Exploits (Total: 96658)

    
    
    
Pandora FMS - Ping Authenticated Remote Code Execution (Metasploit)
2020-04-18
ThinkPHP - Multiple PHP Injection RCEs (Metasploit)
2020-04-18
Liferay Portal - Java Unmarshalling via JSONWS RCE (Metasploit)
2020-04-18
TP-Link Archer A7/C7 - Unauthenticated LAN Remote Code Execution (Metasploit)
2020-04-18
BlazeDVD 7.0.2 - Buffer Overflow (SEH)
2020-04-15
Xeroneit Library Management System 3.0 - 'category' SQL Injection
2020-04-15
File Transfer iFamily 2.1 - Directory Traversal
2020-04-15
DedeCMS 7.5 SP2 - Persistent Cross-Site Scripting
2020-04-15
Macs Framework 1.14f CMS - Persistent Cross-Site Scripting
2020-04-15
SeedDMS 5.1.18 - Persistent Cross-Site Scripting
2020-04-15
Pinger 1.0 - Remote Code Execution
2020-04-15
SuperBackup 2.0.5 for iOS - Persistent Cross-Site Scripting
2020-04-15
AirDisk Pro 5.5.3 for iOS - Persistent Cross-Site Scripting
2020-04-15
Oracle WebLogic Server 12.2.1.4.0 - Remote Code Execution
2020-04-14
WSO2 3.1.0 - Persistent Cross-Site Scripting
2020-04-14
Edimax Technology EW-7438RPn-v3 Mini 1.27 - Remote Code Execution
2020-04-14
B64dec 1.1.2 - Buffer Overflow (SEH Overflow + Egg Hunter)
2020-04-14
MOVEit Transfer 11.1.1 - 'token' Unauthenticated SQL Injection
2020-04-13
Wordpress Plugin Media Library Assistant 2.81 - Local File Inclusion
2020-04-13
Free Desktop Clock x86 Venetian Blinds Zipper 3.0 - Unicode Stack Overflow (SEH)
2020-04-13
WSO2 3.1.0 - Arbitrary File Delete
2020-04-13
Webtateas 2.0 - Arbitrary File Read
2020-04-13
TVT NVMS 1000 - Directory Traversal
2020-04-13
Huawei HG630 2 Router - Authentication Bypass
2020-04-13
Zen Load Balancer 3.10.1 - 'index.cgi' Directory Traversal
2020-04-10
Windscribe 1.83 - 'WindscribeService' Unquoted Service Path
2020-04-10
AbsoluteTelnet 11.12 - 'SSH1/username' Denial of Service (PoC)
2020-04-10
Amcrest Dahua NVR Camera IP2M-841 - Denial of Service (PoC)
2020-04-08
Django 3.0 - Cross-Site Request Forgery Token Bypass
2020-04-08
dnsmasq-utils 2.79-1 - 'dhcp_release' Denial of Service (PoC)
2020-04-07
ZOC Terminal 7.25.5 - 'Script' Denial of Service (PoC)
2020-04-07
pfSense 2.4.4-P3 - 'User Manager' Persistent Cross-Site Scripting
2020-04-06
Microsoft NET USE win10 - Insufficient Authentication Logic
2020-04-06
LimeSurvey 4.1.11 - 'File Manager' Path Traversal
2020-04-06
Bolt CMS 3.7.0 - Authenticated Remote Code Execution
2020-04-06
WhatsApp Desktop 0.3.9308 - Persistent Cross-Site Scripting
2020-04-06
Vesta Control Panel 0.9.8-26 - Authenticated Remote Code Execution (Metasploit)
2020-04-06
Triologic Media Player 8 - '.m3l' Buffer Overflow (Unicode) (SEH)
2020-04-06
ZOC Terminal v7.25.5 - 'Private key file' Denial of Service (PoC)
2020-04-06
UltraVNC Viewer 1.2.4.0 - 'VNCServer' Denial of Service (PoC)
2020-04-06
UltraVNC Launcher 1.2.4.0 - 'Password' Denial of Service (PoC)
2020-04-06
LimeSurvey 4.1.11 - 'Survey Groups' Persistent Cross-Site Scripting
2020-04-06
UltraVNC Launcher 1.2.4.0 - 'RepeaterHost' Denial of Service (PoC)
2020-04-06
Frigate 3.36 - Denial of Service (PoC)
2020-04-06
Nsauditor 3.2.0.0 - 'Name' Denial of Service (PoC)
2020-04-06
SpotAuditor 5.3.4 - 'Name' Denial of Service (PoC)
2020-04-06
Product Key Explorer 4.2.2.0 - 'Key' Denial of Service (PoC)
2020-04-06
Memu Play 7.1.3 - Insecure Folder Permissions
2020-04-06
AIDA64 Engineer 6.20.5300 - 'Report File' filename Buffer Overflow (SEH)
2020-04-03
Pandora FMS 7.0NG - 'net_tools.php' Remote Code Execution
2020-04-03
DiskBoss 7.7.14 - 'Input Directory' Local Buffer Overflow (PoC)
2020-04-02
10Strike LANState 9.32 - 'Force Check' Buffer Overflow (SEH)
2020-04-01
DiskBoss 7.7.14 - Denial of Service (PoC)
2020-04-01
SharePoint Workflows - XOML Injection (Metasploit)
2020-03-31
DLINK DWL-2600 - Authenticated Remote Command Injection (Metasploit)
2020-03-31
IBM TM1 / Planning Analytics - Unauthenticated Remote Code Execution (Metasploit)
2020-03-31
Redis - Replication Code Execution (Metasploit)
2020-03-31
Grandstream UCM6200 Series WebSocket 1.0.20.20 - 'user_password' SQL Injection
2020-03-31
Grandstream UCM6200 Series CTI Interface - 'user_password' SQL Injection
2020-03-31
FlashFXP 4.2.0 Build 1730 - Denial of Service (PoC)
2020-03-31
Multiple DrayTek Products - Pre-authentication Remote Root Code Execution
2020-03-30
Microsoft Windows 10 (1903/1909) - 'SMBGhost' SMB3.1.1 'SMB2_COMPRESSION_CAPABILITIES' Local Privilege Escalation
2020-03-30
Zen Load Balancer 3.10.1 - Remote Code Execution
2020-03-30
10-Strike Network Inventory Explorer 9.03 - 'Read from File' Buffer Overflow (SEH)(ROP)
2020-03-30
Joomla! com_fabrik 3.9.11 - Directory Traversal
2020-03-30
Odin Secure FTP Expert 7.6.3 - 'Site Info' Denial of Service (PoC)
2020-03-30
rConfig 3.9.4 - 'searchField' Unauthenticated Root Remote Code Execution
2020-03-27
Jinfornet Jreport 15.6 - Unauthenticated Directory Traversal
2020-03-27
Everest 5.50.2100 - 'Open File' Denial of Service (PoC)
2020-03-27
ECK Hotel 1.0 - Cross-Site Request Forgery (Add Admin)
2020-03-27
Easy RM to MP3 Converter 2.7.3.700 - 'Input' Local Buffer Overflow (SEH)
2020-03-27
Centreo 19.10.8 - 'DisplayServiceStatus' Remote Code Execution
2020-03-26
TP-Link Archer C50 3 - Denial of Service (PoC)
2020-03-26
10-Strike Network Inventory Explorer 8.54 - 'Add' Local Buffer Overflow (SEH)
2020-03-25
Windows/x64 - WinExec Add-Admin Dynamic Null-Free Shellcode (210 Bytes)
2020-03-25
10-Strike Network Inventory Explorer - 'srvInventoryWebServer' Unquoted Service Path
2020-03-25
LeptonCMS 4.5.0 - Persistent Cross-Site Scripting
2020-03-25
AVAST SecureLine 5.5.522.0 - 'SecureLine' Unquoted Service Path
2020-03-25
Joomla! Component GMapFP 3.30 - Arbitrary File Upload
2020-03-25
UCM6202 1.0.18.13 - Remote Command Injection
2020-03-24
Veyon 4.3.4 - 'VeyonService' Unquoted Service Path
2020-03-24
Wordpress Plugin WPForms 1.5.9 - Persistent Cross-Site Scripting
2020-03-24
UliCMS 2020.1 - Persistent Cross-Site Scripting
2020-03-24
Linux\x86 - 'reboot' polymorphic Shellcode (26 bytes)
2020-03-23
Joomla! com_hdwplayer 4.2 - 'search.php' SQL Injection
2020-03-23
rConfig 3.9.4 - 'search.crud.php' Remote Command Injection
2020-03-23
FIBARO System Home Center 5.021 - Remote File Include
2020-03-23
CyberArk PSMP 10.9.1 - Policy Restriction Bypass
2020-03-23
Google Chrome 80.0.3987.87 - Heap-Corruption Remote Denial of Service (PoC)
2020-03-23
ProficySCADA for iOS 5.0.25920 - 'Password' Denial of Service (PoC)
2020-03-23
VMware Fusion 11.5.2 - Privilege Escalation
2020-03-20
Exagate Sysguard 6001 - Cross-Site Request Forgery (Add Admin)
2020-03-20
Broadcom Wi-Fi Devices - 'KR00K Information Disclosure
2020-03-19
VMWare Fusion - Local Privilege Escalation
2020-03-18
Microsoft VSCode Python Extension - Code Execution
2020-03-18
Windows\x64 - Dynamic MessageBoxA or MessageBoxW PEB & Import Table Method Shellcode (232 bytes)
2020-03-18
Microtik SSH Daemon 6.44.3 - Denial of Service (PoC)
2020-03-18
NetBackup 7.0 - 'NetBackup INET Daemon' Unquoted Service Path
2020-03-18
Netlink GPON Router 1.0.11 - Remote Code Execution
2020-03-18
ManageEngine Desktop Central - Java Deserialization (Metasploit)
2020-03-17
Exploits/page:


Page:
1-4-2 (www01)