المساعد الشخصي الرقمي

مشاهدة النسخة كاملة : exploit database


الصفحات : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 [51] 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67

  1. [webapps] - Secure Item Hub 1.0 iOS - Multiple Vulnerabilities
  2. [webapps] - Glassfish Server - Arbitrary File Read Vulnerability
  3. [dos] - Foxit Reader
  4. [remote] - Android ADB Debug Server Remote Payload Execution
  5. [dos] - Wireshark dissect_ber_constrained_bitstring Heap-Based Out-of-Bounds Read
  6. [dos] - Wireshark - nettrace_3gpp_32_423_file_open Stack-Based Out-of-Bounds Read
  7. [dos] - Wireshark - hiqnet_display_data Static Out-of-Bounds Read
  8. [dos] - Wireshark - dissect_nhdr_extopt Stack-Based Buffer Overflow
  9. [dos] - Wireshark - iseries_check_file_type Stack-Based Out-of-Bounds Read
  10. [dos] - pdfium - opj_j2k_read_mcc (libopenjpeg) Heap-Based Out-of-Bounds Read
  11. [dos] - pdfium - opj_jp2_apply_pclr (libopenjpeg) Heap-Based Out-of-Bounds Read
  12. [webapps] - Gongwalker API Manager 1.1 - Blind SQL Injection
  13. [webapps] - Wordpress Booking Calendar Contact Form Plugin
  14. [shellcode] - x86_64 Linux xor/not/div Encoded execve Shellcode
  15. [webapps] - Wordpress Booking Calendar Contact Form Plugin
  16. [dos] - Linux Kernel - prima WLAN Driver Heap Overflow
  17. [webapps] - pfSense Firewall
  18. [dos] - FreeBSD SCTP ICMPv6 Error Processing Vulnerability
  19. [papers] - [Spanish] Windows Heap Overflow Exploitation - Exploiting a Custom Heap Un
  20. [local] - xWPE 1.5.30a-2.1 - Local Buffer Overflow
  21. [local] - Oracle HtmlConverter.exe - Buffer Overflow
  22. [local] - Linux Kernel REFCOUNT Overflow/Use-After-Free in Keyrings
  23. [papers] - [Spanish] Bypass a lista blanca de McAfee Appication Control
  24. [dos] - PDF-XChange Viewer 2.5.315.0 - Shading Type 7 Heap Memory Corruption
  25. [webapps] - SeaWell Networks Spectrum - Multiple Vulnerabilities
  26. [webapps] - Advanced Electron Forum 1.0.9 - RFI / CSRF Vulnerability
  27. [webapps] - Advanced Electron Forum 1.0.9 - Persistent XSS Vulnerabilities
  28. [webapps] - Advanced Electron Forum 1.0.9 - CSRF Vulnerabilities
  29. [local] - WEG SuperDrive G2 12.0.0 - Insecure File Permissions
  30. [dos] - NetSchedScan 1.0 - Crash PoC
  31. [papers] - Roaming Through the OpenSSH Client: CVE-2016-0777 and CVE-2016-0778
  32. [webapps] - mcart.xls Bitrix Module 6.5.2 - SQL Injection Vulnerability
  33. [webapps] - Roundcube 1.1.3 - Path Traversal Vulnerability
  34. [local] - Amanda
  35. [webapps] - phpDolphin
  36. [webapps] - Manage Engine Application Manager 12.5 - Arbitrary Command Execution Vuln
  37. [webapps] - Manage Engine Applications Manager 12 - Multiple Vulnerabilities
  38. [webapps] - SevOne NMS
  39. [webapps] - WhatsUp Gold 16.3 - Unauthenticated Remote Code Execution
  40. [dos] - Microsoft Office / COM Object DLL Planting with WMALFXGFXDSP.dll (MS-16-007)
  41. [dos] - Microsoft Windows devenum.dll!DeviceMoniker::Load() - Heap Corruption Buffer
  42. [dos] - SNScan 1.05 - Scan Hostname/IP Field Buffer Overflow Crash PoC
  43. [dos] - Internet Explorer 11.0.9600.18124 EdUtil::GetCommonAncestorElement - Denial o
  44. [remote] - Konica Minolta FTP Utility 1.00 - CWD Command SEH Overflow
  45. [local] - Linux Kernel overlayfs - Local Privilege Escalation
  46. [dos] - Grassroots DICOM (GDCM) 2.6.0 and 2.6.1 - ImageRegionReader::ReadIntoBuffer B
  47. [papers] - Bypassing McAfee’s Application Whitelisting for Critical Infrastructure Sy
  48. [remote] - FingerTec Fingerprint Reader - Remote Access and Remote Enrollment
  49. [dos] - Apple watchOS 2 - Crash PoC
  50. [remote] - FortiGate OS Version 4.x - 5.0.7 - SSH Backdoor
  51. [dos] - Adobe Flash - Use-After-Free When Setting Stage
  52. [dos] - Adobe Flash - Use-After-Free When Rendering Displays From Multiple Scripts
  53. [dos] - Adobe Flash BlurFilter Processing - Out-of-Bounds Memset
  54. [remote] - TrendMicro node.js HTTP Server Listening on localhost Can Execute Commands
  55. [local] - Amanda
  56. [dos] - KeePass Password Safe Classic 1.29 - Crash PoC
  57. [shellcode] - Linux x86 - Egg-hunter (13 bytes)
  58. [shellcode] - x86_64 Linux Egghunter - 18 bytes
  59. [webapps] - WP Symposium Pro Social Network Plugin 15.12 - Multiple Vulnerabilities
  60. [shellcode] - Linux/x86 execve "/bin/sh" - shellcode 24 byte
  61. [webapps] - AVM FRITZ!Box < 6.30 - Buffer Overflow
  62. [webapps] - OpenMRS Reporting Module 0.9.7 - Remote Code Execution
  63. [webapps] - D-Link DCS-931L File Upload
  64. [shellcode] - TCP Reverse Shell with Password Prompt - 151 bytes
  65. [webapps] - MediaAccess TG788vn - Unauthenticated File Disclosure
  66. [webapps] - Open Audit SQL Injection Vulnerability
  67. [webapps] - PHPIPAM 1.1.010 - Multiple Vulnerabilities
  68. [webapps] - Atlassian Confluence 5.2 / 5.8.14 / 5.8.15 - Multiple Vulnerabilities
  69. [dos] - Ganeti - Multiple Vulnerabilities
  70. [webapps] - Simple PHP Polling System - Multiple Vulnerabilities
  71. [webapps] - Online Airline Booking System - Multiple Vulnerabilities
  72. [local] - Ubuntu 14.04 LTS, 15.10 overlayfs - Local Root Exploit
  73. [dos] - pdfium CPDF_Function::Call - Stack-Based Buffer Overflow
  74. [dos] - pdfium IsFlagSet (v8 memory management) - SIGSEGV
  75. [dos] - pdfium CPDF_TextObject::CalcPositionData - Heap-Based Out-of-Bounds Read
  76. [dos] - pdfium CPDF_DIBSource::DownSampleScanline32Bit - Heap-Based Out-of-Bounds Rea
  77. [remote] - Rejetto HTTP File Server (HFS) 2.3.x - Remote Command Execution
  78. [shellcode] - tcp bindshell with password prompt in 162 bytes
  79. [shellcode] - x86_64 Linux bind TCP port shellcode
  80. [local] - KiTTY Portable
  81. [papers] - KiTTY Portable
  82. [local] - KiTTY Portable
  83. [remote] - KiTTY Portable
  84. [local] - DeleGate 9.9.13 - Local Root Vulnerability
  85. [webapps] - Simple Ads Manager 2.9.4.116 - SQL Injection
  86. [local] - FTPShell Client 5.24 - Buffer Overflow
