المساعد الشخصي الرقمي

مشاهدة النسخة كاملة : exploit database


الصفحات : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 [53] 54 55 56 57 58 59 60 61 62 63 64 65 66 67

  1. [dos] - Flash Uninitialized Stack Variable MPD Parsing Memory Corruption
  2. [dos] - Flash AVSS.setSubscribedTags Use After Free Memory Corruption
  3. [dos] - Flash Player Integer Overflow in Function.apply
  4. [remote] - Flash Broker-Based Sandbox Escape via Unexpected Directory Lock
  5. [remote] - Flash Broker-Based Sandbox Escape via Forward Slash Instead of Backslash
  6. [dos] - Flash PCRE Regex Compilation Zero-Length Assertion Arbitrary Bytecode Executi
  7. [remote] - Easy File Management Web Server 5.6 - USERID Remote Buffer Overflow
  8. [webapps] - WordPress WP Symposium Plugin 15.1 - Blind SQL Injection
  9. [webapps] - BigTree CMS 4.2.3 - Authenticated SQL Injection Vulnerabilities
  10. [webapps] - CodoForum 3.3.1 - Multiple SQL Injection Vulnerabilities
  11. [webapps] - PHPfileNavigator 2.3.3 - Privilege Escalation
  12. [webapps] - PHPfileNavigator 2.3.3 - CSRF Vulnerability
  13. [webapps] - PHPfileNavigator 2.3.3 - XSS Vulnerabilities
  14. [remote] - Werkzeug Debug Shell Command Execution
  15. [local] - VideoCharge Studio Buffer Overflow (SEH)
  16. [webapps] - Magento CE < 1.9.0.1 Post Auth RCE
  17. [dos] - FTP Commander 8.02 - SEH Overwrite
  18. [webapps] - Nuts CMS Remote PHP Code Injection / Execution
  19. [remote] - Microsoft Windows HTA (HTML Application) - Remote Code Execution (MS14-064
  20. [webapps] - Sagemcom F@ST 3864 V2 - Get Admin Password
  21. [local] - MASM321 11 Quick Editor (.qeditor) 4.0g- .qse SEH Based Buffer Overflow (AS
  22. [dos] - XMPlay 3.8.1.12 - .pls Local Crash PoC
  23. [shellcode] - Windows x86 All Versions - user32!MessageBox "Hello World!" (199 Bytes
  24. [webapps] - Security IP Camera Star Vision DVR - Authentication Bypass
  25. [dos] - Ubuntu 14.04 NetKit FTP Client - Crash/DoS PoC
  26. [dos] - Ability FTP Server 2.1.4 - Admin Panel AUTHCODE Command Remote DoS
  27. [dos] - Ability FTP Server 2.1.4 - afsmain.exe USER Command Remote DoS
  28. [webapps] - Joomla com_informations component - SQL Injection vulnerability
  29. [webapps] - Joomla com_memorix component - SQL Injection vulnerability
  30. [local] - Firefox < 39.03 - pdf.js Same Origin Policy Exploit
  31. [local] - Microsoft HTML Help Compiler 4.74.8702.0 - SEH Based Overflow
  32. [webapps] - TOTOLINK Routers - Backdoor and RCE Exploit PoC
  33. [webapps] - Gkplugins Picasaweb - Download File
  34. [local] - PDF Shaper 3.5 - Buffer Overflow
  35. [local] - Windows 8.1 DCOM DCE/RPC Local NTLM Reflection Privilege Escalation (MS15-0
  36. [shellcode] - Linux x86 - /bin/sh ROL/ROR Encoded Shellcode
  37. [dos] - Internet Explorer CTreeNode::GetCascadedLang Use-After-Free Vulnerability (MS
  38. [webapps] - WordPress Candidate Application Form Plugin 1.0 - Arbitrary File Download
  39. [webapps] - WordPress Simple Image Manipulator Plugin 1.0 - Arbitrary File Download
  40. [webapps] - WordPress Recent Backups Plugin 0.7 - Arbitrary File Download
  41. [webapps] - WordPress WPTF Image Gallery 1.03 - Aribtrary File Download
  42. [webapps] - WDS CMS - SQL Injection
  43. [shellcode] - Linux x86 Egg Hunter Shellcode (19 bytes)
  44. [webapps] - WordPress Video Gallery 2.7 SQL Injection
  45. [dos] - Havij Pro - Crash POC
  46. [dos] - OSX Keychain - EXC_BAD_ACCESS DoS
