المساعد الشخصي الرقمي

مشاهدة النسخة كاملة : exploit database


الصفحات : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 [49] 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67

  1. [webapps] - w2wiki - Multiple XSS Vulnerabilities
  2. [webapps] - Ultrabenosaurus ChatBoard - CSRF (Send Message)
  3. [webapps] - Ultrabenosaurus ChatBoard - Stored XSS
  4. [dos] - Oracle Orakill.exe 11.2.0 - Buffer Overflow
  5. [webapps] - WordPress Social Stream Plugin 1.5.15 - wp_options Overwrite
  6. [dos] - Oracle Orakill.exe 11.2.0 - Buffer Overflow
  7. [remote] - Apache Continuum Arbitrary Command Execution
  8. [dos] - Foxit PDF Reader 1.0.1.0925 - CFX_BaseSegmentedArray::IterateIndex Memory Cor
  9. [dos] - Foxit PDF Reader 1.0.1.0925 -kdu_core::kdu_codestream::get_subsampling Memory
  10. [dos] - Foxit PDF Reader 1.0.1.0925 - CFX_WideString::operator= Invalid Read
  11. [dos] - Foxit PDF Reader 1.0.1.0925 - CPDF_DIBSource::TranslateScanline24bpp Out-of-B
  12. [dos] - Foxit PDF Reader 1.0.1.0925 - CPDF_StreamContentParser::~CPDF_StreamContentPa
  13. [dos] - iSQL 1.0 - isql_main.c Buffer Overflow PoC
  14. [local] - iSQL 1.0 - Shell Command Injection
  15. [webapps] - Zabbix 2.2 - 3.0.3 - RCE with API JSON-RPC
  16. [webapps] - Joomla PayPlans (com_payplans) Extension 3.3.6 - SQL Injection
  17. [webapps] - Grid Gallery 1.0 - Admin Panel Authentication Bypass
  18. [webapps] - Dream Gallery 2.0 - Admin Panel Authentication Bypass
  19. [local] - Easy RM to MP3 Converter 2.7.3.700 - (.m3u) Exploit with Universal DEP+ASLR
  20. [webapps] - Viart Shopping Cart 5.0 - CSRF Shell Upload
  21. [webapps] - FRticket Ticket System - Stored XSS
  22. [dos] - OS X Kernel - Stack Buffer Overflow in GeForce GPU Driver
  23. [dos] - OS X/iOS Kernel - UAF Racing getProperty on IOHDIXController and testNetBootM
  24. [dos] - OS X Kernel - Use-After-Free Due to Bad Locking in IOAcceleratorFamily2
  25. [dos] - OS X Kernel - Exploitable NULL Dereference in CoreCaptureResponder Due to Unc
  26. [dos] - OS X Kernel - Exploitable NULL Dereference in IOAccelSharedUserClient2::page_
  27. [dos] - Android - /system/bin/sdcard Stack Buffer Overflow
  28. [webapps] - Drale DBTableViewer 100123 - Blind SQL Injection
  29. [webapps] - Cisco EPC 3928 - Multiple Vulnerabilities
  30. [local] - League of Legends Screensaver - Insecure File Permissions Privilege Escalat
  31. [local] - League of Legends Screensaver - Unquoted Service Path Privilege Escalation
  32. [shellcode] - Linux x86 /bin/nc -le /bin/sh -vp13337 Shellcode (56 bytes)
  33. [shellcode] - Windows x86 WinExec("cmd.exe",0) Shellcode
  34. [webapps] - Nagios XI 5.2.7 - Multiple Vulnerabilities
  35. [webapps] - rConfig 3.1.1 - Local File Inclusion
  36. [webapps] - Notilus Travel Solution Software 2012 R3 - SQL Injection
  37. [webapps] - WordPress Double Opt-In for Download Plugin 2.0.9 - SQL Injection
  38. [webapps] - WordPress Uncode Theme 1.3.1 - Arbitrary File Upload
  39. [webapps] - WordPress Newspaper Theme 6.7.1 - Privilege Escalation
  40. [webapps] - WordPress WP PRO Advertising System Plugin 4.6.18 - SQL Injection
  41. [webapps] - WordPress Creative Multi-Purpose Theme 9.1.3 - Stored XSS
  42. [webapps] - WordPress WP Mobile Detector Plugin 3.5 - Arbitrary File Upload
  43. [webapps] - Electroweb Online Examination System 1.0 - SQL Injection
  44. [webapps] - Dream Gallery 1.0 - CSRF Add Admin Exploit
  45. [webapps] - WordPress Simple Backup Plugin 2.7.11 - Multiple Vulnerabilities
  46. [dos] - Websockify (C Implementation) 0.8.0 - Buffer Overflow
  47. [webapps] - Relay Ajax Directory Manager relayb01-071706, 1.5.1, 1.5.3 - Unauthentica
  48. [webapps] - Liferay CE < 6.2 CE GA6 - Stored XSS
  49. [webapps] - Joomla SecurityCheck Extension 2.8.9 - Multiple Vulnerabilities
  50. [dos] - Wireshark - erf_meta_read_tag SIGSEGV
  51. [webapps] - AjaxExplorer 1.10.3.2 - Multiple Vulnerabilities
  52. [dos] - TCPDump 4.5.1 - Crash PoC
  53. [remote] - Data Protector A.09.00 - Encrypted Communications Arbitrary Command Execut
  54. [dos] - CCextractor 0.80 - Crash PoC
  55. [webapps] - ProcessMaker 3.0.1.7 - Multiple vulnerabilities
  56. [webapps] - AirOS NanoStation M2 5.6-beta - Multiple Vulnerabilities
  57. [webapps] - FlatPress 1.0.3 - CSRF Arbitrary File Upload
  58. [shellcode] - Linux x86_64 XOR Encode execve Shellcode
  59. [webapps] - Open Source Real Estate Script 3.6.0 - SQL Injection
  60. [dos] - MySQL 5.5.45 - procedure analyse Function Denial of Service
  61. [webapps] - PHP Realestate Script Script 4.9.0 - SQL Injection
  62. [dos] - Graphite2 - NameTable::getName Multiple Heap-Based Out-of-Bounds Reads
  63. [dos] - Graphite2 - TtfUtil::CheckCmapSubtable12 Heap-Based Overread
  64. [dos] - Graphite2 - GlyphCache::Loader Heap-Based Overreads
  65. [dos] - Graphite2 - GlyphCache::GlyphCache Heap-Based Buffer Overflow
  66. [remote] - HP Data Protector A.09.00 - Arbitrary Command Execution
  67. [dos] - Micro Focus Rumba+ 9.4 - Multiple Stack Buffer Overflow Vulnerabilities
  68. [webapps] - EduSec 4.2.5 - SQL Injection
  69. [webapps] - Real Estate Portal 4.1 - Multiple Vulnerabilities
  70. [remote] - PowerFolder Server 10.4.321 - Remote Code Execution
  71. [remote] - Ubiquiti airOS Arbitrary File Upload
  72. [remote] - Oracle ATS Arbitrary File Upload
  73. [webapps] - AfterLogic WebMail Pro ASP.NET 6.2.6 - Administrator Account Disclosure v
  74. [webapps] - XenAPI 1.4.1 for XenForo - Multiple SQL Injections
  75. [webapps] - Job Script by Scubez - Remote Code Execution
  76. [shellcode] - Linux x86_64 Information Stealer Shellcode
  77. [dos] - Operation Technology ETAP 14.1.0 - Multiple Stack Buffer Overrun Vulnerabilit
  78. [local] - Operation Technology ETAP 14.1.0 - Local Privilege Escalation
  79. [local] - VirIT Explorer Lite & Pro 8.1.68 - Local Privilege Escalation
  80. [dos] - 4digits 1.1.4 - Local Buffer Overflow
  81. [webapps] - SAP NetWeaver AS JAVA 7.1 - 7.5 - Information Disclosure
  82. [webapps] - SAP NetWeaver AS JAVA 7.1 - 7.5 - SQL Injection
