multiple

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2017-04-04 Apple macOS/iOS Kernel 10.12.3 (16D32) – ‘bpf’ Heap Overflow
  • dos
    		•  Google Security Research
    2017-04-04 Apple macOS/iOS Kernel 10.12.3 (16D32) – Bad Locking in necp_open Use-After-Free
  • dos
    		•  Google Security Research
    2017-03-31 Splunk Enterprise – Information Disclosure
  • webapps
    		•  hyp3rlinx
    2017-03-30 Apple macOS/IOS 10.12.2 (16C67) – ‘mach_msg’ Heap Overflow
  • dos
    		•  Google Security Research
    2017-03-27 Apple Safari – Out-of-Bounds Read when Calling Bound Function
  • dos
    		•  Google Security Research
    2017-03-27 Apple Safari – Builtin JavaScript Allows Function.caller to be Used in Strict Mode
  • dos
    		•  Google Security Research
    2017-03-27 Apple Safari – ‘DateTimeFormat.format’ Type Confusion
  • dos
    		•  Google Security Research
    2017-03-27 Samba 4.5.2 – Symlink Race Permits Opening Files Outside Share Directory
  • remote
    		•  Google Security Research
    2017-03-20 Mozilla Firefox – ‘table’ Use-After-Free
  • dos
    		•  Google Security Research
    2017-03-17 Oracle Knowledge Management 12.1.1 < 12.2.5 - XML External Entity Leading To Remote Code Execution
  • webapps
    		•  SecuriTeam
    2017-03-15 Apache Struts 2.3.5 < 2.3.31 / 2.5 < 2.5.10 - 'Jakarta' Multipart Parser OGNL Injection (Metasploit)
  • remote
    		•  Metasploit
    2017-03-15 Adobe Flash – AVC Header Slicing Heap Overflow
  • dos
    		•  Google Security Research
    2017-03-15 Adobe Flash – ATF Planar Decompression Heap Overflow
  • dos
    		•  Google Security Research
    2017-03-15 Adobe Flash – ATF Thumbnailing Heap Overflow
  • dos
    		•  Google Security Research
    2017-03-15 Adobe Flash – MovieClip Attach init Object Use-After-Free
  • dos
    		•  Google Security Research
    2017-03-15 Adobe Flash – Metadata Parsing Out-of-Bounds Read
  • dos
    		•  Google Security Research
    2017-03-15 GitHub Enterprise < 2.8.7 - Remote Code Execution
  • webapps
    		•  orange
    2017-03-14 APNGDis 2.8 – ‘filename’ Stack Buffer Overflow (PoC)
  • dos
    		•  Alwin Peppels
    2017-03-14 APNGDis 2.8 – ‘image width / height chunk’ Heap Buffer Overflow
  • dos
    		•  Alwin Peppels
    2017-03-14 APNGDis 2.8 – ‘chunk size descriptor’ Heap Buffer Overflow
  • dos
    		•  Alwin Peppels
    2017-03-08 Navetti PricePoint 4.6.0.0 – SQL Injection / Cross-Site Scripting / Cross-Site Request Forgery
  • webapps
    		•  SEC Consult
    2017-03-02 MDwiki < 0.6.2 - Cross-Site Scripting
  • webapps
    		•  evi1m0
    2017-02-24 Apple WebKit 10.0.2 – Cross-Origin or Sandboxed IFRAME Pop-up Blocker Bypass
  • webapps
    		•  Google Security Research
    2017-02-24 Apple WebKit 10.0.2 – ‘Frame::setDocument’ Universal Cross-Site Scripting
  • webapps
    		•  Google Security Research