Exploits

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers

共24443Exploits
日期 标题 类型 平台 作者
2010-03-04

PHP-Nuke – ‘user.php’ SQL Injection
  • webapps
  • php
    		• Easy Laster
    2010-03-04

    Drupal < 5.22/6.16 - Multiple Vulnerabilities
  • webapps
  • php
    		• David Rothstein
    2010-03-04

    WinSmMuPl 1.2.5 – ‘.mp3’ Local Crash (PoC)
  • dos
  • windows
    		• cr4wl3r
    2010-03-04

    Authentium Command On Demand ActiveX Control – Multiple Buffer Overflow Vulnerabilities
  • remote
  • windows
    		• Nikolas Sotiriu
    2010-03-04

    AKoff MIDI Player 1.00 – Buffer Overflow
  • dos
  • windows
    		• cr4wl3r
    2010-03-04

    BBSXP 2008 – ‘ShowPost.asp’ Cross-Site Scripting
  • webapps
  • asp
    		• Liscker
    2010-03-04

    PHP-Nuke CMS (Survey and Poll) – SQL Injection
  • webapps
  • php
    		• SENOT
    2010-03-04

    Comptel Provisioning and Activation – ‘index.jsp?error_msg_parameter’ Cross-Site Scripting
  • webapps
  • jsp
    		• thebluegenius
    2010-03-04

    J. River Media Jukebox 12 – ‘.mp3’ Remote Heap Buffer Overflow
  • dos
  • windows
    		• Gjoko Krstic
    2010-03-04

    Sagem Routers – Remote Authentication Bypass
  • webapps
  • hardware
    		• AlpHaNiX
    2010-03-03

    Joomla! Component com_blog – Directory Traversal
  • webapps
  • php
    		• DevilZ TM
    2010-03-03

    MiNBank 1.5.0 – Remote Command Execution
  • webapps
  • php
    		• JosS
    2010-03-03

    smartplugs 1.3 – ‘showplugs.php’ SQL Injection
  • webapps
  • php
    		• Easy Laster
    2010-03-03

    Opera 10.50 – integer Overflow
  • dos
  • windows
    		• Marcin Ressel
    2010-03-03

    Gnat-TGP 1.2.20 – Remote File Inclusion
  • webapps
  • php
    		• cr4wl3r
    2010-03-03

    Adobe Flash Player 10.1.51 – Local File Access Information Disclosure
  • remote
  • multiple
    		• lis cker
    2010-03-03

    Dosya Yukle Scrtipi (DosyaYukle Scripti) 1.0 – Arbitrary File Upload
  • webapps
  • php
    		• indoushka
    2010-03-02

    Microsoft Internet Explorer 6/7/8 – ‘winhlp32.exe MsgBox()’ Remote Code Execution
  • remote
  • windows_x86
    		• Maurycy Prodeus
    2010-03-02

    Uploadify Sample Collection – Arbitrary File Upload
  • webapps
  • php
    		• indoushka
    2010-03-02

    PHP Advanced Transfer Manager 1.10 – Arbitrary File Upload
  • webapps
  • php
    		• indoushka
    2010-03-02

    osCSS 1.2.1 – Database Backups Disclosure
  • webapps
  • php
    		• indoushka
    2010-03-02

    Al Sat Scripti – Database Disclosure
  • webapps
  • asp
    		• indoushka
    2010-03-02

    Discuz! 6.0 – ‘uid’ Cross-Site Scripting
  • webapps
  • php
    		• lis cker
    2010-03-02

    Uiga Church Portal – ‘index.php’ SQL Injection
  • webapps
  • php
    		• Easy Laster
    2010-03-02

    Sparta Systems TrackWise EQms – Multiple Cross-Site Scripting Vulnerabilities
  • webapps
  • java
    		• Yaniv Miron
    2010-03-02

    ProSSHD 1.2 20090726 – Remote Buffer Overflow
  • remote
  • windows
    		• S2 Crew
    2010-03-02

    IBM Lotus Domino 7.0.2 – ‘readme.nsf’ Cross-Site Scripting
  • remote
  • multiple
    		• Nahuel Grisolia
    2010-03-02

    Opera / Mozilla Firefox 3.6 – Long String Crash
  • dos
  • windows
    		• Asheesh kumar Mani Tripathi
    2010-03-02

    My Little Forum – ‘contact.php’ SQL Injection
  • webapps
  • php
    		• Easy Laster
    2010-03-01

    Article Friendly – ‘Filename’ Local File Inclusion
  • webapps
  • php
    		• pratul agrawal
    2010-03-01

    Oracle Siebel 7.7/7.8 – ‘/loyalty_enu/start.swe’ Cross-Site Scripting
  • remote
  • multiple
    		• Lament
    2010-03-01

    CMS by MyWorks – Multiple Vulnerabilities
  • webapps
  • php
    		• Palyo34
    2010-03-01

    phptroubleticket 2.0 – ‘id’ SQL Injection
  • webapps
  • php
    		• kaMtiEz
    2010-03-01

    iPhone / iTouch FtpDisc 1.0 – Buffer Overflow (Denial of Service) (PoC)
  • dos
  • hardware
    		• Alberto Ortega
    2010-03-01

    DeDeCMS 5.5 – ‘_SESSION[dede_admin_id]’ Authentication Bypass
  • webapps
  • php
    		• Wolves Security Team
    2010-03-01

    Blax Blog 0.1 – ‘girisyap.php’ SQL Injection
  • webapps
  • php
    		• cr4wl3r
    2010-02-28

    RCA DCM425 Cable Modem – ‘micro_httpd’ Denial of Service (PoC)
  • dos
  • hardware
    		• ad0nis
    2010-02-28

    Open Educational System 0.1 Beta – ‘CONF_INCLUDE_PATH’ Multiple Remote File Inclusions
  • webapps
  • php
    		• cr4wl3r
    2010-02-28

    TRUC 0.11 – ‘login_reset_password_page.php’ Cross-Site Scripting
  • webapps
  • php
    		• snakespc
    2010-02-28

    Majoda CMS – Authentication Bypass
  • webapps
  • asp
    		• Phenom
    2010-02-28

    Baykus Yemek Tarifleri 2.1 – SQL Injection
  • webapps
  • php
    		• cr4wl3r
    2010-02-28

    Joomla! Component com_liveticker – Blind SQL Injection
  • webapps
  • php
    		• snakespc
    2010-02-28

    Joomla! Component com_yanc – SQL Injection
  • webapps
  • php
    		• snakespc
    2010-02-28

    HazelPress Lite 0.0.4 – Authentication Bypass
  • webapps
  • php
    		• cr4wl3r
    2010-02-28

    Apple Safari 4.0.4 (531.21.10) – Stack Overflow / Denial of Service
  • dos
  • windows
    		• John Cobb
    2010-02-28

    Uiga Fan Club – ‘index.php’ SQL Injection
  • webapps
  • php
    		• Easy Laster
    2010-02-28

    Uiga Personal Portal – ‘index.php’ SQL Injection
  • webapps
  • php
    		• Easy Laster
    2010-02-27

    Slaed CMS 4.0 – Multiple Vulnerabilities
  • webapps
  • php
    		• indoushka
    2010-02-27

    Joomla! Component com_paxgallery – Blind Injection
  • webapps
  • php
    		• snakespc
    2010-02-27

    SLAED CMS 4 – Installation Script Unauthorized Access
  • webapps
  • php
    		• indoushka