Exploit-Database.net

Exploits (Total: 96401)


Grandstream UCM6200 Series WebSocket 1.0.20.20 - 'user_password' SQL Injection				2020-03-31
Grandstream UCM6200 Series CTI Interface - 'user_password' SQL Injection				2020-03-31
FlashFXP 4.2.0 Build 1730 - Denial of Service (PoC)				2020-03-31
Multiple DrayTek Products - Pre-authentication Remote Root Code Execution				2020-03-30
Microsoft Windows 10 (1903/1909) - 'SMBGhost' SMB3.1.1 'SMB2_COMPRESSION_CAPABILITIES' Local Privilege Escalation				2020-03-30
Zen Load Balancer 3.10.1 - Remote Code Execution				2020-03-30
10-Strike Network Inventory Explorer 9.03 - 'Read from File' Buffer Overflow (SEH)(ROP)				2020-03-30
Joomla! com_fabrik 3.9.11 - Directory Traversal				2020-03-30
Odin Secure FTP Expert 7.6.3 - 'Site Info' Denial of Service (PoC)				2020-03-30
rConfig 3.9.4 - 'searchField' Unauthenticated Root Remote Code Execution				2020-03-27
Jinfornet Jreport 15.6 - Unauthenticated Directory Traversal				2020-03-27
Everest 5.50.2100 - 'Open File' Denial of Service (PoC)				2020-03-27
ECK Hotel 1.0 - Cross-Site Request Forgery (Add Admin)				2020-03-27
Easy RM to MP3 Converter 2.7.3.700 - 'Input' Local Buffer Overflow (SEH)				2020-03-27
Centreo 19.10.8 - 'DisplayServiceStatus' Remote Code Execution				2020-03-26
TP-Link Archer C50 3 - Denial of Service (PoC)				2020-03-26
10-Strike Network Inventory Explorer 8.54 - 'Add' Local Buffer Overflow (SEH)				2020-03-25
Windows/x64 - WinExec Add-Admin Dynamic Null-Free Shellcode (210 Bytes)				2020-03-25
10-Strike Network Inventory Explorer - 'srvInventoryWebServer' Unquoted Service Path				2020-03-25
LeptonCMS 4.5.0 - Persistent Cross-Site Scripting				2020-03-25
AVAST SecureLine 5.5.522.0 - 'SecureLine' Unquoted Service Path				2020-03-25
Joomla! Component GMapFP 3.30 - Arbitrary File Upload				2020-03-25
UCM6202 1.0.18.13 - Remote Command Injection				2020-03-24
Veyon 4.3.4 - 'VeyonService' Unquoted Service Path				2020-03-24
Wordpress Plugin WPForms 1.5.9 - Persistent Cross-Site Scripting				2020-03-24
UliCMS 2020.1 - Persistent Cross-Site Scripting				2020-03-24
Linux\x86 - 'reboot' polymorphic Shellcode (26 bytes)				2020-03-23
Joomla! com_hdwplayer 4.2 - 'search.php' SQL Injection				2020-03-23
rConfig 3.9.4 - 'search.crud.php' Remote Command Injection				2020-03-23
FIBARO System Home Center 5.021 - Remote File Include				2020-03-23
CyberArk PSMP 10.9.1 - Policy Restriction Bypass				2020-03-23
Google Chrome 80.0.3987.87 - Heap-Corruption Remote Denial of Service (PoC)				2020-03-23
ProficySCADA for iOS 5.0.25920 - 'Password' Denial of Service (PoC)				2020-03-23
VMware Fusion 11.5.2 - Privilege Escalation				2020-03-20
Exagate Sysguard 6001 - Cross-Site Request Forgery (Add Admin)				2020-03-20
Broadcom Wi-Fi Devices - 'KR00K Information Disclosure				2020-03-19
VMWare Fusion - Local Privilege Escalation				2020-03-18
Microsoft VSCode Python Extension - Code Execution				2020-03-18
Windows\x64 - Dynamic MessageBoxA or MessageBoxW PEB & Import Table Method Shellcode (232 bytes)				2020-03-18
Microtik SSH Daemon 6.44.3 - Denial of Service (PoC)				2020-03-18
NetBackup 7.0 - 'NetBackup INET Daemon' Unquoted Service Path				2020-03-18
Netlink GPON Router 1.0.11 - Remote Code Execution				2020-03-18
ManageEngine Desktop Central - Java Deserialization (Metasploit)				2020-03-17
Rconfig 3.x - Chained Remote Code Execution (Metasploit)				2020-03-17
PHPKB Multi-Language 9 - 'image-upload.php' Authenticated Remote Code Execution				2020-03-16
PHPKB Multi-Language 9 - Authenticated Directory Traversal				2020-03-16
PHPKB Multi-Language 9 - Authenticated Remote Code Execution				2020-03-16
MiladWorkShop VIP System 1.0 - 'lang' SQL Injection				2020-03-16
Enhanced Multimedia Router 3.0.4.27 - Cross-Site Request Forgery (Add Admin)				2020-03-16
Microsoft Windows 10 (1903/1909) - 'SMBGhost' SMB3.1.1 'SMB2_COMPRESSION_CAPABILITIES' Buffer Overflow (PoC)				2020-03-14

Exploits/page:

Page: