Exploits (Total: 97043)

    
    
    
MVO Maquina Vendas Online SQL Injection
2014-10-14
CMS Subkarma Cross Site Scripting / SQL Injection
2014-10-14
Samsung.com Open Redirect
2014-10-14
Blackberry.com Open Redirect
2014-10-14
Pagekit 0.8.7 Cross Site Scripting / Open Redirect
2014-10-14
DNS Reverse Lookup Shellshock
2014-10-14
Bosch Security Systems DVR 630/650/670 Series Multiple Vulnerabilities
2014-10-14
SEO Control Panel 3.6.0 - Authenticated SQL Injection
2014-10-14
Tenda A32 Router - CSRF Vulnerability
CVE-2014-7281
2014-10-14
YourMembers Plugin - Blind SQL Injection
CVE-2014-100003
2014-10-14
Telefonica O2 Connection Manager 8.7 - Service Trusted Path Privilege Escalation
2014-10-14
Telefonica O2 Connection Manager 3.4 - Local Privilege Escalation Vulnerability
2014-10-14
Change CMS 3.6.8 - Multiple CSRF Vulnerabilities
2014-10-14
Croogo 2.0.0 - Multiple Stored XSS Vulnerabilities
2014-10-14
Croogo 2.0.0 - Arbitrary PHP Code Execution Exploit
2014-10-14
PayPal Inc BB #85 MB iOS 4.6 - Auth Bypass Vulnerability
2014-10-14
Bosch Security Systems DVR 630/650/670 Series - Multiple Vulnerabilities
2014-10-14
DNS Reverse Lookup Shellshock Exploit
CVE-2014-3671
2014-10-14
Pagekit 0.8.7 Cross Site Scripting / Open Redirect Vulnerabilities
CVE-2014-8069
2014-10-14
CMS Subkarma Cross Site Scripting / SQL Injection Vulnerabilities
2014-10-14
Parallels Plesk 11.5.x - URL Protection Filter Bypass
2014-10-13
Indeed Job Search 2.5 iOS API - Multiple Vulnerabilities
2014-10-13
PayPal Inc BB #98 MOS - Persistent Settings Vulnerability
2014-10-13
rsync and librsync collisions
2014-10-13
Croogo 2.0.0 Arbitrary PHP Code Execution Exploit
2014-10-13
Croogo 2.0.0 Multiple Stored XSS Vulnerabilities
2014-10-13
Android prior to 4.4 CSP Bypass
2014-10-13
PayPal Inc MB iOS 4.6 - Auth Bypass Vulnerability
2014-10-13
PayPal Inc iOS 4.6 Validation & Design Vulnerability
2014-10-13
Android browser versions 4.4 content security policy bypass vulnerability
2014-10-13
Croogo 2.0.0 Arbitrary PHP Code Execution / Cross Site Scripting Vulnerabilities
2014-10-13
vBulletin 4.x - SQLi in breadcrumbs via xmlrpc API (Post-Auth)
CVE-2014-2022
2014-10-12
vBulletin 5.x/4.x - Persistent XSS in AdminCP/ApiLog via xmlrpc API (Post-Auth)
CVE-2014-2021
2014-10-12
neuroML 1.8.1 XSS / LFI / XXE Injection / Disclosure
2014-10-12
SAP BusinessObjects Explorer 14.0.5 XXE Injection
2014-10-12
SAP BusinessObjects Explorer 14.0.5 Information Disclosure
2014-10-12
SAP BusinessObjects Explorer 14.0.5 Cross Site Flashing
2014-10-12
neuroML 1.8.1 XSS / LFI / XXE Injection / Disclosure Vulnerabilities
2014-10-11
ASProxy <= 5.5.0 Arbitrary File Download Vulnerability
2014-10-11
USB Disk Free v1.0 iOS - File Include Vulnerability
2014-10-10
Twiki Upload Bypass
2014-10-10
Zend Framework Multiple Vulns
2014-10-10
Twiki Perl Code Execution
2014-10-10
WordPress Google Calendar Events 2.0.1 Cross Site Scripting
2014-10-10
WordPress Contact Form DB 2.8.13 Cross Site Scripting
2014-10-10
Telefonica O2 Connection Manager 8.7 Service Trusted Path Privilege Escalation
2014-10-10
Telefonica O2 Connection Manager 3.4 Local Privilege Escalation
2014-10-10
Aardvark Topsites PHP 5.2 Cross Site Scripting / Local File Inclusion
2014-10-10
WordPress EWWW Image Optimizer 2.0.1 Cross Site Scripting
2014-10-10
WordPress Google Calendar Events 2.0.1 Cross Site Scripting Vulnerability
CVE-2014-7138
2014-10-10
WordPress Contact Form DB 2.8.13 Cross Site Scripting Vulnerability
CVE-2014-7139
2014-10-10
WordPress EWWW Image Optimizer 2.0.1 Cross Site Scripting Vulnerability
2014-10-10
Twiki Perl 4.x, 5.x, 6.x Upload Bypass / Code Execution Vulnerabilities
CVE-2014-7236
2014-10-10
PayPal Inc BB - API Restriction Auth Bypass Vulnerability
2014-10-09
PayPal Inc BB #85 MB iOS 4.6 - Auth Bypass Vulnerability
2014-10-09
VIGOR 2130 Command Injection / Cross Site Request Forgery
2014-10-09
SAP Business Objects Denial Of Service Via CORBA
2014-10-09
SAP HANA Reflective Cross Site Scripting
2014-10-09
SAP Business Objects Information Disclosure
2014-10-09
SAP HANA Web-based Development Workbench Code Injection
2014-10-09
SAP Business Warehouse Missing Authorization Check
2014-10-09
SAP BusinessObjects Persistent Cross Site Scripting
2014-10-09
SAP Business Objects Information Disclosure Via CORBA
2014-10-09
DrayTek VigorACS SI 1.3.0 File Write / LFI / File Upload
2014-10-09
Wordpress InfusionSoft Upload
2014-10-09
BMC Track-it! Remote Code Execution / SQL Injection
2014-10-09
OpenSSH 6.6 SFTP Misconfiguration Proof Of Concept
2014-10-09
Linux Kernel 3.16.1 FUSE Privilege Escalation
2014-10-09
DrayTek VigorACS SI 1.3.0 - Multiple Vulnerabilities
2014-10-09
Linux Kernel 3.16.1 - Remount FUSE Exploit
CVE-2014-5207
2014-10-09
Nessus Web UI 2.3.3 - Stored XSS
CVE-2014-7280
2014-10-09
F5 iControl Remote Root Command Execution
CVE-2014-2928
2014-10-09
Rejetto HttpFileServer Remote Command Execution
CVE-2014-6287
2014-10-09
Wordpress InfusionSoft Plugin - Upload Vulnerability
CVE-2014-6446
2014-10-09
BMC Track-It! - Multiple Vulnerabilities
CVE-2014-4872
2014-10-09
e-Commerce Vision Design Group Code injection Vulnerability
2014-10-09
OpenSSH 6.6 SFTP Misconfiguration remote code execution PoC
2014-10-09
Linux Kernel 3.16.1 FUSE Privilege Escalation Exploit
CVE-2014-5207
2014-10-09
Wordpress InfusionSoft Upload Exploit
CVE-2014-6446
2014-10-09
F5 iControl Remote Root Command Execution Exploit
CVE-2014-2928
2014-10-09
Rejetto HttpFileServer Remote Command Execution Exploit
CVE-2014-6287
2014-10-09
Nessus Web UI 2.3.3 Cross Site Scripting Vulnerability
CVE-2014-7280
2014-10-09
WordPress Backup plugin Ready! Arbitrary File Download Vulnerability
2014-10-09
Google Android Browser - Bypass& Persistent Vulnerability
2014-10-08
PayPal Inc BB #96 - Persistent Tags Vulnerability
2014-10-08
Toast Forums Database Disclosure
2014-10-08
Snitz Forums 2000 3.4.07 Database Disclosure
2014-10-08
Asx To MP3 2.7.5 Stack Buffer Overflow
2014-10-08
CPUMiner Stack Overflow
2014-10-08
Nessus Web UI 2.3.3 Cross Site Scripting
2014-10-08
Bugzilla Account Creation / XSS / Information Leak
2014-10-08
Creative Contact Form - Arbitrary File Upload
2014-10-08
PayPal Inc Multiple Persistent Vulnerabilities
2014-10-07
OpenSSL RSA 1024 bits implementation broken
2014-10-07
PayPal Here Cross Site Scripting
2014-10-07
AutoWeb 3.0 SQL Injection
2014-10-07
Allomani Weblinks 1.0 Cross Site Scripting / SQL Injection
2014-10-07
Epicor Procurement SQL Injection
2014-10-07
CA Technologies GNU Bash Shellshock
2014-10-07
Postfix SMTP Shellshock
2014-10-07
Apache mod_cgi Remote Command Execution (python)
2014-10-07
Asx to Mp3 2.7.5 - Stack Overflow
CVE-2009-1324
2014-10-07
HttpCombiner ASP.NET - Remote File Disclosure Vulnerability
2014-10-07
Asx to Mp3 2.7.5 - Stack Overflow Exploit
2014-10-07
Microsoft Yammer - Bypass & Persistent Vulnerabilities
2014-10-06
HTTP Commander AJS 3.1.9 Exception Cross Site Scripting
2014-10-06
Ultra Electronics SSL VPN 7.2.0.19 / 7.4.0.7 SQL Injection / Directory Creation
2014-10-06
ElfChat 5.2.0 Pro Cross Site Scripting
2014-10-06
Elasticsearch 1.3.x CORS Issue
2014-10-06
ZyXEL SBG-3300 Security Gateway Cross Site Scripting
2014-10-06
ZyXEL SBG-3300 Security Gateway Denial Of Service
2014-10-06
Shellshock Bashed CGI RCE Metasploit
2014-10-06
PayPal France Mail Encoding Script Insertion
2014-10-06
WordPress BulletProof Security 50.8 Script Insertion
2014-10-06
Rss aggregator 2.0 Upload Shell
2014-10-06
Postfix SMTP - Shellshock Exploit
CVE-2014-3659
2014-10-06
Apache mod_cgi - Remote Exploit (Shellshock)
2014-10-06
Ultra Electronics 7.2.0.19 and 7.4.0.7 - Multiple Vulnerabilities
2014-10-06
Bash - CGI RCE (MSF) Shellshock Exploit
CVE-2014-3659
2014-10-06
XAMPP 1.8.x Multiple Vulnerabilities
2014-10-06
ZyXEL SBG-3300 Security Gateway Cross Site Scripting Vulnerability
CVE-2014-7277
2014-10-05
ZyXEL SBG-3300 Security Gateway Denial Of Service Vulnerability
CVE-2014-7278
2014-10-05
OpenVPN 2.2.29 - ShellShock Exploit
CVE-2014-3659
2014-10-04
RBS Change Complet Open Source Cross Site Request Forgery
2014-10-03
Kolibri Webserver 2.0 Buffer Overflow
2014-10-03
AllMyVisitors 0.5.0 SQL Injection
2014-10-03
HTTP File Server 2.3a / 2.3b / 2.3c Remote Command Execution
2014-10-03
GNU Bash 4.3.11 dhclient Shellshocker
2014-10-03
Bacula-Web 5.2.10 SQL Injection Vulnerability
2014-10-03
PayPal Inc #90 PM - Buffer Overflow Vulnerability
2014-10-02
Textpattern 4.5.5 Cross Site Scripting
2014-10-02
Bash Me Some More
2014-10-02
WordPress Photo Gallery 1.1.30 Cross Site Scripting
2014-10-02
TestLink 1.9.11 SQL Injection
2014-10-02
Epicor Password Disclosure / Cross Site Scripting
2014-10-02
PHPCompta/NOALYSS 6.7.1 5638 Remote Command Execution
2014-10-02
WordPress Content Audit 1.6 Blind SQL Injection
2014-10-02
PXE Exploit Server
2014-10-02
FreePBX Authentication Bypass / Account Creation
2014-10-02
Honeywell Falcon Administrative Bypass
2014-10-02
TeamSpeak Client 3.0.14 - Buffer Overflow Vulnerability
CVE-2014-7221
2014-10-02
ManageEngine OpManager / Social IT Arbitrary File Upload
CVE-2014-6034
2014-10-02
HP Network Node Manager I PMD Buffer Overflow
CVE-2014-2624
2014-10-02
Moab < 7.2.9 - Authorization Bypass
CVE-2014-5300
2014-10-02
Epicor Enterprise 7.4 - Multiple Vulnerabilities
CVE-2014-4311
2014-10-02
TestLink 1.9.11 - Multiple SQL Injection Vulnerabilities
CVE-2014-5308
2014-10-02
Pure-FTPd External Authentication Bash Environment Variable Code Injection
CVE-2014-3659
2014-10-02
PHPCompta/NOALYSS 6.7.1 5638 - Remote Command Execution
CVE-2014-6389
2014-10-02
GNU bash 4.3.11 Environment Variable dhclient Exploit
CVE-2014-3659
2014-10-02
RBS Change Complet Open Source 3.6.8 - CSRF Vulnerability
2014-10-02
Kolibri Webserver 2.0 - Buffer Overflow with EMET 5.0 and EMET 4.1 Partial Bypass
CVE-2014-5289
2014-10-02
All In One Wordpress Firewall 3.8.3 - Persistent XSS Vulnerability
2014-10-02
Rejetto HTTP File Server (HFS) 2.3a, 2.3b, 2.3c - Remote Command Execution
CVE-2014-7226
2014-10-02
Bacula-Web 5.2.10 (joblogs.php jobid param) - SQL Injection
CVE-2014-8295
2014-10-02
RBS Change Complet Open Source 3.6.8 - CSRF Vulnerability
2014-10-02
HTTP File Server 2.3a, 2.3b, 2.3c - Remote Command Execution Vulnerability
CVE-2014-7226
2014-10-02
PHPCompta / NOALYSS 6.7.1 5638 - Remote Command Execution Vulnerability
CVE-2014-6389
2014-10-02
Textpattern 4.5.5 Cross Site Scripting Vulnerability
CVE-2014-4737
2014-10-02
WordPress Photo Gallery 1.1.30 Cross Site Scripting Vulnerability
CVE-2014-6315
2014-10-02
WordPress Content Audit 1.6 Blind SQL Injection Vulnerability
CVE-2014-5389
2014-10-02
Kolibri Webserver 2.0 Buffer Overflow with EMET 5.0 and EMET 4.1 Partial Bypass Exploit
CVE-2014-5289
2014-10-02
HP Network Node Manager I PMD Buffer Overflow Exploit
CVE-2014-2624
2014-10-02
Pure-FTPd External Authentication Bash Environment Variable Code Injection Exploit
CVE-2014-6271
2014-10-02
HTTP Commander v3.1.9 - CS Exception Vulnerability
2014-10-01
PayPal Bill Later Mail Encoding Cross Site Scripting
2014-10-01
PayPal Service Manager Script Insertion
2014-10-01
Bacula-web 5.2.10 SQL Injection
2014-10-01
Outlook Web App (OWA) / Client Access Server (CAS) IIS HTTP Internal IP Disclosure
2014-10-01
Internet Explorer 8 Fixed Col Span ID Full ASLR, DEP, And EMET 5.0 Bypass
2014-10-01
AllMyGuests 0.4.1 XSS / SQL Injection / Insecure Cookie Handling
2014-10-01
GNU Bash 4.3 Command Injection
2014-10-01
WordPress All In One Security And Firewall 3.8.3 XSS
2014-10-01
TP-Link "2-series" switches, all TP-Link VxWorks-based product Multiple vulnerabilities
2014-10-01
IPFire Cgi Web Interface Authenticated Bash Environment Variable Code Injection Exploit
CVE-2014-3659
2014-10-01
ManageEngine OpManager / Social IT Arbitrary File Upload Exploit
CVE-2014-6034
2014-10-01
Adobe Flash 14.0.0.145 copyPixelsToByteArray() Heap Overflow
CVE-2014-0556
2014-10-01
BulletProof Security WP v50.8 - POST Inject Vulnerability
2014-09-30
Moab Workload Manage Insecure Message Signing Authentication Bypass Vulnerability
CVE-2014-5376
2014-09-30
Moab Workload Manage 7.2.9 / 8 Dynamic Configuration Authentication Bypass Vulnerability
CVE-2014-5300
2014-09-30
Moab Workload Manage 7.2.9 / 8 User Impersonation Vulnerability
CVE-2014-5375
2014-09-30
IPFire <= 2.15 core 82 Authenticated cgi Remote Command Injection Exploit
2014-09-30
Microsoft Pillar - Client Side SWF Cross Site Vulnerability
2014-09-29
All In One Wordpress FW 3.8.3 - Persistent Vulnerability
2014-09-29
PayPal Inc BB #53 - Multiple Persistent Vulnerabilities
2014-09-29
DHCP Client Bash Environment Variable Code Injection
2014-09-29
Comersus Sophisticated Cart Database Disclosure
2014-09-29
Exinda WAN Optimization Suite 7.0.0 CSRF / XSS
2014-09-29
Typo3 JobControl 2.14.0 Cross Site Scripting / SQL Injection
2014-09-29
ShellShock dhclient Bash Environment Variable Command Injection PoC
2014-09-29
Microsoft Internet Explorer 8 - Fixed Col Span ID Full ASLR, DEP & EMET 5.0 Bypass (MS12-037)
CVE-2012-1876
2014-09-29
OpenFiler 2.99.1 - CSRF Vulnerability
CVE-2014-7190
2014-09-29
Microsoft Exchange IIS HTTP Internal IP Address Disclosure
2014-09-29
GS Foto Uebertraeger 3.0 iOS - File Include Vulnerability
2014-09-29
WordPress Plugin Category and Page Icons Multiple Vulnerabilities
2014-09-29
PayPal Community Web Portal Cross Site Scripting
2014-09-28
PayPal Mail Encoding Script Insertion
2014-09-28
POSNIC 1.02 Directory Listing / File Upload
2014-09-28
Dhclient Bash Environment Variable Injection
2014-09-28
Nucom ADSL ADSLR5000UN ISP Credential Disclosure
2014-09-28
Gnu Bash 4.3 CGI Scan Remote Command Injection
2014-09-28
GS Foto Uebertraeger 3.0 iOS File Include Vulnerability
2014-09-28
SmarterTools Smarter Track 6-10 Information Disclosure
2014-09-28
NDBLOG 0.1 Cross Site Scripting / SQL Injection
2014-09-28
Get Simple CMS 3.3.3 Information Disclosure / XSS
2014-09-28
Apache mod_cgi Bash Environment Variable Code Injection
2014-09-28
Openfiler 2.99.1 Denial Of Service
2014-09-28
Oscommerce 2.3.4 XSS / HPP / File Inclusion
2014-09-28
Dhclient Bash Environment Variable Injection Exploit
CVE-2014-6271
2014-09-28
Exinda WAN Optimization Suite 7.0.0 CSRF / XSS Vulnerabilities
CVE-2014-7157
2014-09-28
Typo3 JobControl 2.14.0 - Cross-Site Scripting / SQL Injection
CVE-2014-7200
2014-09-27
Paypal Inc BB #30 - Bypass & Persistent Vulnerabilities
2014-09-26
All In One WP Security 3.8.2 SQL Injection
2014-09-26
bashedCgi Remote Command Execution
2014-09-26
LibVNCServer 0.9.9 Remote Code Execution / Denial Of Service
2014-09-26
Mac OS X VMWare Fusion Root Privilege Escalation
2014-09-26
Telerik ASP.NET AJAX RadEditor Control 2014.1.403.35 XSS
2014-09-26
Perl 5.20.1 Deep Recursion Stack Overflow
2014-09-26
Apache mod_cgi Bash Environment Variable Code Injection Exploit
CVE-2014-6271
2014-09-26
Typo3 JobControl 2.14.0 Cross Site Scripting / SQL Injection Vulnerability
2014-09-26
DHCP Client Bash Environment Variable Code Injection Exploit
CVE-2014-6271
2014-09-26
Nucom ADSL ADSLR5000UN ISP Credentials Disclosure Vulnerability
2014-09-26
PayPal Inc BB #70 FR - Persistent Mail Vulnerability
2014-09-25
HttpFileServer 2.3c Cross Site Scripting
2014-09-25
X2Engine CRM 4.2.1 Cross Site Scripting
2014-09-25
CMS AutoWeb 3.0 SQL Injection
2014-09-25
WS10 Data Server SCADA Exploit Overflow PoC
2014-09-25
ZyXEL Prestig P-660HNU-T1v2 Credential Disclosure
2014-09-25
Bash Code Injection Proof Of Concept
2014-09-25
GNU Bash Command Injection Exploit via CGI
2014-09-25
Bash - Environment Variables Code Injection Exploit (ShellShock)
CVE-2014-3659
2014-09-25
Wordpress All In One WP Security Plugin 3.8.2 - SQL Injection
CVE-2014-6242
2014-09-25
Nucom ADSL ADSLR5000UN ISP Credentials Disclosure
2014-09-25
Linux/x86 - Add map in /etc/hosts file
2014-09-25
GNU bash Environment Variable Command Injection (MSF)
CVE-2014-3659
2014-09-25
GNU Bash - Environment Variable Command Injection (ShellShock)
CVE-2014-3659
2014-09-25
Cart Engine 3.0 - Multiple Vulnerabilities
CVE-2014-8305
2014-09-25
OsClass 3.4.1 (index.php file param) - Local File Inclusion
CVE-2014-6308
2014-09-25
Wordpress Login Widget With Shortcode 3.1.1 - Multiple Vulnerabilities
CVE-2014-6312
2014-09-25
CMS AutoWeb 3.0 SQL Injection Vulnerability
2014-09-25
Mac OS X VMWare Fusion Root Privilege Escalation Exploit
CVE-2014-6271
2014-09-25
Perl 5.20.1 Deep Recursion Stack Overflow Vulnerability
CVE-2014-4330
2014-09-25
WordPress All In One WP Security Plugin 3.8.2 SQL Injection Vulnerability
CVE-2014-6242
2014-09-25
GNU bash Environment Variable Command Injection Exploit (MSF)
CVE-2014-6271
2014-09-25
Bash Environment Variables Code Injection Exploit
CVE-2014-6271
2014-09-25
GNU bash Environment Variable Command Injection Vulnerability
CVE-2014-6271
2014-09-25
OsClass 3.4.1 (index.php, file param) - Local File Inclusion Vulnerability
CVE-2014-6308
2014-09-25
PayPal Inc BB #71 PPM - Persistent Filter Vulnerability
2014-09-24
X2Engine <= 4.1.7 (FileUploadsFilter.php) Unrestricted File Upload Vulnerability
2014-09-24
X2Engine <= 4.1.7 (SiteController.php) PHP Object Injection Vulnerability
2014-09-24
Get Simple CMS 3.3.3 CSRF / XSS / Clickjacking
2014-09-24
Exploits/page:


Page:
1-4-2 (www01)