Exploit-Database.net

Exploits (Total: 97710)


MyBB My Arcade Plugin 1.3 - Cross-Site Scripting				2018-02-27
Schools Alert Management Script 2.0.2 - Authentication Bypass				2018-02-27
Asterisk chan_pjsip 15.2.0 - 'SUBSCRIBE' Stack Corruption				2018-02-27
Asterisk chan_pjsip 15.2.0 - 'SDP fmtp' Denial of Service				2018-02-27
Asterisk chan_pjsip 15.2.0 - 'SDP' Denial of Service				2018-02-27
Asterisk chan_pjsip 15.2.0 - 'INVITE' Denial of Service				2018-02-27
Chrome V8 - 'TranslatedState::MaterializeCapturedObjectAt' Type Confusion				2018-02-27
Chrome V8 - 'PropertyArray' Integer Overflow				2018-02-27
transmission - Integer Overflows Parsing Torrent Files				2018-02-27
Sony Playstation 4 4.55 FW - Local Kernel				2018-02-27
AsusWRT LAN - Unauthenticated Remote Code Execution (Metasploit)				2018-02-26
CloudMe Sync 1.10.9 - Stack-Based Buffer Overflow (Metasploit)				2018-02-26
Disk Savvy Enterprise 10.4.18 - Stack-Based Buffer Overflow (Metasploit)				2018-02-26
Groupon Clone Script 3.0.2 - Cross-Site Scripting				2018-02-22
Alibaba Clone Script 1.0.2 - Cross-Site Scripting				2018-02-22
Learning and Examination Management System - Cross-Site Scripting				2018-02-22
Armadito Antivirus 0.12.7.2 - Detection Bypass				2018-02-22
NoMachine x64 < 6.0.80 - 'nxfuse' Privilege Escalation				2018-02-22
NoMachine x86 < 6.0.80 - 'nxfuse' Privilege Escalation				2018-02-22
Joomla! Component OS Property Real Estate 3.12.7 - SQL Injection				2018-02-22
Joomla! Component Proclaim 9.1.1 - Arbitrary File Upload				2018-02-22
Joomla! Component CheckList 1.1.1 - SQL Injection				2018-02-22
Joomla! Component Alexandria Book Library 3.1.2 - 'letter' SQL Injection				2018-02-22
Joomla! Component Ek Rishta 2.9 - SQL Injection				2018-02-22
Joomla! Component PrayerCenter 3.0.2 - 'sessionid' SQL Injection				2018-02-22
Trend Micro Email Encryption Gateway 5.5 (Build 1111.00) - Multiple Vulnerabilities				2018-02-22
Joomla! Component Proclaim 9.1.1 - Backup File Download				2018-02-22
Joomla! Component CW Tags 2.0.6 - SQL Injection				2018-02-22
Weblication CMS Core & Grid v12.6.24 - XSS Vulnerabilities				2018-02-21
Disk Pulse Enterprise 10.4.18 - 'Import Command' Buffer Overflow (SEH)				2018-02-21
Disk Savvy Enterprise 10.4.18 - Buffer Overflow (SEH)				2018-02-21
EChat Server 3.1 - 'CHAT.ghp' Buffer Overflow				2018-02-21
Wavpack 5.1.0 - Denial of Service				2018-02-21
utorrent - JSON-RPC Remote Code Execution / Information Disclosure Vulnerabilities				2018-02-21
Microsoft Windows - Constrained Impersonation Capability Privilege Escalation Exploit				2018-02-21
Microsoft Windows - NPFS Symlink Security Feature Bypass/Elevation of Privilege/Dangerous Behavior E				2018-02-21
Microsoft Windows - Global Reparse Point Security Feature Bypass/Elevation of Privilege Exploit				2018-02-21
Microsoft Windows Kernel - nt!RtlpCopyLegacyContextX86 Stack Memory Disclosure Exploit				2018-02-21
MagniComp SysInfo - mcsiwrapper Privilege Escalation Exploit				2018-02-21
Aastra 6755i SIP SP4 - Denial of Service Vulnerability				2018-02-21
Kentico CMS 11 Arbitrary Code Execution Vulnerability				2018-02-21
Kentico CMS 11 Cross Site Scripting Vulnerability				2018-02-21
October CMS < 1.0.431 - Cross-Site Scripting Vulnerability				2018-02-21
Linux/ARM - Bind TCP (4444/TCP) Shell (/bin/sh) + IP Controlled (192.168.1.190) + Null-Free Shellcod				2018-02-21
Joomla Saxum Picker 3.2.10 Component - SQL Injection Vulnerability				2018-02-21
Joomla SquadManagement 1.0.3 Component - SQL Injection Vulnerability				2018-02-21
Joomla Saxum Numerology 3.0.4 Component - SQL Injection Vulnerability				2018-02-21
Joomla Saxum Astro 4.0.14 Component - SQL Injection Vulnerability				2018-02-21
Joomla ccNewsletter 2.x.x Component id - SQL Injection Vulnerability				2018-02-21
Joomla Pinterest Clone Social Pinboard 2.0 - SQL Injection Vulnerability				2018-02-21
Joomla Timetable Responsive Schedule For Joomla 1.5 Component - alias SQL Injection Vulnerability				2018-02-21
Joomla Staff Master 1.0 RC 1 Component - SQL Injection Vulnerability				2018-02-21
Joomla Solidres 2.5.1 Component - SQL Injection Vulnerability				2018-02-21
Joomla Smart Shoutbox 3.0.0 Component - SQL Injection Vulnerability				2018-02-21
Joomla SimpleCalendar 3.1.9 Component - SQL Injection Vulnerability				2018-02-21
Joomla Realpin 1.5.04 Component - SQL Injection Vulnerability				2018-02-21
Joomla Project Log 1.5.3 Component - search SQL Injection Vulnerability				2018-02-21
Joomla NeoRecruit 4.1 Component - SQL Injection Vulnerability				2018-02-21
Joomla MediaLibrary Free 4.0.12 Component - SQL Injection Vulnerability				2018-02-21
Joomla JTicketing 2.0.16 Component - SQL Injection Vulnerability				2018-02-21
Joomla JS Jobs 1.1.9 Component - SQL Injection Vulnerability				2018-02-21
Joomla JS Autoz 1.0.9 Component - SQL Injection Vulnerability				2018-02-21
Joomla JquickContact 1.3.2.2.1 Component - SQL Injection Vulnerability				2018-02-21
Joomla JomEstate PRO 3.7 Component - id SQL Injection Vulnerability				2018-02-21
Joomla jGive 2.0.9 Component - SQL Injection Vulnerability				2018-02-21
Joomla JB Bus 2.3 Component - order_number SQL Injection Vulnerability				2018-02-21
Joomla InviteX 3.0.5 Component - invite_type SQL Injection Vulnerability				2018-02-21
Joomla Google Map Landkarten 4.2.3 Component - SQL Injection Vulnerability				2018-02-21
Joomla Gallery WD 1.3.6 Component - SQL Injection Vulnerability				2018-02-21
Joomla Form Maker 3.6.12 Component - SQL Injection Vulnerability				2018-02-21
Joomla File Download Tracker 3.0 Component - SQL Injection Vulnerability				2018-02-21
Joomla Fastball 2.5 Component - season SQL Injection Vulnerability				2018-02-21
Joomla DT Register 3.2.7 Component - id SQL Injection Vulnerability				2018-02-21
Joomla AllVideos Reloaded 1.2.x Component - divid SQL Injection Vulnerability				2018-02-21
Joomla Aist 2.0 Component - id SQL Injection Vulnerability				2018-02-21
Joomla Advertisement Board 3.1.0 Component - catname SQL Injection Vulnerability				2018-02-21
Joomla Kubik-Rubik Simple Image Gallery Extended (SIGE) 3.2.3 Component - Cross-Site Scripting				2018-02-21
Oracle Primavera P6 Enterprise Project Portfolio Management - HTTP Response Splitting Vulnerability				2018-02-21
PHIMS - Hospital Management Information System - Password SQL Injection Vulnerability				2018-02-21
UserSpice 4.3 - Blind SQL Injection Exploit				2018-02-21
PSNews Website 1.0.0 - Keywords SQL Injection Vulnerability				2018-02-21
TV - Video Subscription - Authentication Bypass SQL Injection Vulnerability				2018-02-21
EPIC MyChart - SQL Injection Vulnerability				2018-02-21
Twig < 2.4.4 - Server Side Template Injection Vulnerability				2018-02-21
ABRT - raceabrt Privilege Escalation Exploit				2018-02-21
Siemens SIPROTEC 4 and SIPROTEC Compact EN100 Ethernet Module < 4.25 - Denial of Service Exploit				2018-02-21
JBoss Remoting 6.14.18 - Denial of Service Exploit				2018-02-21
Microsoft Edge - UnmapViewOfFile ACG Bypass Vulnerability				2018-02-21
Front Accounting ERP 2.4.3 - Cross-Site Request Forgery Vulnerability				2018-02-21
Microsoft Internet Explorer 11 - 'Js::RegexHelper::RegexReplace' Use-After-Free				2018-02-20
Microsoft Windows - StorSvc SvcMoveFileInheritSecurity Arbitrary File Creation Privilege Escalation				2018-02-20
utorrent - JSON-RPC Remote Code Execution / Information Disclosure				2018-02-20
AEF CMS v1.0.9 - (PM) Persistent Cross Site Vulnerability				2018-02-20
Geldkarte - transaktionsid Cross Site Scripting Vulnerability				2018-02-20
MagniComp SysInfo - mcsiwrapper Privilege Escalation (Metasploit)				2018-02-20
Microsoft Windows - Constrained Impersonation Capability Privilege Escalation				2018-02-20
Microsoft Windows - NPFS Symlink Security Feature Bypass/Elevation of Privilege/Dangerous Behavior				2018-02-20
Microsoft Windows - Global Reparse Point Security Feature Bypass/Elevation of Privilege				2018-02-20
Microsoft Windows Kernel - 'nt!RtlpCopyLegacyContextX86' Stack Memory Disclosure				2018-02-20
Mobile Application Hacking Diary Ep.2				2018-02-19
October CMS < 1.0.431 - Cross-Site Scripting				2018-02-19
Linux/ARM - IP Controlled TCP Bind Shell Shellcode (/bin/sh) (168 bytes)				2018-02-19
Aastra 6755i SIP SP4 - Denial of Service				2018-02-19
Oracle Primavera P6 Enterprise Project Portfolio Management - HTTP Response Splitting				2018-02-17
PSNews Website 1.0.0 - 'Keywords' SQL Injection				2018-02-17
PHIMS - Hospital Management Information System - 'Password' SQL Injection				2018-02-17
Front Accounting ERP 2.4.3 - Cross-Site Request Forgery				2018-02-17
Joomla! Component Saxum Picker 3.2.10 - SQL Injection				2018-02-17
Joomla! Component SquadManagement 1.0.3 - SQL Injection				2018-02-17
Joomla! Component Saxum Numerology 3.0.4 - SQL Injection				2018-02-17
Joomla! Component Saxum Astro 4.0.14 - SQL Injection				2018-02-17
Joomla Component ccNewsletter 2.x.x 'id' - SQL Injection				2018-02-17
Joomla! Pinterest Clone Social Pinboard 2.0 - SQL Injection				2018-02-17
Joomla! Component Timetable Responsive Schedule For Joomla 1.5 - 'alias' SQL Injection				2018-02-17
Joomla! Component Staff Master 1.0 RC 1 - SQL Injection				2018-02-17
Joomla! Component Solidres 2.5.1 - SQL Injection				2018-02-17
Joomla! Component Smart Shoutbox 3.0.0 - SQL Injection				2018-02-17
Joomla! Component SimpleCalendar 3.1.9 - SQL Injection				2018-02-17
Joomla! Component Realpin 1.5.04 - SQL Injection				2018-02-17
Joomla! Component Project Log 1.5.3 - 'search' SQL Injection				2018-02-16
Joomla! Component NeoRecruit 4.1 - SQL Injection				2018-02-16
Joomla! Component MediaLibrary Free 4.0.12 - SQL Injection				2018-02-16
Joomla! Component JTicketing 2.0.16 - SQL Injection				2018-02-16
Joomla! Component JS Jobs 1.1.9 - SQL Injection				2018-02-16
Joomla! Component JS Autoz 1.0.9 - SQL Injection				2018-02-16
Joomla! Component JquickContact 1.3.2.2.1 - SQL Injection				2018-02-16
Joomla! Component JomEstate PRO 3.7 - 'id' SQL Injection				2018-02-16
Joomla! Component jGive 2.0.9 - SQL Injection				2018-02-16
Joomla! Component JB Bus 2.3 - 'order_number' SQL Injection				2018-02-16
Joomla! Component InviteX 3.0.5 - 'invite_type' SQL Injection				2018-02-16
Joomla! Component Google Map Landkarten 4.2.3 - SQL Injection				2018-02-16
Joomla! Component Gallery WD 1.3.6 - SQL Injection				2018-02-16
Joomla! Component Form Maker 3.6.12 - SQL Injection				2018-02-16
Joomla! Component File Download Tracker 3.0 - SQL Injection				2018-02-16
Joomla! Component Fastball 2.5 - 'season' SQL Injection				2018-02-16
Joomla! Component DT Register 3.2.7 - 'id' SQL Injection				2018-02-16
Joomla! Component AllVideos Reloaded 1.2.x - 'divid' SQL Injection				2018-02-16
Joomla! Component Aist 2.0 - 'id' SQL Injection				2018-02-16
Joomla! Component Advertisement Board 3.1.0 - 'catname' SQL Injection				2018-02-16
Joomla! Component Kubik-Rubik Simple Image Gallery Extended (SIGE) 3.2.3 - Cross-Site Scripting				2018-02-16
Siemens SIPROTEC 4 and SIPROTEC Compact EN100 Ethernet Module < 4.25 - Denial of Service				2018-02-16
Twig < 2.4.4 - Server Side Template Injection				2018-02-16
UserSpice 4.3 - Blind SQL Injection				2018-02-16
TV - Video Subscription - Authentication Bypass SQL Injection				2018-02-16
JBoss Remoting 6.14.18 - Denial of Service				2018-02-16
EPIC MyChart - SQL Injection				2018-02-16
ABRT - raceabrt Privilege Escalation(Metasploit)				2018-02-16
Microsoft Edge - 'UnmapViewOfFile' ACG Bypass				2018-02-16
Pdfium - Pattern Shading Integer Overflows Exploit				2018-02-15
Pdfium - Out-of-Bounds Read with Shading Pattern Backed by Pattern Colorspace Exploit				2018-02-15
Chrome V8 - Runtime_RegExpReplace Integer Overflow Exploit				2018-02-15
Microsoft Edge Chakra JIT - LdThis Type Confusion Exploit				2018-02-15
Microsoft Edge Chakra JIT - NewScObjectNoCtor Array Type Confusion Exploit				2018-02-15
Microsoft Edge Chakra JIT - Array.prototype.reverse Array Type Confusion Exploit				2018-02-15
Microsoft Edge Chakra JIT - Array Type Confusion via InitProto Instructions Exploit				2018-02-15
Microsoft Edge Chakra JIT - ImplicitCallFlags Checks Bypass Exploit				2018-02-15
Microsoft Edge Chakra JIT - Memory Corruption Exploit				2018-02-15
Microsoft Edge Chakra JIT - GlobOpt::OptTagChecks Must Consider IsLoopPrePass Properly (2)				2018-02-15
Chrome V8 - 'Runtime_RegExpReplace' Integer Overflow				2018-02-15
Pdfium - Out-of-Bounds Read with Shading Pattern Backed by Pattern Colorspace				2018-02-15
Pdfium - Pattern Shading Integer Overflows				2018-02-15
Microsoft Edge Chakra JIT - 'LdThis' Type Confusion				2018-02-15
Microsoft Edge Chakra JIT - 'NewScObjectNoCtor' Array Type Confusion				2018-02-15
Microsoft Edge Chakra JIT - 'Array.prototype.reverse' Array Type Confusion				2018-02-15
Microsoft Edge Chakra JIT - Array Type Confusion via InitProto Instructions				2018-02-15
Microsoft Edge Chakra JIT - ImplicitCallFlags Checks Bypass				2018-02-15
Microsoft Edge Chakra JIT - Memory Corruption				2018-02-15
Microsoft Edge Chakra JIT - 'GlobOpt::OptTagChecks' Must Consider IsLoopPrePass Properly (2)				2018-02-15
Dell EMC Isilon OneFS - Multiple Vulnerabilities				2018-02-15
TrendNet AUTHORIZED_GROUP Information Disclosure Vulnerability				2018-02-15
GNU binutils 2.26.1 - Integer Overflow (POC) Exploit				2018-02-15
Social Oauth Login PHP - Authentication Bypass Vulnerability				2018-02-15
SOA School Management - access_login SQL Injection Vulnerability				2018-02-15
NAT32 2.2 Build 22284 - Remote Command Execution Vulnerability				2018-02-15
NAT32 2.2 Build 22284 - Cross-Site Request Forgery Vulnerability				2018-02-15
userSpice 4.3 - Cross-Site Scripting Vulnerability				2018-02-15
Dasan Networks GPON ONT WiFi Router H640X versions 12.02-01121 / 2.77p1-1124 / 3.03p2-1146 - Unauthenticated Remote Code Execution				2018-02-15
HPE Intelligent Management Center (iMC) 7.2 (E0403P10) - Code Execution				2018-02-15
Geneko Routers - Unauthenticated Path Traversal				2018-02-15
IDERA Uptime Monitor 7.8 - Multiple Vulnerabilities				2018-02-15
Cisco DPC3928 Router - Arbitrary File Disclosure				2018-02-15
360 Total Security - Local Privilege Escalation				2018-02-15
OrientDB - Code Execution				2018-02-15
McAfee Security Scan Plus - Remote Command Execution				2018-02-15
Dashlane - DLL Hijacking				2018-02-15
Sophos XG Firewall 16.05.4 MR-4 - Path Traversal				2018-02-15
Odoo CRM 10.0 - Code Execution				2018-02-15
Nitro Pro PDF - Multiple Vulnerabilities				2018-02-15
McAfee LiveSafe 16.0.3 - Man In The Middle Registry Modification Leading to Remote Command Execution				2018-02-15
Hanbanggaoke IP Camera - Arbitrary Password Change				2018-02-15
QNAP HelpDesk < 1.1.12 - SQL Injection				2018-02-15
Horde Groupware 5.2.21 - Unauthorized File Download				2018-02-15
Tiandy IP Cameras 5.56.17.120 - Sensitive Information Disclosure				2018-02-15
Oracle Java JDK/JRE < 1.8.0.131 / Apache Xerces 2.11.0 - 'PDF/Docx' Server Side Denial of Service				2018-02-15
PHP Melody 2.7.3 - Multiple Vulnerabilities				2018-02-15
Ikraus Anti Virus 2.16.7 - Remote Code Execution				2018-02-15
FiberHome - Directory Traversal				2018-02-15
Linux Kernel - 'AF_PACKET' Use-After-Free				2018-02-15
Cisco UCS Platform Emulator 3.1(2ePE1) - Remote Code Execution				2018-02-15
DblTek - Multiple Vulnerabilities				2018-02-15
Ametys CMS 4.0.2 - Unauthenticated Password Reset				2018-02-15
Linux Kernel (Ubuntu 17.04) - 'XFRM' Local Privilege Escalation				2018-02-15
Ichano AtHome IP Cameras - Multiple Vulnerabilities				2018-02-15
Trustwave SWG 11.8.0.27 - SSH Unauthorized Access				2018-02-15
K7 Total Security 15.1.0.305 - Device Driver Arbitrary Memory Read				2018-02-15
Monstra CMS - Remote Code Execution				2018-02-15
GitStack - Unauthenticated Remote Code Execution				2018-02-15
