Exploit-Database.net

Exploits (Total: 94630)


UniSharp Laravel File Manager 2.0.0-alpha7 - Arbitrary File Upload				2019-02-15
Linux - 'kvm_ioctl_create_device()' NULL Pointer Dereference				2019-02-15
qdPM 9.1 - 'search_by_extrafields[]' SQL Injection				2019-02-15
Jinja2 2.10 - 'from_string' Server Side Template Injection				2019-02-15
VSCO 1.1.1.0 - Denial of Service (PoC)				2019-02-15
MyBB Trash Bin Plugin 1.1.3 - Cross-Site Scripting / Cross-Site Request Forgery				2019-02-15
Navicat for Oracle 12.1.15 - "Password" Denial of Service (PoC)				2019-02-15
Free IP Switcher 3.1 - 'Computer Name' Denial of Service (PoC)				2019-02-15
AirMore 1.6.1 - Denial of Service (PoC)				2019-02-15
ApowerManager 3.1.7 - Phone Manager Remote Denial of Service (DoS)				2019-02-14
LayerBB 1.1.2 - Cross-Site Request Forgery (Add Admin)				2019-02-14
MediaMonkey 4.1.23 - '.mp3' URL Denial of Service (PoC)				2019-02-14
WordPress Plugin Booking Calendar 8.4.3 - Authenticated SQL Injection				2019-02-14
DomainMOD 4.11.01 - 'assets/edit/host.php?whid=5' Cross-Site Scripting				2019-02-14
DomainMOD 4.11.01 - 'assets/add/dns.php' Cross-Site Scripting				2019-02-14
DomainMOD 4.11.01 - 'category.php CatagoryName, StakeHolder' Cross-Site Scripting				2019-02-14
DomainMOD 4.11.01 - 'ssl-accounts.php username' Cross-Site Scripting				2019-02-14
DomainMOD 4.11.01 - 'ssl-provider-name' Cross-Site Scripting				2019-02-14
Core FTP/SFTP Server 1.2 Build 589.42 - 'User domain' Denial of Service (PoC)				2019-02-14
exacqVision ESM 5.12.2 - Privilege Escalation				2019-02-14
runc < 1.0-rc6 (Docker < 18.09.2) - Container Breakout (2)				2019-02-14
PilusCart 1.4.1 - 'send' SQL Injection				2019-02-13
NetworkSleuth 3.0 - 'Name' Denial of Service (PoC)				2019-02-13
Rukovoditel Project Management CRM 2.4.1 - Cross-Site Scripting				2019-02-13
Jiofi 4 (JMR 1140 Amtel_JMR1140_R12.07) - Cross-Site Request Forgery (Admin Token Disclosure)				2019-02-13
Jiofi 4 (JMR 1140 Amtel_JMR1140_R12.07) - Cross-Site Request Forgery (Password Disclosure)				2019-02-13
Jiofi 4 (JMR 1140 Amtel_JMR1140_R12.07) - Reflected Cross-Site Scripting				2019-02-13
snapd < 2.37.0 (Ubuntu) - 'dirty_sock' Local Privilege Escalation (2)				2019-02-13
snapd < 2.37.0 (Ubuntu) - 'dirty_sock' Local Privilege Escalation (1)				2019-02-13
Ubuntu snapd < 2.37.1 - Local Privilege Escalation				2019-02-12
Android - binder Use-After-Free of VMA via race Between reclaim and munmap				2019-02-12
Android - binder Use-After-Free via fdget() Optimization				2019-02-12
runc< 1.0-rc6 (Docker < 18.09.2) - Host Command Execution				2019-02-12
Skyworth GPON HomeGateways and Optical Network Terminals - Stack Overflow				2019-02-12
BlogEngine.NET 3.3.6 - Directory Traversal / Remote Code Execution				2019-02-12
LayerBB 1.1.2 - Cross-Site Scripting				2019-02-12
Jenkins 2.150.2 - Remote Command Execution (Metasploit)				2019-02-12
OPNsense < 19.1.1 - Cross-Site Scripting				2019-02-12
Webiness Inventory 2.3 - 'email' SQL Injection				2019-02-11
CentOS Web Panel 0.9.8.763 - Persistent Cross-Site Scripting				2019-02-11
VA MAX 8.3.4 - Authenticated Remote Code Execution				2019-02-11
MyBB Bans List 1.0 - Cross-Site Scripting				2019-02-11
River Past Video Cleaner 7.6.3 - Local Buffer Overflow (SEH)				2019-02-11
Avast Anti-Virus < 19.1.2360 - Local Credentials Disclosure				2019-02-11
IPFire 2.21 - Cross-Site Scripting				2019-02-11
NordVPN 6.19.6 - Denial of Service (PoC)				2019-02-11
Indusoft Web Studio 8.1 SP2 - Remote Code Execution				2019-02-11
Evince - CBT File Command Injection (Metasploit)				2019-02-11
NUUO NVRmini - upgrade_handle.php Remote Command Execution (Metasploit)				2019-02-11
Adobe Flash Player - DeleteRangeTimelineOperation Type Confusion (Metasploit)				2019-02-11

Exploits/page:

Page: