المساعد الشخصي الرقمي

مشاهدة النسخة كاملة : exploit database


الصفحات : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 [50] 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68

  1. [papers] - [Persian] Ollydbg Tutorial v 1.10
  2. [local] - Certec EDV atvise SCADA Server 2.5.9 - Privilege Escalation
  3. [dos] - ASUS Memory Mapping Driver (ASMMAP/ASMMAP64): Physical Memory Read/Write
  4. [webapps] - ZeewaysCMS - Multiple Vulnerabilities
  5. [remote] - Dell SonicWall Scrutinizer
  6. [local] - i.FTP 2.21 - Host Address / URL Field SEH Exploit
  7. [webapps] - Ajaxel CMS 8.0 - Multiple Vulnerabilities
  8. [shellcode] - Windows Null-Free Shellcode - Primitive Keylogger to File - 431 (0x01AF
  9. [shellcode] - Linux x86_64 Shellcode - Reverse TCP (ipv6)
  10. [shellcode] - Linux x86_64 Shellcode - Bind TCP Port 1472 (ipv6)
  11. [shellcode] - Linux x86 Shellcode - Bind TCP Port 1472 (ipv6)
  12. [webapps] - ManageEngine Applications Manager Build 12700 - Multiple Vulnerabilities
  13. [dos] - Adobe Flash - MovieClip.duplicateMovieClip Use-After-Free
  14. [dos] - Adobe Flash - Use-After-Free When Rendering Displays From Multiple Scripts
  15. [webapps] - DotNetNuke 07.04.00 - Administration Authentication Bypass
  16. [dos] - CIScan 1.00 - Hostname/IP Field Crash PoC
  17. [dos] - RPCScan 2.03 - Hostname/IP Field Crash PoC
  18. [dos] - Baidu Spark Browser 43.23.1000.476 - Address Bar URL Spoofing
  19. [dos] - Linux (Ubuntu 16.04) - Reference Count Overflow Using BPF Maps
  20. [local] - Linux Kernel 4.4.x (Ubuntu 16.04) - Use-After-Free via double-fdput() in bp
  21. [dos] - Linux (Ubuntu 14.04.3) - perf_event_open() Can Race with execve() (/etc/shado
  22. [dos] - McAfee LiveSafe 14.0 - Relocations Processing Memory Corruption
  23. [local] - Zabbix Agent 3.0.1 - mysql.size Shell Command Injection
  24. [dos] - OpenSSL Padding Oracle in AES-NI CBC MAC Check
  25. [dos] - ImageMagick < 6.9.3-9 - Multiple Vulnerabilities
  26. [webapps] - PHP Imagick 3.3.0 - disable_functions Bypass
  27. [webapps] - IPFire < 2.19 Core Update 101 - Remote Command Execution
  28. [local] - TRN Threaded USENET News Reader 3.6-23 - Local Stack-Based Overflow
  29. [webapps] - NetCommWireless HSPA 3G10WVE Wireless Router – Multiple Vulnerabilities
  30. [webapps] - Acunetix WP Security Plugin 3.0.3 - XSS
  31. [webapps] - CMS Made Simple < 2.1.3 & < 1.12.1 - Web Server Cache Poisoning
  32. [webapps] - Alibaba Clone B2B Script - Admin Authentication Bypass
  33. [local] - QSEE - PRDiag* Commands Privilege Escalation Exploit
  34. [remote] - Apache Struts Dynamic Method Invocation Remote Code Execution
  35. [remote] - Acunetix WVS 10 - Remote Command Execution (System)
  36. [shellcode] - .Net Framework Execute Native x86 Shellcode
  37. [webapps] - WordPress Ghost Plugin 0.5.5 - Unrestricted Export Download
  38. [shellcode] - Linux x86 Reverse TCP Shellcode (ipv6)
  39. [webapps] - GLPi 0.90.2 - SQL Injection
  40. [dos] - Wireshark - ett_zbee_zcl_pwr_prof_enphases Static Out-of-Bounds Read
  41. [dos] - Wireshark - alloc_address_wmem Assertion Failure
  42. [dos] - Wireshark - dissect_2008_16_security_4 Stack-Based Buffer Overflow
  43. [dos] - Rough Auditing Tool for Security (RATS) 2.3 - Array Out of Block Crash
  44. [webapps] - Merit Lilin IP Cameras - Multiple Vulnerabilities
  45. [webapps] - Observium 0.16.7533 - Authenticated Arbitrary Command Execution
  46. [webapps] - Observium 0.16.7533 - Cross Site Request Forgery
  47. [dos] - Windows Kernel - win32k.sys TTF Processing EBLC / EBSC Tables Pool Corruption
  48. [remote] - PHP 7.0.5 - ZipArchive::getFrom* Integer Overflow
  49. [local] - Mach Race OS X Local Privilege Escalation Exploit
  50. [dos] - Windows - CSRSS BaseSrvCheckVDM Session 0 Process Creation Privilege Escalati
  51. [webapps] - Multiple Vendors (RomPager
  52. [webapps] - EMC ViPR SRM - Cross-Site Request Forgery
  53. [webapps] - ImpressCMS 1.3.9 - SQL Injection
  54. [remote] - libgd 2.1.1 - Signedness Heap Overflow
  55. [remote] - Advantech WebAccess Dashboard Viewer Arbitrary File Upload
  56. [local] - Yasr Screen Reader 0.6.9 - Local Buffer Overflow
  57. [dos] - Rough Auditing Tool for Security (RATS) 2.3 - Crash PoC
  58. [papers] - [Turkish] Privilege Escalation Vectors On Windows Systems
  59. [webapps] - NationBuilder Multiple Stored XSS Vulnerabilities
  60. [remote] - PCMan FTP Server 2.0.7 - RENAME Command Buffer Overflow (MSF)
  61. [shellcode] - Linux x64 - Bind Shell Shellcode Generator
  62. [local] - CompuSource Systems - Real Time Home Banking - Local Privilege Escalation
  63. [webapps] - Gemtek CPE7000 - WLTCS-106 sysconf.cgi Unauthenticated Remote Command Exe
  64. [webapps] - Gemtek CPE7000 - WLTCS-106 Administrator SID Retriever (MSF)
  65. [webapps] - C/C++ Offline Compiler and C For OS - Persistent XSS
  66. [webapps] - Totemomail 4.x and 5.x - Persistent XSS
  67. [local] - Microsoft Windows 7-10 & Server 2008-2012 - Local Privilege Escalation (x32
  68. [shellcode] - Linux/x86_64 - bindshell (Port 5600) - 86 bytes
  69. [papers] - Phorum 5.2.20 - Multiple Vulnerabilities
  70. [webapps] - Gemtek CPE7000 / WLTCS-106 - Multiple Vulnerabilities
  71. [webapps] - Symantec Brightmail 10.6.0-7- LDAP Credentials Disclosure
  72. [webapps] - phpLiteAdmin 1.9.6 - Multiple Vulnerabilities
  73. [webapps] - Webutler CMS 3.2 - Cross-Site Request Forgery
  74. [dos] - Hyper-V - vmswitch.sys VmsMpCommonPvtHandleMulticastOids Guest to Host Kernel
  75. [dos] - Windows Kernel - DrawMenuBarTemp Wild-Write (MS16-039)
  76. [webapps] - PHPBack 1.3.0 - SQL Injection
  77. [webapps] - modified eCommerce Shopsoftware 2.0.0.0 rev 9678 - Blind SQL Injection
  78. [webapps] - pfSense Community Edition 2.2.6 - Multiple Vulnerabilities
  79. [remote] - Novell ServiceDesk Authenticated File Upload
  80. [dos] - TH692 Outdoor P2P HD Waterproof IP Camera - Hard Coded Credentials
