Exploit-Database.net

Exploits (Total: 98348)


Purchase Order Management System 1.0 - Remote File Upload				2021-09-14
Windows/x64 - Reverse TCP (192.168.201.11:4444) Shellcode (330 Bytes)				2021-09-13
Facebook ParlAI 1.0.0 - Deserialization of Untrusted Data in parlai				2021-09-13
Apartment Visitor Management System (AVMS) 1.0 - SQLi to RCE				2021-09-13
Wordpress Plugin Download From Files 1.48 - Arbitrary File Upload				2021-09-13
ECOA Building Automation System - Arbitrary File Deletion				2021-09-13
ECOA Building Automation System - Local File Disclosure				2021-09-13
ECOA Building Automation System - Remote Privilege Escalation				2021-09-13
ECOA Building Automation System - Missing Encryption Of Sensitive Information				2021-09-13
ECOA Building Automation System - Hard-coded Credentials SSH Access				2021-09-13
ECOA Building Automation System - Hidden Backdoor Accounts and backdoor() Function				2021-09-13
ECOA Building Automation System - Configuration Download Information Disclosure				2021-09-13
ECOA Building Automation System - Cookie Poisoning Authentication Bypass				2021-09-13
ECOA Building Automation System - 'multiple' Cross-Site Request Forgery (CSRF)				2021-09-13
ECOA Building Automation System - Directory Traversal Content Disclosure				2021-09-13
ECOA Building Automation System - Path Traversal Arbitrary File Upload				2021-09-13
ECOA Building Automation System - Weak Default Credentials				2021-09-13
Men Salon Management System 1.0 - Multiple Vulnerabilities				2021-09-13
Active WebCam 11.5 - Unquoted Service Path				2021-09-13
Bus Pass Management System 1.0 - 'adminname' Stored Cross-Site Scripting (XSS)				2021-09-09
Backdooring Wordpress to get text-clear passwords - Paper (Brazilian-Portuguese)				2021-09-08
WordPress Plugin TablePress 1.14 - CSV Injection				2021-09-08
WordPress Plugin Survey & Poll 1.5.7.3 - 'sss_params' SQL Injection (2)				2021-09-07
WordPress Plugin WP Sitemap Page 1.6.4 - Stored Cross-Site Scripting (XSS)				2021-09-07
Antminer Monitor 0.5.0 - Authentication Bypass				2021-09-06
SmartFTP Client 10.0.2909.0 - 'Multiple' Denial of Service				2021-09-06
Patient Appointment Scheduler System 1.0 - Persistent/Stored XSS				2021-09-06
Patient Appointment Scheduler System 1.0 - Unauthenticated File Upload & Remote Code Execution (RCE)				2021-09-06
Bus Pass Management System 1.0 - 'viewid' Insecure direct object references (IDOR)				2021-09-06
FlatCore CMS 2.0.7 - Remote Code Execution (RCE) (Authenticated)				2021-09-06
Argus Surveillance DVR 4.0 - Unquoted Service Path				2021-09-06
OpenEMR 6.0.0 - 'noteid' Insecure Direct Object Reference (IDOR)				2021-09-06
OpenSIS 8.0 'modname' - Directory/Path Traversal				2021-09-03
Remote Mouse 4.002 - Unquoted Service Path				2021-09-03
CRACKING WiFi WPA2 HANDSHAKE - Paper (Turkish)				2021-09-02
WordPress Plugin Duplicate Page 4.4.1 - Stored Cross-Site Scripting (XSS)				2021-09-02
WPanel 4.3.1 - Remote Code Execution (RCE) (Authenticated)				2021-09-02
Compro Technology IP Camera - ' mjpegStreamer.cgi' Screenshot Disclosure				2021-09-02
Compro Technology IP Camera - ' index_MJpeg.cgi' Stream Disclosure				2021-09-02
Compro Technology IP Camera - 'Multiple' Credential Disclosure				2021-09-02
Compro Technology IP Camera - RTSP stream disclosure (Unauthenticated)				2021-09-02
Compro Technology IP Camera - 'killps.cgi' Denial-of-Service (DoS)				2021-09-02
OpenSIS Community 8.0 - 'cp_id_miss_attn' SQL Injection				2021-09-02
Dolibarr ERP/CRM 14.0.1 - Privilege Escalation				2021-09-02
Telegram Desktop 2.9.2 - Denial of Service (PoC)				2021-09-01
WordPress Plugin Payments Plugin \| GetPaid 2.4.6 - HTML Injection				2021-09-01
Traffic Offense Management System 1.0 - SQLi to Remote Code Execution (RCE) (Unauthenticated)				2021-09-01
Confluence Server 7.12.4 - 'OGNL injection' Remote Code Execution (RCE) (Unauthenticated)				2021-09-01
WordPress Plugin ProfilePress 3.1.3 - Privilege Escalation (Unauthenticated)				2021-08-31
Umbraco CMS 8.9.1 - Path traversal and Arbitrary File Write (Authenticated)				2021-08-31

Exploits/page:

Page: