Exploits (Total: 98598)

    
    
    
MiniShare 1.4.1 HEAD / POST Buffer Overflow Exploit
2018-12-12
macOS 10.14.1 Carbon Core Memory corruption Vulnerability
2018-12-12
Chrome V8 Math.expm1 Incorrect Type Information Vulnerability
2018-12-12
Rockwell Automation Allen-Bradley 1752-EN2T/C, 1769-L33ER/A Cross Site Scripting Vulnerability
2018-12-12
HasanMWB 1.0 - SQL Injection Vulnerability
2018-12-12
CubeCart 6.2.2 Cross Site Scripting Vulnerability
2018-12-12
FreshRSS 1.11.1 - Cross-Site Scripting Vulnerability
2018-12-12
Wireshark - cdma2k_message_ACTIVE_SET_RECORD_FIELDS Stack Corruption Vulnerability
2018-12-12
Wireshark - find_signature Heap Out-of-Bounds Read Vulnerability
2018-12-12
DomainMOD 4.11.01 - Custom SSL Fields Cross-Site Scripting Vulnerability
2018-12-12
DomainMOD 4.11.01 - Custom Domain Fields Cross-Site Scripting Vulnerability
2018-12-12
DomainMOD 4.11.01 - Registrar Cross-Site Scripting Vulnerability
2018-12-12
NUUO NVRMini2 3.9.1 - Authenticated Command Injection Exploit
2018-12-12
HP Intelligent Management Java Deserialization Remote Code Execution Exploit
2018-12-12
Emacs - movemail Privilege Escalation Exploit
2018-12-12
Microsoft Lync for Mac 2011 - Injection Forced Browsing/Download Exploit
2018-12-12
Linux/x86 - /usr/bin/head -n99 cat etc/passwd Shellcode (61 Bytes)
2018-12-12
Xorg X11 Server (AIX) - Local Privilege Escalation Exploit
2018-12-12
OpenSSH < 7.7 - User Enumeration Exploit (2)
2018-12-12
Linux/x64 - Reverse (0.0.0.0:1907/TCP) Shell Shellcode (119 Bytes)
2018-12-12
Rockwell Automation Allen-Bradley PowerMonitor 1000 - Incorrect Access Control Authentication Bypass
2018-12-12
DomainMOD 4.11.01 - Owner name Field Cross-Site Scripting Vulnerability
2018-12-12
Dolibarr ERP/CRM 8.0.3 - Cross-Site Scripting Vulnerability
2018-12-12
PHP Server Monitor 3.3.1 - Cross-Site Request Forgery Vulnerability
2018-12-12
Apache Superset 0.23 - Remote Code Execution Exploit
2018-12-12
Wordpress Advanced-Custom-Fields 5.7.7 Plugins - Cross-Site Scripting Vulnerability
2018-12-12
Joomla JE Photo Gallery 1.1 Component - categoryid SQL Injection Exploit
2018-12-12
PaloAlto Networks Expedition Migration Tool 1.0.106 - Information Disclosure Exploit
2018-12-12
Budabot 4.0 - Denial of Service Exploit
2018-12-12
Mozilla Firefox 63.0.1 - Denial of Service Exploit
2018-12-12
Rockwell Automation Allen-Bradley PowerMonitor 1000 - Cross-Site Scripting Vulnerability
2018-12-12
CyberArk 9.7 - Memory Disclosure Exploit
2018-12-12
Fleetco Fleet Maintenance Management 1.2 - Remote Code Execution Exploit
2018-12-12
KeyBase Botnet v1.5 - SQL Injection Vulnerability
2018-12-12
Tarantella Enterprise Security Bypass Vulnerability
2018-12-12
Tarantella Enterprise Directory Traversal Vulnerability
2018-12-12
ATool 1.0.0.22 Stack Buffer Overflow Vulnerability
2018-12-12
Apache Spark - Unauthenticated Command Execution Exploit
2018-12-12
KPOT Botnet - File Download/Source Code Disclosure Vulnerability
2018-12-12
Linux Kernel 4.8 (Ubuntu 16.04) - Leak sctp Kernel Pointer Exploit
2018-12-12
xorg-x11-server < 1.20.3 - modulepath Local Privilege Escalation Exploit
2018-12-12
HTML5 Video Player 1.2.5 - Buffer Overflow Exploit
2018-12-12
Synaccess netBooter NP-02x/NP-08x 6.8 - Authentication Bypass Vulnerability
2018-12-12
Schneider Electric PLC - Session Calculation Authentication Bypass Exploit
2018-12-12
Moxa NPort W2x50A 2.1 OS Command Injection Vulnerability
2018-12-12
knc (Kerberized NetCat) Denial Of Service Exploit
2018-12-12
Microsoft VBScript rtFilter Out-Of-Bounds Read Exploit
2018-12-12
Microsoft VBScript OLEAUT32!VariantClear / scrrun!VBADictionary::put_Item Use-After-Free
2018-12-12
DomainMOD 4.11.01 - 'DisplayName' Cross-Site Scripting
2018-12-09
Adiscon LogAnalyzer 4.1.7 - Cross-Site Scripting
2018-12-09
i-doit CMDB 1.11.2 - Remote Code Execution
2018-12-09
Textpad 8.1.2 - Denial Of Service (PoC)
2018-12-09
HasanMWB 1.0 - SQL Injection
2018-12-08
FreshRSS 1.11.1 - Cross-Site Scripting
2018-12-08
Emacs - movemail Privilege Escalation (Metasploit)
2018-12-08
HP Intelligent Management - Java Deserialization RCE (Metasploit)
2018-12-08
Wireshark - 'find_signature' Heap Out-of-Bounds Read
2018-12-08
Wireshark - 'cdma2k_message_ACTIVE_SET_RECORD_FIELDS' Stack Corruption
2018-12-08
DomainMOD 4.11.01 - Registrar Cross-Site Scripting
2018-12-08
NUUO NVRMini2 3.9.1 - Authenticated Command Injection
2018-12-08
DomainMOD 4.11.01 - Custom SSL Fields Cross-Site Scripting
2018-12-08
DomainMOD 4.11.01 - Custom Domain Fields Cross-Site Scripting
2018-12-08
Dolibarr ERP/CRM 8.0.3 - Cross-Site Scripting
2018-12-08
KeyBase Botnet 1.5 - SQL Injection
2018-12-08
Linux/x64 - Reverse (0.0.0.0:1907/TCP) Shell Shellcode (119 Bytes)
2018-12-08
NEC Univerge Sv9100 WebPro - 6.00 - Predictable Session ID / Clear Text Password Storage
2018-12-08
DomainMOD 4.11.01 - Owner name Field Cross-Site Scripting
2018-12-08
Linux/x86 - /usr/bin/head -n99 cat etc/passwd Shellcode (61 Bytes)
2018-12-08
OpenSSH < 7.7 - User Enumeration (2)
2018-12-08
Xorg X11 Server (AIX) - Local Privilege Escalation
2018-12-08
Rockwell Automation Allen-Bradley PowerMonitor 1000 - Incorrect Access Control Authentication Bypass
2018-12-08
Microsoft Lync for Mac 2011 - Injection Forced Browsing/Download
2018-12-08
WordPress Plugin Advanced-Custom-Fields 5.7.7 - Cross-Site Scripting
2018-12-08
Budabot 4.0 - Denial of Service (PoC)
2018-12-08
Apache Superset < 0.23 - Remote Code Execution
2018-12-08
PHP Server Monitor 3.3.1 - Cross-Site Request Forgery
2018-12-08
Mozilla Firefox 63.0.1 - Denial of Service (PoC)
2018-12-08
Joomla! Component JE Photo Gallery 1.1 - 'categoryid' SQL Injection
2018-12-08
PaloAlto Networks Expedition Migration Tool 1.0.106 - Information Disclosure
2018-12-08
Rockwell Automation Allen-Bradley PowerMonitor 1000 - Cross-Site Scripting
2018-12-08
Fleetco Fleet Maintenance Management 1.2 - Remote Code Execution
2018-12-08
CyberArk 9.7 - Memory Disclosure
2018-12-08
Apache Spark - Unauthenticated Command Execution (Metasploit)
2018-12-08
VBScript - 'rtFilter' Out-of-Bounds Read
2018-12-08
VBScript - 'OLEAUT32!VariantClear' and 'scrrun!VBADictionary::put_Item' Use-After-Free
2018-12-08
xorg-x11-server < 1.20.3 - 'modulepath' Local Privilege Escalation
2018-12-08
HTML5 Video Player 1.2.5 - Buffer Overflow (Metasploit)
2018-12-08
Synaccess netBooter NP-02x/NP-08x 6.8 - Authentication Bypass
2018-12-08
Linux Kernel 4.8 (Ubuntu 16.04) - Leak sctp Kernel Pointer
2018-12-08
Schneider Electric PLC - Session Calculation Authentication Bypass
2018-12-08
TeamCity Agent - XML-RPC Command Execution (Metasploit)
2018-12-08
Mac OS X - libxpc MITM Privilege Escalation (Metasploit)
2018-12-08
Linux - Nested User Namespace idmap Limit Local Privilege Escalation (Metasploit)
2018-12-08
PHP imap_open - Remote Code Execution (Metasploit)
2018-12-08
Unitrends Enterprise Backup - bpserverd Privilege Escalation (Metasploit)
2018-12-08
WebKit JSC - BytecodeGenerator::hoistSloppyModeFunctionIfNecessary Does not Invalidate the 'ForInContext' Object
2018-12-08
WebKit JIT - 'ByteCodeParser::handleIntrinsicCall' Type Confusion
2018-12-08
WebKit JSC JIT - 'JSPropertyNameEnumerator' Type Confusion
2018-12-08
Netgear Devices - Unauthenticated Remote Command Execution (Metasploit)
2018-12-08
Xorg X11 Server - SUID privilege escalation (Metasploit)
2018-12-08
WebKit JSC JIT - JSPropertyNameEnumerator Type Confusion Exploit
2018-12-01
WebKit JSC JIT - ByteCodeParser::handleIntrinsicCall Type Confusion Exploit
2018-12-01
WebKit JSC - BytecodeGenerator::hoistSloppyModeFunctionIfNecessary Exploit
2018-12-01
TeamCity Agent XML-RPC Command Execution Exploit
2018-12-01
PHP imap_open Remote Code Execution Exploit
2018-12-01
Mac OS X libxpc MITM Privilege Escalation Exploit
2018-12-01
Linux Nested User Namespace idmap Limit Local Privilege Escalation Exploit
2018-12-01
Unitrends Enterprise Backup bpserverd Privilege Escalation Exploit
2018-12-01
Cisco WebEx Meetings Privilege Escalation Vulnerability
2018-12-01
SonarSource SonarQube 7.3 Information Disclosure Vulnerability
2018-12-01
Avahi 0.7 Denial Of Service Vulnerability
2018-12-01
BMC Remedy 7.1 User Impersonation Vulnerability
2018-12-01
Netgear Unauthenticated Remote Command Execution Exploit
2018-12-01
phpMyAdmin 4.8.1 Authenticated Local File Inclusion Vulnerability
2018-12-01
ELBA5 5.8.0 - Remote Code Execution Exploit
2018-12-01
Arm Whois 3.11 - Buffer Overflow (ASLR) Exploit
2018-12-01
Ticketly 1.0 - kind_id SQL Injection Vulnerability
2018-12-01
No-Cms 1.0 - order_by SQL Injection Vulnerability
2018-12-01
Zyxel VMG1312-B10D 5.13AAXA.8 - Directory Traversal Vulnerability
2018-12-01
MariaDB Client 10.1.26 - Denial of Service Exploit
2018-12-01
Arm Whois 3.11 - Buffer Overflow (ASLR)
2018-11-26
ELBA5 5.8.0 - Remote Code Execution
2018-11-26
Zyxel VMG1312-B10D 5.13AAXA.8 - Directory Traversal
2018-11-26
Wordpress Easy Testimonials 3.2 Plugins - Cross-Site Scripting Vulnerability
2018-11-26
No-Cms 1.0 - 'order_by' SQL Injection
2018-11-26
Ticketly 1.0 - 'kind_id' SQL Injection
2018-11-26
MariaDB Client 10.1.26 - Denial of Service (PoC)
2018-11-26
Wordpress Plugins Easy Testimonials 3.2 - Cross-Site Scripting
2018-11-26
Ricoh myPrint 2.9.2.4 - Hard-Coded Credentials
2018-11-26
Oracle Secure Global Desktop Administration Console 4.4 Cross Site Scripting Vulnerability
2018-11-26
Consona Password Reset Security Bypass Vulnerability
2018-11-26
Cory Support 1.0 SQL Injection Vulnerability
2018-11-26
Xorg X11 Server SUID Privilege Escalation Exploit
2018-11-26
Joomla Admin 3.7.4 Database Disclosure Vulnerability
2018-11-26
Joomla MacGallery Database Disclosure Vulnerability
2018-11-25
WordPress Absolutely Glamorous Custom Admin 6.4.1 Database Disclosure Vulnerability
2018-11-25
WordPress Pods 2.7.9 Database Disclosure Vulnerability
2018-11-25
WordPress Universal Post Manager 1.5.0 Database Disclosure Vulnerability
2018-11-25
Miss Marple Enterprise Edition File Upload / Hardcoded AES Key Vulnerability
2018-11-23
Governikus Autent SDK 3.8.1 Signature Bypass Vulnerability
2018-11-23
WordPress CherryFramework Themes 3.1.4 - Backup File Download Vulnerability
2018-11-23
WebOfisi E-Ticaret V4 - urun SQL Injection Vulnerability
2018-11-23
Ticketly 1.0 - name SQL Injection Vulnerability
2018-11-23
Richfaces 3.x Remote Code Execution Vulnerability
2018-11-23
Microsoft Windows - DfMarshal Unsafe Unmarshaling Privilege Escalation Exploit
2018-11-23
macOS 10.13 - workq_kernreturn Denial of Service Exploit
2018-11-23
Ticketly 1.0 - Cross-Site Request Forgery (Add Admin) Vulnerability
2018-11-23
Zoho ManageEngine OpManager 12.3 Cross Site Scripting Vulnerability
2018-11-23
ImageMagick - Memory Leak Exploit
2018-11-23
Ricoh myPrint Hardcoded Credentials / Information Disclosure Vulnerability
2018-11-23
Synaccess netBooter NP-02x / NP-08x 6.8 Authentication Bypass Vulnerability
2018-11-23
Synaccess netBooter NP-0801DU 7.4 Cross Site Request Forgery Vulnerability
2018-11-23
Microsoft Edge Chakra - OP_Memset Type Confusion Exploit
2018-11-23
HTML Video Player 1.2.5 - Buffer-Overflow (SEH) Exploit
2018-11-23
XMPlay 3.8.3 - .m3u Denial of Service Exploit
2018-11-23
Budabot 4.0 Denial Of Service Vulnerability
2018-11-23
Helpdezk 1.1.1 - Arbitrary File Upload Vulnerability
2018-11-23
DomainMOD 4.11.01 - Cross-Site Scripting Vulnerability
2018-11-23
PHP Mass Mail 1.0 - Arbitrary File Upload Vulnerability
2018-11-23
2-Plan Team 1.0.4 - Arbitrary File Upload Vulnerability
2018-11-23
Simple E-Document 1.31 - username SQL Injection Vulnerability
2018-11-23
Kordil EDMS 2.2.60rc3 - Arbitrary File Upload Vulnerability
2018-11-23
Meneame English Pligg 5.8 - search SQL Injection Vulnerability
2018-11-23
EverSync 0.5 - Arbitrary File Download Vulnerability
2018-11-23
Galaxy Forces MMORPG 0.5.8 - type SQL Injection Vulnerability
2018-11-23
Net-Billetterie 2.9 - login SQL Injection Vulnerability
2018-11-23
BitZoom 1.0 - rollno SQL Injection Vulnerability
2018-11-23
PHP-Proxy 5.1.0 - Local File Inclusion Vulnerability
2018-11-23
Linux - Broken uid/gid Mapping for Nested User Namespaces Exploit
2018-11-23
PHP 5.2.3 imap (Debian Based) - imap_open Disable Functions Bypass Vulnerability
2018-11-23
Easy Outlook Express Recovery 2.0 - Denial of Service Exploit
2018-11-23
Notepad3 1.0.2.350 - Denial of Service Exploit
2018-11-23
Mumsoft Easy Software 2.0 - Denial of Service Exploit
2018-11-23
WordPress Custom Frontend Login Registration Form 1.01 Cross Site Scripting Vulnerability
2018-11-23
Wordpress Ninja Forms 3.3.17 Plugin - Cross-Site Scripting Vulnerability
2018-11-23
Precurio Intranet Portal 2.0 - Cross-Site Request Forgery (Add Admin) Vulnerability
2018-11-23
Pedidos 1.0 - SQL Injection Vulnerability
2018-11-23
DoceboLMS 1.2 - SQL Injection / Arbitrary File Upload Vulnerabilities
2018-11-23
Rmedia SMS 1.0 - SQL Injection Vulnerability
2018-11-23
Bosch Video Management System 8.0 - Configuration Client Denial of Service Exploit
2018-11-23
Electricks eCommerce 1.0 - Persistent Cross-Site Scripting Vulnerability
2018-11-23
EdTv 2 - id SQL Injection Vulnerability
2018-11-23
Electricks eCommerce 1.0 - Cross-Site Request Forgery (Change Admin Password) Vulnerability
2018-11-23
Helpdezk 1.1.1 - query SQL Injection Vulnerability
2018-11-23
iServiceOnline 1.0 - r SQL Injection Vulnerability
2018-11-23
SIPve 0.0.2-R19 - SQL Injection Vulnerability
2018-11-23
Webiness Inventory 2.3 - SQL Injection Vulnerability
2018-11-23
Webiness Inventory 2.3 - Arbitrary File Upload / Cross-Site Request Forgery (Add Admin)
2018-11-23
Maitra Mail Tracking System 1.7.2 - SQL Injection / Database File Download Vulnerabilities
2018-11-23
Alive Parish 2.0.4 - SQL Injection / Arbitrary File Upload Vulnerabilities
2018-11-23
ClipperCMS 1.3.3 - Cross-Site Request Forgery (File Upload) Vulnerability
2018-11-23
Silurus Classifieds Script 2.0 - wcategory SQL Injection Vulnerability
2018-11-23
Gumbo CMS 0.99 - SQL Injection Vulnerability
2018-11-23
ABC ERP 0.6.4 - Cross-Site Request Forgery (Update Admin) Vulnerability
2018-11-23
Easyndexer 1.0 - Arbitrary File Download Vulnerability
2018-11-23
Tina4 Stack 1.0.3 - Cross-Site Request Forgery (Update Admin) Vulnerability
2018-11-23
Tina4 Stack 1.0.3 - SQL Injection / Database File Download Vulnerabilities
2018-11-23
Data Center Audit 2.6.2 - Cross-Site Request Forgery (Update Admin) Vulnerability
2018-11-23
Alienor Web Libre 2.0 - SQL Injection Vulnerability
2018-11-23
Musicco 2.0.0 - Arbitrary Directory Download Vulnerability
2018-11-23
Surreal ToDo 0.6.1.2 - Local File Inclusion Vulnerability
2018-11-23
Surreal ToDo 0.6.1.2 - SQL Injection Vulnerability
2018-11-23
CentOS Web Panel 0.9.8.740 - Cross-Site Request Forgery / Cross-Site Scripting Vulnerabilities
2018-11-23
Atlassian Jira Authenticated Upload Code Execution Exploit
2018-11-23
WebOfisi E-Ticaret V4 - 'urun' SQL Injection
2018-11-21
Wordpress CherryFramework Themes 3.1.4 - Backup File Download
2018-11-21
Ticketly 1.0 - 'name' SQL Injection
2018-11-21
Synaccess netBooter NP-0801DU 7.4 - Cross-Site Request Forgery (Add Admin)
2018-11-21
Microsoft Windows - DfMarshal Unsafe Unmarshaling Privilege Escalation
CVE-2018-8550
2018-11-20
Ticketly 1.0 - Cross-Site Request Forgery (Add Admin)
2018-11-20
MacOS 10.13 - 'workq_kernreturn' Denial of Service (PoC)
2018-11-20
ImageMagick - Memory Leak
CVE-2018-16323
2018-11-20
Microsoft Edge Chakra - OP_Memset Type Confusion
2018-11-19
HTML Video Player 1.2.5 - Buffer-Overflow (SEH)
2018-11-19
XMPlay 3.8.3 - '.m3u' Denial of Service (PoC)
2018-11-19
Linux - Broken uid/gid Mapping for Nested User Namespaces
CVE-2018-18955
2018-11-16
Easy Outlook Express Recovery 2.0 - Denial of Service (PoC)
2018-11-16
Mumsoft Easy Software 2.0 - Denial of Service (PoC)
2018-11-16
DomainMOD 4.11.01 - Cross-Site Scripting
CVE-2018-19136
2018-11-16
Helpdezk 1.1.1 - Arbitrary File Upload
2018-11-16
Warranty Tracking System 11.06.3 - 'txtCustomerCode' SQL Injection
2018-11-16
Wordpress Plugin Ninja Forms 3.3.17 - Cross-Site Scripting
CVE-2018-19287
2018-11-15
PHP Mass Mail 1.0 - Arbitrary File Upload
2018-11-15
2-Plan Team 1.0.4 - Arbitrary File Upload
2018-11-15
Simple E-Document 1.31 - 'username' SQL Injection
2018-11-15
Kordil EDMS 2.2.60rc3 - Arbitrary File Upload
2018-11-15
Meneame English Pligg 5.8 - 'search' SQL Injection
2018-11-15
The Powerful Resource of PHP Stream Wrappers
2018-11-15
Notepad3 1.0.2.350 - Denial of Service (PoC)
2018-11-15
EverSync 0.5 - Arbitrary File Download
2018-11-15
Webkit (Chome < 61) - 'MHTML' Universal Cross-site Scripting
CVE-2017-5124
2018-11-15
Webkit (Safari) - Universal Cross-site Scripting
CVE-2017-7089
2018-11-15
PHP 5.2.3 imap (Debian Based) - 'imap_open' Disable Functions Bypass
2018-11-15
Galaxy Forces MMORPG 0.5.8 - 'type' SQL Injection
2018-11-15
Net-Billetterie 2.9 - 'login' SQL Injection
2018-11-15
BitZoom 1.0 - 'rollno' SQL Injection
2018-11-15
PHP-Proxy 5.1.0 - Local File Inclusion
CVE-2018-19246
2018-11-15
Precurio Intranet Portal 2.0 - Cross-Site Request Forgery (Add Admin)
2018-11-15
SwitchVPN For MacOS 2.1012.03 Privilege Escalation Exploit
2018-11-14
SwitchVPN For MacOS / Windows 2.1012.03 Man-In-The-Middle Vulnerability
2018-11-14
OCS Inventory NG ocsreports Shell Upload Vulnerability
2018-11-14
ntpd 4.2.8p10 - Out-of-Bounds Read Exploit
2018-11-14
AMPPS 2.7 - Denial of Service Exploit
2018-11-14
Bosch Video Management System 8.0 - Configuration Client Denial of Service (PoC)
2018-11-14
DoceboLMS 1.2 - SQL Injection / Arbitrary File Upload
2018-11-14
Electricks eCommerce 1.0 - Persistent Cross-Site Scripting
2018-11-14
Pedidos 1.0 - SQL Injection
2018-11-14
Rmedia SMS 1.0 - SQL Injection
2018-11-14
SwitchVPN for macOS 2.1012.03 - Privilege Escalation
CVE-2018-18860
2018-11-14
Advanced Comment System 1.0 - SQL Injection
CVE-2018-18619
2018-11-14
Dell OpenManage Network Manager 6.2.0.51 SP3 - Multiple Vulnerabilities
CVE-2018-15767
2018-11-14
Atlassian Jira - Authenticated Upload Code Execution (Metasploit)
2018-11-14
AMPPS 2.7 - Denial of Service (PoC)
2018-11-14
EdTv 2 - 'id' SQL Injection
2018-11-14
Electricks eCommerce 1.0 - Cross-Site Request Forgery (Change Admin Password)
2018-11-14
Helpdezk 1.1.1 - 'query' SQL Injection
2018-11-14
ntpd 4.2.8p10 - Out-of-Bounds Read (PoC)
CVE-2018-7182
2018-11-14
iServiceOnline 1.0 - 'r' SQL Injection
2018-11-14
Linux/x86 - Bind (99999/TCP) NetCat Traditional (/bin/nc) Shell (/bin/bash) Shellcode 58 bytes
2018-11-13
xorg-x11-server < 1.20.1 - Local Privilege Escalation Exploit
2018-11-13
XAMPP Control Panel 3.2.2 - Buffer Overflow (SEH) (Unicode) Exploit
2018-11-13
Cisco Immunet < 6.2.0 / Cisco AMP For Endpoints 6.2.0 - Denial of Service Exploit
2018-11-13
Evince 3.24.0 - Command Injection Exploit
2018-11-13
CuteFTP Mac 3.1 - Denial of Service Exploit
2018-11-13
SIPve 0.0.2-R19 - SQL Injection
2018-11-13
Webiness Inventory 2.3 - SQL Injection
2018-11-13
Webiness Inventory 2.3 - Arbitrary File Upload / Cross-Site Request Forgery (Add Admin)
2018-11-13
Maitra Mail Tracking System 1.7.2 - SQL Injection / Database File Download
2018-11-13
Alive Parish 2.0.4 - SQL Injection / Arbitrary File Upload
2018-11-13
ClipperCMS 1.3.3 - Cross-Site Request Forgery (File Upload)
CVE-2018-19135
2018-11-13
Silurus Classifieds Script 2.0 - 'wcategory' SQL Injection
2018-11-13
Gumbo CMS 0.99 - SQL Injection
2018-11-13
ABC ERP 0.6.4 - Cross-Site Request Forgery (Update Admin)
2018-11-13
Easyndexer 1.0 - Arbitrary File Download
2018-11-13
Tina4 Stack 1.0.3 - Cross-Site Request Forgery (Update Admin)
2018-11-13
Tina4 Stack 1.0.3 - SQL Injection / Database File Download
2018-11-13
xorg-x11-server < 1.20.1 - Local Privilege Escalation
CVE-2018-14665
2018-11-13
Data Center Audit 2.6.2 - Cross-Site Request Forgery (Update Admin)
2018-11-13
Musicco 2.0.0 - Arbitrary Directory Download
2018-11-13
Cisco Immunet < 6.2.0 / Cisco AMP For Endpoints 6.2.0 - Denial of Service
CVE-2018-15437
2018-11-13
XAMPP Control Panel 3.2.2 - Buffer Overflow (SEH) (Unicode)
2018-11-13
Alienor Web Libre 2.0 - SQL Injection
2018-11-13
Surreal ToDo 0.6.1.2 - Local File Inclusion
2018-11-13
Surreal ToDo 0.6.1.2 - SQL Injection
2018-11-13
Evince 3.24.0 - Command Injection
CVE-2017-1000083
2018-11-13
CuteFTP Mac 3.1 - Denial of Service (PoC)
2018-11-13
CentOS Web Panel 0.9.8.740 - Cross-Site Request Forgery / Cross-Site Scripting
CVE-2018-18772
2018-11-13
Linux/x86 - Bind (99999/TCP) NetCat Traditional (/bin/nc) Shell (/bin/bash) Shellcode (58 bytes)
2018-11-13
Cisco Prime Infrastructure Unauthenticated Remote Code Execution Exploit
2018-11-13
Android 5.0 Battery Information Broadcast Information Disclosure Vulnerability
2018-11-13
Android RSSI Broadcast Information Disclosure Vulnerability
2018-11-13
ServerZilla 1.0 - email SQL Injection Vulnerability
2018-11-12
Nominas 0.27 - username SQL Injection Vulnerability
2018-11-12
GPS Tracking System 2.12 - username SQL Injection Vulnerability
2018-11-12
Facturation System 1.0 - modid SQL Injection Vulnerability
2018-11-12
The Don 1.0.1 - login SQL Injection Vulnerability
2018-11-12
Paroiciel 11.20 - tRecIdListe SQL Injection Vulnerability
2018-11-12
Easyndexer 1.0 - Cross-Site Request Forgery (Add Admin) Vulnerability
2018-11-12
Vignette Content Management 6 Security Bypass Vulnerability
2018-11-12
Advanced Comment System 1.0 SQL Injection Vulnerability
2018-11-12
Netscape Enterprise 3.63 Cross Site Scripting Vulnerability
2018-11-12
Mongoose Web Server 6.9 - Denial of Service Exploit
2018-11-12
CuteFTP 9.3.0.3 - Denial of Service Exploit
2018-11-12
TP-Link Archer C50 Wireless Router 171227 - CSRF (Configuration File Disclosure) Vulnerability
2018-11-12
WordPress WP User Manager 2.0.8 SQL Injection Vulnerability
2018-11-12
WordPress PeepSo 1.11.2 XSS / SQL Injection Vulnerabilities
2018-11-12
Wordpress Media File Manager 1.4.2 Plugin - Directory Traversal Vulnerability
2018-11-12
Data Center Audit 2.6.2 - username SQL Injection Vulnerability
2018-11-12
TufinOS 2.17 Build 1193 - XML External Entity Injection Vulnerability
2018-11-12
HeidiSQL 9.5.0.5196 - Denial of Service Exploit
2018-11-12
Nominas 0.27 - 'username' SQL Injection
2018-11-12
Mongoose Web Server 6.9 - Denial of Service (PoC)
2018-11-12
D-LINK Central WifiManager CWM-100 - Server-Side Request Forgery
2018-11-12
ServerZilla 1.0 - 'email' SQL Injection
2018-11-12
GPS Tracking System 2.12 - 'username' SQL Injection
2018-11-12
Easyndexer 1.0 - Cross-Site Request Forgery (Add Admin)
2018-11-12
CuteFTP 9.3.0.3 - Denial of Service (PoC)
2018-11-12
Facturation System 1.0 - 'modid' SQL Injection
2018-11-12
The Don 1.0.1 - 'login' SQL Injection
2018-11-12
TP-Link Archer C50 Wireless Router 171227 - Cross-Site Request Forgery (Configuration File Disclosure)
2018-11-12
Paroiciel 11.20 - 'tRecIdListe' SQL Injection
2018-11-12
Wordpress Plugin Media File Manager 1.4.2 - Directory Traversal
2018-11-12
TufinOS 2.17 Build 1193 - XML External Entity Injection
2018-11-12
Data Center Audit 2.6.2 - 'username' SQL Injection
2018-11-12
HeidiSQL 9.5.0.5196 - Denial of Service (PoC)
2018-11-12
Windows/x86 - Messagebox Shellcode 358 bytes
2018-11-11
Cisco Immunet / Cisco AMP For Endpoints Scanning Denial Of Service Exploit
2018-11-11
Microsoft Windows 10 (Build 17134) - Local Privilege Escalation (UAC Bypass) Exploit
2018-11-11
D-LINK Central WifiManager (CWM 100) 1.03 r0098 Man-In-The-Middle Vulnerability
2018-11-11
D-LINK Central WifiManager (CWM 100) 1.03 r0098 Server-Side Request Forgery Vulnerability
2018-11-11
D-LINK Central WifiManager (CWM 100) 1.03 r0098 DLL Hijacking Exploit
2018-11-11
OpenSLP 2.0.0 - Multiple Vulnerabilities
2018-11-11
Microsoft Windows 10 (Build 17134) - Local Privilege Escalation (UAC Bypass)
2018-11-09
OpenSLP 2.0.0 - Multiple Vulnerabilities
CVE-2016-7567
2018-11-09
Cradlepoint Router Password Disclosure Vulnerability
2018-11-08
Dell OpenManage Network Manager 6.2.0.51 SP3 Privilege Escalation Exploit
2018-11-07
CI User Login and Management 1.0 - Arbitrary File Upload Vulnerability
2018-11-07
Arm Whois 3.11 - Buffer Overflow (SEH) Exploit
2018-11-07
libiec61850 1.3 - Stack Based Buffer Overflow
2018-11-07
LibreHealth 2.0.0 - Arbitrary File Actions Vulnerability
2018-11-07
OpenBiz Cubi Lite 3.0.8 - username SQL Injection Vulnerability
2018-11-07
Grocery crud 1.6.1 - search_field SQL Injection Vulnerability
2018-11-07
VSAXESS V2.6.2.70 build20171226_053 - organization Denial of Service Exploit
2018-11-07
OOP CMS BLOG 1.0 - Cross-Site Request Forgery (Add Admin) Vulnerability
2018-11-07
eToolz 3.4.8.0 - Denial of Service Exploit
2018-11-07
OOP CMS BLOG 1.0 - search SQL Injection Vulnerability
2018-11-07
PlayJoom 0.10.1 - catid SQL Injection Vulnerability
2018-11-07
Blue Server 1.1 - Denial of Service Exploit
2018-11-07
XNU Kernel iOS / macOS heap buffer overflow Exploit
2018-11-07
FaceTime - VCPDecompressionDecodeFrame Memory Corruption Exploit
2018-11-07
FaceTime - readSPSandGetDecoderParams Stack Corruption Exploit
2018-11-07
FaceTime - RTP Video Processing Heap Corruption Exploit
2018-11-07
Morris Worm fingerd Stack Buffer Overflow Exploit
2018-11-07
Morris Worm sendmail Debug Mode Shell Escape Exploit
2018-11-07
blueimp jQuery Arbitrary File Upload Exploit
2018-11-07
QBee Camera / iSmartAlarm Credential Disclosure Vulnerability
2018-11-07
CMS Made Simple 2.2.7 Remote Code Execution Exploit
2018-11-07
CentOS Web Panel Root Account Takeover <= v0.9.8.740 Remote Command Execution Exploit
2018-11-07
Easy File Sharing Web Server 7.2 - author Remote Buffer Overflow (SEH) Exploit
2018-11-07
Microsoft Internet Explorer 11 - Null Pointer Dereference Exploit
2018-11-07
Softros LAN Messenger 9.2 - Denial of Service Exploit
2018-11-07
Intel (Skylake / Kaby Lake) - PortSmash CPU SMT Side-Channel Exploit
2018-11-07
Virgin Media Hub 3.0 Router - Denial of Service Exploit
2018-11-07
Mongo Web Admin 6.0 - Information Disclosure Vulnerability
2018-11-07
Poppy Web Interface Generator 0.8 - Arbitrary File Upload Vulnerability
2018-11-07
Voovi Social Networking Script 1.0 - user SQL Injection Vulnerability
2018-11-07
PHP Proxy 3.0.3 - Local File Inclusion Exploit
2018-11-07
Advantech WebAccess SCADA 8.3.2 - Remote Code Execution Exploit
2018-11-07
WebVet 0.1a - id SQL Injection Vulnerability
2018-11-07
SiAdmin 1.1 - id SQL Injection Vulnerability
2018-11-07
LiquidVPN For macOS 1.3.7 Privilege Escalation Vulnerability
2018-11-07
Royal TSX Information Disclosure Vulnerability
2018-11-07
Yot CMS 3.3.1 - aid SQL Injection Vulnerability
2018-11-07
qdPM 9.1 - filter_by SQL Injection Vulnerability
2018-11-07
Zint Barcode Generator 2.6 - Denial of Service Exploit
2018-11-07
CdCatalog 2.3.1 - Denial of Service Exploit
2018-11-07
WinMTR 0.91 - Denial of Service Exploit
2018-11-07
Gate Pass Management System 2.1 - login SQL Injection Vulnerability
2018-11-07
Jelastic 5.4 - host SQL Injection Vulnerability
2018-11-07
Fantastic Blog CMS 1.0 - id SQL Injection Vulnerability
2018-11-07
Sourcetree Git Arbitrary Code Execution Vulnerability
2018-11-07
Anviz AIM CrossChex Standard 4.3 Excel Macro Injection Vulnerability
2018-11-07
WebDrive 18.00.5057 - Denial of Service Exploit
2018-11-07
Arm Whois 3.11 - Denial of Service Exploit
2018-11-07
Artha The Open Thesaurus 1.0.3.0 - Denial of Service Exploit
2018-11-07
gVisor runsc Guest -> Host Breakout Via Filesystem Cache Desync
2018-11-07
EE 4GEE HH70VB-2BE8GB3 HH70_E1_02.00_19 Hard-Coded Credentails Vulnerability
2018-11-07
Loadbalancer.org Enterprise VA MAX 8.3.2 - Remote Code Execution Exploit
2018-11-07
Asaancart Simple PHP Shopping Cart 0.9 - Arbitrary File Upload / SQL Injection Vulnerabilities
2018-11-07
Notes Manager 1.0 - Arbitrary File Upload Vulnerability
2018-11-07
Microstrategy Web 7 - Cross-Site Scripting / Directory Traversal Vulnerabilities
2018-11-07
University Application System 1.0 - SQL Injection / Cross-Site Request Forgery (Add Admin)
2018-11-07
Exploit
2018-11-07
Exploit
2018-11-06
Exploit
2018-11-06
OpenBiz Cubi Lite 3.0.8 - 'username' SQL Injection
2018-11-06
OOP CMS BLOG 1.0 - 'search' SQL Injection
2018-11-06
libiec61850 1.3 - Stack Based Buffer Overflow
CVE-2018-18957
2018-11-06
eToolz 3.4.8.0 - Denial of Service (PoC)
2018-11-06
Arm Whois 3.11 - Buffer Overflow (SEH)
2018-11-06
Grocery crud 1.6.1 - 'search_field' SQL Injection
2018-11-06
OOP CMS BLOG 1.0 - Cross-Site Request Forgery (Add Admin)
2018-11-06
CMS Made Simple 2.2.7 - Remote Code Execution
CVE-2018-10517
2018-11-06
Blue Server 1.1 - Denial of Service (PoC)
2018-11-06
Morris Worm - fingerd Stack Buffer Overflow (Metasploit)
2018-11-06
blueimp's jQuery 9.22.0 - (Arbitrary) File Upload (Metasploit)
CVE-2018-9206
2018-11-06
Morris Worm - sendmail Debug Mode Shell Escape (Metasploit)
2018-11-06
FaceTime - 'VCPDecompressionDecodeFrame' Memory Corruption
CVE-2018-4366
2018-11-06
FaceTime - 'readSPSandGetDecoderParams' Stack Corruption
CVE-2018-4367
2018-11-06
FaceTime - RTP Video Processing Heap Corruption
CVE-2018-4384
2018-11-06
Intel (Skylake / Kaby Lake) - 'PortSmash' CPU SMT Side-Channel
CVE-2018-5407
2018-11-05
Voovi Social Networking Script 1.0 - 'user' SQL Injection
2018-11-05
Royal TS/X - Information Disclosure
CVE-2018-18865
2018-11-05
LiquidVPN 1.36 / 1.37 - Privilege Escalation
CVE-2018-18856
2018-11-05
Softros LAN Messenger 9.2 - Denial of Service (PoC)
2018-11-05
PHP Proxy 3.0.3 - Local File Inclusion
2018-11-05
Mongo Web Admin 6.0 - Information Disclosure
2018-11-05
Microsoft Internet Explorer 11 - Null Pointer Difference
2018-11-05
Poppy Web Interface Generator 0.8 - Arbitrary File Upload
2018-11-05
Virgin Media Hub 3.0 Router - Denial of Service (PoC)
2018-11-05
WebVet 0.1a - 'id' SQL Injection
2018-11-05
Advantech WebAccess SCADA 8.3.2 - Remote Code Execution
CVE-2018-15705
2018-11-05
SiAdmin 1.1 - 'id' SQL Injection
2018-11-05
Zint Barcode Generator 2.6 - Denial of Service (PoC)
2018-11-04
CdCatalog 2.3.1 - Denial of Service (PoC)
2018-11-04
WinMTR 0.91 - Denial of Service (PoC)
2018-11-04
Yot CMS 3.3.1 - 'aid' SQL Injection
2018-11-04
qdPM 9.1 - 'filter_by' SQL Injection
2018-11-04
Gate Pass Management System 2.1 - 'login' SQL Injection
2018-11-04
Anviz AIM CrossChex Standard 4.3 - CSV Injection
2018-11-04
Jelastic 5.4 - 'host' SQL Injection
2018-11-04
Fantastic Blog CMS 1.0 - 'id' SQL Injection
2018-11-04
Arm Whois 3.11 - Denial of Service (PoC)
2018-11-04
WebDrive 18.00.5057 - Denial of Service (PoC)
2018-11-04
Artha The Open Thesaurus 1.0.3.0 - Denial of Service (PoC)
2018-11-04
SmartFTP Client 9.0.2615.0 - Denial of Service (PoC)
2018-11-04
Loadbalancer.org Enterprise VA MAX 8.3.2 - Remote Code Execution
2018-11-04
CI User Login and Management 1.0 - Arbitrary File Upload
2018-11-04
Asaancart Simple PHP Shopping Cart 0.9 - Arbitrary File Upload / SQL Injection
2018-11-04
Microstrategy Web 7 - Cross-Site Scripting / Directory Traversal
CVE-2018-18775
2018-11-04
Instagram Clone 1.0 - Arbitrary File Upload
2018-11-04
Notes Manager 1.0 - Arbitrary File Upload
2018-11-04
University Application System 1.0 - SQL Injection / Cross-Site Request Forgery (Add Admin)
2018-11-04
Expense Management 1.0 - Arbitrary File Upload
2018-11-04
SIPp 3.3.990 - Local Buffer Overflow (PoC)
2018-11-04
QNAP NetBak Replicator 4.5.6.0607 - Denial of Service (PoC)
2018-11-04
Nutanix AOS & Prism < 5.5.5 (LTS) / < 5.8.1 (STS) - SFTP Authentication Bypass
2018-11-04
MyBB Downloads 2.0.3 - SQL Injection
2018-11-04
ZyXEL VMG3312-B10B < 1.00(AAPP.7) - Credential Disclosure
2018-11-04
Phrack: Viewer Discretion Advised: (De)coding an iOS Kernel Vulnerability (Adam Donenfeld)
2018-11-04
Any Sound Recorder 2.93 - Buffer Overflow Local (SEH) (Metasploit)
2018-11-04
Windows/x64 - Remote (Bind TCP) Keylogger Shellcode (864 bytes) (Generator)
2018-11-04
xorg-x11-server 1.20.3 - Privilege Escalation
CVE-2018-14665
2018-11-04
NETGEAR WiFi Router R6120 - Credential Disclosure
2018-11-04
Webiness Inventory 2.9 - Arbitrary File Upload
2018-11-04
phptpoint Pharmacy Management System 1.0 - 'username' SQL Injection
2018-11-04
R 3.4.4 (Windows 10 x64) - Buffer Overflow (DEP/ASLR Bypass)
2018-11-04
Electricks eCommerce 1.0 - 'prodid' SQL Injection
2018-11-04
South Gate Inn Online Reservation System 1.0 - 'q' SQL Injection
2018-11-04
K-iwi Framework 1775 - SQL Injection
CVE-2018-18755
2018-11-04
SaltOS Erp Crm 3.1 r8126 - Database File Download
CVE-2018-18762
2018-11-04
SaltOS Erp Crm 3.1 r8126 - SQL Injection (2)
CVE-2018-18763
2018-11-04
Modbus Slave 7.0.0 - Denial of Service (PoC)
CVE-2018-18759
2018-11-04
SaltOS Erp Crm 3.1 r8126 - SQL Injection
CVE-2018-18761
2018-11-04
E-Negosyo System 1.0 - SQL Injection
CVE-2018-18801
2018-11-04
RhinOS CMS 3.x - Arbitrary File Download
CVE-2018-18760
2018-11-04
PayPal-Credit Card-Debit Card Payment 1.0 - SQL Injection
CVE-2018-18800
2018-11-04
School Attendance Monitoring System 1.0 - SQL Injection
CVE-2018-18798
2018-11-04
School Attendance Monitoring System 1.0 - Arbitrary File Upload
CVE-2018-18799
2018-11-04
School Attendance Monitoring System 1.0 - Cross-Site Request Forgery (Update Admin)
CVE-2018-18797
2018-11-04
School Event Management System 1.0 - Cross-Site Request Forgery (Update Admin)
CVE-2018-18794
2018-11-04
School Event Management System 1.0 - Arbitrary File Upload
CVE-2018-18793
2018-11-04
School Event Management System 1.0 - SQL Injection
CVE-2018-18795
2018-11-04
Point of Sales (POS) in VB.Net MySQL Database 1.0 - SQL Injection
CVE-2018-18805
2018-11-04
Bakeshop Inventory System in VB.Net and MS Access Database 1.0 - SQL Injection
CVE-2018-18804
2018-11-04
Curriculum Evaluation System 1.0 - SQL Injection
CVE-2018-18803
2018-11-04
Aplaya Beach Resort Online Reservation System 1.0 - SQL Injection / Cross-Site Request Forgery
2018-11-04
MTGAS MOGG Web Simulator Script - SQL Injection
2018-11-04
ASRock Drivers - Privilege Escalation
CVE-2018-10709
2018-11-04
systemd - chown_one() can Dereference Symlinks
CVE-2018-15687
2018-11-04
systemd - reexec State Injection
CVE-2018-15686
2018-11-04
Card Payment 1.0 - Cross-Site Request Forgery (Update Admin)
2018-11-04
Paramiko 2.4.1 - Authentication Bypass
CVE-2018-7750
2018-11-04
Local Server 1.0.9 - Denial of Service (PoC)
2018-11-04
Modbus Slave PLC 7 - '.msw' Buffer Overflow (PoC)
2018-11-04
School Equipment Monitoring System 1.0 - 'login' SQL Injection
2018-11-04
AlienIP 2.41 - Denial of Service (PoC)
2018-11-04
Open Faculty Evaluation System 7 - 'batch_name' SQL Injection
2018-11-04
Library Management System 1.0 - 'frmListBooks' SQL Injection
2018-11-04
Navicat 12.0.29 - 'SSH' Denial of Service (PoC)
2018-11-04
Grapixel New Media 2 - 'pageref' SQL Injection
2018-11-04
Open Faculty Evaluation System 5.6 - 'batch_name' SQL Injection
2018-11-04
Veterinary Clinic Management 00.02 - 'editpetnum' SQL Injection
2018-11-04
Delta Sql 1.8.2 - 'id' SQL Injection
2018-11-04
MPS Box 0.1.8.0 - Arbitrary File Upload
2018-11-04
Quick Count 2.0 - 'txtInstID' SQL Injection
2018-11-04
xorg-x11-server < 1.20.3 - Local Privilege Escalation
CVE-2018-14665
2018-11-04
WebEx - Local Service Permissions Exploit (Metasploit)
CVE-2018-15442
2018-11-04
WebExec - Authenticated User Code Execution (Metasploit)
CVE-2018-15442
2018-11-04
libtiff 4.0.9 - Decodes Arbitrarily Sized JBIG into a Target Buffer
CVE-2018-18557
2018-11-04
Exploits/page:


Page:
1-4-2 (www02)