  81. [webapps] - WordPress Kento Post View Counter Plugin 2.8 - CSRF/XSS
  82. [webapps] - WordPress leenk.me Plugin 2.5.0 - CSRF/XSS
  83. [local] - Exim "perl_startup" Privilege Escalation
  84. [webapps] - AirOS 6.x - Arbitrary File Upload
  85. [shellcode] - Linux/x86_64 - Read /etc/passwd - 65 bytes
  86. [remote] - Internet Explorer 9, 10, 11 - CDOMStringDataList::InitFromString Out-of-Bo
  87. [webapps] - PHPmongoDB 1.0.0 - Multiple Vulnerabilities
  88. [webapps] - Brickcom Corporation Network Cameras - Multiple Vulnerabilities
  89. [webapps] - pfSense Firewall
  90. [dos] - Microsoft Office Excel Out-of-Bounds Read Remote Code Execution (MS16-042)
  91. [remote] - Dell KACE K1000 File Upload
  92. [local] - Texas Instrument Emulator 3.03 - Local Buffer Overflow
  93. [webapps] - Oracle Application Testing Suite 12.4.0.2.0 - Authentication Bypass and A
  94. [papers] - Avactis PHP Shopping Cart - Multiple Vulnerabilities
  95. [papers] - [Persian] XML Injection
  96. [webapps] - Ovidentia troubleticketsModule 7.6 - Remote File Inclusion
  97. [webapps] - Novell Service Desk 7.1.0, 7.0.3 and 6.5 - Multiple Vulnerabilities
  98. [dos] - Android - IMemory Native Interface is Insecure for IPC Use
  99. [dos] - Android - IOMX getConfig/getParameter Information Disclosure
  100. [shellcode] - Linux/x86_64 - bindshell (PORT: 5600) - 81 bytes
  101. [webapps] - Axis Network Cameras - Multiple Vulnerabilities
  102. [local] - CAM UnZip 5.1 - Archive Path Traversal
  103. [webapps] - OpenCart 2.1.0.2 to 2.2.0.0 - json_decode Function Remote Code Execution
  104. [webapps] - WPN-XM Serverstack 0.8.6 - Cross Site Request Forgery
  105. [webapps] - Hikvision Digital Video Recorder - Cross-Site Request Forgery
  106. [webapps] - op5 7.1.9 - Remote Command Execution
  107. [local] - Apple Intel HD 3000 Graphics driver 10.0.0 - Local Privilege Escalation
  108. [local] - Express Zip
  109. [local] - Mess Emulator 0.154-3.1 - Local Buffer Overflow
  110. [webapps] - PLANET Technology IP Surveillance Cameras - Multiple Vulnerabilities
  111. [local] - Panda Security URL Filtering < 4.3.1.9 - Privilege Escalation
  112. [dos] - Linux x86 - Disable ASLR by Setting the RLIMIT_STACK Resource to Unlimited
  113. [webapps] - SocialEngine 4.8.9 - SQL Injection
  114. [webapps] - Asbru Web Content Management System 9.2.7 - Multiple Vulnerabilities
  115. [local] - Windows Kernel Win32k.sys Privilege Escalation Exploit (MS14-058)
  116. [papers] - Windows Kernel Exploitation 101: Exploiting CVE-2014-4113
  117. [webapps] - ManageEngine Password Manager Pro 8102 to 8302 - Multiple Vulnerabilities
  118. [remote] - PCMAN FTP Server Buffer Overflow - PUT Command
  119. [remote] - Easy File Sharing HTTP Server 7.2 SEH Overflow
  120. [papers] - A New CVE-2015-0057 Exploit Technology
  121. [webapps] - PQI Air Pen Express 6W51-0000R2 and 6W51-0000R2XXX - Multiple Vulnerabili
  122. [papers] - Exploiting Buffer Overflows on MIPS Architecture
  123. [dos] - Hexchat IRC Client 2.11.0 - CAP LS Handling Buffer Overflow
  124. [local] - Hexchat IRC Client 2.11.0 - Directory Traversal
  125. [dos] - Xion Audio Player
  126. [webapps] - WordPress Advanced Video Plugin 1.0 - Local File Inclusion (LFI)
  127. [dos] - PHP 5.5.33 - Invalid Memory Write
  128. [dos] - Adobe Flash - Color.setTransform Use-After-Free
  129. [dos] - Android - ih264d_process_intra_mb Memory Corruption
  130. [dos] - Adobe Flash - TextField.maxChars Use-After-Free
  131. [dos] - Adobe Flash - URLStream.readObject Use-After-Free
  132. [dos] - Windows Kernel - NtGdiGetTextExtentExW Out-of-Bounds Memory Read
  133. [dos] - Windows Kernel - Bitmap Use-After-Free
  134. [remote] - PHP
  135. [dos] - Wireshark - dissect_pktc_rekey Heap-based Out-of-Bounds Read
  136. [remote] - Apache Jetspeed Arbitrary File Upload
  137. [webapps] - Apache OpenMeetings 1.9.x - 3.1.0 - ZIP File path Traversal
  138. [webapps] - MOBOTIX Video Security Cameras - CSRF Add Admin Exploit
  139. [remote] - Metaphor - Stagefright Exploit with ASLR Bypass
  140. [remote] - ATutor 2.2.1 Directory Traversal / Remote Code Execution
  141. [dos] - Kamailio 4.3.4 - Heap-Based Buffer Overflow
  142. [webapps] - CubeCart 6.0.10 - Multiple Vulnerabilities
  143. [dos] - Apple Quicktime < 7.7.79.80.95 - PSD File Parsing Memory Corruption
  144. [dos] - Apple Quicktime < 7.7.79.80.95 - FPX File Parsing Memory Corruption 2
  145. [dos] - Apple Quicktime < 7.7.79.80.95 - FPX File Parsing Memory Corruption 1
  146. [webapps] - WordPress Photocart Link Plugin 1.6 - Local File Inclusion
  147. [webapps] - Wordpress Plugin IMDb Profile Widget 1.0.8 - Local File Inclusion
  148. [remote] - LShell
  149. [remote] - Adobe Flash - Object.unwatch Use-After-Free Exploit
  150. [local] - Cogent Datahub
  151. [dos] - Android One mt_wifi IOCTL_GET_STRUCT Privilege Escalation
  152. [local] - FireEye - Privilege Escalation to root from Malware Input Processor (uid=mi
  153. [dos] - TallSoft SNMP TFTP Server 1.0.0 - Denial of Service
  154. [shellcode] - Linux/x86_x64 - execve(/bin/bash) - 33 bytes
  155. [shellcode] - Linux/x86_x64 - execve(/bin/sh) - 25 bytes
  156. [webapps] - Trend Micro Deep Discovery Inspector 3.8, 3.7 - CSRF Vulnerabilities
  157. [webapps] - Liferay Portal 5.1.2 - Persistent XSS
  158. [webapps] - Monstra CMS 3.0.3 - Multiple Vulnerabilities
  159. [shellcode] - Linux/x86_x64 - execve(/bin/sh) - 26 bytes
  160. [dos] - OS X Kernel Use-After-Free and Double Delete Due to Incorrect Locking in Inte
  161. [dos] - OS X Kernel - AppleKeyStore Use-After-Free
  162. [dos] - Adobe Flash - Uninitialized Stack Parameter Access in MovieClip.swapDepths Ua
  163. [dos] - Adobe Flash - Uninitialized Stack Parameter Access in Object.unwatch UaF Fix
  164. [dos] - Adobe Flash - Uninitialized Stack Parameter Access in AsBroadcaster.broadcast
  165. [dos] - Adobe Flash - Sprite Creation Use-After-Free
  166. [dos] - Adobe Flash - Zlib Codec Heap Overflow
