps] - PHPMailer < 5.2.18 - Remote Code Execution (PHP)
  213. [webapps] - PHPMailer 5.2.17 - Remote Code Execution
  214. [local] - Wampserver 3.0.6 - Insecure File Permissions Privilege Escalation
  215. [dos] - FTPShell Server 6.36 - '.csv' Local Denial of Service
  216. [webapps] - Joomla! Component Blog Calendar - SQL Injection
  217. [dos] - XAMPP Control Panel - Denial Of Service
  218. [local] - OpenSSH < 7.4 - 'UsePrivilegeSeparation Disabled' Forwarded Unix Domain Soc
  219. [remote] - OpenSSH < 7.4 - agent Protocol Arbitrary Library Loading
  220. [webapps] - Apache mod_session_crypto - Padding Oracle
  221. [dos] - Microsoft Internet Explorer 11 MSHTML - CPaste*Command::Convert*Bitmapto*Png
  222. [local] - Vesta Control Panel 0.9.8-16 - Local Privilege Escalation
  223. [dos] - MacOS 10.12 - Double vm_deallocate in Userspace MIG Code Use-After-Free
  224. [dos] - MacOS < 10.12.2 / iOS < 10.2 Kernel - ipc_port_t Reference Count Leak Due to
  225. [local] - MacOS < 10.12.2 / iOS < 10.2 Kernel - _kernelrpc_mach_port_insert_right_tra
  226. [local] - MacOS < 10.12.2 / iOS < 10.2 - Broken Kernel Mach Port Name uref Handling P
  227. [dos] - MacOS 10.12.1 / iOS < 10.2 - powerd Arbitrary Port Replacement
  228. [dos] - MacOS 10.12.1 / iOS < 10.2 - syslogd Arbitrary Port Replacement
  229. [dos] - MacOS Kernel 10.12.1 - Writable Privileged IOKit Registry Properties Code Exe
  230. [local] - IBM AIX 6.1/7.1/7.2 - 'Bellmail' Privilege Escalation
  231. [remote] - NETGEAR WNR2000v5 - Remote Code Execution
  232. [dos] - Microsoft Edge - SIMD.toLocaleString Uninitialized Memory (MS16-145)
  233. [dos] - Microsoft Edge - Internationalization Initialization Type Confusion (MS16-144
  234. [dos] - Microsoft Internet Explorer 11 MSHTML - CSplice*Tree*Engine::Remove*Splice Us
  235. [dos] - Google Android - WifiNative::setHotlist Stack Overflow
  236. [webapps] - WordPress Plugin 404 Redirection Manager 1.0 - SQL Injection
  237. [dos] - Google Chrome < 31.0.1650.48 - HTTP 1xx base::String*Tokenizer*T::Quick*Get*N
  238. [local] - Naenara Browser 3.5 (RedStar 3.0 Desktop) - 'JACKRABBIT' Client-Side Comman
  239. [local] - RedStar 3.0 Server - 'BEAM & RSSMON' Command Execution (Shellshock)
  240. [shellcode] - Linux/x86 - /bin/bash -c Arbitrary Command Execution Shellcode (72 byte
  241. [dos] - Orthanc DICOM Server 1.1.0 - Memory Corruption
  242. [local] - iOS 10.1.1 / macOS 10.12 16A323 XNU Kernel - set_dp_control_port Lack of Lo
  243. [dos] - OsiriX DICOM Viewer 8.0.1 - Memory Corruption
  244. [dos] - ConQuest DICOM Server 1.4.17d - Stack Buffer Overflow
  245. [dos] - DCMTK 3.6.0 storescp - Stack Buffer Overflow
  246. [papers] - [Hebrew] Digital Whisper Security Magazine #75
  247. [local] - FortiClient SSLVPN 5.4 - Credentials Disclosure
  248. [dos] - PHP 7.0 - JsonSerializable::jsonSerialize json_encode Local Denial of Service
  249. [webapps] - ZKTeco ZKAccess Security System 5.3.1 - Persistent Cross-Site Scripting
  250. [webapps] - ZKTeco ZKBioSecurity 3.0 - (visLogin.jsp) Local Authorization Bypass