Exploits (Total: 97839)

    
    
    
HP iMC Plat 7.2 - Remote Code Execution (2)
2017-12-01
HP iMC Plat 7.2 - Remote Code Execution
2017-12-01
macOS High Sierra - Root Privilege Escalation (Metasploit)
2017-11-30
Linux Kernel - 'The Huge Dirty Cow' Overwriting The Huge Zero Page
2017-11-30
Asterisk 13.17.2 - Memory Corruption
2017-11-30
WordPress Plugin WooCommerce 2.0/3.0 - Directory Traversal
2017-11-30
Hipchat For Mac 4.x Remote Code Execution Vulnerability
2017-11-30
Hipchat Data Center / Hipchat Server Code Execution / SSRF Vulnerabilities
2017-11-30
MacOSX Root Privilege Escalation Exploit
2017-11-30
Apache CouchDB Remote Code Execution Vulnerability
2017-11-30
Exim Use-After-Free Exploit
2017-11-30
osCommerce 2.3.4.1 - Arbitrary File Upload Exploit
2017-11-29
Microsoft Windows 10 Creators Update version 1703 - Kernel Local Privilege Escalation Exploit
2017-11-29
pfSense 2.3.1_1 Remote Command Execution Exploit
2017-11-29
HikVision Wi-Fi IP Camera Wireless Access Point State Vulnerability
2017-11-29
Android Gmail < 7.11.5.176568039 - Directory Traversal in Attachment Download Exploit
2017-11-29
Synology StorageManager 5.2 - Remote Root Command Execution Exploit
2017-11-29
CMS Made Simple 2.1.6 Cross Site Scripting / Template Injection Vulnerabilities
2017-11-29
KMPlayer 4.2.2.4 - Denial of Service Exploit
2017-11-29
Winamp Pro 5.66.Build.3512 - Denial of Service Exploit
2017-11-29
Diving Log 6.0 - XML External Entity Injection Vulnerability
2017-11-29
ZTE ZXDSL 831CII - Improper Access Restrictions Vulnerability
2017-11-29
Exim 4.89 - BDAT Denial of Service Exploit
2017-11-29
Wget HTTP integer overflow Exploit
2017-11-29
JBOSSAS 5.x/6.x Deserializer Vulnerability
2017-11-29
JBOSSAS 4.x Deserializer Vulnerability
2017-11-29
Cambium Multiple Vulnerabilities
2017-11-29
DblTek GoIP GSM Gateway Multiple Vulnerabilities
2017-11-29
WordPress CMS Tree Page View 1.3.4 plugin Privilege Escalation Vulnerability
2017-11-29
WordPress WPDB SQL Injection Vulnerability
2017-11-29
Ubuntu 17.04 Linux Kernel XFRM Privilege Escalation Exploit
2017-11-29
D-Link DIR-850L Credential Disclosure Exploit
2017-11-29
CSC Cart 4.6.2 Shell Upload Vulnerability
2017-11-29
Microsoft Windows win32kfull!GreUpdateSpriteInternal Kernel Stack Memory Disclosure Exploit
2017-11-29
Microsoft Windows win32kbase!NtQueryCompositionInputQueueAndTransform Kernel Stack Memory Disclosure
2017-11-29
Microsoft Edge Chakra JIT Incorrect Function Declaration Scope Exploit
2017-11-29
Microsoft Edge Chakra JIT Inline::InlineCallApplyTarget_Shared Failed Return Exploit
2017-11-29
Microsoft Edge Chakra JIT GlobOpt::OptTagChecks Property Consideration Exploit
2017-11-29
Microsoft Edge Chakra JIT BailOutOnTaggedValue Bailouts Exploit
2017-11-29
CommuniGatePro 6.1.16 Cross Site Scripting Vulnerability
2017-11-29
ALLPlayer 7.5 - Local Buffer Overflow (SEH Unicode) Exploit
2017-11-29
Linux - mincore() Uninitialized Kernel Heap Page Disclosure Exploit
2017-11-29
WebKit - WebCore::FormSubmission::create Use-After-Free Exploit
2017-11-29
WebKit - WebCore::RenderObject::previousSibling Use-After-Free Exploit
2017-11-29
WebKit - WebCore::DocumentLoader::frameLoader Use-After-Free Exploit
2017-11-29
WebKit - WebCore::Style::TreeResolver::styleForElement Use-After-Free Exploit
2017-11-29
WebKit - WebCore::SVGPatternElement::collectPatternAttributes Out-of-Bounds Read Exploit
2017-11-29
WebKit - WebCore::SimpleLineLayout::RunResolver::runForPoint Out-of-Bounds Read Exploit
2017-11-29
WebKit - WebCore::RenderText::localCaretRect Out-of-Bounds Read Exploit
2017-11-29
WebKit - WebCore::AXObjectCache::performDeferredCacheUpdate Use-After-Free Exploit
2017-11-29
WebKit - WebCore::PositionIterator::decrement Use-After-Free Exploit
2017-11-29
WebKit - WebCore::InputType::element Use-After-Free Exploit
2017-11-29
WebKit - WebCore::TreeScope::documentScope Use-After-Free Exploit
2017-11-29
Icon Time Systems RTC-1000 Firmware 2.5.7458 - Cross-Site Scripting Vulnerability
2017-11-29
MyTy 5.1.6 Blind SQL Injection Vulnerability
2017-11-29
MyTy 5.1.7 Cross Site Scripting Vulnerability
2017-11-29
WordPress Breezing Forms 1.2.7.42 Cross Site Scripting Vulnerability
2017-11-29
WordPress Yoast SEO Cross Site Scripting Vulnerability
2017-11-29
Vonage VDV-23 - Denial of Service Exploit
2017-11-29
WordPress In Link 1.0 SQL Injection Vulnerability
2017-11-29
WordPress amtyThumb 8.1.3 Cross Site Scripting Vulnerability
2017-11-29
WordPress Advanced Post Type Ratings 1.1 Cross Site Scripting Vulnerability
2017-11-29
WordPress Emag Marketplace Connector 1.0 Cross Site Scripting Vulnerability
2017-11-29
RSA Authentication Manager 8.2 SP1 P5 Cross Site Scripting Vulnerability
2017-11-29
EMC ScaleIO 2.0.1.x Buffer Overflow / Information Disclosure Vulnerabilities
2017-11-29
Microsoft Windows NTFS File System Metadata Disclosures Exploit
2017-11-29
Microsoft Windows 10 - nt!NtQueryDirectoryFile (luafv!LuafvCopyDirectoryEntry) Pool Memory Disclosur
2017-11-29
MyBB 1.8.13 - Cross-Site Scripting Vulnerability
2017-11-29
Microsoft Office - OLE Remote Code Execution Exploit
2017-11-29
Microsoft Windows 10 - CiSetFileCache TOCTOU Security Feature Bypass Vulnerability
2017-11-29
iOS < 11.1 / tvOS < 11.1 / watchOS < 4.1 - Denial of Service Exploit
2017-11-29
Dell Active Roles 7.x Unquoted Service Path Privilege Escalation Vulnerability
2017-11-29
phpMyFAQ 2.9.9 Code Injection Exploit
2017-11-29
Cisco Umbrella Virtual Appliance 2.1.0 Hardcoded Credentials Vulnerability
2017-11-29
TP-Link TL-WA830RE - Cross-Site Scripting Vulnerability
2017-11-29
Progress Sitefinity 10.0 / 10.1 Broken Access Control / LINQ Injection Vulnerability
2017-11-29
VX Search 10.2.14 - Proxy Buffer Overflow (SEH) Exploit
2017-11-29
Microsoft Edge Chakra JIT - OP_Memset Type Confusion Exploit
2017-11-29
Microsoft Edge Chakra JIT - Lowerer::LowerBoundCheck Incorrect Integer Overflow Check Exploit
2017-11-29
Microsoft Edge Chakra JIT - Type Confusion with switch Statements Exploit
2017-11-29
Microsoft Edge - Object.setPrototypeOf Memory Corruption Exploit
2017-11-29
Zeta Components Mail 1.8.1 - Remote Code Execution Vulnerability
2017-11-29
LanSweeper 6.0.100.75 - Cross-Site Scripting Vulnerability
2017-11-29
Vonage VDV23 - Cross-Site Scripting Vulnerability
2017-11-29
DLink DIR-605L < 2.08 - Denial of Service Exploit
2017-11-29
DLink DCS-936L Network Camera Cross-Site Request Forgery Vulnerability
2017-11-29
TP-Link TL-WR740N - Cross-Site Scripting Vulnerability
2017-11-29
WIFICAM Wireless IP Camera (P2P) - Unauthenticated Remote Code Execution Exploit
2017-11-29
PHP 7.1.8 - Heap-Based Buffer Overflow Vulnerability
2017-11-29
Vivotek IP Cameras Remote Stack Overflow Vulnerability
2017-11-29
QEMU - NBD Server Long Export Name Stack Buffer Overflow
2017-11-29
pfSense - Authenticated Group Member RCE (Metasploit)
2017-11-29
Microsoft Windows 10 Creators Update (version 1703) (x86) - 'WARBIRD' 'NtQuerySystemInformation ' Kernel Local Privilege Escalation
2017-11-29
osCommerce 2.3.4.1 - Arbitrary File Upload
2017-11-29
DVD Creator 4.1.0 - Insecure File Permissions Vulnerability
2017-11-28
Hola VPN v1.34 - Privilege Escalation Vulnerability
2017-11-28
Synology StorageManager 5.2 - Remote Root Command Execution
2017-11-28
Android Gmail < 7.11.5.176568039 - Directory Traversal in Attachment Download
2017-11-28
ZTE ZXDSL 831CII - Improper Access Restrictions
2017-11-27
Diving Log 6.0 - XML External Entity Injection
2017-11-27
Winamp Pro 5.66.Build.3512 - Denial of Service
2017-11-27
KMPlayer 4.2.2.4 - Denial of Service
2017-11-27
Exim 4.89 - 'BDAT' Denial of Service
2017-11-27
Microsoft Edge Chakra JIT - 'GlobOpt::OptTagChecks' Must Consider IsLoopPrePass Properly
2017-11-27
Microsoft Edge Chakra JIT - Incorrect Function Declaration Scope
2017-11-27
Microsoft Edge Chakra JIT - 'Inline::InlineCallApplyTarget_Shared' does not Return the return Instruction
2017-11-27
Microsoft Edge Chakra JIT - 'BailOutOnTaggedValue' Bailouts Type Confusion
2017-11-27
CommuniGatePro 6.1.16 - Cross-Site Scripting
2017-11-27
ALLPlayer 7.5 - Local Buffer Overflow (SEH Unicode)
2017-11-26
Linux - 'mincore()' Uninitialized Kernel Heap Page Disclosure
2017-11-24
WebKit - 'WebCore::FormSubmission::create' Use-After-Free
2017-11-22
WebKit - 'WebCore::RenderObject::previousSibling' Use-After-Free
2017-11-22
WebKit - 'WebCore::DocumentLoader::frameLoader' Use-After-Free
2017-11-22
WebKit - 'WebCore::Style::TreeResolver::styleForElement' Use-After-Free
2017-11-22
WebKit - 'WebCore::SVGPatternElement::collectPatternAttributes' Out-of-Bounds Read
2017-11-22
WebKit - 'WebCore::SimpleLineLayout::RunResolver::runForPoint' Out-of-Bounds Read
2017-11-22
WebKit - 'WebCore::RenderText::localCaretRect' Out-of-Bounds Read
2017-11-22
WebKit - 'WebCore::AXObjectCache::performDeferredCacheUpdate' Use-After-Free
2017-11-22
WebKit - 'WebCore::PositionIterator::decrement' Use-After-Free
2017-11-22
WebKit - 'WebCore::InputType::element' Use-After-Free
2017-11-22
WebKit - 'WebCore::TreeScope::documentScope' Use-After-Free
2017-11-22
Vonage VDV-23 - Denial of Service
2017-11-22
Icon Time Systems RTC-1000 Firmware 2.5.7458 - Cross-Site Scripting
2017-11-22
Microsoft Windows 10 - 'nt!NtQueryDirectoryFile (luafv!LuafvCopyDirectoryEntry)' Pool Memory Disclosure
2017-11-21
Microsoft Office - OLE Remote Code Execution
2017-11-21
Microsoft Windows 10 - CiSetFileCache TOCTOU Security Feature Bypass
2017-11-20
iOS < 11.1 / tvOS < 11.1 / watchOS < 4.1 - Denial of Service
2017-11-20
MyBB 1.8.13 - Cross-Site Scripting
2017-11-19
MyBB 1.8.13 - Remote Code Execution
2017-11-19
VX Search 10.2.14 - 'Proxy' Buffer Overflow (SEH)
2017-11-17
Zeta Components Mail 1.8.1 - Remote Code Execution
2017-11-16
Microsoft Edge Chakra: JIT - 'OP_Memset' Type Confusion
2017-11-16
Microsoft Edge Chakra: JIT - 'Lowerer::LowerBoundCheck' Incorrect Integer Overflow Check
2017-11-16
Microsoft Edge Chakra JIT - Type Confusion with switch Statements
2017-11-16
Microsoft Edge - 'Object.setPrototypeOf' Memory Corruption
2017-11-16
Vonage VDV23 - Cross-Site Scripting
2017-11-16
LanSweeper 6.0.100.75 - Cross-Site Scripting
2017-11-16
TP-Link TL-WR740N - Cross-Site Scripting
2017-11-16
Anti-Virus Privileged File Write Vulnerability
2017-11-16
Identity Governance 12.6 Cross Site Scripting Vulnerability
2017-11-16
WordPress AMP Toolbox 1.9.4 Cross Site Scripting Vulnerability
2017-11-16
WordPress DFD Reddcoin Tips 1.1.1 Cross Site Scripting Vulnerability
2017-11-16
WordPress Affiliate Ads For Clickbank Products 1.3 XSS Vulnerability
2017-11-16
Scala 2.x Privilege Escalation Vulnerability
2017-11-16
Siemens SICAM RTUs SM-2556 COM Modules XSS / Bypass / Code Execution Vulnerabilities
2017-11-16
Allworx Server Manager 6x / 6x12 / 48x Cross Site Scripting Vulnerability
2017-11-16
Dup Scout Enterprise 10.0.18 - Login Buffer Overflow Exploit
2017-11-16
PSFTPd Windows FTP Server 10.0.4 Build 729 - Log Injection / Use-After-Free Vulnerability
2017-11-16
Technicolor TG789vn v3 HTTP DoS Exploit
2017-11-16
WordPress Appointments 2.2.2.2 Cross Site Scripting Vulnerability
2017-11-16
WordPress Cartogiraffe Map 1.0 Cross Site Scripting Vulnerability
2017-11-16
WordPress Boozang 1.0.0 Cross Site Scripting Vulnerability
2017-11-16
D-Link DIR-850L Unauthenticated Command Execution Exploit
2017-11-16
Ulterius Server < 1.9.5.0 - Directory Traversal Exploit
2017-11-16
Kirby CMS < 2.5.7 - Cross-Site Scripting Vulnerability
2017-11-16
Monstra CMS 3.0.4 Cross Site Scripting Vulnerability
2017-11-16
Web Viewer 1.0.0.193 (Samsung SRN-1670D) - Unrestricted File Upload Exploit
2017-11-16
IKARUS anti.virus 2.16.7 - ntguard_x64 Privilege Escalation Exploit
2017-11-16
Xlight FTP Server 3.8.8.5 - Buffer Overflow (PoC) Exploit
2017-11-16
Fierce Buffer Overflow Vulnerability
2017-11-16
Symantec Endpoint Protection v12.1 / Tamper-Protection Bypass Exploit
2017-11-16
Microsoft Internet Explorer 11 jscript!JsErrorToString Use-After-Free Exploit
2017-11-16
Datto Windows Agent Remote Code Execution Vulnerability
2017-11-16
WordPress Secure HTML5 Video Player 3.14 Cross Site Scripting Vulnerability
2017-11-16
D-Link DIR605L - Denial of Service
2017-11-15
D-Link DCS-936L Network Camera - Cross-Site Request Forgery
2017-11-15
Dup Scout Enterprise 10.0.18 - 'Login' Buffer Overflow
2017-11-15
PSFTPd Windows FTP Server 10.0.4 Build 729 - Log Injection / Use-After-Free
2017-11-14
PHP 7.1.8 - Heap-Based Buffer Overflow
2017-11-14
Mako Server 2.5 - OS Command Injection Remote Command Execution (Metasploit)
2017-11-14
Microsoft Internet Explorer 11 - 'jscript!JsErrorToString' Use-After-Free
2017-11-14
DIR-850L - (Un)authenticated OS Command Execution (Metasploit)
2017-11-14
Wireless IP Camera (P2P) WIFICAM - Unauthenticated Remote Code Execution
2017-11-14
Ulterius Server < 1.9.5.0 - Directory Traversal
2017-11-14
Kirby CMS < 2.5.7 - Cross-Site Scripting
2017-11-14
IKARUS anti.virus 2.16.7 - 'ntguard_x64' Privilege Escalation
2017-11-13
Web Viewer 1.0.0.193 (Samsung SRN-1670D) - Unrestricted File Upload
2017-11-13
Xlight FTP Server 3.8.8.5 - Buffer Overflow (PoC)
2017-11-13
Symantec Endpoint Protection 12.1 - Tamper-Protection Bypass
2017-11-13
Microsoft Windows LNK File Code Execution Exploit
2017-11-09
WordPress Ultimate Instagram Feed 1.2 Cross Site Scripting Vulnerability
2017-11-09
IBM Lotus Notes Denial Of Service Exploit
2017-11-09
Mako Server 2.5 Command Injection Exploit
2017-11-09
Geutebrueck GCore GCoreServer.exe Buffer Overflow Exploit
2017-11-09
iText PDF Library 7.0.2 / 5.5.11 / 2.0.8 XXE Injection Vulnerability
2017-11-09
WordPress Duplicator Migration 1.2.28 Cross Site Scripting Vulnerability
2017-11-09
Linux Kernel 4.13 (Ubuntu 17.10) - waitid() SMEP/SMAP Privilege Escalation Exploit
2017-11-09
pfSense 2.3.1_1 - Command Execution Vulnerability
2017-11-09
ManageEngine Applications Manager 13 - SQL Injection Vulnerability
2017-11-09
Logitech Media Server 7.9.0 - Radio URL Cross-Site Scripting Vulnerability
2017-11-09
Logitech Media Server 7.9.0 - favorites Cross-Site Scripting Vulnerability
2017-11-09
SMPlayer 17.11.0 - .m3u Buffer Overflow (PoC) Exploit
2017-11-09
ManageEngine Applications Manager 13 - SQL Injection
2017-11-07
pfSense 2.3.1_1 - Command Execution
2017-11-07
Bludit 1.5.2 & 2.0.1 - Filter Bypass & Cross Site Vulnerability
2017-11-07
TinyWebGallery v2.4 (TWGE) - Persistent XSS Vulnerability
2017-11-07
Linux Kernel 4.13 (Ubuntu 17.10) - 'waitid()' SMEP/SMAP Privilege Escalation
2017-11-07
SMPlayer 17.11.0 - '.m3u' Buffer Overflow (PoC)
2017-11-06
Logitech Media Server 7.9.0 - 'Radio URL' Cross-Site Scripting
2017-11-06
Logitech Media Server 7.9.0 - 'favorites' Cross-Site Scripting
2017-11-06
WordPress Userpro Plugin 4.9.17.1 - Authentication Bypass Vulnerability
2017-11-06
Actiontec C1000A Modem - Backdoor Account Vulnerability
2017-11-06
Debut Embedded httpd 1.20 - Denial of Service Exploit
2017-11-06
Avaya OfficeScan (IPO) < 10.1 - 'SoftConsole' Buffer Overflow (SEH)
2017-11-06
Avaya OfficeScan (IPO) < 10.1 - ActiveX Buffer Overflow
2017-11-06
Debut Embedded httpd 1.20 - Denial of Service
2017-11-06
Ipswitch WS_FTP Professional < 12.6.0.3 - Local Buffer Overflow (SEH) Exploit
2017-11-06
Actiontec C1000A Modem - Backdoor Account
2017-11-06
WordPress Plugin Userpro < 4.9.17.1 - Authentication Bypass
2017-11-06
Ipswitch WS_FTP Professional < 12.6.0.3 - Local Buffer Overflow (SEH)
2017-11-06
Avaya OfficeScan (IPO) Remote ActiveX Buffer Overflow Exploit
2017-11-05
Avaya OfficeScan (IPO) SoftConsole Remote SEH Buffer Overflow Exploit
2017-11-05
Tor Browser 7.0.8 IP Address Leak Vulnerability
2017-11-05
Splunk 6.6.x Local Privilege Escalation Vulnerability
2017-11-05
Oracle PeopleSoft Enterprise PeopleTools < 8.55 - Remote Code Execution Via Blind XML External En
2017-11-05
WordPress WP Mobile Detector 3.5 Shell Upload Exploit
2017-11-05
WordPress JTRT Responsive Tables 4.1 Plugin - SQL Injection Vulnerability
2017-11-05
tnftp (savefile) Arbitrary Command Execution Exploit
2017-11-05
GraphicsMagick - Memory Disclosure / Heap Overflow Exploit
2017-11-05
Ladon Framework For Python 0.9.40 XXE Injection Vulnerability
2017-11-05
Sera 1.2 Local Root / Password Disclosure Exploit
2017-11-05
Vir.IT eXplorer Anti-Virus - Privilege Escalation Exploit