  167. [dos] - Adobe Flash - Shape Rendering Crash
  168. [dos] - OS X Kernel - Code Execution Due to Lack of Bounds Checking in AppleUSBPipe::
  169. [dos] - Wireshark - dissect_ber_integer Static Out-of-Bounds Write
  170. [dos] - Comodo - Integer Overlow Leading to Heap Overflow Parsing Composite Documents
  171. [dos] - Comodo - LZMA Decoder Heap Overflow via Insufficient Parameter Checks
  172. [dos] - Comodo - PackMan Unpacker Insufficient Parameter Validation
  173. [dos] - Avira - Heap Underflow Parsing PE Section Headers
  174. [remote] - Comodo Antivirus Forwards Emulated API Calls to the Real API During Scans
  175. [webapps] - MiCollab 7.0 - SQL Injection Vulnerability
  176. [remote] - Multiple CCTV-DVR Vendors - Remote Code Execution
  177. [local] - OS X / iOS Suid Binary Logic Error Kernel Code Execution
  178. [webapps] - WordPress Memphis Document Library Plugin 3.1.5 - Arbitrary File Download
  179. [webapps] - WordPress Dharma booking Plugin 2.38.3 - File Inclusion Vulnerability
  180. [webapps] - WordPress Brandfolder Plugin 3.0 - RFI / LFI Vulnerability
  181. [webapps] - Joomla Easy Youtube Gallery 1.0.2 - SQL Injection Vulnerability
  182. [webapps] - WordPress HB Audio Gallery Lite Plugin 1.0.0 - Arbitrary File Download
  183. [webapps] - ProjectSend r582 - Multiple XSS Vulnerabilities
  184. [webapps] - iTop 2.2.1 - CSRF Vulnerability
  185. [webapps] - Dating Pro Genie 2015.7 - CSRF Vulnerabilities
  186. [remote] - Sysax Multi Server 6.50 - HTTP File Share SEH Overflow RCE Exploit
  187. [local] - Internet Download Manager 6.25 Build 14 - 'Find file' Unicode SEH Exploit
  188. [webapps] - WordPress Image Export Plugin 1.1.0 - Arbitrary File Disclosure
  189. [webapps] - Xoops 2.5.7.2 - Directory Traversal Bypass
  190. [webapps] - Xoops 2.5.7.2 - Arbitrary User Deletions CSRF
  191. [webapps] - D-Link DWR-932 Firmware 4.00 - Authentication Bypass
  192. [webapps] - Disc ORGanizer - DORG - Multiple Vulnerabilities
  193. [webapps] - WordPress Abtest Plugin - Local File Inclusion
  194. [webapps] - WordPress Import CSV Plugin 1.0 - Directory Traversal
  195. [webapps] - WordPress eBook Download Plugin 1.1 - Directory Traversal
  196. [local] - Windows - Secondary Logon Standard Handles Missing Sanitization Privilege E
  197. [webapps] - Wildfly - WEB-INF and META-INF Information Disclosure via Filter Restrict
  198. [webapps] - PivotX 2.3.11 - Directory Traversal
  199. [webapps] - Zenphoto 1.4.11 - Remote File Inclusion
  200. [dos] - FreeBSD 10.2 amd64 Kernel - amd64_set_ldt Heap Overflow
  201. [remote] - OpenSSH
  202. [remote] - Cisco UCS Manager 2.1(1b) - Shellshock Exploit
  203. [dos] - Netwrix Auditor 7.1.322.0 - ActiveX (sourceFile) Stack Buffer Overflow
  204. [webapps] - AKIPS Network Monitor 15.37 through 16.5 - OS Command Injection
  205. [webapps] - Kaltura Community Edition
  206. [dos] - Internet Explorer - Read AV in MSHTML!Layout::LayoutBuilderDivider::BuildPage
  207. [dos] - Windows Kernel ATMFD.DLL OTF Font Processing Stack Corruption (MS16-026)
  208. [dos] - Windows Kernel ATMFD.DLL OTF Font Processing Pool-Based Buffer Overflow (MS16
  209. [webapps] - TeamPass 2.1.24 - Multiple Vulnerabilities
  210. [webapps] - Wordpress Site Import Plugin 1.0.1 - Local and Remote File Inclusion
  211. [dos] - Zortam Mp3 Media Studio 20.15 - SEH Overflow DoS
  212. [dos] - RHEL 7.1 Kernel - iowarrior driver Crash PoC
  213. [dos] - RHEL 7.1 Kernel - snd-usb-audio Crash PoC
  214. [remote] - PHP Utility Belt Remote Code Execution
  215. [webapps] - WordPress DZS Videogallery Plugin
  216. [webapps] - Wordpress Beauty & Clean Theme 1.0.8 - Arbitrary File Upload Vulnerabilit
  217. [dos] - Putty pscp
  218. [dos] - libotr
  219. [local] - Exim < 4.86.2 - Local Root Privilege Escalation
  220. [webapps] - WordPress WP Advanced Comment Plugin 0.10 - Persistent XSS
  221. [webapps] - WordPress Best Web Soft Captcha Plugin
  222. [dos] - Nitro Pro
  223. [dos] - Linux - netfilter IPT_SO_SET_REPLACE Memory Corruption
  224. [webapps] - WordPress SiteMile Project Theme 2.0.9.5 - Multiple Vulnerabilities
  225. [local] - exim
  226. [local] - McAfee VirusScan Enterprise 8.8 - Security Restrictions Bypass
  227. [papers] - Metaphor - A (real) real-*life Stagefright exploit
  228. [local] - Microsoft Windows - AFD.SYS Privilege Escalation (MS14-040) Win7x64
  229. [webapps] - ATutor LMS install_modules.php CSRF Remote Code Execution Vulnerability
  230. [local] - AppLocker Execution Prevention Bypass
  231. [remote] - Schneider Electric SBO / AS - Multiple Vulnerabilities
  232. [webapps] - WordPress Bulk Delete Plugin 5.5.3 - Privilege Escalation
  233. [dos] - PictureTrails Photo Editor GE.exe 2.0.0 - .bmp Crash PoC
  234. [local] - Secret Net 7 and Secret Net Studio 8 - Local Privilege Escalation
  235. [shellcode] - x86 Windows Null-Free Download & Run via WebDAV Shellcode (96 bytes)
  236. [dos] - Freeproxy Internet Suite 4.10 - Denial of Service
  237. [dos] - Quick Tftp Server Pro 2.3 - Read Mode Denial of Service
  238. [remote] - NETGEAR ProSafe Network Management System 300 Arbitrary File Upload
  239. [remote] - ATutor 2.2.1 SQL Injection / Remote Code Execution
  240. [webapps] - WordPress CP Polls Plugin 1.0.8 - Multiple Vulnerabilities
  241. [dos] - Viscomsoft Calendar Active-X 2.0 - Multiple Crash PoCs
  242. [papers] - [Hebrew] Digital Whisper Security Magazine #70
  243. [local] - Crouzet em4 soft 1.1.04 and M3 soft 3.1.2.0 - Insecure File Permissions
  244. [dos] - Crouzet em4 soft 1.1.04 - .pm4 Integer Division By Zero
  245. [local] - Comodo Anti-Virus SHFolder.DLL - Local Privilege Elevation Exploit
  246. [webapps] - WordPress More Fields
  247. [dos] - GpicView 0.2.5 - Crash PoC
  248. [webapps] - JSN PowerAdmin Joomla! Extension 2.3.0 - Multiple Vulnerabilities
  249. [dos] - Linux io_submit L2TP sendmsg - Integer Overflow
  250. [dos] - Qualcomm Adreno GPU MSM Driver perfcounter Query Heap Overflow