  83. [dos] - Apple Quicktime - MOV File Parsing Memory Corruption Vulnerability
  84. [webapps] - Magento < 2.0.6 - Unauthenticated Arbitrary Unserialize -> Arbitrary Writ
  85. [webapps] - SAP xMII 15.0 - Directory Traversal
  86. [remote] - Dell SonicWALL Scrutinizer 11.01 methodDetail SQL Injection
  87. [dos] - Symantec/Norton Antivirus - ASPack Remote Heap/Pool Memory Corruption Vulnera
  88. [dos] - Windows - gdi32.dll Heap-Based Buffer Overflow in ExtEscape() Triggerable via
  89. [dos] - Windows - gdi32.dll Multiple Issues in the EMF COMMENT_MULTIFORMATS Record Ha
  90. [dos] - Windows - gdi32.dll Multiple Issues in the EMF CREATECOLORSPACEW Record Handl
  91. [dos] - Adobe Flash - SetNative Use-After-Free
  92. [dos] - Adobe Flash - addProperty Use-After-Free
  93. [dos] - Adobe Flash - Type Confusion in FileReference Constructor
  94. [dos] - Adobe Flash - MP4 File Stack Corruption
  95. [dos] - Adobe Flash - Heap Overflow in ATF Processing (Image Reading)
  96. [dos] - Adobe Flash - Overflow in Processing Raw 565 Textures
  97. [webapps] - Meteocontrol WEB’log - Admin Password Disclosure
  98. [webapps] - Web2py 2.14.5 - Multiple Vulnerabilities
  99. [local] - Hex : Shard of Fate 1.0.1.026 - Unquoted Path Privilege Escalation
  100. [dos] - Microsoft Excel 2010 - Crash PoC
  101. [webapps] - Web interface for DNSmasq / Mikrotik - SQL Injection
  102. [webapps] - eXtplorer 2.1.9 - Archive Path Traversal
  103. [local] - Multiples Nexon Games - Unquoted Path Privilege Escalation
  104. [webapps] - CakePHP Framework 3.2.4 - IP Spoofing
  105. [dos] - Wireshark - AirPDcapDecryptWPABroadcastKey Heap-Based Out-of-Bounds Read
  106. [local] - runAV mod_security - Arbitrary Command Execution
  107. [local] - NRSS Reader 0.3.9 - Local Stack-Based Overflow
  108. [webapps] - TrendMicro - Multiple HTTP Problems with CoreServiceShell.exe
  109. [remote] - Microsoft Windows Media Center .MCL File Processing Remote Code Execution
  110. [local] - Intuit QuickBooks Desktop 2007 - 2016 - Arbitrary Code Execution
  111. [local] - FileZilla FTP Client 3.17.0.0 - Unquoted Path Privilege Escalation
  112. [dos] - CIScan 1.00 - Hostname/IP Field SEH Overwrite PoC
  113. [dos] - Android Broadcom Wi-Fi Driver - Memory Corruption
  114. [dos] - Nfdump Nfcapd 1.6.14 - Multiple Vulnerabilities
  115. [dos] - Adobe Reader DC 15.010.20060 - Memory Corruption
  116. [webapps] - Multiple JVC HDRs and Net Cameras - Multiple Vulnerabilities
  117. [dos] - Core FTP Server 32-bit Build 587 - Heap Overflow
  118. [dos] - Ipswitch WS_FTP LE 12.3 - Search field SEH Overwrite POC
  119. [dos] - MediaInfo 0.7.61 - Crash PoC
  120. [shellcode] - All Windows Null-Free Shellcode - Functional Keylogger to File - 601 (0
  121. [remote] - Ruby on Rails Development Web Console (v2) Code Execution
  122. [local] - ImageMagick Delegate Arbitrary Command Execution
  123. [dos] - RPCScan 2.03 - Hostname/IP Field SEH Overwrite PoC
  124. [local] - Windows 7 - WebDAV Privilege Escalation Exploit (MS16-016) #2
  125. [papers] - [Persian] Ollydbg Tutorial v 1.10
  126. [local] - Certec EDV atvise SCADA Server 2.5.9 - Privilege Escalation
  127. [dos] - ASUS Memory Mapping Driver (ASMMAP/ASMMAP64): Physical Memory Read/Write
  128. [webapps] - ZeewaysCMS - Multiple Vulnerabilities
  129. [remote] - Dell SonicWall Scrutinizer
  130. [local] - i.FTP 2.21 - Host Address / URL Field SEH Exploit
  131. [webapps] - Ajaxel CMS 8.0 - Multiple Vulnerabilities
  132. [shellcode] - Windows Null-Free Shellcode - Primitive Keylogger to File - 431 (0x01AF
  133. [shellcode] - Linux x86_64 Shellcode - Reverse TCP (ipv6)
  134. [shellcode] - Linux x86_64 Shellcode - Bind TCP Port 1472 (ipv6)
  135. [shellcode] - Linux x86 Shellcode - Bind TCP Port 1472 (ipv6)
  136. [webapps] - ManageEngine Applications Manager Build 12700 - Multiple Vulnerabilities
  137. [dos] - Adobe Flash - MovieClip.duplicateMovieClip Use-After-Free
  138. [dos] - Adobe Flash - Use-After-Free When Rendering Displays From Multiple Scripts
  139. [webapps] - DotNetNuke 07.04.00 - Administration Authentication Bypass
  140. [dos] - CIScan 1.00 - Hostname/IP Field Crash PoC
  141. [dos] - RPCScan 2.03 - Hostname/IP Field Crash PoC
  142. [dos] - Baidu Spark Browser 43.23.1000.476 - Address Bar URL Spoofing
  143. [dos] - Linux (Ubuntu 16.04) - Reference Count Overflow Using BPF Maps
  144. [local] - Linux Kernel 4.4.x (Ubuntu 16.04) - Use-After-Free via double-fdput() in bp
  145. [dos] - Linux (Ubuntu 14.04.3) - perf_event_open() Can Race with execve() (/etc/shado
  146. [dos] - McAfee LiveSafe 14.0 - Relocations Processing Memory Corruption
  147. [local] - Zabbix Agent 3.0.1 - mysql.size Shell Command Injection
  148. [dos] - OpenSSL Padding Oracle in AES-NI CBC MAC Check
  149. [dos] - ImageMagick < 6.9.3-9 - Multiple Vulnerabilities
  150. [webapps] - PHP Imagick 3.3.0 - disable_functions Bypass
  151. [webapps] - IPFire < 2.19 Core Update 101 - Remote Command Execution
  152. [local] - TRN Threaded USENET News Reader 3.6-23 - Local Stack-Based Overflow
  153. [webapps] - NetCommWireless HSPA 3G10WVE Wireless Router – Multiple Vulnerabilities
  154. [webapps] - Acunetix WP Security Plugin 3.0.3 - XSS
  155. [webapps] - CMS Made Simple < 2.1.3 & < 1.12.1 - Web Server Cache Poisoning
  156. [webapps] - Alibaba Clone B2B Script - Admin Authentication Bypass
  157. [local] - QSEE - PRDiag* Commands Privilege Escalation Exploit
  158. [remote] - Apache Struts Dynamic Method Invocation Remote Code Execution
  159. [remote] - Acunetix WVS 10 - Remote Command Execution (System)
  160. [shellcode] - .Net Framework Execute Native x86 Shellcode
  161. [webapps] - WordPress Ghost Plugin 0.5.5 - Unrestricted Export Download
  162. [shellcode] - Linux x86 Reverse TCP Shellcode (ipv6)
  163. [webapps] - GLPi 0.90.2 - SQL Injection
  164. [dos] - Wireshark - ett_zbee_zcl_pwr_prof_enphases Static Out-of-Bounds Read
  165. [dos] - Wireshark - alloc_address_wmem Assertion Failure
  166. [dos] - Wireshark - dissect_2008_16_security_4 Stack-Based Buffer Overflow
  167. [dos] - Rough Auditing Tool for Security (RATS) 2.3 - Array Out of Block Crash
  168. [webapps] - Merit Lilin IP Cameras - Multiple Vulnerabilities
  169. [webapps] - Observium 0.16.7533 - Authenticated Arbitrary Command Execution
  170. [webapps] - Observium 0.16.7533 - Cross Site Request Forgery
  171. [dos] - Windows Kernel - win32k.sys TTF Processing EBLC / EBSC Tables Pool Corruption
  172. [remote] - PHP 7.0.5 - ZipArchive::getFrom* Integer Overflow
  173. [local] - Mach Race OS X Local Privilege Escalation Exploit
  174. [dos] - Windows - CSRSS BaseSrvCheckVDM Session 0 Process Creation Privilege Escalati
  175. [webapps] - Multiple Vendors (RomPager
  176. [webapps] - EMC ViPR SRM - Cross-Site Request Forgery
  177. [webapps] - ImpressCMS 1.3.9 - SQL Injection
  178. [remote] - libgd 2.1.1 - Signedness Heap Overflow
  179. [remote] - Advantech WebAccess Dashboard Viewer Arbitrary File Upload
  180. [local] - Yasr Screen Reader 0.6.9 - Local Buffer Overflow
  181. [dos] - Rough Auditing Tool for Security (RATS) 2.3 - Crash PoC
  182. [papers] - [Turkish] Privilege Escalation Vectors On Windows Systems
  183. [webapps] - NationBuilder Multiple Stored XSS Vulnerabilities
  184. [remote] - PCMan FTP Server 2.0.7 - RENAME Command Buffer Overflow (MSF)
  185. [shellcode] - Linux x64 - Bind Shell Shellcode Generator
  186. [local] - CompuSource Systems - Real Time Home Banking - Local Privilege Escalation
  187. [webapps] - Gemtek CPE7000 - WLTCS-106 sysconf.cgi Unauthenticated Remote Command Exe
  188. [webapps] - Gemtek CPE7000 - WLTCS-106 Administrator SID Retriever (MSF)
  189. [webapps] - C/C++ Offline Compiler and C For OS - Persistent XSS
  190. [webapps] - Totemomail 4.x and 5.x - Persistent XSS
  191. [local] - Microsoft Windows 7-10 & Server 2008-2012 - Local Privilege Escalation (x32
  192. [shellcode] - Linux/x86_64 - bindshell (Port 5600) - 86 bytes
  193. [papers] - Phorum 5.2.20 - Multiple Vulnerabilities
  194. [webapps] - Gemtek CPE7000 / WLTCS-106 - Multiple Vulnerabilities
  195. [webapps] - Symantec Brightmail 10.6.0-7- LDAP Credentials Disclosure
  196. [webapps] - phpLiteAdmin 1.9.6 - Multiple Vulnerabilities
  197. [webapps] - Webutler CMS 3.2 - Cross-Site Request Forgery
  198. [dos] - Hyper-V - vmswitch.sys VmsMpCommonPvtHandleMulticastOids Guest to Host Kernel
  199. [dos] - Windows Kernel - DrawMenuBarTemp Wild-Write (MS16-039)
  200. [webapps] - PHPBack 1.3.0 - SQL Injection
  201. [webapps] - modified eCommerce Shopsoftware 2.0.0.0 rev 9678 - Blind SQL Injection
  202. [webapps] - pfSense Community Edition 2.2.6 - Multiple Vulnerabilities
  203. [remote] - Novell ServiceDesk Authenticated File Upload
  204. [dos] - TH692 Outdoor P2P HD Waterproof IP Camera - Hard Coded Credentials
  205. [webapps] - WordPress Kento Post View Counter Plugin 2.8 - CSRF/XSS
  206. [webapps] - WordPress leenk.me Plugin 2.5.0 - CSRF/XSS
  207. [local] - Exim "perl_startup" Privilege Escalation
  208. [webapps] - AirOS 6.x - Arbitrary File Upload
  209. [shellcode] - Linux/x86_64 - Read /etc/passwd - 65 bytes
  210. [remote] - Internet Explorer 9, 10, 11 - CDOMStringDataList::InitFromString Out-of-Bo
  211. [webapps] - PHPmongoDB 1.0.0 - Multiple Vulnerabilities
  212. [webapps] - Brickcom Corporation Network Cameras - Multiple Vulnerabilities
  213. [webapps] - pfSense Firewall
  214. [dos] - Microsoft Office Excel Out-of-Bounds Read Remote Code Execution (MS16-042)
  215. [remote] - Dell KACE K1000 File Upload
  216. [local] - Texas Instrument Emulator 3.03 - Local Buffer Overflow
  217. [webapps] - Oracle Application Testing Suite 12.4.0.2.0 - Authentication Bypass and A
  218. [papers] - Avactis PHP Shopping Cart - Multiple Vulnerabilities
  219. [papers] - [Persian] XML Injection
  220. [webapps] - Ovidentia troubleticketsModule 7.6 - Remote File Inclusion
  221. [webapps] - Novell Service Desk 7.1.0, 7.0.3 and 6.5 - Multiple Vulnerabilities
  222. [dos] - Android - IMemory Native Interface is Insecure for IPC Use
  223. [dos] - Android - IOMX getConfig/getParameter Information Disclosure
  224. [shellcode] - Linux/x86_64 - bindshell (PORT: 5600) - 81 bytes
  225. [webapps] - Axis Network Cameras - Multiple Vulnerabilities
  226. [local] - CAM UnZip 5.1 - Archive Path Traversal
  227. [webapps] - OpenCart 2.1.0.2 to 2.2.0.0 - json_decode Function Remote Code Execution
  228. [webapps] - WPN-XM Serverstack 0.8.6 - Cross Site Request Forgery
  229. [webapps] - Hikvision Digital Video Recorder - Cross-Site Request Forgery
  230. [webapps] - op5 7.1.9 - Remote Command Execution
  231. [local] - Apple Intel HD 3000 Graphics driver 10.0.0 - Local Privilege Escalation
  232. [local] - Express Zip
  233. [local] - Mess Emulator 0.154-3.1 - Local Buffer Overflow
  234. [webapps] - PLANET Technology IP Surveillance Cameras - Multiple Vulnerabilities
  235. [local] - Panda Security URL Filtering < 4.3.1.9 - Privilege Escalation
  236. [dos] - Linux x86 - Disable ASLR by Setting the RLIMIT_STACK Resource to Unlimited
  237. [webapps] - SocialEngine 4.8.9 - SQL Injection
  238. [webapps] - Asbru Web Content Management System 9.2.7 - Multiple Vulnerabilities
  239. [local] - Windows Kernel Win32k.sys Privilege Escalation Exploit (MS14-058)
  240. [papers] - Windows Kernel Exploitation 101: Exploiting CVE-2014-4113
  241. [webapps] - ManageEngine Password Manager Pro 8102 to 8302 - Multiple Vulnerabilities
  242. [remote] - PCMAN FTP Server Buffer Overflow - PUT Command
  243. [remote] - Easy File Sharing HTTP Server 7.2 SEH Overflow
  244. [papers] - A New CVE-2015-0057 Exploit Technology
  245. [webapps] - PQI Air Pen Express 6W51-0000R2 and 6W51-0000R2XXX - Multiple Vulnerabili
  246. [papers] - Exploiting Buffer Overflows on MIPS Architecture
  247. [dos] - Hexchat IRC Client 2.11.0 - CAP LS Handling Buffer Overflow
  248. [local] - Hexchat IRC Client 2.11.0 - Directory Traversal
  249. [dos] - Xion Audio Player
  250. [webapps] - WordPress Advanced Video Plugin 1.0 - Local File Inclusion (LFI)