2017-11-05
WhatsApp 2.17.52 - Memory Corruption Exploit
2017-11-05
ZyXEL PK5001Z Modem - Backdoor Account Vulnerability
2017-11-05
Ingenious School Management System 2.3.0 - friend_index SQL injection Vulnerability
2017-11-05
OctoberCMS 1.0.426 (Build 426) - Cross-Site Request Forgery Vulnerability
2017-11-05
WordPress User Login History 1.5.2 Cross Site Scripting Vulnerability
2017-11-05
SpiderControl SCADA Web Server 2.02.0007 Improper Privilege Management Vulnerability
2017-11-05
JanTek JTC-200 RS232-NET Connector CSRF / Missing Authentication Vulnerability
2017-11-05
Progea Movicon 11.5.1181 Search Path Issues Vulnerability
2017-11-05
Sync Breeze 10.1.16 Buffer Overflow Vulnerability
2017-11-05
EMC VMAX Virtual Appliance (vApp) Authentication Bypass Vulnerability
2017-11-05
EMC AppSync Server Hardcoded Password Vulnerability
2017-11-05
Oracle Java SE - Web Start jnlp XML External Entity Processing Information Disclosure Exploit
2017-11-05
Ingenious 2.3.0 - Arbitrary File Upload Vulnerability
2017-11-05
D-Park Pro 1.0 - SQL Injection Vulnerability
2017-11-05
Adult Script Pro 2.2.4 - SQL Injection Vulnerability
2017-11-05
Article Directory Script 3.0 - id SQL Injection Vulnerability
2017-11-05
iProject Management System 1.0 - ID SQL Injection Vulnerability
2017-11-05
iStock Management System 1.0 - Arbitrary File Upload Vulnerability
2017-11-05
iTech Gigs Script 1.21 - SQL Injection Vulnerability
2017-11-05
Job Board Script - nice_theme SQL Injection Vulnerability
2017-11-05
Joomla NS Download Shop 2.2.6 Component - id SQL Injection Vulnerability
2017-11-05
Joomla Zh YandexMap 6.1.1.0 Component- placemarklistid SQL Injection Vulnerability
2017-11-05
Mailing List Manager Pro 3.0 - SQL Injection Vulnerability
2017-11-05
MyBuilder Clone 1.0 - subcategory SQL Injection Vulnerability
2017-11-05
PG All Share Video 1.0 - SQL Injection Vulnerability
2017-11-05
PHP CityPortal 2.0 - SQL Injection Vulnerability
2017-11-05
Same Sex Dating Software Pro 1.0 - SQL Injection Vulnerability
2017-11-05
SoftDatepro Dating Social Network 1.3 - SQL Injection Vulnerability
2017-11-05
Sokial Social Network Script 1.0 - SQL Injection Vulnerability
2017-11-05
tPanel 2009 - Authentication Bypass Vulnerability
2017-11-05
Vastal I-Tech Dating Zone 0.9.9 - product_id SQL Injection Vulnerability
2017-11-05
ZeeBuddy 2x - groupid SQL Injection Vulnerability
2017-11-05
Protected Links - SQL Injection Vulnerability
2017-11-05
AROX School ERP PHP Script - id SQL Injection Vulnerability
2017-11-05
Shareet - photo SQL Injection Vulnerability
2017-11-05
US Zip Codes Database - state SQL Injection Vulnerability
2017-11-05
Newspaper 1.0 - SQL Injection Vulnerability
2017-11-05
News 1.0 - SQL Injection Vulnerability
2017-11-05
MyMagazine 1.0 - id SQL Injection Vulnerability
2017-11-05
CmsLite 1.4 - (S) SQL Injection Vulnerability
2017-11-05
Basic B2B Script - SQL Injection Vulnerability
2017-11-05
CPA Lead Reward Script - SQL Injection Vulnerability
2017-11-05
Fake Magazine Cover Script - SQL Injection Vulnerability
2017-11-05
Nice PHP FAQ Script - nice_theme SQL Injection Vulnerability
2017-11-05
Microsoft Windows 10 Creators Update 32-bit Ring-0 Code Execution Exploit
2017-11-05
Oracle PeopleSoft Enterprise PeopleTools < 8.55 - Remote Code Execution Via Blind XML External Entity
2017-11-04
Ladon Framework for Python 0.9.40 - XML External Entity Expansion
2017-11-03
tnftp - 'savefile' Arbitrary Command Execution (Metasploit)
2017-11-03
GraphicsMagick - Memory Disclosure / Heap Overflow
2017-11-03
WordPress Plugin JTRT Responsive Tables 4.1 - SQL Injection
2017-11-03
Wibu Systems CodeMeter v6.50 - (UI) XSS Web Vulnerability
2017-11-03
Vir.IT eXplorer Anti-Virus - Privilege Escalation
2017-11-02
Ingenious School Management System 2.3.0 - 'friend_index' SQL injection
2017-11-01
WhatsApp 2.17.52 - Memory Corruption
2017-11-01
OctoberCMS 1.0.426 (Build 426) - Cross-Site Request Forgery
2017-11-01
ZyXEL PK5001Z Modem - Backdoor Account
2017-11-01
Easy MPEG/AVI/DIVX/WMV/RM to DVD - 'Enter User Name' Buffer Overflow (SEH)
2017-11-01
Perfect Privacy VPN Manager v1.10.11 - DoS Vulnerability
2017-11-01
Oracle Flex Cube Direct BA v10.5 - Cross Site Vulnerability
2017-10-31
Online Exam Test Application - sort SQL Injection Vulnerability
2017-10-31
Php Inventory - Arbitrary File Upload Vulnerability
2017-10-31
Vastal I-Tech Agent Zone - SQL Injection Vulnerability
2017-10-31
Website Broker Script - status_id SQL Injection Vulnerability
2017-10-31
WordPress Ultimate Product Catalog 4.2.24 Plugin - PHP Object Injection Exploit
2017-10-31
Zomato Clone Script - resid SQL Injection Vulnerability
2017-10-31
phpMyFAQ 2.9.8 - Cross-Site Request Forgery Vulnerability
2017-10-31
MitraStar DSL-100HN-T1/GPT-2541GNAC - Privilege Escalation Vulnerability
2017-10-31
Oracle FCDB <= 10.5 Cross Site Scripting Vulnerability
2017-10-31
PHP 4.2.0 / 4.2.1 Remote Compromise / Denial Of Service Vulnerability
2017-10-31
Windows Attachment Manager Incorrect High Risk JAR Handling Vulnerability
2017-10-31
Android Private Internet Access Denial Of Service Vulnerability
2017-10-31
DameWare Remote Controller <= 12.0.0.520 - Remote Code Execution Exploit
2017-10-31
Watchdog Development Anti-Malware / Online Security Pro - NULL Pointer Dereference Exploit
2017-10-31
Tizen Studio 1.3 Smart Development Bridge <2.3.2 - Buffer Overflow PoC Exploit
2017-10-31
Bamboo 6.x Remote Code Execution Vulnerability
2017-10-31
Bomgar Remote Support Local Privilege Escalation Vulnerability
2017-10-31
HitmanPro 3.7.15 Build 281 - Kernel Pool Overflow Exploit
2017-10-31
PHPMailer 5.2.21 Local File Disclosure Exploit
2017-10-31
FS Shutter Stock Clone SQL Injection Vulnerability
2017-10-31
FS Thumbtack Clone SQL Injection Vulnerability
2017-10-31
FS Trademe Clone SQL Injection Vulnerability
2017-10-31
FS Monster Clone SQL Injection Vulnerability
2017-10-31
FS Care Clone SQL Injection Vulnerability
2017-10-31
FS Crowdfunding Script SQL Injection Vulnerability
2017-10-31
FS Realtor Clone SQL Injection Vulnerability
2017-10-31
Windows NTLM Auth Hash Disclosure / Denial Of Service Vulnerabilities
2017-10-31
KeystoneJS 4.0.0-beta.5 Unauthenticated CSV Injection Vulnerability
2017-10-31
KeystoneJS 4.0.0-beta.5 Unauthenticated Stored Cross Site Scripting Vulnerability
2017-10-31
Sophos UTM 9 Management Appplication Local File Inclusion Vulnerability
2017-10-31
Sophos UTM 9 loginuser Privilege Escalation Via Insecure Directory Permissions Vulnerability
2017-10-31
Infoblox NetMRI 7.1.4 Shell Escape / Privilege Escalation Vulnerabilities
2017-10-31
Infoblox NetMRI VM-AD30-5C6CE Factory Reset Persistence Vulnerability
2017-10-31
Mura CMS < 6.2 - Server-Side Request Forgery / XML External Entity Injection Vulnerabilities
2017-10-31
Sonicwall WXA5000 1.3.2-10-30 Console Jail Escape / Privilege Escalation Vulnerabilities
2017-10-31
osTicket 1.10.1 Shell Upload Vulnerability
2017-10-31
PHP Melody 2.6.1 SQL Injection Vulnerability
2017-10-31
Easy MPEG/AVI/DIVX/WMV/RM To DVD Buffer Overflow Exploit
2017-10-31
FS OLX Clone - catg_id SQL Injection Vulnerability
2017-10-31
FS Lynda Clone - category SQL Injection Vulnerability
2017-10-31
FS Indiamart Clone - keywords SQL Injection Vulnerability
2017-10-31
FS Groupon Clone - category SQL Injection Vulnerability
2017-10-31
FS Freelancer Clone - sk SQL Injection Vulnerability
2017-10-31
FS Expedia Clone - hid SQL Injection Vulnerability
2017-10-31
FS Food Delivery Script - keywords SQL Injection Vulnerability
2017-10-31
FS Ebay Clone - pd_maincat_id SQL Injection Vulnerability
2017-10-31
FS Book Store Script - category SQL Injection Vulnerability
2017-10-31
FS Amazon Clone - category_id SQL Injection Vulnerability
2017-10-31
FS Car Rental Script - pickup_location SQL Injection Vulnerability
2017-10-31
Cisco Umbrella Virtual Appliance 2.0.3 Undocumented Support Tunnel Vulnerability
2017-10-31
Apple Support iOS Application 1.1.1 Unencrypted Third Party Analytics Vulnerability
2017-10-31
Tuleap 9.6 Second-Order PHP Object Injection Vulnerability
2017-10-31
Mikogo 5.4.1.160608 - Local Credentials Disclosure Exploit
2017-10-31
