Exploits (Total: 98730)

    
    
    
jQuery UI 1.12.1 - Denial of Service (DoS)
2021-01-28
Umbraco CMS 7.12.4 - Remote Code Execution (Authenticated)
2021-01-28
Fuel CMS 1.4.1 - Remote Code Execution (2)
2021-01-28
OpenEMR 5.0.1 - Remote Code Execution (Authenticated) (2)
2021-01-28
CMSUno 1.6.2 - 'lang/user' Remote Code Execution (Authenticated)
2021-01-28
EgavilanMedia PHPCRUD 1.0 - 'Full Name' Stored Cross Site Scripting
2021-01-28
Openlitespeed Web Server 1.7.8 - Command Injection (Authenticated)
2021-01-27
STVS ProVision 5.9.10 - Cross-Site Request Forgery (Add Admin)
2021-01-27
STVS ProVision 5.9.10 - File Disclosure (Authenticated)
2021-01-27
Oracle WebLogic Server 12.2.1.0 - RCE (Unauthenticated)
2021-01-26
Tenda AC5 AC1200 Wireless - 'WiFi Name & Password' Stored Cross Site Scripting
2021-01-26
Simple College Website 1.0 - 'full' Stored Cross Site Scripting
2021-01-26
Simple College Website 1.0 - 'name' Sql Injection (Authentication Bypass)
2021-01-26
Cemetry Mapping and Information System 1.0 - 'user_email' Sql Injection (Authentication Bypass)
2021-01-26
Klog Server 2.4.1 - Unauthenticated Command Injection (Metasploit)
2021-01-25
Linux/x64 - Bind_tcp (0.0.0.0:4444) + Password (12345678) + Shell (/bin/sh) Shellcode (142 bytes)
2021-01-25
Library System 1.0 - 'category' SQL Injection
2021-01-25
CASAP Automated Enrollment System 1.0 - 'route' Stored XSS
2021-01-25
CASAP Automated Enrollment System 1.0 - 'First Name' Stored XSS
2021-01-25
Collabtive 3.1 - 'address' Persistent Cross-Site Scripting
2021-01-25
MyBB Timeline Plugin 1.0 - Cross-Site Scripting / CSRF
2021-01-25
Windows/x86 - Stager Generic MSHTA Shellcode (143 bytes)
2021-01-22
Atlassian Confluence Widget Connector Macro - SSTI
2021-01-22
ERPNext 12.14.0 - SQL Injection (Authenticated)
2021-01-22
CASAP Automated Enrollment System 1.0 - Authentication Bypass
2021-01-22
Library System 1.0 - Authentication Bypass Via SQL Injection
2021-01-22
Oracle WebLogic Server 14.1.1.0 - RCE (Authenticated)
2021-01-22
Selea Targa IP OCR-ANPR Camera - 'addr' Remote Code Execution (Unauthenticated)
2021-01-22
Selea Targa IP OCR-ANPR Camera - RTP/RTSP/M-JPEG Stream Disclosure (Unauthenticated)
2021-01-22
Selea Targa IP OCR-ANPR Camera - CSRF Add Admin
2021-01-22
Selea Targa IP OCR-ANPR Camera - Multiple SSRF (Unauthenticated)
2021-01-22
Selea Targa IP OCR-ANPR Camera - Directory Traversal File Disclosure (Unauthenticated)
2021-01-22
Selea Targa IP OCR-ANPR Camera - Developer Backdoor Config Overwrite
2021-01-22
Selea Targa IP OCR-ANPR Camera - 'files_list' Remote Stored XSS
2021-01-22
Selea CarPlateServer (CPS) 4.0.1.6 - Local Privilege Escalation
2021-01-22
Selea CarPlateServer (CPS) 4.0.1.6 - Remote Program Execution
2021-01-22
Anchor CMS 0.12.7 - CSRF (Delete user)
2021-01-21
Wordpress Plugin Simple Job Board 2.9.3 - Authenticated File Read (Metasploit)
2021-01-21
Nagios XI 5.7.5 - Multiple Persistent Cross-Site Scripting
2021-01-21
Apartment Visitors Management System 1.0 - 'email' SQL Injection
2021-01-21
Online Documents Sharing Platform 1.0 - 'user' SQL Injection
2021-01-21
Linux/x86 - Socat Bind Shellcode (113 bytes)
2021-01-20
Voting System 1.0 - File Upload RCE (Authenticated Remote Code Execution)
2021-01-20
Oracle Business Intelligence Enterprise Edition 11.1.1.7.140715 - Stored XSS
2021-01-20
ChurchRota 2.6.4 - RCE (Authenticated)
2021-01-20
Linux/x64 - Reverse (127.1.1.1:4444) Shell (/bin/sh) Shellcode (123 Bytes)
2021-01-19
osTicket 1.14.2 - SSRF
2021-01-19
Life Insurance Management System 1.0 - File Upload RCE (Authenticated)
2021-01-18
Life Insurance Management System 1.0 - 'client_id' SQL Injection
2021-01-18
Inteno IOPSYS 3.16.4 - root filesystem access via sambashare (Authenticated)
2021-01-18
Exploits/page:


Page:
1-4-2 (www01)