  47. [dos] - Classic FTP 2.36 - CWD Reconnection DoS
  48. [dos] - Brasero - Crash Proof Of Concept
  49. [dos] - Acunetix Web Vulnerability Scanner 9.5 - Crash PoC
  50. [webapps] - JoomShopping - Blind SQL Injection
  51. [local] - Tomabo MP4 Player 3.11.3 - (.m3u) SEH Buffer Overflow
  52. [dos] - Dell Netvault Backup 10.0.1.24 - Denial of Service
  53. [webapps] - WordPress Job Manager Plugin 0.7.22 - Persistent XSS
  54. [webapps] - Microweber 1.0.3 File Upload Filter Bypass Remote PHP Code Execution
  55. [webapps] - Microweber 1.0.3 - Stored XSS And CSRF Add Admin Exploit
  56. [papers] - BIGINT Overflow Error Based SQL Injection
  57. [local] - Windows NDProxy Privilege Escalation XP SP3 x86 and 2003 SP2 x86 (MS14-002)
  58. [remote] - PCMan FTP Server 2.0.7 - PUT Command Buffer Overflow
  59. [webapps] - PHP News Script 4.0.0 - SQL Injection
  60. [webapps] - Froxlor Server Management Panel 0.9.33.1 - MySQL Login Information Disclo
  61. [local] - Linux x86 Memory Sinkhole Privilege Escalation PoC
  62. [local] - Linux Privilege Escalation Due to Nested NMIs Interrupting espfix64
  63. [dos] - ISC BIND9 TKEY Remote DoS PoC
  64. [dos] - BIND9 - TKEY PoC
  65. [dos] - KMPlayer 3.9.x - .srt Crash PoC
  66. [dos] - T-Mobile Internet Manager - Contact Name Crash PoC
  67. [webapps] - Tendoo CMS 1.3 - XSS Vulnerabilities
  68. [local] - Sudo
  69. [local] - Heroes of Might and Magic III - Map Parsing Arbitrary Code Execution
  70. [webapps] - phpFileManager 0.9.8 - CSRF Vulnerability
  71. [webapps] - phpFileManager 0.9.8 - Remote Command Execution Vulnerability
  72. [webapps] - Xceedium Xsuite - Multiple Vulnerabilities
  73. [webapps] - WordPress Count Per Day Plugin 3.4 - SQL Injection
  74. [webapps] - WordPress Unite Gallery Lite Plugin 1.4.6 - Multiple Vulnerabilities
  75. [dos] - Libuser Library - Multiple Vulnerabilities
  76. [webapps] - Hawkeye-G v3.0.1.4912 Persistent XSS & Information Leakage
  77. [local] - Foxit Reader - PNG Conversion Parsing tEXt Chunk Arbitrary Code Execution
  78. [webapps] - Airdroid iOS, Android & Win 3.1.3 - Persistent Vulnerability
  79. [webapps] - Hawkeye-G v3.0.1.4912 CSRF Vulnerability
  80. [webapps] - phpVibe < 4.20 Stored XSS
  81. [webapps] - WordPress Download Manager Free 2.7.94 & Pro 4 Authenticated Stored XSS
  82. [local] - OS X 10.10 DYLD_PRINT_TO_FILE Local Privilege Escalation
  83. [dos] - Counter-Strike 1.6 'GameInfo' Query Reflection DoS PoC
  84. [remote] - Internet Download Manager - OLE Automation Array Remote Code Execution
  85. [remote] - SysAid Help Desk 'rdslogs' Arbitrary File Upload
  86. [webapps] - Joomla! Helpdesk Pro Plugin < 1.4.0 - Multiple Vulnerabilities
  87. [shellcode] - win32/xp[TR] sp3 MessageBox - 24Bytes
  88. [dos] - Image Transfer IOS - Remote Crash Proof Of Concept
  89. [dos] - TcpDump rpki_rtr_pdu_print Out-of-Bounds Denial of Service
  90. [local] - Microsoft Word Local Machine Zone Remote Code Execution Vulnerability
  91. [webapps] - WordPress BuddyPress Activity Plus Plugin 1.5 - CSRF Vulnerability
  92. [remote] - D-Link Cookie Command Execution
  93. [shellcode] - Linux x86 /bin/sh ROT7 Encoded Shellcode
  94. [webapps] - 8 TOTOLINK Router Models - Backdoor and RCE
  95. [webapps] - 4 TOTOLINK Router Models - Backdoor Credentials
  96. [webapps] - 4 TOTOLINK Router Models - CSRF and XSS Vulnerabilities
  97. [webapps] - 15 TOTOLINK Router Models - Multiple RCE Vulnerabilities
  98. [webapps] - Joomla DOCman Component - Multiple Vulnerabilities
  99. [webapps] - Kaseya Virtual System Administrator - Multiple Vulnerabilities
  100. [dos] - ZOC Terminal Emulator 7 - (Quick Connection) Crash PoC
  101. [remote] - Impero Education Pro - SYSTEM Remote Command Execution
  102. [webapps] - sysPass 1.0.9 - SQL Injection
  103. [webapps] - Pimcore CMS Build 3450 - Directory Traversal
  104. [dos] - Internet Download Manager - (Find Download) Crash PoC
  105. [dos] - Internet Download Manager - (.ief) Crash PoC
  106. [papers] - Shared Object (.so) Injection on *nix Systems
  107. [webapps] - SO Planning 1.32 - Multiple Vulnerabilities
  108. [webapps] - WordPress CP Contact Form with Paypal Plugin 1.1.5 - Multiple Vulnerabili
  109. [webapps] - ZenPhoto 1.4.8 - Multiple Vulnerabilities
  110. [webapps] - WordPress Swim Team Plugin 1.44.10777 - Arbitrary File Download
  111. [remote] - Western Digital Arkeia Remote Code Execution
  112. [remote] - Adobe Flash opaqueBackground Use After Free
  113. [remote] - VNC Keyboard Remote Code Execution
  114. [remote] - Accellion FTA getStatus verify_oauth_token Command Execution
  115. [webapps] - ArticleFR 3.0.6 - Multiple Vulnerabilities
  116. [webapps] - phpVibe - Aribtrary File Disclosure
  117. [webapps] - Arab Portal 3 - SQL Injection Vulnerability
  118. [dos] - Full Player 8.2.1 - Memory Corruption PoC
  119. [webapps] - FreiChat 9.6 - SQL Injection
  120. [webapps] - phpSQLiteCMS - Multiple Vulnerabilities
  121. [dos] - Notepad++ 6.7.3 - Crash PoC
  122. [webapps] - Wordpress CP Multi View Event Calendar Plugin 1.1.7 - SQL Injection
  123. [webapps] - Wordpress CP Image Store with Slideshow Plugin 1.0.5 Arbitrary File Downl
  124. [dos] - NTPD MON_GETLIST Query Amplification Denial of Service
  125. [dos] - UPNPD M-SEARCH ssdp:discover Reflection Denial of Service
  126. [dos] - File Roller v3.4.1 - DoS PoC
  127. [dos] - Immunity Debugger 1.85 - Crash PoC
  128. [remote] - Adobe Flash Player Nellymoser Audio Decoding Buffer Overflow
  129. [webapps] - Orchard CMS 1.7.3, 1.8.2, 1.9.0 - Stored XSS Vulnerability
  130. [webapps] - AirLive Multiple Products OS Command Injection
  131. [webapps] - Grandstream GXV3275 < 1.0.3.30 - Multiple Vulnerabilities
  132. [webapps] - WordPress WP e-Commerce Shop Styling Plugin 2.5 - Arbitrary File Download
  133. [webapps] - WordPress MDC YouTube Downloader Plugin 2.1.0 - Arbitrary File Download
  134. [webapps] - Centreon 2.5.4 - Multiple Vulnerabilities
  135. [webapps] - AirLink101 SkyIPCam1620W OS Command Injection
  136. [remote] - Adobe Flash Player ByteArray Use After Free
  137. [dos] - INFOMARK IMW-C920W miniupnpd 1.0 - Denial of Service
  138. [webapps] - Dlink DSL-2750u and DSL-2730u - Authenticated Local File Disclosure
  139. [webapps] - phpliteadmin 1.1 - Multiple Vulnerabilities
  140. [webapps] - WordPress ACF Frontend Display Plugin 2.0.5 - File Upload Vulnerability
  141. [webapps] - Wordpress S3Bubble Cloud Video With Adverts & Analytics 0.7 - Arbitrary F
  142. [webapps] - AirDroid Unauthenticated Arbitrary File Upload
  143. [webapps] - CuteNews 2.0.3 - Arbitrary File Upload Vulnerability
  144. [webapps] - WK UDID v1.0.1 iOS - Command Inject Vulnerability
  145. [webapps] - DedeCMS < 5.7-sp1 - Remote File Inclusion
  146. [papers] - [Hebrew] Digital Whisper Security Magazine #62
  147. [webapps] - WordPress Albo Pretorio Online 3.2 - Multiple Vulnerabilities
  148. [remote] - Endian Firewall < 3.0.0 - OS Command Injection (Metasploit Module)
  149. [remote] - Endian Firewall < 3.0.0 - OS Command Injection (Python PoC)
  150. [webapps] - Huawei Home Gateway UPnP/1.0 IGD/1.00 - Password Change Vulnerability
  151. [webapps] - Huawei Home Gateway UPnP/1.0 IGD/1.00 - Password Disclosure
  152. [dos] - Safari 8.0.X / OS X Yosemite 10.10.3 - Crash Proof Of Concept
  153. [dos] - McAfee SiteAdvisor 3.7.2 (firefox) Use After Free PoC
  154. [webapps] - D-Link DSP-W w110 v1.05b01 - Multiple Vulnerabilities
  155. [webapps] - Polycom RealPresence Resource Manager < 8.4 - Multiple Vulnerabilities
  156. [remote] - Adobe Flash Player Drawing Fill Shader Memory Corruption
  157. [webapps] - C2Box 4.0.0(r19171) - CSRF Vulnerability
  158. [webapps] - Fiyo CMS 2.0_1.9.1 - SQL Injection
  159. [webapps] - CollabNet Subversion Edge Management 4.0.11 - Local File Inclusion
  160. [webapps] - WedgeOS
  161. [webapps] - Novius 5.0.1 - Multiple Vulnerabilities
  162. [webapps] - Watchguard XCS
  163. [remote] - Havij - OLE Automation Array Remote Code Execution
  164. [shellcode] - encoded 64 bit execve shellcode
  165. [shellcode] - Linux 64 bit - Encoded execve shellcode
  166. [papers] - PoC || GTFO 0x08
  167. [webapps] - Koha
  168. [webapps] - Koha
  169. [webapps] - Koha
  170. [shellcode] - Linux/x86 - chmod('/etc/passwd',0777) shellcode (42 bytes)
  171. [shellcode] - Linux/x86 - chmod('/etc/gshadow') shellcode (37 bytes)
  172. [shellcode] - Linux/x86 chmod('/etc/shadow','0777') shellcode (42 bytes)
  173. [shellcode] - Linux/x86 - exec('/bin/dash') shellcode (45 bytes)
  174. [webapps] - Thycotic Secret Server 8.8.000004 - Stored XSS
  175. [webapps] - ManageEngine Asset Explorer 6.1 - Stored XSS
  176. [webapps] - Lively cart SQL Injection vulnerability
  177. [dos] - HansoPlayer 3.4.0 Memory Corruption PoC
  178. [dos] - WinylPlayer 3.0.3 Memory Corruption PoC
  179. [webapps] - ZTE ZXV10 W300 v3.1.0c_DR0 - UI Session Delete Vulnerability
  180. [webapps] - ManageEngine SupportCenter Plus 7.90 - Multiple Vulnerabilities
  181. [shellcode] - Linux/x86 - execve /bin/sh shellcode (21 bytes) (2)
  182. [shellcode] - Linux/x86 - chmod() 777 /etc/shadow & exit() (33 bytes)
  183. [webapps] - BlackCat CMS 1.1.1 Arbitrary File Download
  184. [shellcode] - Linux/x86 - /etc/passwd Reader (58 bytes)
  185. [webapps] - Ektron CMS 9.10 SP1 (Build 9.1.0.184.1.114) - CSRF Vulnerability
  186. [local] - Ubuntu 12.04, 14.04, 14.10, 15.04 - overlayfs Local Root (Shadow File)
  187. [dos] - Cisco AnyConnect Secure Mobility 2.x, 3.x, 4.x - Client DoS PoC
  188. [local] - Ubuntu 12.04, 14.04, 14.10, 15.04 - overlayfs Local Root (Shell)
  189. [webapps] - E-Detective Lawful Interception System - Multiple Vulnerabilities
  190. [webapps] - TYPO3 Akronymmanager Extension 0.5.0 - SQL Injection
  191. [dos] - FinePlayer 2.20 (.mp4) - Crash PoC
  192. [dos] - XtMediaPlayer 0.93 (.wav) - Crash PoC
  193. [webapps] - Apexis IP CAM - Information Disclosure
  194. [dos] - Putty 0.64 - Denial of Service Vulnerability
  195. [webapps] - Milw0rm Clone Script 1.0 - (Auth Bypass) SQL Injection Vulnerability
  196. [dos] - Filezilla 3.11.0.2 - SFTP Module Denial of Service Vulnerability
  197. [dos] - GoldWave 6.1.2 Local Crash PoC
  198. [dos] - foobar2000 1.3.8 (.m3u) Local Crash PoC
  199. [papers] - Escaping VMware Workstation through COM1
  200. [webapps] - WordPress Aviary Image Editor Add On For Gravity Forms 3.0 Beta Shell Upl
  201. [webapps] - WordPress SE HTML5 Album Audio Player 1.1.0 - Directory Traversal
  202. [papers] - Privilege Escalation via Client Management Software - Part II
  203. [webapps] - ZCMS 1.1 - Multiple Vulnerabilities
  204. [webapps] - Opsview
  205. [webapps] - Nakid CMS - Multiple Vulnerabilities
  206. [webapps] - ClickHeat
  207. [shellcode] - Linux/x86 - execve /bin/sh shellcode (21 bytes)
  208. [local] - OSSEC 2.7
  209. [webapps] - AnimaGallery 2.6 - Local File Inclusion
  210. [remote] - ProFTPD 1.3.5 Mod_Copy Command Execution
  211. [webapps] - Alcatel-Lucent OmniSwitch - CSRF Vulnerability
  212. [webapps] - Bonita BPM 6.5.1 - Multiple Vulnerabilities
  213. [webapps] - ISPConfig 3.0.5.4p6 - Multiple Vulnerabilities
  214. [webapps] - GeoVision (GeoHttpServer) Webcams Remote File Disclosure Exploit
  215. [webapps] - WordPress Encrypted Contact Form Plugin 1.0.4 - CSRF Vulnerability
  216. [webapps] - FiverrScript CSRF Vulnerability (Add New Admin)
  217. [webapps] - Heroku Bug Bounty #2 - (API) Re Auth Session Bypass Vulnerability
  218. [webapps] - HP WebInspect
  219. [dos] - Libmimedir VCF Memory Corruption PoC
  220. [webapps] - Wordpress RobotCPA Plugin V5 - Local File Inclusion
  221. [webapps] - Wordpress History Collection
  222. [webapps] - Pasworld detail.php - Blind Sql Injection Vulnerability
  223. [webapps] - Wordpress Plugin 'WP Mobile Edition' - LFI Vulnerability
  224. [dos] - Microsoft Internet Explorer 11 - Crash PoC
  225. [webapps] - SV: Milw0rm Clone Script v1.0 - (time based) SQLi
  226. [webapps] - D-Link DSL-526B ADSL2+ AU_2.01 - Unauthenticated Remote DNS Change
  227. [webapps] - D-Link DSL-2730B AU_2.01 - Authentication Bypass DNS Change
  228. [webapps] - TP-Link ADSL2+ TD-W8950ND - Unauthenticated Remote DNS Change
  229. [webapps] - D-Link DSL-2780B DLink_1.01.14 - Unauthenticated Remote DNS Change
  230. [webapps] - Broadlight Residential Gateway DI3124 - Unauthenticated Remote DNS Change
  231. [webapps] - WiFi HD 8.1 - Directory Traversal and Denial of Service
  232. [local] - 1 Click Extract Audio 2.3.6 - Activex Buffer Overflow
  233. [local] - 1 Click Audio Converter 2.3.6 - Activex Buffer Overflow
  234. [webapps] - Wordpress Really Simple Guest Post
  235. [webapps] - WordPress zM Ajax Login & Register Plugin 1.0.9 Local File Inclusion
  236. [dos] - ZTE AC 3633R USB Modem Multiple Vulnerabilities
  237. [webapps] - JDownloader 2 Beta Directory Traversal Vulnerability
  238. [webapps] - Seagate Central 2014.0410.0026-F Remote Facebook Access Token Exploit
  239. [remote] - Seagate Central 2014.0410.0026-F Remote Root Exploit
  240. [local] - Jildi FTP Client 1.5.6 (SEH) BOF
  241. [dos] - WebDrive 12.2 (B4172) - Buffer Overflow Vulnerability
  242. [dos] - Jildi FTP Client Buffer Overflow Poc
  243. [webapps] - vfront-0.99.2 CSRF & Persistent XSS
  244. [local] - PonyOS
  245. [webapps] - WordPress LeagueManager 3.9.11 Plugin - SQLi
  246. [webapps] - Wordpress N-Media Website Contact Form with File Upload 1.5 - Local File
  247. [webapps] - Aruba ClearPass Policy Manager Stored XSS
  248. [remote] - D-Link Devices HNAP SOAPAction-Header Command Execution
  249. [remote] - Airties login-cgi Buffer Overflow
  250. [local] - PonyOS