Exploit-Database.net

Exploits (Total: 94828)


Linux/x64 - Kill All Processes Shellcode (11 bytes)				2019-03-04
Linux/x86 - iptables -F Shellcode (43 bytes)				2019-03-04
Raisecom XPON ISCOMHT803G-U_2.0.0_140521_R4.1.47.002 - Remote Code Execution				2019-03-04
zzzphp CMS 1.6.1 - Cross-Site Request Forgery				2019-03-04
Splunk Enterprise 7.2.4 - Custom App RCE (Persistent Backdoor - Custom Binary Payload)				2019-03-04
Booked Scheduler 2.7.5 - Remote Command Execution (Metasploit)				2019-03-04
Microsoft Edge Chakra 1.11.4 - Read Permission via Type Confusion				2019-03-04
FileZilla 3.40.0 - 'Local search' / 'Local site' Denial of Service (PoC)				2019-03-04
OOP CMS BLOG 1.0 - Multiple Cross-Site Request Forgery				2019-03-04
OOP CMS BLOG 1.0 - Multiple SQL Injection				2019-03-04
elFinder 2.1.47 - Command Injection vulnerability in the PHP connector				2019-03-04
CMSsite 1.0 - Multiple Cross-Site Request Forgery				2019-03-04
Alcatel-Lucent (Nokia) GPON I-240W-Q - Buffer Overflow				2019-03-04
Cisco WebEx Meetings < 33.6.6 / < 33.9.1 - Privilege Escalation				2019-03-01
macOS XNU - Copy-on-Write Behavior Bypass via Mount of User-Owned Filesystem Image				2019-03-01
Linux < 4.14.103 / < 4.19.25 - Out-of-Bounds Read and Write in SNMP NAT Module				2019-03-01
tcpdump < 4.9.3 - Multiple Heap-Based Out-of-Bounds Reads				2019-03-01
Google Chrome < M72 - FileWriterImpl Use-After-Free				2019-03-01
Google Chrome < M72 - Use-After-Free in RenderProcessHostImpl Binding for P2PSocketDispatcherHost				2019-03-01
Google Chrome < M72 - RenderFrameHostImpl::CreateMediaStreamDispatcherHost Use-After-Free				2019-03-01
Google Chrome < M72 - PaymentRequest Service Use-After-Free				2019-03-01
Feng Office 3.7.0.5 - Remote Command Execution (Metasploit)				2019-02-28
TransMac 12.3 - Denial of Service (PoC)				2019-02-28
Usermin 1.750 - Remote Command Execution (Metasploit)				2019-02-28
Joomla! Component J2Store < 3.3.7 - SQL Injection				2019-02-28
WebKitGTK 2.23.90 / WebKitGTK+ 2.22.6 - Denial of Service				2019-02-28
FTP Server 1.32 - Denial of Service				2019-02-28
Simple Online Hotel Reservation System - Cross-Site Request Forgery (Delete Admin)				2019-02-28
Simple Online Hotel Reservation System - Cross-Site Request Forgery (Add Admin)				2019-02-28
Simple Online Hotel Reservation System - SQL Injection				2019-02-28
Drupal < 8.6.9 - REST Module Remote Code Execution				2019-02-25
Xlight FTP Server 3.9.1 - Buffer Overflow (PoC)				2019-02-25
Advance Gift Shop Pro Script 2.0.3 - SQL Injection				2019-02-25
News Website Script 2.0.5 - SQL Injection				2019-02-25
PHP Ecommerce Script 2.0.6 - Cross-Site Scripting / SQL Injection				2019-02-25
zzzphp CMS 1.6.1 - Remote Code Execution				2019-02-25
Jenkins Plugin Script Security 1.49/Declarative 1.3.4/Groovy 2.60 - Remote Code Execution				2019-02-25
Drupal < 8.6.10 / < 8.5.11 - REST Module Remote Code Execution				2019-02-23
Teracue ENC-400 - Command Injection / Missing Authentication				2019-02-22
Micro Focus Filr 3.4.0.217 - Path Traversal / Local Privilege Escalation				2019-02-22
Nuuo Central Management - Authenticated SQL Server SQL Injection (Metasploit)				2019-02-22
WebKit JSC - reifyStaticProperty Needs to set the PropertyAttribute::CustomAccessor flag for CustomGetterSetter				2019-02-22
Quest NetVault Backup Server < 11.4.5 - Process Manager Service SQL Injection / Remote Code Execution				2019-02-22
AirDrop 2.0 - Denial of Service (DoS)				2019-02-21
MikroTik RouterOS < 6.43.12 (stable) / < 6.42.12 (long-term) - Firewall and NAT Bypass				2019-02-21
ScreenStream 3.0.15 - Denial of Service				2019-02-21
Virtual VCR Max .0a - '.vcr' Buffer Overflow (PoC)				2019-02-21
RealTerm Serial Terminal 2.0.0.70 - 'Echo Port' Buffer Overflow (SEH)				2019-02-21
EI-Tube 3 - SQL Injection				2019-02-21
Valentina Studio 9.0.5 Linux - 'Host' Buffer Overflow (PoC)				2019-02-21

Exploits/page:

Page: