Exploits - Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers - 体验盒子

共24443Exploits

日期	标题	类型	平台	作者
2023-05-02	Companymaps v8.0 – Stored Cross Site Scripting (XSS)	webapps	php	Lucas Noki (0xPrototype)
2023-05-02	PHPJabbers Simple CMS 5.0 – SQL Injection	webapps	php	Ahmet Ümit BAYRAM
2023-05-02	PHPJabbers Simple CMS V5.0 – Stored Cross-Site Scripting (XSS)	webapps	php	Ahmet Ümit BAYRAM
2023-05-02	FS-S3900-24T4S – Privilege Escalation	local	hardware	Daniele Linguaglossa
2023-04-25	PaperCut NG/MG 22.0.4 – Authentication Bypass	webapps	multiple	MaanVader
2023-04-25	OCS Inventory NG 2.3.0.0 – Unquoted Service Path	local	windows	msd0pe
2023-04-25	KodExplorer 4.49 – CSRF to Arbitrary File Upload	webapps	php	Mr Empy
2023-04-25	Sophos Web Appliance 4.3.10.4 – Pre-auth command injection	webapps	php	Behnam Abasi Vanda
2023-04-25	Wondershare Filmora 12.2.9.2233 – Unquoted Service Path	local	windows	msd0pe
2023-04-25	Multi-Vendor Online Groceries Management System 1.0 – Remote Code Execution	webapps	php	Or4nG.M4N
2023-04-25	Arcsoft PhotoStudio 6.0.0.172 – Unquoted Service Path	local	windows	msd0pe
2023-04-25	Mars Stealer 8.3 – Admin Account Takeover	webapps	php	Sköll
2023-04-20	Lilac-Reloaded for Nagios 2.0.8 – Remote Code Execution (RCE)	webapps	php	max / Zoltan Padanyi
2023-04-20	Serendipity 2.4.0 – Cross-Site Scripting (XSS)	webapps	php	Mirabbas Ağalarov
2023-04-20	Serendipity 2.4.0 – Remote Code Execution (RCE) (Authenticated)	webapps	php	Mirabbas Ağalarov
2023-04-20	ProjeQtOr Project Management System 10.3.2 – Remote Code Execution (RCE)	webapps	php	Mirabbas Ağalarov
2023-04-20	Piwigo 13.6.0 – Stored Cross-Site Scripting (XSS)	webapps	php	Mirabbas Ağalarov
2023-04-20	FUXA V.1.1.13-1186 – Unauthenticated Remote Code Execution (RCE)	webapps	typescript	Rodolfo Mariano
2023-04-20	Linux Kernel 6.2 – Userspace Processes To Enable Mitigation	local	linux	nu11secur1ty
2023-04-20	Chitor-CMS v1.1.2 – Pre-Auth SQL Injection	webapps	php	msd0pe
2023-04-20	Franklin Fueling Systems TS-550 – Default Password	remote	hardware	Parsa Rezaie Khiabanloo
2023-04-20	GDidees CMS 3.9.1 – Local File Disclosure	webapps	php	Hadi Mene
2023-04-20	AspEmail v5.6.0.2 – Local Privilege Escalation	local	windows	Zer0FauLT
2023-04-20	Swagger UI 4.1.3 – User Interface (UI) Misrepresentation of Critical Information	webapps	json	Rafael Cintra Lopes
2023-04-20	Bang Resto v1.0 – ‘Multiple’ SQL Injection	webapps	php	Rahad Chowdhury
2023-04-20	Bang Resto v1.0 – Stored Cross-Site Scripting (XSS)	webapps	php	Rahad Chowdhury
2023-04-20	Microsoft Word 16.72.23040900 – Remote Code Execution (RCE)	remote	multiple	nu11secur1ty
2023-04-20	File Replication Pro 7.5.0 – Privilege Escalation/Password reset due Incorrect Access Control	local	windows	Andrea Intilangelo
2023-04-14	Sielco PolyEco Digital FM Transmitter 2.0.6 – Account Takeover / Lockout / EoP	webapps	hardware	LiquidWorm
2023-04-14	Sielco PolyEco Digital FM Transmitter 2.0.6 – Unauthenticated Information Disclosure	webapps	hardware	LiquidWorm
2023-04-14	Sielco PolyEco Digital FM Transmitter 2.0.6 – Radio Data System POST Manipulation	webapps	hardware	LiquidWorm
2023-04-14	Sielco PolyEco Digital FM Transmitter 2.0.6 – Authorization Bypass Factory Reset	webapps	hardware	LiquidWorm
2023-04-14	Sielco PolyEco Digital FM Transmitter 2.0.6 – Authentication Bypass Exploit	webapps	hardware	LiquidWorm
2023-04-14	Sielco Analog FM Transmitter 2.12 – Remote Privilege Escalation	remote	hardware	LiquidWorm
2023-04-14	Sielco Analog FM Transmitter 2.12 – Improper Access Control Change Admin Password	webapps	hardware	LiquidWorm
2023-04-14	Sielco Analog FM Transmitter 2.12 – Cross-Site Request Forgery	webapps	hardware	LiquidWorm
2023-04-14	Sielco Analog FM Transmitter 2.12 – ‘id’ Cookie Brute Force Session Hijacking	webapps	hardware	LiquidWorm
2023-04-14	InnovaStudio WYSIWYG Editor 5.4 – Unrestricted File Upload / Directory Traversal	webapps	asp	Zer0FauLT
2023-04-14	Google Chrome Browser 111.0.5563.64 – AXPlatformNodeCocoa Fatal OOM/Crash (macOS)	local	macos	LiquidWorm
2023-04-14	Bludit 4.0.0-rc-2 – Account takeover	webapps	php	nu11secur1ty
2023-04-10	Online Computer and Laptop Store 1.0 – Remote Code Execution (RCE)	webapps	php	Matisse Beckandt
2023-04-10	BrainyCP V1.0 – Remote Code Execution	webapps	php	Ahmet Ümit BAYRAM
2023-04-10	Paradox Security Systems IPR512 – Denial Of Service	dos	hardware	Giorgi Dograshvili
2023-04-10	Roxy Fileman 1.4.5 – Arbitrary File Upload	webapps	ashx	Zer0FauLT
2023-04-10	ever gauzy v0.281.9 – JWT weak HMAC secret	webapps	typescript	nu11secur1ty
2023-04-10	Microsoft Edge (Chromium-based) Webview2 1.0.1661.34 – Spoofing	local	multiple	nu11secur1ty
2023-04-08	Stonesoft VPN Client 6.2.0 / 6.8.0 – Local Privilege Escalation	local	windows	TOUHAMI Kasbaoui
2023-04-08	Altenergy Power Control Software C1.2.5 – OS command injection	webapps	hardware	Ahmed Alroky
2023-04-08	Suprema BioStar 2 v2.8.16 – SQL Injection	webapps	multiple	Yuriy (Vander) Tsarenko
2023-04-08	Goanywhere Encryption helper 7.1.1 – Remote Code Execution (RCE)	webapps	java	Youssef Muhammad