Exploit-Database.net

Exploits (Total: 96983)


vBulletin 5.1.2 < 5.1.9 - Unserialize Code Execution (Metasploit)				2020-08-23
Seowon SlC 130 Router - Remote Code Execution				2020-08-23
Complaint Management System 1.0 - 'cid' SQL Injection				2020-08-23
PNPSCADA 2.200816204020 - 'interf' SQL Injection (Authenticated)				2020-08-23
ElkarBackup 1.3.3 - Persistent Cross-Site Scripting				2020-08-23
Ruijie Networks Switch eWeb S29_RGOS 11.4 - Directory Traversal				2020-08-19
Savsoft Quiz 5 - Stored Cross-Site Scripting				2020-08-18
Pharmacy Medical Store and Sale Point 1.0 - 'catid' SQL Injection				2020-08-18
QiHang Media Web Digital Signage 3.0.9 - Remote Code Execution (Unauthenticated)				2020-08-17
QiHang Media Web Digital Signage 3.0.9 - Unauthenticated Arbitrary File Disclosure				2020-08-17
QiHang Media Web Digital Signage 3.0.9 - Unauthenticated Arbitrary File Deletion				2020-08-17
QiHang Media Web Digital Signage 3.0.9 - Cleartext Credential Disclosure				2020-08-17
Microsoft SharePoint Server 2019 - Remote Code Execution				2020-08-17
Bludit 3.9.2 - Authentication Bruteforce Mitigation Bypass				2020-08-17
GetSimple CMS Plugin Multi User 1.8.2 - Cross-Site Request Forgery (Add Admin)				2020-08-14
Artica Proxy 4.3.0 - Authentication Bypass				2020-08-14
vBulletin 5.6.2 - 'widget_tabbedContainer_tab_panel' Remote Code Execution				2020-08-14
CMS Made Simple 2.2.14 - Authenticated Arbitrary File Upload				2020-08-14
Fuel CMS 1.4.7 - 'col' SQL Injection (Authenticated)				2020-08-14
BarcodeOCR 19.3.6 - 'BarcodeOCR' Unquoted Service Path				2020-08-14
ManageEngine ADSelfService Build prior to 6003 - Remote Code Execution (Unauthenticated)				2020-08-14
Warehouse Inventory System 1.0 - Cross-Site Request Forgery (Change Admin Password)				2020-08-14
Daily Expenses Management System 1.0 - 'item' SQL Injection				2020-08-14
All-Dynamics Digital Signage System 2.0.2 - Cross-Site Request Forgery (Add Admin)				2020-08-14
CodeMeter 6.60 - 'CodeMeter.exe' Unquoted Service Path				2020-08-14
Victor CMS 1.0 - 'Search' SQL Injection				2020-08-14
Stock Management System 1.0 - Authentication Bypass				2020-08-14
QlikView 12.50.20000.0 - 'FTP Server Address' Denial of Service (PoC)				2020-08-14
ACTi NVR3 Standard or Professional Server 3.0.12.42 - Denial of Service (PoC)				2020-08-14
Daily Expenses Management System 1.0 - 'username' SQL Injection				2020-08-14
RTSP for iOS 1.0 - 'IP Address' Denial of Service (PoC)				2020-08-14
Mocha Telnet Lite for iOS 4.2 - 'User' Denial of Service (PoC)				2020-08-14
Pi-hole 4.3.2 - Remote Code Execution (Authenticated)				2020-08-14
Online Shopping Alphaware 1.0 - Authentication Bypass				2020-07-30
Wordpress Plugin Maintenance Mode by SeedProd 5.1.1 - Persistent Cross-Site Scripting				2020-07-29
Cisco Adaptive Security Appliance Software 9.7 - Unauthenticated Arbitrary File Deletion				2020-07-29
Cisco Adaptive Security Appliance Software 9.11 - Local File Inclusion				2020-07-29
eGroupWare 1.14 - 'spellchecker.php' Remote Command Execution				2020-07-29
docPrint Pro 8.0 - 'Add URL' Buffer Overflow (SEH Egghunter)				2020-07-29
Windows/x86 - Download using mshta.exe Shellcode (100 bytes)				2020-07-29
Rails 5.0.1 - Remote Code Execution				2020-07-29
Virtual Airlines Manager 2.6.2 - Persistent Cross-Site Scripting				2020-07-29
pfSense 2.4.4-p3 - Cross-Site Request Forgery				2020-07-29
Socket.io-file 2.0.31 - Arbitrary File Upload				2020-07-29
Sickbeard 0.1 - Cross-Site Request Forgery (Disable Authentication)				2020-07-29
F5 Big-IP 13.1.3 Build 0.0.6 - Local File Inclusion				2020-07-29
Webtareas 2.1p - Arbitrary File Upload (Authenticated)				2020-07-29
Bio Star 2.8.2 - Local File Inclusion				2020-07-29
PandoraFMS 7.0 NG 746 - Persistent Cross-Site Scripting				2020-07-29
Koken CMS 0.22.24 - Arbitrary File Upload (Authenticated)				2020-07-29

Exploits/page:

Page: