multiple

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2018-12-20 Erlang – Port Mapper Daemon Cookie Remote Code Execution (Metasploit)
  • remote
    		•  Metasploit
    2018-12-19 IBM Operational Decision Manager 8.x – XML External Entity Injection
  • webapps
    		•  Mohamed M.Fouad
    2018-12-15 Google Chrome 70 – SQLite Magellan Crash (PoC)
  • dos
    		•  zhuowei
    2018-12-14 Fortify Software Security Center (SSC) 17.10/17.20/18.10 – Information Disclosure (2)
  • webapps
    		•  alt3kx
    2018-12-14 Fortify Software Security Center (SSC) 17.10/17.20/18.10 – Information Disclosure
  • webapps
    		•  alt3kx
    2018-12-13 WebKit JIT – Int32/Double Arrays can have Proxy Objects in the Prototype Chains
  • dos
    		•  Google Security Research
    2018-12-11 Adobe ColdFusion 2018 – Arbitrary File Upload
  • webapps
    		•  Vahagn Vardanyan
    2018-12-11 Apache OFBiz 16.11.05 – Cross-Site Scripting
  • webapps
    		•  DKM
    2018-12-11 PrinterOn Enterprise 4.1.4 – Arbitrary File Deletion
  • webapps
    		•  bzyo
    2018-12-11 XNU – POSIX Shared Memory Mappings have Incorrect Maximum Protection
  • local
    		•  Google Security Research
    2018-12-10 Kubernetes – (Authenticated) Arbitrary Requests
  • remote
    		•  evict
    2018-12-10 Kubernetes – (Unauthenticated) Arbitrary Requests
  • remote
    		•  evict
    2018-12-04 Wireshark – ‘find_signature’ Heap Out-of-Bounds Read
  • dos
    		•  Google Security Research
    2018-12-04 Wireshark – ‘cdma2k_message_ACTIVE_SET_RECORD_FIELDS’ Stack Corruption
  • dos
    		•  Google Security Research
    2018-11-30 xorg-x11-server < 1.20.3 - 'modulepath' Local Privilege Escalation
  • local
    		•  Marco Ivaldi
    2018-11-29 WebKit JIT – ‘ByteCodeParser::handleIntrinsicCall’ Type Confusion
  • dos
    		•  Google Security Research
    2018-11-29 WebKit JSC JIT – ‘JSPropertyNameEnumerator’ Type Confusion
  • dos
    		•  Google Security Research
    2018-11-29 TeamCity Agent – XML-RPC Command Execution (Metasploit)
  • remote
    		•  Metasploit
    2018-11-29 WebKit JSC – BytecodeGenerator::hoistSloppyModeFunctionIfNecessary Does not Invalidate the ‘ForInContext’ Object
  • dos
    		•  Google Security Research
    2018-11-26 Xorg X11 Server – SUID privilege escalation (Metasploit)
  • local
    		•  Metasploit
    2018-11-19 ImageMagick – Memory Leak
  • local
    		•  ttffdd
    2018-10-30 Nutanix AOS & Prism < 5.5.5 (LTS) / < 5.8.1 (STS) - SFTP Authentication Bypass
  • remote
    		•  Adam Brown
    2018-10-25 xorg-x11-server < 1.20.3 - Local Privilege Escalation
  • local
    		•  Hacker Fantastic
    2018-10-25 Oracle Weblogic Server – Deserialization Remote Command Execution (Patch Bypass)
  • remote
    		•  allyshka