iBall WRA150N - Multiple Vulnerabilities				2018-02-15
Hotspot Shield - Information Disclosure				2018-02-15
Oracle Knowledge Management 12.1.1 < 12.2.5 - XML External Entity Leading To Remote Code Execution				2018-02-15
Dell EMC Isilon OneFS - Multiple Vulnerabilities				2018-02-14
userSpice 4.3 - Cross-Site Scripting				2018-02-14
SOA School Management - 'access_login' SQL Injection				2018-02-14
Social Oauth Login PHP - Authentication Bypass				2018-02-14
GNU binutils 2.26.1 - Integer Overflow (POC)				2018-02-14
NAT32 2.2 Build 22284 - Cross-Site Request Forgery				2018-02-14
NAT32 2.2 Build 22284 - Remote Command Execution				2018-02-14
Ciesto Solutions ERP System SQL Injection Vulnerability				2018-02-13
Advantech WebAccess 8.3.0 - Remote Code Execution Exploit				2018-02-13
News Website Script 2.0.4 - search SQL Injection Vulnerability				2018-02-13
TypeSetter CMS 5.1 - Host Header Injection Vulnerability				2018-02-13
TypeSetter CMS 5.1 - Cross-Site Request Forgery Vulnerability				2018-02-13
CloudMe Sync 1.10.9 Remote Buffer Overflow Vulnerability				2018-02-13
LibreOffice < 6.0.1 - =WEBSERVICE Remote Arbitrary File Disclosure Vulnerability				2018-02-13
LogicalDOC Enterprise 7.7.4 - Root Remote Code Execution Vulnerability				2018-02-13
LogicalDOC Enterprise 7.7.4 - User Enumeration Vulnerability				2018-02-13
LogicalDOC Enterprise 7.7.4 - Directory Traversal Vulnerability				2018-02-13
Juju-run Agent Privilege Escalation Exploit				2018-02-13
SoapUI 5.3.0 Code Execution Exploit				2018-02-13
WordPress Bookly Lite 13.2 Cross Site Scripting Vulnerability				2018-02-13
Paypal Clone Script 1.0.9 - id / acctype SQL Injection Vulnerability				2018-02-13
Readymade Video Sharing Script 3.2 - search SQL Injection Vulnerability				2018-02-13
glibc LD_AUDIT Arbitrary DSO Load Privilege Escalation Exploit				2018-02-13
glibc $ORIGIN Expansion Privilege Escalation Exploit				2018-02-13
NetEx HyperIP 6.1.0 Post-Auth Command Execution Vulnerability				2018-02-13
NetEx HyperIP 6.1.0 Privilege Escalation Vulnerability				2018-02-13
NetEx HyperIP 6.1.0 Local File Inclusion Vulnerability				2018-02-13
NetEx HyperIP 6.1.0 Authentication Bypass Vulnerability				2018-02-13
Trend Micro IMSVA Management Portal 9.1.0.1600 Authentication Bypass Exploit				2018-02-13
OLX Multi Language Clone Script - Cross-Site Scripting Vulnerability				2018-02-13
Multi religion Responsive Matrimonial 4.7.2 - Cross-Site Scripting Vulnerability				2018-02-13
Select Your College Script 2.0.2 - Authentication Bypass Vulnerability				2018-02-13
Lawyer Search Script 1.0.2 - Cross-Site Scripting Vulnerability				2018-02-13
Schools Alert Management Script 2.0.2 - Arbitrary File Upload Vulnerability				2018-02-13
Bitcoin MLM Software 1.0.2 - Cross-Site Scripting Vulneravility				2018-02-13
Facebook Clone Script 1.0.5 - Cross-Site Scripting Vulnerability				2018-02-13
JBoss 4.2.x/4.3.x - Information Disclosure Exploit				2018-02-13
Naukri Clone Script 3.0.3 - indus SQL Injection Vulnerability				2018-02-13
Advantech WebAccess 8.3.0 - Remote Code Execution				2018-02-13
News Website Script 2.0.4 - 'search' SQL Injection				2018-02-13

Exploits/page:

Page: