Exploit-Database.net

Exploits (Total: 97857)


Pharmacy Store Management System 1.0 - 'id' SQL Injection				2020-12-02
ILIAS Learning Management System 4.3 - SSRF				2020-12-02
aSc TimeTables 2021.6.2 - Denial of Service (PoC)				2020-12-02
Expense Management System - 'description' Stored Cross Site Scripting				2020-12-02
Tendenci 12.3.1 - CSV/ Formula Injection				2020-12-01
Intel(r) Management and Security Application 5.2 - User Notification Service Unquoted Service Path				2020-12-01
Pearson Vue VTS 2.3.1911 Installer - VUEApplicationWrapper Unquoted Service Path				2020-12-01
Global Registration Service 1.0.0.3 - 'GREGsvc.exe' Unquoted Service Path				2020-12-01
EPSON Status Monitor 3 'EPSON_PM_RPCV4_06' - Unquoted Service Path				2020-12-01
Social Networking Site - Authentication Bypass (SQli)				2020-12-01
Pandora FMS 7.0 NG 749 - Multiple Persistent Cross-Site Scripting Vulnerabilities # Date: 11-14-2020				2020-12-01
Medical Center Portal Management System 1.0 - 'login' SQL Injection				2020-12-01
LEPTON CMS 4.7.0 - 'URL' Persistent Cross-Site Scripting				2020-12-01
Tailor Management System 1.0 - Unrestricted File Upload to Remote Code Execution				2020-12-01
Multi Restaurant Table Reservation System 1.0 - Multiple Persistent XSS				2020-12-01
10-Strike Network Inventory Explorer 8.65 - Buffer Overflow (SEH)				2020-12-01
Setelsa Conacwin 3.7.1.2 - Local File Inclusion				2020-12-01
Pharmacy/Medical Store & Sale Point 1.0 - 'email' SQL Injection				2020-12-01
Online Shopping Alphaware 1.0 - Error Based SQL injection				2020-12-01
Wordpress Plugin EventON Calendar 3.0.5 - Reflected Cross-Site Scripting				2020-12-01
Joomla! Component GMapFP 3.5 - Unauthenticated Arbitrary File Upload				2020-12-01
TypeSetter 5.1 - CSRF (Change admin e-mail)				2020-12-01
YATinyWinFTP - Denial of Service (PoC)				2020-11-30
Intelbras Router RF 301K 1.1.2 - Authentication Bypass				2020-11-30
Rejetto HttpFileServer 2.3.x - Remote Command Execution (3)				2020-11-30
ATX MiniCMTS200a Broadband Gateway 2.0 - Credential Disclosure				2020-11-30
Best Support System 3.0.4 - 'ticket_body' Persistent XSS (Authenticated)				2020-11-27
ElkarBackup 1.3.3 - 'Policy[name]' and 'Policy[Description]' Stored Cross-site Scripting				2020-11-27
libupnp 1.6.18 - Stack-based buffer overflow (DoS)				2020-11-27
House Rental 1.0 - 'keywords' SQL Injection				2020-11-27
Foxit Reader 9.0.1.1049 - Arbitrary Code Execution				2020-11-27
Wordpress Theme Accesspress Social Icons 1.7.9 - SQL injection (Authenticated)				2020-11-27
Moodle 3.8 - Unrestricted File Upload				2020-11-27
Acronis Cyber Backup 12.5 Build 16341 - Unauthenticated SSRF				2020-11-27
FrozenNode Laravel-Administrator 4 - Unrestricted File Upload (Authenticated)				2020-11-27
Ruckus IoT Controller (Ruckus vRIoT) 1.5.1.0.21 - Remote Code Execution				2020-11-27
WonderCMS 3.1.3 - 'uploadFile' Stored Cross-Site Scripting				2020-11-27
SAP Lumira 1.31 - Stored Cross-Site Scripting				2020-11-27
Wordpress Theme Wibar 1.1.8 - 'Brand Component' Stored Cross Site Scripting				2020-11-27
Razer Chroma SDK Server 3.16.02 - Race Condition Remote File Execution				2020-11-26
Pure-FTPd 1.0.48 - Remote Denial of Service				2020-11-26
SyncBreeze 10.0.28 - 'password' Remote Buffer Overflow				2020-11-25
osCommerce 2.3.4.1 - 'title' Persistent Cross-Site Scripting				2020-11-25
WonderCMS 3.1.3 - 'page' Persistent Cross-Site Scripting				2020-11-25
Wondershare Driver Install Service help 10.7.1.321 - 'ElevationService' Unquote Service Path				2020-11-25
OpenCart 3.0.3.6 - 'subject' Stored Cross-Site Scripting				2020-11-24
OpenCart 3.0.3.6 - 'Profile Image' Stored Cross Site Scripting (Authenticated)				2020-11-24
Seowon 130-SLC router 1.0.11 - 'ipAddr' RCE (Authenticated)				2020-11-24
ZeroShell 3.9.0 - 'cgi-bin/kerbynet' Remote Root Command Injection (Metasploit)				2020-11-24
Apache OpenMeetings 5.0.0 - 'hostname' Denial of Service				2020-11-24

Exploits/page:

Page: