multiple

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2019-04-22 ManageEngine Applications Manager 14.0 – Authentication Bypass / Remote Command Execution (Metasploit)
  • remote
    		•  AkkuS
    2019-04-22 Google Chrome 73.0.3683.103 V8 JavaScript Engine – Out-of-Memory in Invalid Table Size Denial of Service (PoC)
  • dos
    		•  Bogdan Kurinnoy
    2019-04-19 Atlassian Confluence Widget Connector Macro – Velocity Template Injection (Metasploit)
  • remote
    		•  Metasploit
    2019-04-18 LibreOffice < 6.0.7 / 6.1.3 - Macro Code Execution (Metasploit)
  • local
    		•  Metasploit
    2019-04-18 Netwide Assembler (NASM) 2.14rc15 – NULL Pointer Dereference (PoC)
  • dos
    		•  Fakhri Zulkifli
    2019-04-17 Oracle Java Runtime Environment – Heap Corruption During TTF font Rendering in GlyphIterator::setCurrGlyphID
  • dos
    		•  Google Security Research
    2019-04-17 Oracle Java Runtime Environment – Heap Corruption During TTF font Rendering in sc_FindExtrema4
  • dos
    		•  Google Security Research
    2019-04-09 Apache Axis 1.4 – Remote Code Execution
  • remote
    		•  David Yesland
    2019-04-08 QNAP Netatalk < 3.1.12 - Authentication Bypass
  • remote
    		•  muts
    2019-04-03 Google Chrome 72.0.3626.96 / 74.0.3702.0 – ‘JSPromise::TriggerPromiseReactions’ Type Confusion
  • remote
    		•  Google Security Research
    2019-04-03 Google Chrome 73.0.3683.39 / Chromium 74.0.3712.0 – ‘ReadableStream’ Internal Object Leak Type Confusion
  • dos
    		•  Google Security Research
    2019-04-03 Google Chrome 72.0.3626.81 – ‘V8TrustedTypePolicyOptions::ToImpl’ Type Confusion
  • dos
    		•  Google Security Research
    2019-04-03 WebKitGTK+ – ‘ThreadedCompositor’ Race Condition
  • dos
    		•  Google Security Research
    2019-04-03 WebKit JavaScriptCore – CodeBlock Dangling Watchpoints Use-After-Free
  • dos
    		•  Google Security Research
    2019-04-03 WebKit JavaScriptCore – Out-Of-Bounds Access in FTL JIT due to LICM Moving Array Access Before the Bounds Check
  • dos
    		•  Google Security Research
    2019-04-03 iOS < 12.2 / macOS < 10.14.4 XNU - pidversion Increment During execve is Unsafe
  • dos
    		•  Google Security Research
    2019-04-03 WebKit JavaScriptCore – ‘createRegExpMatchesArray’ Type Confusion
  • dos
    		•  Google Security Research
    2019-04-03 SpiderMonkey – IonMonkey Compiled Code Fails to Update Inferred Property Types (Type Confusion)
  • dos
    		•  Google Security Research
    2019-03-28 Oracle Weblogic Server Deserialization RCE – Raw Object (Metasploit)
  • remote
    		•  Metasploit
    2019-03-26 Spidermonkey – IonMonkey Type Inference is Incorrect for Constructors Entered via OSR
  • dos
    		•  Google Security Research
    2019-03-26 Firefox < 66.0.1 - 'Array.prototype.slice' Buffer Overflow
  • dos
    		•  xuechiyaobai
    2019-03-25 Apache CouchDB 2.3.1 – Cross-Site Request Forgery / Cross-Site Scripting
  • webapps
    		•  Ozer Goker
    2019-03-21 Rails 5.2.1 – Arbitrary File Content Disclosure
  • webapps
    		•  NotoriousRebel
    2019-03-19 Google Chrome < M73 - MidiManagerWin Use-After-Free
  • dos
    		•  Google Security Research