WordPress Polls 1.2.4 SQL Injection Vulnerability
2017-10-31
Linux Kernel 4.14.0-rc4+ - waitid() Privilege Escalation Exploit
2017-10-31
BMC Remedy LFI / RFI / XSS / Code Execution Vulnerabilities
2017-10-31
Kaltura < 13.1.0 - Remote Code Execution Exploit
2017-10-31
CometChat < 6.2.0 BETA 1 - Local File Inclusion Vulnerability
2017-10-31
Ayukov NFTP FTP Client < 2.0 - Buffer Overflow Exploit
2017-10-31
ArGoSoft Mini Mail Server 1.0.0.2 - Denial of Service Exploit
2017-10-31
Logitech Media Server - Cross-Site Scripting Vulnerability
2017-10-31
TP-LINK TL-MR3220 Xss Vulnerability
2017-10-31
Wordpress Image Upload for BBPress Plugin - Full Path Disclosure Vulnerability
2017-10-31
Hashicorp vagrant-vmware-fusion 4.0.24 Local Root Privilege Escalation Exploit
2017-10-31
Unitrends UEB 9 HTTP API/Storage Remote Root Exploit
2017-10-31
Unitrends UEB bpserverd Authentication Bypass / Remote Command Execution Exploit
2017-10-31
Polycom Command Shell Authorization Bypass Exploit
2017-10-31
TP-Link WR940N - Authenticated Remote Code Exploit Exploit
2017-10-31
Check_MK 1.2.8p25 - Information Disclosure Exploit
2017-10-31
Mozilla Firefox < 55 - Denial of Service Exploit
2017-10-31
ZKTime Web Software 2.0 - Improper Access Restrictions Vulnerability
2017-10-31
ZKTime Web Software 2.0 - Cross-Site Request Forgery Vulnerability
2017-10-31
Microsoft Game Definition File Editor 6.3.9600 - XML External Entity Injection Vulnerability
2017-10-31
WebKitGTK+ Code Execution / Cookie Handling / Memory Corruption Vulnerabilities
2017-10-31
Wordpress Car Park Booking Plugin - SQL Injection Vulnerability
2017-10-31
Linksys E Series - Multiple Vulnerabilities
2017-10-31
Afian AB FileRun 2017.03.18 - Multiple Vulnerabilities
2017-10-31
Xen - Unbounded Recursion in Pagetable De-typing Vulnerability
2017-10-31
Interspire Email Marketer Authentication Bypass Vulnerability
2017-10-31
Webtrekk Pixel Tracking Cross Site Scripting Vulnerability
2017-10-31
EMC NetWorker Buffer Overflow Vulnerability
2017-10-31
Career Portal 1.0 - SQL Injection Vulnerability
2017-10-31
Apple iOS 10.2 (14C92) - Remote Code Execution Exploit
2017-10-31
Apache Solr 7.0.1 - XML External Entity Expansion / Remote Code Execution Vulnerability
2017-10-31
Linux Kernel - AF_PACKET Use-After-Free Exploit
2017-10-31
WordPress Influencer Marketing And Press Release System 2.2 XSS Vulnerability
2017-10-31
Microsoft Excel - OLE Arbitrary Code Execution Exploit
2017-10-31
Microsoft Windows 10 - WLDP/MSHTML CLSID UMCI Bypass Exploit
2017-10-31
Microsoft Windows Kernel Pool nt!NtQueryObject (ObjectNameInformation) Memory Disclosure Vulnerabi
2017-10-31
Microsoft Windows Kernel Pool nt!RtlpCopyLegacyContextX86 Memory Disclosure Vulnerability
2017-10-31
Windows/x64 - API Hooking Shellcode (117 bytes)
2017-10-31
Micro Focus VisiBroker C++ 8.5 SP2 Memory Corruption Vulnerability
2017-10-31
3CX Phone System 15.5.3554.1 - Directory Traversal Vulnerability
2017-10-31
Trend Micro Data Loss Prevention Virtual Appliance 5.2 - Path Traversal Vulnerability
2017-10-31
Microsoft Edge Chakra StackScriptFunction::BoxState::Box Uninitialized Pointers Exploit
2017-10-31
Microsoft Edge Chakra JIT Failed RegexHelper::StringReplace Call Exploit
2017-10-31
Oracle Java SE - Web Start jnlp XML External Entity Processing Information Disclosure
2017-10-31
Ingenious 2.3.0 - Arbitrary File Upload
2017-10-30
D-Park Pro 1.0 - SQL Injection
2017-10-30
Adult Script Pro 2.2.4 - SQL Injection
2017-10-30
iTech Gigs Script 1.21 - SQL Injection
2017-10-30
Job Board Script - 'nice_theme' SQL Injection
2017-10-30
Joomla! Component NS Download Shop 2.2.6 - 'id' SQL Injection
2017-10-30
Joomla! Component Zh YandexMap 6.1.1.0 - 'placemarklistid' SQL Injection
2017-10-30
Mailing List Manager Pro 3.0 - SQL Injection
2017-10-30
MyBuilder Clone 1.0 - 'subcategory' SQL Injection
2017-10-30
PG All Share Video 1.0 - SQL Injection
2017-10-30
PHP CityPortal 2.0 - SQL Injection
2017-10-30
Same Sex Dating Software Pro 1.0 - SQL Injection
2017-10-30
SoftDatepro Dating Social Network 1.3 - SQL Injection
2017-10-30
Sokial Social Network Script 1.0 - SQL Injection
2017-10-30
tPanel 2009 - Authentication Bypass
2017-10-30
Vastal I-Tech Dating Zone 0.9.9 - 'product_id' SQL Injection
2017-10-30
ZeeBuddy 2x - 'groupid' SQL Injection
2017-10-30
Protected Links - SQL Injection
2017-10-30
AROX School ERP PHP Script - 'id' SQL Injection
2017-10-30
Shareet - 'photo' SQL Injection
2017-10-30
US Zip Codes Database - 'state' SQL Injection
2017-10-30
Newspaper 1.0 - SQL Injection
2017-10-30
News 1.0 - SQL Injection
2017-10-30
Article Directory Script 3.0 - 'id' SQL Injection
2017-10-30
iProject Management System 1.0 - 'ID' SQL Injection
2017-10-30
iStock Management System 1.0 - Arbitrary File Upload
2017-10-30
PHPMyFAQ 2.9.8 - Cross-Site Scripting (3)
2017-10-30
PayPal Inc #168 - Insufficient Authentication Vulnerability
2017-10-30
Xavier v2.4 PHP MP - SQL Injection Web Vulnerabilities
2017-10-30
Simple ASC CMS v1.2 - (Guestbook) Persistent Vulnerability
2017-10-30
Perch v3.0.3 CMS - Multiple Web Vulnerabilities
2017-10-30
Joomla com_tag v1.7.6 - (tag) SQL Injection Vulnerability
2017-10-30
Online Exam Test Application - 'sort' SQL Injection
2017-10-30
Php Inventory - Arbitrary File Upload
2017-10-30
Vastal I-Tech Agent Zone - SQL Injection
2017-10-30
Website Broker Script - 'status_id' SQL Injection
2017-10-30
Zomato Clone Script - 'resid' SQL Injection
2017-10-30
WordPress Plugin Ultimate Product Catalog 4.2.24 - PHP Object Injection
2017-10-30
phpMyFAQ 2.9.8 - Cross-Site Request Forgery
2017-10-30
PHP Melody 2.6.1 - SQL Injection
2017-10-30
MitraStar DSL-100HN-T1/GPT-2541GNAC - Privilege Escalation
2017-10-30
Tizen Studio 1.3 Smart Development Bridge <=2.3.2 - Buffer Overflow PoC
2017-10-27
DameWare Remote Controller <= 12.0.0.520 - Remote Code Execution
2017-10-27
Watchdog Development Anti-Malware / Online Security Pro - NULL Pointer Dereference
2017-10-27
HitmanPro 3.7.15 Build 281 - Kernel Pool Overflow
2017-10-26
PHPMailer <= 5.2.21 - Local File Disclosure
2017-10-26
Huawei HG255s - Server Directory Traversal Vulnerability
2017-10-26
Huawei HG255s - Server Directory Traversal Vulnerability
2017-10-26
Shopware 5.2.5 & v5.3 - Multiple Cross Site Vulnerabilities
2017-10-26
Netgear DGN1000 1.1.00.48 - Setup.cgi Unauthenticated Remote Code Execution (Metasploit)
2017-10-25
KeystoneJS 4.0.0-beta.5 - Cross-Site Scripting
2017-10-25
KeystoneJS 4.0.0-beta.5 - CSV Excel Macro Injection
2017-10-25
FS Realtor Clone - 'id' SQL Injection
2017-10-25
FS Crowdfunding Script - 'id' SQL Injection
2017-10-25
FS Care Clone - 'sitterService' SQL Injection
2017-10-25
FS Monster Clone - 'id' SQL Injection
2017-10-25
FS Trademe Clone - 'id' SQL Injection
2017-10-25
FS Thumbtack Clone - 'ser' SQL Injection
2017-10-25
FS Shutter Stock Clone - 'keywords' SQL Injection
2017-10-25
Mura CMS < 6.2 - Server-Side Request Forgery / XML External Entity Injection
2017-10-25
FS OLX Clone - 'catg_id' SQL Injection
2017-10-24
FS Lynda Clone - 'category' SQL Injection
2017-10-24
FS Indiamart Clone - 'keywords' SQL Injection
2017-10-24
FS Groupon Clone - 'category' SQL Injection
2017-10-24
FS Freelancer Clone - 'sk' SQL Injection
2017-10-24
FS Expedia Clone - 'hid' SQL Injection
2017-10-24
FS Food Delivery Script - 'keywords' SQL Injection
2017-10-24
FS Ebay Clone - 'pd_maincat_id' Parameter SQL Injection
2017-10-24
FS Book Store Script - 'category' SQL Injection
2017-10-24
FS Amazon Clone - 'category_id' SQL Injection
2017-10-24
FS Car Rental Script - 'pickup_location' SQL Injection
2017-10-24
Mikogo 5.4.1.160608 - Local Credentials Disclosure
2017-10-24
Polycom - Command Shell Authorization Bypass (Metasploit)
2017-10-23
Unitrends UEB 9 - bpserverd Authentication Bypass Remote Command Execution (Metasploit)
2017-10-23
Unitrends UEB 9 - http api/storage Remote Root (Metasploit)
2017-10-23
Zenbership 1.0.8 CMS - Multiple SQL Injection Vulnerabilities
2017-10-23
Linux Kernel 4.14.0-rc4+ - 'waitid()' Privilege Escalation
2017-10-23
Kaltura < 13.1.0 - Remote Code Execution
2017-10-23
CometChat < 6.2.0 BETA 1 - Local File Inclusion
2017-10-23
ArGoSoft Mini Mail Server 1.0.0.2 - Denial of Service
2017-10-23
Ayukov NFTP FTP Client < 2.0 - Buffer Overflow
2017-10-23
Logitech Media Server - Cross-Site Scripting
2017-10-23
TP-Link TL-MR3220 - Cross-Site Scripting
2017-10-23
TP-Link WR940N - Authenticated Remote Code Exploit
2017-10-20
Check_MK 1.2.8p25 - Information Disclosure
2017-10-20
Mozilla Firefox < 55 - Denial of Service
2017-10-20
ZKTime Web Software 2.0 - Improper Access Restrictions
2017-10-20
ZKTime Web Software 2.0 - Cross-Site Request Forgery
2017-10-20
Microsoft Game Definition File Editor 6.3.9600 - XML External Entity Injection
2017-10-19
Afian AB FileRun 2017.03.18 - Multiple Vulnerabilities
2017-10-18
Xen - Unbounded Recursion in Pagetable De-typing
2017-10-18
Linksys E Series - Multiple Vulnerabilities
2017-10-18
Wordpress Plugin Car Park Booking - SQL Injection
2017-10-18
Career Portal 1.0 - SQL Injection
2017-10-18
Linux Kernel - 'AF_PACKET' Use-After-Free
2017-10-17
Apache Solr 7.0.1 - XML External Entity Expansion / Remote Code Execution
2017-10-17
Tomcat - Remote Code Execution via JSP Upload Bypass (Metasploit)
2017-10-17
Shadowsocks - Log File Command Execution
2017-10-17
shadowsocks-libev 3.1.0 - Command Execution
2017-10-17
OpenText Documentum Content Server - Arbitrary File Download
2017-10-17
OpenText Documentum Content Server - dmr_content Privilege Escalation
2017-10-17
OpenText Documentum Content Server - Arbitrary File Download Privilege Escalation
2017-10-17
OpenText Documentum Content Server - Privilege Escalation
2017-10-17
Microsoft Windows - 'nt!NtQueryObject (ObjectNameInformation)' Kernel Pool Memory Disclosure
2017-10-17
Microsoft Edge Chakra JIT - 'RegexHelper::StringReplace' Must Call the Callback Function with Updating ImplicitCallFlags
2017-10-17
Microsoft Edge Chakra - Accesses to Uninitialized Pointers in 'StackScriptFunction::BoxState::Box'
2017-10-17
Microsoft Edge Chakra JIT - Incorrect GenerateBailOut Calling Patterns
2017-10-17
Microsoft Windows 10 - WLDP/MSHTML CLSID UMCI Bypass
2017-10-17
Apple iOS 10.2 (14C92) - Remote Code Execution
2017-10-17
Microsoft Excel - OLE Arbitrary Code Execution
2017-10-17
Microsoft Office Groove - 'Workspace Shortcut' Arbitrary Code Execution
2017-10-17
Windows x64 - API Hooking Shellcode (117 bytes)
2017-10-17
3CX Phone System 15.5.3554.1 - Directory Traversal
2017-10-17
MobaXtrem v10.4 - Remote Code Execution Vulnerability
2017-10-16
WpJobBoard v4.5.1 - Multiple Cross Site Web Vulnerabilities
2017-10-16
Microsoft Edge Chakra JIT Incorrect GenerateBailOut Calling Patterns Exploit
2017-10-16
Shadowsocks-libev 3.1.0 Command Execution Vulnerability
2017-10-16
Shadowsocks Log Manipulation / Command Execution Vulnerability
2017-10-16
Quick CMS 6.4 SQL Injection / Authentication Bypass Vulnerabilities
2017-10-16
AlienVault USM 5.4.2 Cross Site Request Forgery Vulnerability
2017-10-16
Opentext Documentum Content Server Privilege Escalation Exploit
2017-10-16
Opentext Documentum Content Server Privilege Escalation Exploit
2017-10-16
Opentext Documentum Content Server File Hijack / Privilege Escalation Exploit
2017-10-16
Opentext Documentum Content Server File Download Exploit
2017-10-16
DuckieTV CMS 1.1.5 Local File Inclusion Vulnerability
2017-10-16
Trend Micro Data Loss Prevention Virtual Appliance 5.2 - Path Traversal
2017-10-16
Webmin 1.850 - Multiple Vulnerabilities
2017-10-16
AlienVault Unified Security Management (USM) 5.4.2 - Cross-Site Request Forgery
2017-10-16
E-Sic Software livre CMS - Autentication Bypass Vulnerability
2017-10-13
E-Sic Software livre CMS - Cross Site Scripting Vulnerability
2017-10-13
E-Sic Software livre CMS - q Parameter SQL Injection Vulnerability
2017-10-13
E-Sic Software livre CMS - cpfcnpj Parameter SQL Injection Vulnerability
2017-10-13
E-Sic Software livre CMS - f Parameter SQL Injection Vulnerability
2017-10-13
Dreambox Plugin BouquetEditor - Cross-Site Scripting Vulnerability
2017-10-13
TYPO3 Extension Restler 1.7.0 - Local File Disclosure Vulnerability
2017-10-13
Dreambox Plugin BouquetEditor - Cross-Site Scripting
2017-10-13
TYPO3 Extension Restler 1.7.0 - Local File Disclosure
2017-10-13
Sync Breeze Enterprise 10.1.16 - Buffer Overflow (SEH) (Metasploit)
2017-10-13
E-Sic Software livre CMS - Cross Site Scripting
2017-10-13
E-Sic Software livre CMS - 'f' Parameter SQL Injection
2017-10-13
E-Sic Software livre CMS - 'cpfcnpj' Parameter SQL Injection
2017-10-13
E-Sic Software livre CMS - Autentication Bypass
2017-10-13
E-Sic Software livre CMS - 'q' Parameter SQL Injection
2017-10-13
OctoberCMS 1.0.425 (Build 425) - Cross-Site Scripting
2017-10-13
Linux/x86 - execve(/bin/sh) Polymorphic Shellcode (30 bytes)
2017-10-13
JitBit HelpDesk <= 9.0.2 - Authentication Bypass Vulnerability
2017-10-13
Apache Tomcat JSP Upload Bypass Remote Code Execution Exploit
2017-10-13
Windows Escalate UAC Protection Bypass (In Memory Injection) Abusing WinSXS Exploit
2017-10-13
Sync Breeze Enterprise 10.1.16 SEH Overflow Exploit
2017-10-13
WordPress PopCash.Net Publisher Code Integration 1.0 Cross Site Scripting Vulnerability
2017-10-13
WordPress Pootle Button 1.1.1 Cross Site Scripting Vulnerability
2017-10-13
WordPress WP-Contact-Widgets 1.4.1 Cross Site Scripting Vulnerability
2017-10-13
OctoberCMS 1.0.425 Cross Site Scripting Vulnerability
2017-10-13
binutils 2.29.51.20170921 - read_1_byte Heap-Based Buffer Overflow Vulnerability
2017-10-13
VX Search Enterprise 10.1.12 - Buffer Overflow Exploit
2017-10-13
Trend Micro InterScan Messaging Security (Virtual Appliance) - Remote Code Execution Exploit
2017-10-13
WordPress Ad Widget 2.10.0 Local File Inclusion Vulnerability
2017-10-13
WordPress Simple Login Log 1.1.1 SQL Injection Vulnerability
2017-10-13
WordPress TR Easy Google Analytics 1.0.0 Cross Site Scripting Vulnerability
2017-10-13
PostgreSQL 10 Installer For Windows DLL Hijacking Vulnerability
2017-10-13
Trend Micro OfficeScan 11.0/XG (12.0) - Remote Code Execution Exploit
2017-10-13
ArcGIS Server 10.3.1 RMIClassLoader useCodebaseOnly=false Code Execution Exploit
2017-10-13
IBM Notes 8.5.x/9.0.x - Denial of Service Exploit
2017-10-13
Complain Management System - Hard-Coded Credentials / Blind SQL Injection Vulnerability
2017-10-13
ASX to MP3 converter < 3.1.3.7 - Stack Overflow (DEP Bypass) Exploit
2017-10-13
ClipShare 7.0 - SQL Injection Vulnerability
2017-10-13
RubyGems Unsafe Object Deserialization Vulnerability
2017-10-13
Apache Tomcat < 9.0.1 (Beta) / < 8.5.23 / < 8.0.47 / < 7.0.8 - Remote Code Execution Exp
2017-10-13
Rancher Server - Docker Daemon Code Execution Exploit
2017-10-13
PyroBatchFTP 3.17 - Buffer Overflow (SEH) Exploit
2017-10-13
Metasploit Cross Site Rquest Forgery Vulnerability
2017-10-13
OrientDB 2.2.x Remote Code Execution Exploit
2017-10-13
WordPress 4.8.2 Activation Key Failed Expiry Vulnerability
2017-10-13
SmartBear SoapUI 5.3.0 Remote Code Execution Via Deserialization Vulnerability
2017-10-13
RSA Archer GRC 6.2.0.5 XSS / File Upload / Privilege Escalation Vulnerabilities
2017-10-13
Lansweeper 6.0.100.29 XXE Injection Vulnerability
2017-10-13
Lansweeper 6.0.0.63 Cross Site Scripting Vulnerability
2017-10-13
Microsoft Windows 10 x64 RS2 - win32kfull!bFill Pool Overflow Exploit
2017-10-13
Unitrends UEB 9.1 - Unitrends bpserverd Remote Command Execution Exploit
2017-10-13
Unitrends UEB 9.1 - Authentication Bypass / Remote Command Execution Exploit
2017-10-13
Unitrends UEB 9.1 - Privilege Escalation Exploit
2017-10-13
CentOS 7 before 1708 PIE/stack corruption Vulnerability
2017-10-13
Safari 10 Local SOP bypass Vulnerability
2017-10-13
Netgear ReadyNAS Surveillance 1.4.3-16 Remote Command Execution Vulnerability
2017-10-13
e2openplugin OpenWebif 1.2.4 Code Execution Vulnerability
2017-10-13
WordPress Smush Image 2.7.4.1 Directory Traversal Vulnerability
2017-10-13
WebKit JSC Incorrect Optimization Vulnerability
2017-10-13
Apache Tomcat < 9.0.1 (Beta) / < 8.5.23 / < 8.0.47 / < 7.0.8 - JSP Upload Bypass Exploit
2017-10-13
ClipBucket 2.8.3 - Remote Code Execution Exploit
2017-10-13
DiskBoss Enterprise 8.4.16 - Local Buffer Overflow Exploit
2017-10-13
ERS Data System 1.8.1 - Java Deserialization Exploit
2017-10-13
EPESI 1.8.2 rev20170830 - Cross-Site Scripting Vulnerability
2017-10-13
Microsoft Word 2007 (x86) - Information Disclosure Exploit
2017-10-13
Microsoft IIS UrlScan Module Bypass Vulnerability
2017-10-13
Apache OpenNLP XXE Vulnerability
2017-10-13
Broadcom ICMPv6 Information Leak Vulnerability
2017-10-13
UCOPIA Wireless Appliance 5.1 (Captive Portal) - Root Remote Code Execution Vulnerability
2017-10-13
Apple Mac OS X + Safari - Local Javascript Quarantine Bypass Vulnerability
2017-10-13
Fiberhome AN5506-04-F - Command Injection Vulnerability
2017-10-13
Dnsmasq < 2.78 - Integer Underflow Exploit
2017-10-13
Dnsmasq < 2.78 - Lack of free() Denial of Service Exploit
2017-10-13
Dnsmasq < 2.78 - Information Leak Exploit
2017-10-13
Dnsmasq < 2.78 - Stack-Based Overflow Exploit
2017-10-13
Dnsmasq < 2.78 - Heap-Based Overflow Exploit
2017-10-13
OpenText Document Sciences xPression 4.5SP1 Patch 13 - documentId SQL Injection Vulnerability
2017-10-13
OpenText Document Sciences xPression 4.5SP1 Patch 13 - jobRunId SQL Injection Vulnerability
2017-10-13
Dnsmasq < 2.78 - 2-byte Heap-Based Overflow Exploit
2017-10-13
Dup Scout Enterprise 10.0.18 - Import Command Buffer Overflow Exploit
2017-10-13
NPM-V (Network Power Manager) 2.4.1 - Password Reset Vulnerability
2017-10-13
SmarterStats 11.3.6347 - Cross-Site Scripting Vulnerability
2017-10-13
Microsoft Office 2007 Groove Security Bypass / Code Execution Exploit
2017-10-13
Microsoft Office 2007 Word Information Disclosure Vulnerability
2017-10-13
Linux Kernel < 4.14.rc3 - Local Denial of Service Exploit
2017-10-13
WordPress WPHRM Plugin - SQL Injection Vulnerability
2017-10-13
HBGK DVR 3.0.0 Build 20161206 Authentication Bypass Vulnerability
2017-10-13
ConverTo Video Downloader & Converter 1.4.1 - Arbitrary File Download Vulnerability
2017-10-13
Real Estate MLM Plan Script 1.0 SQL Injection Vulnerability
2017-10-13
PHP Multi Vendor Script 1.02 SQL Injection Vulnerability
2017-10-13
Sync Breeze Enterprise 10.0.28 Buffer Overflow Exploit
2017-10-13
JasperSoft JasperReports 4.7 Password Disclosure Vulnerability
2017-10-13
Qmail SMTP Bash Environment Variable Injection (Shellshock) Exploit
2017-10-13
Zyxel P-2812HNU-F1 DSL Router Command Injection Vulnerability
2017-10-13
SolarWinds Network Performance Monitor 12.0.15300.90 Cross Site Scripting Vulnerability
2017-10-13
SolarWinds Network Performance Monitor 12.0.15300.90 Denial Of Service Vulnerability
2017-10-13
UCOPIA Wireless Appliance Restricted Shell Escape Vilnerability
2017-10-13
UCOPIA Wireless Appliance Privilege Escalation Vulnerability
2017-10-13
PhpCollab 2.5.1 Shell Upload Exploit
2017-10-13
PhpCollab 2.5.1 SQL Injection Vulnerability
2017-10-13
Adult Script Pro 2.2.4 SQL Injection Vulnerability
2017-10-13
Article Directory Script 3.0 SQL Injection Vulnerability
2017-10-13
D-Park Pro Domain Parking Script 1.0 SQL Injection Vulnerability
2017-10-13
Ingenious School Management System 2.3.0 Arbitrary File Upload Vulnerability
2017-10-13
iProject Management System 1.0 SQL Injection Vulnerability
2017-10-13
iStock Management System 1.0 Arbitrary File Upload Vulnerability
2017-10-13
iTech Gigs Script 1.21 SQL Injection Vulnerability
2017-10-13
Joomla NS Download Shop 2.2.6 SQL Injection Vulnerability
2017-10-13
Joomla Zh YandexMap 6.1.1.0 SQL Injection Vulnerability
2017-10-13
Mailing List Manager Pro 3.0 SQL Injection Vulnerability
2017-10-13
MyBuilder Clone 1.0 SQL Injection Vulnerability
2017-10-13
PG All Share Video 1.0 SQL Injection Vulnerability
2017-10-13
PHP CityPortal 2.0 SQL Injection Vulnerability
2017-10-13
Same Sex Dating Software Pro 1.0 SQL Injection Vulnerability
2017-10-13
SoftDatepro Dating Social Network 1.3 SQL Injection Vulnerability
2017-10-13
Sokial Social Network Script 1.0 SQL Injection Vulnerability
2017-10-13
tPanel 2009 SQL Injection Vulnerability
2017-10-13
Vastal I-Tech Dating Zone 0.9.9 SQL Injection Vulnerability
2017-10-13
Faleemi FSC-880 CSRF / SQL Injection / Command Execution Vulnerabilities
2017-10-13
OpenText Document Sciences xPression 4.5SP1 Patch 13 Cross Site Scripting Vulnerability
2017-10-13
OpenText Document Sciences xPression 4.5SP1 Patch 13 SQL Injection Vulnerability
2017-10-13
OpenText Document Sciences xPression 4.5SP1 Patch 13 SQL Injection Vulnerability
2017-10-13
OpenText Document Sciences xPression 4.5SP1 Patch 13 Arbitrary File Read Vulnerability
2017-10-13
Firefox browser.downloads addon Remote Code Execute (PoC) Vulnerability
2017-10-13
FileRun <= 2017.09.18 - SQL Injection Exploit
2017-10-13
Trend Micro OfficeScan 11.0/XG (12.0) - Memory Corruption Exploit
2017-10-13
Mac OS X Local Javascript Quarantine Bypass youtube Vulnerability
2017-10-13
DiskBoss Enterprise 8.4.16 - Local Buffer Overflow (PoC) Exploit
2017-10-13
DiskBoss Enterprise 8.4.16 - Import Command Buffer Overflow Exploit
2017-10-13
Easy Blog PHP Script 1.3a - id Parameter SQL Injection Vulnerability
2017-10-13
Trend Micro OfficeScan 11.0/XG (12.0) - Code Execution / Memory Corruption Vulnerability
2017-10-13
Trend Micro OfficeScan 11.0/XG (12.0) - Image File Execution Bypass Vulnerability
2017-10-13
Trend Micro OfficeScan 11.0/XG (12.0) - Private Key Disclosure Vulnerability
2017-10-13
Trend Micro OfficeScan 11.0/XG (12.0) - Host Header Injection Vulnerability
2017-10-13
Roteador Wireless Intelbras WRN150 - Autentication Bypass Vulnerability
2017-10-13
Trend Micro OfficeScan 11.0/XG (12.0) - Server Side Request Forgery Vulnerability
2017-10-13
Trend Micro OfficeScan 11.0/XG (12.0) - Information Disclosure Vulnerability
2017-10-13
Oracle WebLogic Server 10.3.6.0 - Java Deserialization Exploit
2017-10-13
Cisco Prime Collaboration Provisioning < 12.1 - Authentication Bypass / Remote Code Execution Exp
2017-10-13
LAquis SCADA 4.1.0.2385 - Directory Traversal Exploit
2017-10-13
Adobe Flash - Out-of-Bounds Read in applyToRange Exploit
2017-10-13
Adobe Flash - Out-of-Bounds Write in MP4 Edge Processing Exploit
2017-10-13
Adobe Flash - Out-of-Bounds Memory Read in MP4 Parsing Exploit
2017-10-13
iPhone 7 and Samsung Galaxy S7 Wi-Fi Chip Hack Vulnerability
2017-10-13
WordPress Content Audit 1.9.1 Cross Site Request Forgery / Cross Site Scripting Vulnerabilities
2017-10-13
Linux Local Privilege Escalation Vulnerability
2017-10-13
Git cvsserver Remote Command Execution Vulnerability
2017-10-13
Fibaro Home Center 2 - Remote Command Execution / Privilege Escalation Exploit
2017-10-13
Tiny HTTPd 0.1.0 - Directory Traversal Vulnerability
2017-10-13
WordPress WPAMS Plugin - SQL Injection Vulnerability
2017-10-13
WordPress WPGYM Plugin - SQL Injection Vulnerability
2017-10-13
WordPress WPCHURCH Plugin - SQL Injection Vulnerability
2017-10-13
WordPress School Management System Plugin - SQL Injection Vulnerability
2017-10-13
WordPress Hospital Management System Plugin - SQL Injection Vulnerability
2017-10-13
SMSmaster - SQL Injection Vulnerability
2017-10-13
Job Links - Arbitrary File Upload Vulnerability
2017-10-13
TicketPlus - Arbitrary File Upload Vulnerability
2017-10-13
Photo Fusion - Arbitrary File Upload Vulnerability
2017-10-13
AMC Master - Arbitrary File Upload Vulnerability
2017-10-13
OpenText Documentum Administrator / Webtop XXE Injection Vulnerability
2017-10-13
OpenText Documentum Administrator / Webtop Open Redirection Vulnerability
2017-10-13
Linux/x86_64 - mkdir() evil Shellcode (30 bytes)
2017-10-13
Sitefinity CMS 9.2 - Cross-Site Scripting Vulnerability
2017-10-13
NodeJS Debugger Command Injection Exploit
2017-10-13
Oracle 9i XDB 9.2.01 HTTP PASS Buffer Overflow Exploit
2017-10-13
FLIR Systems FLIR Thermal Camera PT-Series (PT-334 200562) Remote Root Exploit
2017-10-13
FLIR Systems FLIR Thermal Camera FC-S/PT Authenticated OS Command Injection Vulnerability
2017-10-13
FLIR Systems FLIR Thermal Camera F/FC/PT/D Multiple Information Disclosures Vulnerability
2017-10-13
FLIR Systems FLIR Thermal Camera F/FC/PT/D Stream Disclosure Vulnerability
2017-10-13
FLIR Systems FLIR Thermal Camera F/FC/PT/D Hard-Coded SSH Credentials Vulnerability
2017-10-13
Broadcom 802.11v WNM Sleep Mode Response Heap Overflow Vulnerability
2017-10-13
Broadcom 802.11r (FT) Reassociation Response Overflows Vulnerability
2017-10-13
Disk Pulse Enterprise 10.0.12 - GET Buffer Overflow (SEH) Exploit
2017-10-13
Supervisor XML-RPC Authenticated Remote Code Execution Exploit
2017-10-13
Kaltura 13.1.0 Code Execution / Cross Site Scripting Vulnerabilities
2017-10-13
Joomla 3.7.5 LDAP Injection Vulnerability
2017-10-13
CyberLink LabelPrint < 2.5 - Buffer Overflow (SEH Unicode) Exploit
2017-10-13
PHP Auction Ecommerce Script 1.6 - SQL Injection Vulnerability
2017-10-13
Claydip Airbnb Clone 1.0 - Arbitrary File Upload Vulnerability
2017-10-13
Cash Back Comparison Script 1.0 - SQL Injection Exploit
2017-10-13
Multi Level Marketing - SQL Injection Vulnerability
2017-10-13
Secure E-commerce Script 1.02 - sid Parameter SQL Injection Vulnerability
2017-10-13
Lending And Borrowing - pid Parameter SQL Injection Vulnerability
2017-10-13
Apple assembleBGScanResults Heap Overflow Vulnerability
2017-10-13
Apple updateRateSetAsyncCallback Heap Overflow Vulnerability
2017-10-13
Apple AppleBCMWLANCore Driver Heap Overflow Vulnerability
2017-10-13
Apple WLC_E_COUNTRY_CODE_CHANGED Information Leak Vulnerability
2017-10-13
Apple setVendorIE Heap Overflow / Information Disclosure Vulnerabilities
2017-10-13
Apple Out-Of-Bounds NUL Byte Write Vulnerability
2017-10-13
Apple PCIe Message Ring Protocol Race Conditions Vulnerability
2017-10-13
DenyAll WAF < 6.3.0 - Remote Code Execution Exploit
2017-10-13
WordPress Responsive Image Gallery 1.1.8 SQL Injection Vulnerability
2017-10-13
Mongoose Embedded Web Server Library 6.8 Buffer Overflow Exploit
2017-10-13
Pixie Image Editor 1.7 Server-Side Request Forgery Vulnerability
2017-10-13
Stock Photo Selling 1.0 - SQL Injection Exploit
2017-10-13
Microsoft Edge Chakra - Parser::ParseCatch does not Handle (eval) Exploit
2017-10-13
Microsoft Edge Chakra - Incorrectly Parses Object Patterns Exploit
2017-10-13
Microsoft Edge Chakra - Deferred Parsing Makes Wrong Scopes Exploit
2017-10-13
Microsoft Edge Chakra - JavascriptFunction::ReparseAsmJsModule Incorrectly Re-parses Exploit
2017-10-13
Disk Pulse Enterprise 9.9.16 - GET Buffer Overflow Exploit
2017-10-13
Linux Kernel <= 4.13.1 - BlueTooth Buffer Overflow (PoC) Exploit
2017-10-13
PHPMyFAQ 2.9.8 - Cross-Site Scripting Vulnerability
2017-10-13
BlueBorne - Proof of Concept - Unarmed/Unweaponized - DoS (Crash) Exploit
2017-10-13
WordPress 2kb Amazon Affiliates Store 2.1.0 Cross Site Scripting Vulnerability
2017-10-13
Microsoft Windows Kernel win32k!NtGdiHLSurfGetInformation Memory Disclosure Exploit
2017-10-13
Microsoft Edge COptionsCollectionCacheItem::GetAt Out-Of-Bounds Read Exploit
2017-10-13
SUSE / Portus 2.2 Cross Site Scripting Vulnerability
2017-10-13
Tecnovision DLX Spot - Arbitrary File Upload Vulnerability
2017-10-13
Tecnovision DLX Spot - Authentication Bypass Vulnerability
2017-10-13
Tecnovision DLX Spot - SSH Backdoor Vulnerability
2017-10-13
Foodspotting Clone 1.0 - SQL Injection Vulnerability
2017-10-13
iTech Gigs Script 1.20 - cat Parameter SQL Injection Vulnerability
2017-10-13
HPE < 7.2 - Java Deserialization Exploit
2017-10-13
Microsoft Windows Kernel - win32k!NtGdiGetPhysicalMonitorDescription Stack Memory Disclosure Exploit
2017-10-13
Microsoft Windows Kernel - win32k!NtGdiGetGlyphOutline Pool Memory Disclosure Exploit
2017-10-13
Microsoft Windows Kernel - nt!NtSetIoCompletion / nt!NtRemoveIoCompletion Pool Memory Disclosure
2017-10-13
Microsoft Windows Kernel - win32k!NtGdiEngCreatePalette Stack Memory Disclosure Exploit
2017-10-13
Microsoft Windows Kernel - win32k!NtGdiGetFontResourceInfoInternalW Stack Memory Disclosure Exploit
2017-10-13
Microsoft Windows Kernel - win32k.sys TTF Font Processing Out-of-Bounds Read with Malformed Exploit
2017-10-13
Microsoft Windows Kernel - win32k.sys TTF Font Processing - Out-of-Bounds Reads/Writes with Malforme
2017-10-13
Microsoft Windows Kernel - win32k!NtGdiDoBanding Stack Memory Disclosure Exploit
2017-10-13
Microsoft Windows Kernel - win32k!NtQueryCompositionSurfaceBinding Stack Memory Disclosure Exploit
2017-10-13
Apache - HTTP OPTIONS Memory Leak Exploit
2017-10-13
iBall ADSL2+ Home Router - Authentication Bypass Vulnerability
2017-10-13
UTStar WA3002G4 ADSL Broadband Modem - Authentication Bypass Vulnerability
2017-10-13
DigiAffiliate 1.4 - Cross-Site Request Forgery (Update Admin) Exploit
2017-10-13
Digileave 1.2 - Cross-Site Request Forgery (Update Admin) Exploit
2017-10-13
Digirez 3.4 - Cross-Site Request Forgery (Update Admin) Exploit
2017-10-13
Netdecision 5.8.2 - Local Privilege Escalation Exploit
2017-10-13
Contact Manager 1.0 - (femail) Parameter SQL Injection Vulnerability
2017-10-13
PTCEvolution 5.50 - SQL Injection Vulnerability
2017-10-13
EMC Data Protection Advisor Hardcoded Password Vulnerability
2017-10-13
Astaro Security Gateway 7 Remote Code Execution Exploit
2017-10-13
D-Link DIR8xx Remote Root Code Execution Exploit
2017-10-13
D-Link DIR8xx Router Firmware Upload Vulnerability
2017-10-13
D-Link DIR8xx Credential Leak Vulnerability
2017-10-13
Consumer Review Script 1.0 SQL Injection Vulnerability
2017-10-13
XYZ Auto Classifieds 1.0 SQL Injection Vulnerability
2017-10-13
IBM Infosphere Information Server / Datastage 11.5 Command Execution / Bypass Vulnerabilities
2017-10-13
VLC Media Player iOS App 2.7.8 File Disclosure Vulnerability
2017-10-13
VIPA Automation WinPLC7 5.0.45.5921 Buffer Overflow Exploit
2017-10-13
Disk Pulse Server 2.2.34 Buffer Overflow Exploit
2017-10-13
haneWIN DNS Server 1.5.3 Buffer Overflow Exploit
2017-10-13
KingScada AlarmServer 3.1.2.13 Buffer Overflow Exploit
2017-10-13
Ubiquiti Networks UniFi Cloud Key Command Injection Vulnerability
2017-10-13
SilverStrip CMS 3.5.3 Cross Site Scripting Vulnerability
2017-10-13
SAP E-Recruiting Email Verification Bypass Vulnerability
2017-10-13
ZScada Modbus Buffer 2.0 - Stack-Based Buffer Overflow Exploit
2017-10-13
Trend Micro Control Manager - ImportFile Directory Traversal RCE Exploit
2017-10-13
Viap Automation WinPLC7 5.0.45.5921 - Recv Buffer Overflow Exploit
2017-10-13
Sielco Sistemi Winlog 2.07.16 - Buffer Overflow Exploit
2017-10-13
Infinite Automation / Mango Automation - Command Injection Exploit
2017-10-13
Fatek Automation PLC WinProladder 3.11 Build 14701 - Stack-Based Buffer Overflow Exploit
2017-10-13
EMC CMCNE Inmservlets.war FileUploadController 11.2.1 - Remote Code Execution Exploit
2017-10-13
EMC CMCNE 11.2.1 - FileUploadController Remote Code Execution Exploit
2017-10-13
Dameware Mini Remote Control 4.0 - Username Stack Buffer Overflow Exploit
2017-10-13
Cloudview NMS < 2.00b - Arbitrary File Upload Exploit
2017-10-13
Alienvault OSSIM av-centerd Util.pm sync_rserver - Command Execution Exploit
2017-10-13
Alienvault OSSIM av-centerd 4.7.0 - (get_log_line) Command Injection Exploit
2017-10-13
Motorola Netopia Netoctopus SDCS - Stack Buffer Overflow Exploit
2017-10-13
Microsoft Windows .NET Framework - Remote Code Execution 0day Exploit
2017-10-13
Mako Web Server 2.5 - Multiple Vulnerabilities
2017-10-13
Indusoft Web Studio - Directory Traversal Information Disclosure Exploit
2017-10-13
Carel PlantVisor 2.4.4 - Directory Traversal Information Disclosure Exploit
2017-10-13
Carel PlantVisor 2.4.4 - Directory Traversal Vulnerability
2017-10-13
Carlo Gavazzi Powersoft 2.1.1.1 - Directory Traversal File Disclosure Exploit
2017-10-13
ICRestaurant software 1.4 - (key) Parameter SQL Injection Vulnerability
2017-10-13
ICDutchAuction 1.2 - SQL Injection Vulnerability
2017-10-13
ICAutosales 2.2 - SQL Injection Vulnerability
2017-10-13
ICTraveling 2.2 - Authentication Bypass Vulnerability
2017-10-13
ICStudents 1.2 - (key) Parameter SQL Injection Vulnerability
2017-10-13
ICClassifieds 1.1 - SQL Injection Vulnerability
2017-10-13
ICSurvey 1.1 - SQL Injection Vulnerability
2017-10-13
ICJewelry 1.1 - key Parameter SQL Injection Vulnerability
2017-10-13
IC-T-Shirt 1.2 - key Parameter SQL Injection Vulnerability
2017-10-13
ICProductConfigurator 1.1 - (key) Parameter SQL Injection Vulnerability
2017-10-13
ICGrocery 1.1 - (key) Parameter SQL Injection Vulnerability
2017-10-13
ICCallLimousine 1.1 - (key) Parameter SQL Injection Vulnerability
2017-10-13
ICDoctor Appointment 1.3 - (key) Parameter SQL Injection Vulnerability
2017-10-13
ICProjectBidding 1.1 - SQL Injection Vulnerability
2017-10-13
ICDental Clinic 1.2 - (key) Parameter SQL Injection Vulnerability
2017-10-13
ICEstate 1.1 - (id) Parameter SQL Injection Vulnerability
2017-10-13
ICHelpDesk 1.1 - (pk) Parameter SQL Injection Vulnerability
2017-10-13
ICSiteBuilder 1.1 - SQL Injection Vulnerability
2017-10-13
ICAffiliateTracking 1.1 - Authentication Bypass Vulnerability
2017-10-13
ICLowBidAuction 3.3 - SQL Injection Vulnerability
2017-10-13
ICMLM 2.1 - (key) Parameter SQL Injection Vulnerability
2017-10-13
ICHotelReservation 3.3 - (key) Parameter SQL Injection Vulnerability
2017-10-13
ICAuction 2.2 - (id) Parameter SQL InjectionVulnerability
2017-10-13
Unique Low Bid Auction Script 3.3 - SQL Injection Vulnerability
2017-10-13
MLM Software Script 2.1 - (key) Parameter SQL Injection Vulnerability
2017-10-13
Hotel Reservation Site Script 3.3 - (key) Parameter SQL Injection Vulnerability
2017-10-13
eBay like Auction PHP Script 2.2 - (id) Parameter SQL Injection Vulnerability
2017-10-13
Doctor Appointment Script 1.3 - (key) Parameter SQL Injection Vulnerability
2017-10-13
Restaurant Site Script 1.4 - (key) Parameter SQL Injection Vulnerability
2017-10-13
Dutch Auction Script 1.2 - SQL Injection Vulnerability
2017-10-13
osTicket 1.10 - SQL Injection Vulnerability
2017-10-13
FoodStar 1.0 - SQL Injection Vulnerability
2017-10-13
Gr8 Multiple Search Engine Script 1.0 - SQL Injection Vulnerability
2017-10-13
inClick Cloud Server 5.0 - SQL Injection Vulnerability
2017-10-13
binutils 2.29.51.20170921 - 'read_1_byte' Heap-Based Buffer Overflow
2017-10-11
ASX to MP3 3.1.3.7 - '.m3u' Buffer Overflow
2017-10-11
VX Search Enterprise 10.1.12 - Buffer Overflow
2017-10-11
Trend Micro OfficeScan 11.0/XG (12.0) - Remote Code Execution (Metasploit)
2017-10-11
ASX to MP3 converter < 3.1.3.7 - Stack Overflow (DEP Bypass)
2017-10-10
IBM Notes 8.5.x/9.0.x - Denial of Service (Metasploit)
2017-10-10
Complain Management System - Hard-Coded Credentials / Blind SQL injection
2017-10-10
ClipShare 7.0 - SQL Injection
2017-10-10
Apache Tomcat < 9.0.1 (Beta) / < 8.5.23 / < 8.0.47 / < 7.0.8 - JSP Upload Bypass / Remote Code Execution
2017-10-09
OrientDB 2.2.2 - 2.2.22 - Remote Code Execution (Metasploit)
2017-10-09
Rancher Server - Docker Daemon Code Execution (Metasploit)
2017-10-09
PyroBatchFTP 3.17 - Buffer Overflow (SEH)
2017-10-08
Metasploit < 4.14.1-20170828 - Cross-Site Request Forgery
2017-10-08
Microsoft Windows 10 x64 RS2 - 'win32kfull!bFill' Pool Overflow
2017-10-06
Unitrends UEB 9.1 - Privilege Escalation
2017-10-06
Unitrends UEB 9.1 - Authentication Bypass / Remote Command Execution
2017-10-06
Unitrends UEB 9.1 - 'Unitrends bpserverd' Remote Command Execution
2017-10-06
NETGEAR ReadyNAS Surveillance 1.4.3-16 - Remote Command Execution
2017-10-05
WebKit JSC - 'BytecodeGenerator::emitGetByVal' Incorrect Optimization (2)
2017-10-04
ClipBucket 2.8.3 - Remote Code Execution
2017-10-04
Apache Tomcat < 9.0.1 (Beta) / < 8.5.23 / < 8.0.47 / < 7.0.8 - JSP Upload Bypass / Remote Code Execution
2017-10-04
ERS Data System 1.8.1 - Java Deserialization
2017-10-04
DiskBoss Enterprise 8.4.16 - Local Buffer Overflow
2017-10-04
EPESI 1.8.2 rev20170830 - Cross-Site Scripting
2017-10-04
UCOPIA Wireless Appliance < 5.1 (Captive Portal) - Unauthenticated Root Remote Code Execution
2017-10-03
Apple Mac OS X + Safari - Local Javascript Quarantine Bypass
2017-10-03
Microsoft Word 2007 (x86) - Information Disclosure
2017-10-03
Fiberhome AN5506-04-F - Command Injection
2017-10-03
Dnsmasq < 2.78 - Integer Underflow
2017-10-02
Dnsmasq < 2.78 - Lack of free() Denial of Service
2017-10-02
Dnsmasq < 2.78 - Information Leak
2017-10-02
Dnsmasq < 2.78 - Stack-Based Overflow
2017-10-02
Dnsmasq < 2.78 - Heap-Based Overflow
2017-10-02
Dnsmasq < 2.78 - 2-byte Heap-Based Overflow
2017-10-02
OpenText Document Sciences xPression 4.5SP1 Patch 13 - 'documentId' SQL Injection
2017-10-02
OpenText Document Sciences xPression 4.5SP1 Patch 13 - 'jobRunId' SQL Injection
2017-10-02
Qmail SMTP - Bash Environment Variable Injection (Metasploit)
2017-10-02
UCOPIA Wireless Appliance < 5.1.8 - Restricted Shell Escape
2017-10-02
UCOPIA Wireless Appliance < 5.1.8 - Privilege Escalation
2017-10-02
phpCollab 2.5.1 - SQL Injection
2017-10-02
phpCollab 2.5.1 - Arbitrary File Upload
2017-10-02
NPM-V (Network Power Manager) 2.4.1 - Password Reset
2017-10-02
Linux Kernel < 4.14.rc3 - Local Denial of Service
2017-10-02
HBGK DVR 3.0.0 build20161206 - Authentication Bypass
2017-10-01
Sync Breeze Enterprise 10.0.28 - Buffer Overflow
2017-10-01
ConverTo Video Downloader & Converter 1.4.1 - Arbitrary File Download
2017-10-01
Real Estate MLM plan script 1.0 - 'srch' Parameter SQL Injection
2017-10-01
PHP Multi Vendor Script 1.02 - 'sid' Parameter SQL Injection
2017-10-01
WordPress Plugin WPHRM - SQL Injection
2017-10-01
SmarterStats 11.3.6347 - Cross-Site Scripting
2017-10-01
Dup Scout Enterprise 10.0.18 - 'Import Command' Buffer Overflow
2017-10-01
TeaMp0isoN Issue 1
2017-09-30
Phrack #60
2017-09-30
Phrack #58
2017-09-30
Phrack #57
2017-09-30
Phrack #56
2017-09-30
Phrack #55
2017-09-30
Phrack #54
2017-09-30
Phrack #53
2017-09-30
Phrack #52
2017-09-30
Phrack #51
2017-09-30
Phrack #50
2017-09-30
Phrack #49
2017-09-30
Phrack #48
2017-09-30
Phrack #42
2017-09-30
Phrack #40
2017-09-30
Phrack #38
2017-09-30
Phrack #35
2017-09-30
[eZine] Owned and Exposed - ISSUE no 1
2017-09-30
Microsoft Windows Server 2008 R2 (x64) - 'SrvOs2FeaToNt' SMB Remote Code Execution (MS17-010)
2017-09-30
FileRun <= 2017.09.18 - SQL Injection
2017-09-29
Trend Micro OfficeScan 11.0/XG (12.0) - Memory Corruption
2017-09-29
Easy Blog PHP Script 1.3a - 'id' Parameter SQL Injection
2017-09-28
DiskBoss Enterprise 8.4.16 - 'Import Command' Buffer Overflow
2017-09-28
DiskBoss Enterprise 8.4.16 - Local Buffer Overflow (PoC)
2017-09-28
Trend Micro OfficeScan 11.0/XG (12.0) - 'Host' Header Injection
2017-09-28
Trend Micro OfficeScan 11.0/XG (12.0) - Information Disclosure
2017-09-28
Roteador Wireless Intelbras WRN150 - Autentication Bypass
2017-09-28
Trend Micro OfficeScan 11.0/XG (12.0) - Server Side Request Forgery
2017-09-28
Trend Micro OfficeScan 11.0/XG (12.0) - Code Execution / Memory Corruption
2017-09-28
Trend Micro OfficeScan 11.0/XG (12.0) - Information Disclosure
2017-09-28
HackThisZine (HTZ) #7
2017-09-28
HackThisZine (HTZ) #6 - Lets Smash Windows!
2017-09-28
HackThisZine (HTZ) #4 - Ammo For The Info-Warrior
2017-09-28
HackThisZine (HTZ) #3
2017-09-28
HackThisZine (HTZ) #2
2017-09-28
HackThisZine (HTZ) #1
2017-09-28
LabSec Industries - x0x0x exposed
2017-09-28
x0x0x #2
2017-09-28
x0x0x #1
2017-09-28
TeaMp0isoN Issue 2
2017-09-28
Hack The Planet (HTP) Zine 3
2017-09-28
Hack The Planet (HTP) Zine 2
2017-09-28
FUCK THEM ALL (FTA) - Staminus Communications
2017-09-28
Inj3ct0r Team has hacked ExploitHub.com
2017-09-28
A day in the life of a pentester: How I owned your domain in 4 hours
2017-09-28
Cisco Prime Collaboration Provisioning < 12.1 - Authentication Bypass / Remote Code Execution
2017-09-28
LAquis SCADA 4.1.0.2385 - Directory Traversal (Metasploit)
2017-09-28
Fibaro Home Center 2 - Remote Command Execution / Privilege Escalation
2017-09-27
Phrack: VM escape - QEMU Case Study
2017-09-27
Phrack: Team Shellphish - Cyber Grand Shellphish
2017-09-27
Phrack: Attacking JavaScript Engines: A case study of JavaScriptCore and CVE-2016-4622
2017-09-27
Phrack #41
2017-09-27
Phrack #39
2017-09-27
Phrack #37
2017-09-27
Phrack #36
2017-09-27
Phrack #34
2017-09-27
Phrack #33
2017-09-27
Phrack #32
2017-09-27
Phrack #31
2017-09-27
Phrack #30
2017-09-27
Phrack #29
2017-09-27
Phrack #28
2017-09-27
Phrack #27
2017-09-27
Phrack #26
2017-09-27
Phrack #25
2017-09-27
Phrack #24
2017-09-27
Phrack #23
2017-09-27
Phrack #22
2017-09-27
Phrack #21
2017-09-27
Phrack #20
2017-09-27
Phrack #19
2017-09-27
Phrack #18
2017-09-27
Phrack #17
2017-09-27
Phrack #16
2017-09-27
Phrack #15
2017-09-27
Phrack #14
2017-09-27