Exploits (Total: 95225)

    
    
    
Intel Modular Server System 10.18 - Cross-Site Request Forgery (Change Admin Password)
2019-03-14
Apache Tika-server < 1.18 - Command Injection
2019-03-13
elFinder PHP Connector < 2.1.48 - exiftran Command Injection (Metasploit)
2019-03-13
pfSense 2.4.4-p1 (HAProxy Package 0.59_14) - Persistent Cross-Site Scripting
2019-03-13
WordPress Plugin GraceMedia Media Player 1.0 - Local File Inclusion
2019-03-13
Microsoft Windows MSHTML Engine - "Edit" Remote Code Execution
2019-03-13
Core FTP Server FTP / SFTP Server v2 Build 674 - 'SIZE' Directory Traversal
2019-03-13
Core FTP Server FTP / SFTP Server v2 Build 674 - 'MDTM' Directory Traversal
2019-03-13
Microsoft Windows - .reg File / Dialog Box Message Spoofing
2019-03-13
Core FTP 2.0 build 653 - 'PBSZ' Denial of Service (PoC)
2019-03-12
PilusCart 1.4.1 - Cross-Site Request Forgery (Add Admin)
2019-03-12
NetSetMan 4.7.1 - Local Buffer Overflow (SEH Unicode)
2019-03-11
Linux Kernel 4.4 (Ubuntu 16.04) - 'snd_timer_user_ccallback()' Kernel Pointer Leak
2019-03-11
Flexpaper PHP Publish Service 2.3.6 - Remote Code Execution
2019-03-11
PRTG Network Monitor 18.2.38 - Authenticated Remote Code Execution
2019-03-11
OpenKM 6.3.2 < 6.3.7 - Remote Command Execution (Metasploit)
2019-03-11
Liferay CE Portal < 7.1.2 ga3 - Remote Command Execution (Metasploit)
2019-03-11
Linux/x86 - Polymorphic execve(/bin/sh) Shellcode (63 bytes)
2019-03-11
Linux/x86 - MMX-XOR Encoder / Decoder execve(/bin/sh) Shellcode (44 bytes)
2019-03-11
Sony Playstation 4 (PS4) < 6.20 - WebKit Code Execution (PoC)
2019-03-11
DirectAdmin 1.55 - 'CMD_ACCOUNT_ADMIN' Cross-Site Request Forgery
2019-03-08
Linux/x86 - INSERTION Encoder / Decoder execve(/bin/sh) Shellcode (88 bytes)
2019-03-08
McAfee ePO 5.9.1 - Registered Executable Local Access Bypass
2019-03-08
OrientDB 3.0.17 GA Community Edition - Cross-Site Request Forgery / Cross-Site Scripting
2019-03-08
OpenSSH SCP Client - Write Arbitrary Files
2019-03-08
TeamCity < 9.0.2 - Disabled Registration Bypass
2019-03-08
Oracle Weblogic Server - Deserialization Remote Command Execution (Patch Bypass)
2019-03-08
phpBB 3.2.3 - Remote Code Execution
2019-03-08
WordPress Core 5.0 - Remote Code Execution
2019-03-08
Drupal < 8.5.11 / < 8.6.10 - RESTful Web Services unserialize() Remote Command Execution (Metasploit)
2019-03-08
Imperva SecureSphere 13.x - 'PWS' Command Injection (Metasploit)
2019-03-08
FreeBSD - Intel SYSRET Privilege Escalation (Metasploit)
2019-03-08
Anyburn 4.3 x86 - 'Copy disc to image file' Buffer Overflow (Unicode) (SEH)
2019-03-08
QNAP TS-431 QTS < 4.2.2 - Remote Command Execution (Metasploit)
2019-03-08
Kados R10 GreenBee - Multiple SQL Injection
2019-03-08
Android - getpidcon() Usage in Hardware binder ServiceManager Permits ACL Bypass
2019-03-08
Android - binder Use-After-Free via racy Initialization of ->allow_user_free
2019-03-08
Linux < 4.20.14 - Virtual Address 0 is Mappable via Privileged write() to /proc/*/mem
2019-03-08
Java Debug Wire Protocol (JDWP) - Remote Code Execution
2019-03-06
OpenDocMan 1.3.4 - 'search.php where' SQL Injection
2019-03-05
Linux/x86 - XOR Encoder / Decoder execve() /bin/sh Shellcode (45 bytes)
2019-03-05
Fiberhome AN5506-04-F RP2669 - Persistent Cross-Site Scripting
2019-03-04
WordPress Plugin Cerber Security, Antispam & Malware Scan 8.0 - Multiple Bypass Vulnerabilities
2019-03-04
Craft CMS 3.1.12 Pro - Cross-Site Scripting
2019-03-04
Bolt CMS 3.6.4 - Cross-Site Scripting
2019-03-04
MarcomCentral FusionPro VDP Creator < 10.0 - Directory Traversal
2019-03-04
Linux/x86 - NOT Encoder / Decoder - execve() /bin/sh Shellcode (44 bytes)
2019-03-04
Linux/x64 - Kill All Processes Shellcode (11 bytes)
2019-03-04
Linux/x86 - iptables -F Shellcode (43 bytes)
2019-03-04
Raisecom XPON ISCOMHT803G-U_2.0.0_140521_R4.1.47.002 - Remote Code Execution
2019-03-04
Exploits/page:


Page:
1.3.0 (www02)