linux

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2019-07-01 Linux Mint 18.3-19.1 – ‘yelp’ Command Injection (Metasploit)
  • remote
    		•  b1ack0wl
    2019-06-26 Nagios XI 5.5.6 – Magpie_debug.php Root Remote Code Execution (Metasploit)
  • remote
    		•  Metasploit
    2019-06-20 Cisco Prime Infrastructure Health Monitor – TarArchive Directory Traversal (Metasploit)
  • remote
    		•  Metasploit
    2019-06-20 Linux – Use-After-Free via race Between modify_ldt() and #BR Exception
  • dos
    		•  Google Security Research
    2019-06-20 Cisco Prime Infrastructure – Runrshell Privilege Escalation (Metasploit)
  • local
    		•  Metasploit
    2019-06-18 Serv-U FTP Server < 15.1.7 - Local Privilege Escalation (1)
  • local
    		•  Guy Levin
    2019-06-17 Netperf 2.6.0 – Stack-Based Buffer Overflow
  • dos
    		•  Juan Sacco
    2019-06-17 Exim 4.87 – 4.91 – Local Privilege Escalation
  • local
    		•  Marco Ivaldi
    2019-06-14 CentOS 7.6 – ‘ptrace_scope’ Privilege Escalation
  • local
    		•  s4vitar
    2019-06-11 Webmin 1.910 – ‘Package Updates’ Remote Command Execution (Metasploit)
  • remote
    		•  AkkuS
    2019-06-10 Ubuntu 18.04 – ‘lxd’ Privilege Escalation
  • local
    		•  s4vitar
    2019-06-05 Exim 4.87 < 4.91 - (Local / Remote) Command Execution
  • remote
    		•  Qualys Corporation
    2019-06-05 LibreNMS – addhost Command Injection (Metasploit)
  • remote
    		•  Metasploit
    2019-06-04 Vim < 8.1.1365 / Neovim < 0.3.6 - Arbitrary Code Execution
  • local
    		•  Arminius
    2019-05-17 Cisco Prime Infrastructure Health Monitor HA TarArchive – Directory Traversal / Remote Code Execution
  • remote
    		•  mr_me
    2019-05-08 NetNumber Titan ENUM/DNS/NP 7.9.1 – Path Traversal / Authorization Bypass
  • webapps
    		•  MobileNetworkSecurity
    2019-05-08 MiniFtp – ‘parseconf_load_setting’ Buffer Overflow
  • local
    		•  strider
    2019-05-03 Blue Angel Software Suite – Command Execution
  • remote
    		•  Paolo Serracino, Pietro Minniti, Damiano Proietti
    2019-05-02 Ruby On Rails – DoubleTap Development Mode secret_key_base Remote Code Execution (Metasploit)
  • remote
    		•  Metasploit
    2019-05-01 CentOS Web Panel 0.9.8.793 (Free) / v0.9.8.753 (Pro) / 0.9.8.807 (Pro) – Domain Field (Add DNS Zone) Cross-Site Scripting
  • webapps
    		•  DKM
    2019-04-30 Linux – Missing Locking Between ELF coredump code and userfaultfd VMA Modification
  • dos
    		•  Google Security Research
    2019-04-26 systemd – DynamicUser can Create setuid Binaries when Assisted by Another Process
  • dos
    		•  Google Security Research
    2019-04-23 Linux – ‘page->_refcount’ Overflow via FUSE
  • dos
    		•  Google Security Research
    2019-04-23 Linux – Missing Locking in Siemens R3964 Line Discipline Race Condition
  • dos
    		•  Google Security Research