Exploits (Total: 93883)

    
    
    
Linux - Broken uid/gid Mapping for Nested User Namespaces
CVE-2018-18955
2018-11-16
Easy Outlook Express Recovery 2.0 - Denial of Service (PoC)
2018-11-16
Mumsoft Easy Software 2.0 - Denial of Service (PoC)
2018-11-16
DomainMOD 4.11.01 - Cross-Site Scripting
CVE-2018-19136
2018-11-16
Helpdezk 1.1.1 - Arbitrary File Upload
2018-11-16
Warranty Tracking System 11.06.3 - 'txtCustomerCode' SQL Injection
2018-11-16
Wordpress Plugin Ninja Forms 3.3.17 - Cross-Site Scripting
CVE-2018-19287
2018-11-15
PHP Mass Mail 1.0 - Arbitrary File Upload
2018-11-15
2-Plan Team 1.0.4 - Arbitrary File Upload
2018-11-15
Simple E-Document 1.31 - 'username' SQL Injection
2018-11-15
Kordil EDMS 2.2.60rc3 - Arbitrary File Upload
2018-11-15
Meneame English Pligg 5.8 - 'search' SQL Injection
2018-11-15
The Powerful Resource of PHP Stream Wrappers
2018-11-15
Notepad3 1.0.2.350 - Denial of Service (PoC)
2018-11-15
EverSync 0.5 - Arbitrary File Download
2018-11-15
Webkit (Chome < 61) - 'MHTML' Universal Cross-site Scripting
CVE-2017-5124
2018-11-15
Webkit (Safari) - Universal Cross-site Scripting
CVE-2017-7089
2018-11-15
PHP 5.2.3 imap (Debian Based) - 'imap_open' Disable Functions Bypass
2018-11-15
Galaxy Forces MMORPG 0.5.8 - 'type' SQL Injection
2018-11-15
Net-Billetterie 2.9 - 'login' SQL Injection
2018-11-15
BitZoom 1.0 - 'rollno' SQL Injection
2018-11-15
PHP-Proxy 5.1.0 - Local File Inclusion
CVE-2018-19246
2018-11-15
Precurio Intranet Portal 2.0 - Cross-Site Request Forgery (Add Admin)
2018-11-15
SwitchVPN For MacOS 2.1012.03 Privilege Escalation Exploit
2018-11-14
SwitchVPN For MacOS / Windows 2.1012.03 Man-In-The-Middle Vulnerability
2018-11-14
OCS Inventory NG ocsreports Shell Upload Vulnerability
2018-11-14
ntpd 4.2.8p10 - Out-of-Bounds Read Exploit
2018-11-14
AMPPS 2.7 - Denial of Service Exploit
2018-11-14
Bosch Video Management System 8.0 - Configuration Client Denial of Service (PoC)
2018-11-14
DoceboLMS 1.2 - SQL Injection / Arbitrary File Upload
2018-11-14
Electricks eCommerce 1.0 - Persistent Cross-Site Scripting
2018-11-14
Pedidos 1.0 - SQL Injection
2018-11-14
Rmedia SMS 1.0 - SQL Injection
2018-11-14
SwitchVPN for macOS 2.1012.03 - Privilege Escalation
CVE-2018-18860
2018-11-14
Advanced Comment System 1.0 - SQL Injection
CVE-2018-18619
2018-11-14
Dell OpenManage Network Manager 6.2.0.51 SP3 - Multiple Vulnerabilities
CVE-2018-15767
2018-11-14
Atlassian Jira - Authenticated Upload Code Execution (Metasploit)
2018-11-14
AMPPS 2.7 - Denial of Service (PoC)
2018-11-14
EdTv 2 - 'id' SQL Injection
2018-11-14
Electricks eCommerce 1.0 - Cross-Site Request Forgery (Change Admin Password)
2018-11-14
Helpdezk 1.1.1 - 'query' SQL Injection
2018-11-14
ntpd 4.2.8p10 - Out-of-Bounds Read (PoC)
CVE-2018-7182
2018-11-14
iServiceOnline 1.0 - 'r' SQL Injection
2018-11-14
Linux/x86 - Bind (99999/TCP) NetCat Traditional (/bin/nc) Shell (/bin/bash) Shellcode 58 bytes
2018-11-13
xorg-x11-server < 1.20.1 - Local Privilege Escalation Exploit
2018-11-13
XAMPP Control Panel 3.2.2 - Buffer Overflow (SEH) (Unicode) Exploit
2018-11-13
Cisco Immunet < 6.2.0 / Cisco AMP For Endpoints 6.2.0 - Denial of Service Exploit
2018-11-13
Evince 3.24.0 - Command Injection Exploit
2018-11-13
CuteFTP Mac 3.1 - Denial of Service Exploit
2018-11-13
SIPve 0.0.2-R19 - SQL Injection
2018-11-13
Webiness Inventory 2.3 - SQL Injection
2018-11-13
Webiness Inventory 2.3 - Arbitrary File Upload / Cross-Site Request Forgery (Add Admin)
2018-11-13
Maitra Mail Tracking System 1.7.2 - SQL Injection / Database File Download
2018-11-13
Alive Parish 2.0.4 - SQL Injection / Arbitrary File Upload
2018-11-13
ClipperCMS 1.3.3 - Cross-Site Request Forgery (File Upload)
CVE-2018-19135
2018-11-13
Silurus Classifieds Script 2.0 - 'wcategory' SQL Injection
2018-11-13
Gumbo CMS 0.99 - SQL Injection
2018-11-13
ABC ERP 0.6.4 - Cross-Site Request Forgery (Update Admin)
2018-11-13
Easyndexer 1.0 - Arbitrary File Download
2018-11-13
Tina4 Stack 1.0.3 - Cross-Site Request Forgery (Update Admin)
2018-11-13
Tina4 Stack 1.0.3 - SQL Injection / Database File Download
2018-11-13
xorg-x11-server < 1.20.1 - Local Privilege Escalation
CVE-2018-14665
2018-11-13
Data Center Audit 2.6.2 - Cross-Site Request Forgery (Update Admin)
2018-11-13
Musicco 2.0.0 - Arbitrary Directory Download
2018-11-13
Cisco Immunet < 6.2.0 / Cisco AMP For Endpoints 6.2.0 - Denial of Service
CVE-2018-15437
2018-11-13
XAMPP Control Panel 3.2.2 - Buffer Overflow (SEH) (Unicode)
2018-11-13
Alienor Web Libre 2.0 - SQL Injection
2018-11-13
Surreal ToDo 0.6.1.2 - Local File Inclusion
2018-11-13
Surreal ToDo 0.6.1.2 - SQL Injection
2018-11-13
Evince 3.24.0 - Command Injection
CVE-2017-1000083
2018-11-13
CuteFTP Mac 3.1 - Denial of Service (PoC)
2018-11-13
CentOS Web Panel 0.9.8.740 - Cross-Site Request Forgery / Cross-Site Scripting
CVE-2018-18772
2018-11-13
Linux/x86 - Bind (99999/TCP) NetCat Traditional (/bin/nc) Shell (/bin/bash) Shellcode (58 bytes)
2018-11-13
Cisco Prime Infrastructure Unauthenticated Remote Code Execution Exploit
2018-11-13
Android 5.0 Battery Information Broadcast Information Disclosure Vulnerability
2018-11-13
Android RSSI Broadcast Information Disclosure Vulnerability
2018-11-13
ServerZilla 1.0 - email SQL Injection Vulnerability
2018-11-12
Nominas 0.27 - username SQL Injection Vulnerability
2018-11-12
GPS Tracking System 2.12 - username SQL Injection Vulnerability
2018-11-12
Facturation System 1.0 - modid SQL Injection Vulnerability
2018-11-12
The Don 1.0.1 - login SQL Injection Vulnerability
2018-11-12
Paroiciel 11.20 - tRecIdListe SQL Injection Vulnerability
2018-11-12
Easyndexer 1.0 - Cross-Site Request Forgery (Add Admin) Vulnerability
2018-11-12
Vignette Content Management 6 Security Bypass Vulnerability
2018-11-12
Advanced Comment System 1.0 SQL Injection Vulnerability
2018-11-12
Netscape Enterprise 3.63 Cross Site Scripting Vulnerability
2018-11-12
Mongoose Web Server 6.9 - Denial of Service Exploit
2018-11-12
CuteFTP 9.3.0.3 - Denial of Service Exploit
2018-11-12
TP-Link Archer C50 Wireless Router 171227 - CSRF (Configuration File Disclosure) Vulnerability
2018-11-12
WordPress WP User Manager 2.0.8 SQL Injection Vulnerability
2018-11-12
WordPress PeepSo 1.11.2 XSS / SQL Injection Vulnerabilities
2018-11-12
Wordpress Media File Manager 1.4.2 Plugin - Directory Traversal Vulnerability
2018-11-12
Data Center Audit 2.6.2 - username SQL Injection Vulnerability
2018-11-12
TufinOS 2.17 Build 1193 - XML External Entity Injection Vulnerability
2018-11-12
HeidiSQL 9.5.0.5196 - Denial of Service Exploit
2018-11-12
Nominas 0.27 - 'username' SQL Injection
2018-11-12
Mongoose Web Server 6.9 - Denial of Service (PoC)
2018-11-12
D-LINK Central WifiManager CWM-100 - Server-Side Request Forgery
2018-11-12
ServerZilla 1.0 - 'email' SQL Injection
2018-11-12
GPS Tracking System 2.12 - 'username' SQL Injection
2018-11-12
Easyndexer 1.0 - Cross-Site Request Forgery (Add Admin)
2018-11-12
CuteFTP 9.3.0.3 - Denial of Service (PoC)
2018-11-12
Facturation System 1.0 - 'modid' SQL Injection
2018-11-12
The Don 1.0.1 - 'login' SQL Injection
2018-11-12
TP-Link Archer C50 Wireless Router 171227 - Cross-Site Request Forgery (Configuration File Disclosure)
2018-11-12
Paroiciel 11.20 - 'tRecIdListe' SQL Injection
2018-11-12
Wordpress Plugin Media File Manager 1.4.2 - Directory Traversal
2018-11-12
TufinOS 2.17 Build 1193 - XML External Entity Injection
2018-11-12
Data Center Audit 2.6.2 - 'username' SQL Injection
2018-11-12
HeidiSQL 9.5.0.5196 - Denial of Service (PoC)
2018-11-12
Windows/x86 - Messagebox Shellcode 358 bytes
2018-11-11
Cisco Immunet / Cisco AMP For Endpoints Scanning Denial Of Service Exploit
2018-11-11
Microsoft Windows 10 (Build 17134) - Local Privilege Escalation (UAC Bypass) Exploit
2018-11-11
D-LINK Central WifiManager (CWM 100) 1.03 r0098 Man-In-The-Middle Vulnerability
2018-11-11
D-LINK Central WifiManager (CWM 100) 1.03 r0098 Server-Side Request Forgery Vulnerability
2018-11-11
D-LINK Central WifiManager (CWM 100) 1.03 r0098 DLL Hijacking Exploit
2018-11-11
OpenSLP 2.0.0 - Multiple Vulnerabilities
2018-11-11
Microsoft Windows 10 (Build 17134) - Local Privilege Escalation (UAC Bypass)
2018-11-09
OpenSLP 2.0.0 - Multiple Vulnerabilities
CVE-2016-7567
2018-11-09
Cradlepoint Router Password Disclosure Vulnerability
2018-11-08
Dell OpenManage Network Manager 6.2.0.51 SP3 Privilege Escalation Exploit
2018-11-07
CI User Login and Management 1.0 - Arbitrary File Upload Vulnerability
2018-11-07
Arm Whois 3.11 - Buffer Overflow (SEH) Exploit
2018-11-07
libiec61850 1.3 - Stack Based Buffer Overflow
2018-11-07
LibreHealth 2.0.0 - Arbitrary File Actions Vulnerability
2018-11-07
OpenBiz Cubi Lite 3.0.8 - username SQL Injection Vulnerability
2018-11-07
Grocery crud 1.6.1 - search_field SQL Injection Vulnerability
2018-11-07
VSAXESS V2.6.2.70 build20171226_053 - organization Denial of Service Exploit
2018-11-07
OOP CMS BLOG 1.0 - Cross-Site Request Forgery (Add Admin) Vulnerability
2018-11-07
eToolz 3.4.8.0 - Denial of Service Exploit
2018-11-07
OOP CMS BLOG 1.0 - search SQL Injection Vulnerability
2018-11-07
PlayJoom 0.10.1 - catid SQL Injection Vulnerability
2018-11-07
Blue Server 1.1 - Denial of Service Exploit
2018-11-07
XNU Kernel iOS / macOS heap buffer overflow Exploit
2018-11-07
FaceTime - VCPDecompressionDecodeFrame Memory Corruption Exploit
2018-11-07
FaceTime - readSPSandGetDecoderParams Stack Corruption Exploit
2018-11-07
FaceTime - RTP Video Processing Heap Corruption Exploit
2018-11-07
Morris Worm fingerd Stack Buffer Overflow Exploit
2018-11-07
Morris Worm sendmail Debug Mode Shell Escape Exploit
2018-11-07
blueimp jQuery Arbitrary File Upload Exploit
2018-11-07
QBee Camera / iSmartAlarm Credential Disclosure Vulnerability
2018-11-07
CMS Made Simple 2.2.7 Remote Code Execution Exploit
2018-11-07
CentOS Web Panel Root Account Takeover <= v0.9.8.740 Remote Command Execution Exploit
2018-11-07
Easy File Sharing Web Server 7.2 - author Remote Buffer Overflow (SEH) Exploit
2018-11-07
Microsoft Internet Explorer 11 - Null Pointer Dereference Exploit
2018-11-07
Softros LAN Messenger 9.2 - Denial of Service Exploit
2018-11-07
Intel (Skylake / Kaby Lake) - PortSmash CPU SMT Side-Channel Exploit
2018-11-07
Virgin Media Hub 3.0 Router - Denial of Service Exploit
2018-11-07
Mongo Web Admin 6.0 - Information Disclosure Vulnerability
2018-11-07
Poppy Web Interface Generator 0.8 - Arbitrary File Upload Vulnerability
2018-11-07
Voovi Social Networking Script 1.0 - user SQL Injection Vulnerability
2018-11-07
PHP Proxy 3.0.3 - Local File Inclusion Exploit
2018-11-07
Advantech WebAccess SCADA 8.3.2 - Remote Code Execution Exploit
2018-11-07
WebVet 0.1a - id SQL Injection Vulnerability
2018-11-07
SiAdmin 1.1 - id SQL Injection Vulnerability
2018-11-07
LiquidVPN For macOS 1.3.7 Privilege Escalation Vulnerability
2018-11-07
Royal TSX Information Disclosure Vulnerability
2018-11-07
Yot CMS 3.3.1 - aid SQL Injection Vulnerability
2018-11-07
qdPM 9.1 - filter_by SQL Injection Vulnerability
2018-11-07
Zint Barcode Generator 2.6 - Denial of Service Exploit
2018-11-07
CdCatalog 2.3.1 - Denial of Service Exploit
2018-11-07
WinMTR 0.91 - Denial of Service Exploit
2018-11-07
Gate Pass Management System 2.1 - login SQL Injection Vulnerability
2018-11-07
Jelastic 5.4 - host SQL Injection Vulnerability
2018-11-07
Fantastic Blog CMS 1.0 - id SQL Injection Vulnerability
2018-11-07
Sourcetree Git Arbitrary Code Execution Vulnerability
2018-11-07
Anviz AIM CrossChex Standard 4.3 Excel Macro Injection Vulnerability
2018-11-07
WebDrive 18.00.5057 - Denial of Service Exploit
2018-11-07
Arm Whois 3.11 - Denial of Service Exploit
2018-11-07
Artha The Open Thesaurus 1.0.3.0 - Denial of Service Exploit
2018-11-07
gVisor runsc Guest -> Host Breakout Via Filesystem Cache Desync
2018-11-07
EE 4GEE HH70VB-2BE8GB3 HH70_E1_02.00_19 Hard-Coded Credentails Vulnerability
2018-11-07
Loadbalancer.org Enterprise VA MAX 8.3.2 - Remote Code Execution Exploit
2018-11-07
Asaancart Simple PHP Shopping Cart 0.9 - Arbitrary File Upload / SQL Injection Vulnerabilities
2018-11-07
Notes Manager 1.0 - Arbitrary File Upload Vulnerability
2018-11-07
Microstrategy Web 7 - Cross-Site Scripting / Directory Traversal Vulnerabilities
2018-11-07
University Application System 1.0 - SQL Injection / Cross-Site Request Forgery (Add Admin)
2018-11-07
Exploit
2018-11-07
Exploit
2018-11-06
Exploit
2018-11-06
OpenBiz Cubi Lite 3.0.8 - 'username' SQL Injection
2018-11-06
OOP CMS BLOG 1.0 - 'search' SQL Injection
2018-11-06
libiec61850 1.3 - Stack Based Buffer Overflow
CVE-2018-18957
2018-11-06
eToolz 3.4.8.0 - Denial of Service (PoC)
2018-11-06
Arm Whois 3.11 - Buffer Overflow (SEH)
2018-11-06
Grocery crud 1.6.1 - 'search_field' SQL Injection
2018-11-06
OOP CMS BLOG 1.0 - Cross-Site Request Forgery (Add Admin)
2018-11-06
CMS Made Simple 2.2.7 - Remote Code Execution
CVE-2018-10517
2018-11-06
Blue Server 1.1 - Denial of Service (PoC)
2018-11-06
Morris Worm - fingerd Stack Buffer Overflow (Metasploit)
2018-11-06
blueimp's jQuery 9.22.0 - (Arbitrary) File Upload (Metasploit)
CVE-2018-9206
2018-11-06
Morris Worm - sendmail Debug Mode Shell Escape (Metasploit)
2018-11-06
FaceTime - 'VCPDecompressionDecodeFrame' Memory Corruption
CVE-2018-4366
2018-11-06
FaceTime - 'readSPSandGetDecoderParams' Stack Corruption
CVE-2018-4367
2018-11-06
FaceTime - RTP Video Processing Heap Corruption
CVE-2018-4384
2018-11-06
Intel (Skylake / Kaby Lake) - 'PortSmash' CPU SMT Side-Channel
CVE-2018-5407
2018-11-05
Voovi Social Networking Script 1.0 - 'user' SQL Injection
2018-11-05
Royal TS/X - Information Disclosure
CVE-2018-18865
2018-11-05
LiquidVPN 1.36 / 1.37 - Privilege Escalation
CVE-2018-18856
2018-11-05
Softros LAN Messenger 9.2 - Denial of Service (PoC)
2018-11-05
PHP Proxy 3.0.3 - Local File Inclusion
2018-11-05
Mongo Web Admin 6.0 - Information Disclosure
2018-11-05
Microsoft Internet Explorer 11 - Null Pointer Difference
2018-11-05
Poppy Web Interface Generator 0.8 - Arbitrary File Upload
2018-11-05
Virgin Media Hub 3.0 Router - Denial of Service (PoC)
2018-11-05
WebVet 0.1a - 'id' SQL Injection
2018-11-05
Advantech WebAccess SCADA 8.3.2 - Remote Code Execution
CVE-2018-15705
2018-11-05
SiAdmin 1.1 - 'id' SQL Injection
2018-11-05
Zint Barcode Generator 2.6 - Denial of Service (PoC)
2018-11-04
CdCatalog 2.3.1 - Denial of Service (PoC)
2018-11-04
WinMTR 0.91 - Denial of Service (PoC)
2018-11-04
Yot CMS 3.3.1 - 'aid' SQL Injection
2018-11-04
qdPM 9.1 - 'filter_by' SQL Injection
2018-11-04
Gate Pass Management System 2.1 - 'login' SQL Injection
2018-11-04
Anviz AIM CrossChex Standard 4.3 - CSV Injection
2018-11-04
Jelastic 5.4 - 'host' SQL Injection
2018-11-04
Fantastic Blog CMS 1.0 - 'id' SQL Injection
2018-11-04
Arm Whois 3.11 - Denial of Service (PoC)
2018-11-04
WebDrive 18.00.5057 - Denial of Service (PoC)
2018-11-04
Artha The Open Thesaurus 1.0.3.0 - Denial of Service (PoC)
2018-11-04
SmartFTP Client 9.0.2615.0 - Denial of Service (PoC)
2018-11-04
Loadbalancer.org Enterprise VA MAX 8.3.2 - Remote Code Execution
2018-11-04
CI User Login and Management 1.0 - Arbitrary File Upload
2018-11-04
Asaancart Simple PHP Shopping Cart 0.9 - Arbitrary File Upload / SQL Injection
2018-11-04
Microstrategy Web 7 - Cross-Site Scripting / Directory Traversal
CVE-2018-18775
2018-11-04
Instagram Clone 1.0 - Arbitrary File Upload
2018-11-04
Notes Manager 1.0 - Arbitrary File Upload
2018-11-04
University Application System 1.0 - SQL Injection / Cross-Site Request Forgery (Add Admin)
2018-11-04
Expense Management 1.0 - Arbitrary File Upload
2018-11-04
SIPp 3.3.990 - Local Buffer Overflow (PoC)
2018-11-04
QNAP NetBak Replicator 4.5.6.0607 - Denial of Service (PoC)
2018-11-04
Nutanix AOS & Prism < 5.5.5 (LTS) / < 5.8.1 (STS) - SFTP Authentication Bypass
2018-11-04
MyBB Downloads 2.0.3 - SQL Injection
2018-11-04
ZyXEL VMG3312-B10B < 1.00(AAPP.7) - Credential Disclosure
2018-11-04
Phrack: Viewer Discretion Advised: (De)coding an iOS Kernel Vulnerability (Adam Donenfeld)
2018-11-04
Any Sound Recorder 2.93 - Buffer Overflow Local (SEH) (Metasploit)
2018-11-04
Windows/x64 - Remote (Bind TCP) Keylogger Shellcode (864 bytes) (Generator)
2018-11-04
xorg-x11-server 1.20.3 - Privilege Escalation
CVE-2018-14665
2018-11-04
NETGEAR WiFi Router R6120 - Credential Disclosure
2018-11-04
Webiness Inventory 2.9 - Arbitrary File Upload
2018-11-04
phptpoint Pharmacy Management System 1.0 - 'username' SQL Injection
2018-11-04
R 3.4.4 (Windows 10 x64) - Buffer Overflow (DEP/ASLR Bypass)
2018-11-04
Electricks eCommerce 1.0 - 'prodid' SQL Injection
2018-11-04
South Gate Inn Online Reservation System 1.0 - 'q' SQL Injection
2018-11-04
K-iwi Framework 1775 - SQL Injection
CVE-2018-18755
2018-11-04
SaltOS Erp Crm 3.1 r8126 - Database File Download
CVE-2018-18762
2018-11-04
SaltOS Erp Crm 3.1 r8126 - SQL Injection (2)
CVE-2018-18763
2018-11-04
Modbus Slave 7.0.0 - Denial of Service (PoC)
CVE-2018-18759
2018-11-04
SaltOS Erp Crm 3.1 r8126 - SQL Injection
CVE-2018-18761
2018-11-04
E-Negosyo System 1.0 - SQL Injection
CVE-2018-18801
2018-11-04
Exploits/page:


Page:
1.1.11-prod (www01)