  87. [papers] - [Turkish] Back To BackDoor
  88. [dos] - AccessDiver 4.301 - Buffer Overflow
  89. [local] - EasyCafe Server
  90. [webapps] - Beezfud - Remote Code Execution
  91. [webapps] - Rips Scanner 0.5 - (code.php) Local File Inclusion
  92. [webapps] - PhpSocial 2.0.0304_20222226 - CSRF Vulnerability
  93. [webapps] - Arastta 1.1.5 - SQL Injection Vulnerabilities
  94. [webapps] - Grawlix 1.0.3 - CSRF Vulnerability
  95. [webapps] - Bigware Shop 2.3.01 - Multiple Local File Inclusion Vulnerabilities
  96. [dos] - PHP 7.0.0 - Format String Vulnerability
  97. [dos] - Wireshark AirPDcapDecryptWPABroadcastKey - Heap-Based Out-of-Bounds Read
  98. [dos] - Wireshark infer_pkt_encap - Heap-Based Out-of-Bounds Read
  99. [dos] - Adobe Flash Sound.setTransform - Use-After-Free
  100. [papers] - [Portuguese] Introduçao a exploraçao de Structured Excpetion Handlers
  101. [dos] - Base64 Decoder 1.1.2 - SEH OverWrite PoC
  102. [webapps] - Ovidentia Widgets 1.0.61 - Remote Command Execution Exploit
  103. [webapps] - Ovidentia online Module 2.8 - GLOBALS[babAddonPhpPath] Remote File Inclus
  104. [dos] - Notepad++ NPPFtp Plugin 0.26.3 - Buffer Overflow
  105. [dos] - Apache 2.4.17 - Denial of Service
  106. [dos] - Adobe Flash MovieClip.localToGlobal - Use-After-Free
  107. [dos] - Adobe Flash MovieClip.attachMovie - Use-After-Free
  108. [dos] - Adobe Flash TextField.tabIndex Setter - Use-After-Free
  109. [dos] - Adobe Flash TextField.text Setter - Use-After-Free
  110. [dos] - Adobe Flash TextField.type Setter - Use-After-Free
  111. [dos] - Adobe Flash TextField.htmlText Setter - Use-After-Free
  112. [dos] - Adobe Flash TextField.variable Setter - Use-After-Free
  113. [dos] - Adobe Flash TextField Variable - Use-After Free
  114. [dos] - Adobe Flash TextField.replaceText - Use-After-Free
  115. [dos] - Adobe Flash TextField.replaceSel - Use-After-Free
  116. [webapps] - PFSense
  117. [local] - Microsoft Windows win32k Local Privilege Escalation (MS15-010)
  118. [webapps] - Ovidentia maillist Module 4.0 - Remote File Inclusion Exploit
  119. [remote] - Joomla 1.5 - 3.4.5 - Object Injection RCE X-Forwarded-For Header
  120. [dos] - win32k Clipboard Bitmap - Use-After-Free Vulnerability
  121. [dos] - Samsung Galaxy S6 Samsung Gallery - Bitmap Decoding Crash
  122. [dos] - Samsung Galaxy S6 Samsung Gallery - GIF Parsing Crash
  123. [dos] - Adobe Flash GradientFill - Use-After-Frees
  124. [dos] - Adobe Flash MovieClip.lineStyle - Use-After-Frees
  125. [dos] - Adobe Flash TextField.gridFitType Setter - Use-After-Free
  126. [dos] - Adobe Flash TextField.antiAliasType Setter - Use-After-Free
  127. [webapps] - Zen Cart 1.5.4 - Local File Inclusion
  128. [local] - Gentoo Local Priv Escalation in QEMU
  129. [remote] - Easy File Sharing Web Server 7.2 - HEAD HTTP Request SEH Buffer Overflow
  130. [remote] - Easy File Sharing Web Server 7.2 - GET HTTP Request SEH Buffer Overflow
  131. [remote] - FireEye Wormable Remote Code Execution in MIP JAR Analysis
  132. [dos] - Wireshark - getRate Stack-Based Out-of-Bounds Read
  133. [dos] - Wireshark - AirPDcapPacketProcess Stack-Based Buffer Overflow
  134. [dos] - Wireshark - find_signature Stack-Based Out-of-Bounds Read
  135. [dos] - Wireshark - dissect_diameter_base_framed_ipv6_prefix Stack-Based Buffer Overf
  136. [dos] - Wireshark - addresses_equal (dissect_rsvp_common) Use-After-Free
  137. [dos] - Wireshark - ascend_seek Static Out-of-Bounds Read
  138. [dos] - Wireshark - my_dgt_tbcd_unpack Static Buffer Overflow
  139. [dos] - Wireshark - dissect_nbap_MACdPDU_Size SIGSEGV
  140. [dos] - Wireshark - memcpy (get_value / dissect_btatt) SIGSEGV
  141. [webapps] - Ovidentia bulletindoc Module 2.9 - Multiple Remote File Inclusion Vulnera
  142. [remote] - Jenkins CLI RMI Java Deserialization Vulnerability
  143. [remote] - ManageEngine Desktop Central 9 FileUploadServlet ConnectionId Vulnerabilit
  144. [webapps] - Ovidentia absences Module 2.64 - Remote File Inclusion
  145. [dos] - IBM Tivoli Storage Manager FastBack Server 5.5.4.2 - _FXCLI_GetConfFileChunk
  146. [dos] - IBM Tivoli Storage Manager FastBack Server 5.5.4.2 - _FXCLI_SetConfFileChunk
  147. [remote] - Joomla 1.5 - 3.4.5 - Object Injection Remote Command Execution
  148. [dos] - Adobe Flash Type Confusion in Serialization with ObjectEncoder.dynamicPropert
  149. [dos] - Adobe Flash Type Confusion in IExternalizable.readExternal When Performing Lo
  150. [remote] - Microsoft Office / COM Object DLL Planting with comsvcs.dll Delay Load of
  151. [webapps] - Bitrix bitrix.xscan Module 1.0.3 - Directory Traversal
  152. [webapps] - Bitrix bitrix.mpbuilder Module 1.0.10 - Local File Inclusion
  153. [remote] - Xdh / LinuxNet Perlbot / fBot IRC Bot Remote Code Execution
  154. [remote] - Legend Perl IRC Bot Remote Code Execution
  155. [dos] - Internet Explorer 11 MSHTML!CObjectElement Use-After-Free Vulnerability (MS15
  156. [webapps] - Polycom VVX-Series Business Media Phones - Path Traversal Vulnerability
  157. [remote] - Siemens Simatic S7 1200 CPU Command Module (MSF)
  158. [papers] - [Persian] Bypass PowerShell Execution Policy
  159. [papers] - [Persian] Exposing the WiFi Password Using C and PowerShell
  160. [papers] - [Persian] Windows Hacking And Security Only in Physical Access
  161. [webapps] - WordPress Admin Management Xtended Plugin 2.4.0 - Privilege escalation
  162. [webapps] - ECommerceMajor - (productdtl.php, prodid param) SQL Injection Vulnerabili
  163. [shellcode] - Windows XP-10 - Null-Free WinExec Shellcode (Python)
  164. [dos] - Avast Integer Overflow Verifying numFonts in TTC Header
  165. [dos] - Avast Heap Overflow Unpacking MoleBox Archives
  166. [dos] - Avast JetDb::IsExploited4x - Performs Unbounded Search on Input
  167. [dos] - Avast OOB Write Decrypting PEncrypt Packed Executables
  168. [dos] - Rar CmdExtract::UnstoreFile Integer Truncation Memory Corruption
  169. [webapps] - Skybox Platform
  170. [webapps] - Gokhan Balbal Script 2.0 - CSRF Vulnerability
  171. [webapps] - iy10 Dizin Scripti - Multiple Vulnerabilities
  172. [papers] - [Persian] Image File Execution Vulnerability
  173. [papers] - [Persian] Advanced NTFS Alternate Data Stream in Windows 8 and 10
  174. [remote] - Microsoft Office / COM Object els.dll DLL Planting (MS15-134)
  175. [dos] - MacOS X 10.11 FTS Deep Structure of the File System Buffer Overflow
  176. [dos] - IE 11.0.9600.18097 COmWindowProxy::SwitchMarkup NULL PTR
  177. [webapps] - Wordpress Plugin WP Easy Poll 1.1.3 - XSS and CSRF
  178. [webapps] - WIMAX MT711x - Multiple Vulnerabilities
  179. [webapps] - WIMAX LX350P(WIXFMR-108) - Multiple Vulnerabilities
  180. [remote] - Microsoft Windows Media Center Link File Incorrectly Resolved Reference
  181. [remote] - Microsoft Windows Media Center Library Parsing RCE Vulnerability aka "self
  182. [webapps] - dotCMS 3.2.4 - Multiple Vulnerabilities
  183. [remote] - Atlassian HipChat for Jira Plugin Velocity Template Injection
  184. [local] - iniNet SpiderControl PLC Editor Simatic 6.30.04 - Insecure File Permissions
  185. [local] - iniNet SpiderControl SCADA Web Server Service 2.02 - Insecure File Permissi
  186. [webapps] - WordPress Polls Widget Plugin 1.0.7 - SQL Injection Vulnerability
  187. [webapps] - PHP Utility Belt - Remote Code Execution
  188. [remote] - phpFileManager 0.9.8 Remote Code Execution
  189. [webapps] - OpenMRS 2.3 (1.11.4) - Local File Disclosure Vulnerability
  190. [webapps] - OpenMRS 2.3 (1.11.4) - Multiple Cross-Site Scripting Vulnerabilities
  191. [webapps] - OpenMRS 2.3 (1.11.4) - Expression Language Injection Vulnerability
  192. [webapps] - OpenMRS 2.3 (1.11.4) - XML External Entity (XXE) Processing Exploit
  193. [webapps] - SIMOGEO FileManager 2.3.0 - Multiple Vulnerabilities
  194. [papers] - [Persian] Change Powershell Command Line Job
  195. [papers] - [Turkish] Beurk Rootkit Password Cracking and Injection (Gizliligin Anatom
  196. [dos] - WinAsm Studio 5.1.8.8 - Buffer Overflow Crash PoC
  197. [local] - Cyclope Employee Surveillance
  198. [webapps] - Wordpress Plugin TheCartPress v1.4.7 - Multiple Vulnerabilities
  199. [webapps] - Wordpress Plugin Sell Download v1.0.16 - Local File Disclosure
  200. [webapps] - Wordpress Plugin Advanced uploader v2.10 - Multiple Vulnerabilities
  201. [webapps] - WordPress Gwolle Guestbook Plugin 1.5.3 - Remote File Inclusion
  202. [remote] - Oracle BeeHive 2 voice-servlet prepareAudioToPlay() Arbitrary File Upload
  203. [remote] - Oracle BeeHive 2 voice-servlet processEvaluation() Vulnerability
  204. [dos] - Malwarebytes Antivirus 2.2.0 - DoS PoC
  205. [dos] - Gnome Nautilus 3.16 - Denial of Service
  206. [webapps] - WordPress Users Ultra Plugin 1.5.50 - Persistent XSS
  207. [webapps] - WordPress Users Ultra Plugin 1.5.50 - Blind SQL injection
  208. [webapps] - IP.Board 4.1.4.x - Persistent XSS Vulnerability
  209. [webapps] - Sysaid Helpdesk Software 14.4.32 b25 - SQL Injection
  210. [remote] - Advantech Switch Bash Environment Variable Code Injection (Shellshock)
  211. [local] - Acunetix WVS 10 - Local Privilege escalation
  212. [webapps] - Zenphoto 1.4.10 - Local File Inclusion
  213. [webapps] - ntop-ng
  214. [webapps] - Belkin N150 Wireless Home Router F9K1009 v1 - Multiple Vulnerabilities
  215. [papers] - [Hebrew] Digital Whisper Security Magazine #66
  216. [papers] - [Hebrew] Digital Whisper Security Magazine #67
  217. [local] - Centos 7.1/Fedora 22 - abrt Local Root
  218. [webapps] - Kodi 15 - Arbitrary File Aaccess (Web Interface)
  219. [local] - RHEL 7.0/7.1 - abrt/sosreport Local Root
  220. [webapps] - HumHub 0.11.2 and 0.20.0-beta.2 - SQL Injection
  221. [remote] - Easy File Sharing Web Server 7.2 - Remote SEH Buffer Overflow (DEP Bypass
  222. [shellcode] - Linux x86_64 Polymorphic execve Shellcode - 31 bytes
  223. [remote] - SAP Sybase Adaptive Server Enterprise XML External Entity Information Disc
  224. [webapps] - WP-Client 3.8.7 - Stored XSS Vulnerability
  225. [remote] - Joomla Content History SQLi Remote Code Execution
  226. [dos] - Windows Kernel Device Contexts and NtGdiSelectBitmap Use-After-Free (MS15-115
  227. [dos] - Windows Race Condition DestroySMWP Use-After-Free (MS15-115)
  228. [dos] - Windows Cursor Object Potential Memory Leak (MS15-115)
  229. [dos] - Windows ndis.sys IOCTL 0x170034 (ndis!ndisNsiGetIfNameForIfIndex) - Pool Buff
  230. [local] - NVIDIA Stereoscopic 3D Driver Service 7.17.13.5382 - Arbitrary Run Key Crea
  231. [dos] - Audacious 3.7 - ID3 Local Crash PoC
  232. [webapps] - vBulletin 5.x - Remote Code Execution Exploit
  233. [dos] - Oracle Outside In PDF 8.5.2 - Parsing Memory Corruption Vulnerability 2
  234. [dos] - Oracle Outside In PDF 8.5.2 - Parsing Memory Corruption Vulnerability
  235. [dos] - Acrobat Reader DC 15.008.20082.15957 - PDF Parsing Memory Corruption Vulnerab
  236. [webapps] - Cambium ePMP 1000 - Multiple Vulnerabilities
  237. [local] - Chkrootkit Local Privilege Escalation
  238. [webapps] - ZTE ZXHN H108N R1A, ZXV10 W300 Routers - Multiple Vulnerabilities
  239. [webapps] - ZTE ADSL ZXV10 W300 Modems - Multiple Vulnerabilities
  240. [webapps] - Horde Groupware 5.2.10 - CSRF Vulnerability
  241. [remote] - F5 iControl iCall::Script Root Command Execution
  242. [dos] - Chrome - open-vcdiff OOB Read in Browser Process Integer Overflow
  243. [webapps] - Netwin SurgeFTP Sever 23d6 - Stored Cross Site Scripting Vulnerabilities.
  244. [dos] - Sam Spade 1.14 - Decode URL Buffer Overflow Crash PoC
  245. [dos] - SuperScan 4.1 - Windows Enumeration Hostname/IP/URL Field SEH Overflow
  246. [dos] - SuperScan 4.1 - Tools Hostname/IP/URL Field Buffer Overflow
  247. [dos] - SuperScan 4.1 - Scan Hostname/IP Field Buffer Overflow
  248. [local] - IBM i Access 7.1 - Buffer Overflow Code Execution
  249. [webapps] - WordPress Users Ultra Plugin 1.5.50 - Unrestricted File Upload
  250. [papers] - [Portuguese] Ataques Avancados contra CPL (Control Panel Applets)