Exploits (Total: 96296)

    
    
    
jQuery-File-Upload 9.22.0 - Arbitrary File Upload
2018-10-11
Microsoft SQL Server Management Studio 17.9 - XML External Entity Injection
2018-10-11
E-Registrasi Pencak Silat 18.10 - 'id_partai' SQL Injection
2018-10-11
WAGO 750-881 01.09.18 - Cross-Site Scripting
2018-10-11
Wikidforum 2.20 - Cross-Site Scripting
2018-10-11
VLC Media Player 2.2.8 MKV Use-After-Free Exploit
2018-10-11
DELL EMC OneFS Storage Administration 8.1.2.0 .zshrc Overwrite Exploit
2018-10-11
WhatsApp - RTP Processing Heap Corruption Exploit
2018-10-10
MicroTik RouterOS < 6.43rc3 - Remote Root Exploit
2018-10-10
XMeye P2P Cloud Remote Code Execution / Integrity Issues Vulnerabilities
2018-10-10
jQuery-File-Upload 9.22.0 Arbitrary File Upload Vulnerability
2018-10-10
NPLUG Wireless Repeater 1.0.0.14 CSRF / XSS / Authentication Bypass Vulnerabilities
2018-10-10
Responsive Filemanager 9.8.1 Authentication Bypass Vulnerability
2018-10-10
Responsive Filemanager 9.8.1 Cross Site Scripting Vulnerability
2018-10-10
Sitepress Multilingual 3.6.3 Cross Site Scripting Vulnerability
2018-10-10
Ektron CMS 9.20 SP2 - Improper Access Restrictions Vulnerability
2018-10-10
FileZilla 3.33 - Buffer Overflow Exploit
2018-10-10
WhatsApp - RTP Processing Heap Corruption
2018-10-10
FLIR Systems FLIR Thermal Traffic Cameras Websocket Device Manipulation Exploit
2018-10-10
ghostscript - executeonly Bypass with errorhandler Setup Exploit
2018-10-10
Free MP3 CD Ripper 2.8 - .wma Buffer Overflow (SEH) (DEP Bypass) Exploit
2018-10-10
Microsoft Edge Chakra JIT - Type Confusion Exploit
2018-10-10
Microsoft Edge Chakra JIT - BailOutOnInvalidatedArrayHeadSegment Check Bypass Exploit
2018-10-10
MicroTik RouterOS < 6.43rc3 - Remote Root
CVE-2018-14847
2018-10-10
Ektron CMS 9.20 SP2 - Improper Access Restrictions
CVE-2018-12596
2018-10-10
FileZilla 3.33 - Buffer Overflow (PoC)
2018-10-10
Virtualmin 6.03 Multiple Vulnerabilities
2018-10-10
ifwatchd - Privilege Escalation (Metasploit)
CVE-2014-2533
2018-10-09
Delta Electronics Delta Industrial Automation COMMGR 1.08 - Stack Buffer Overflow (Metasploit)
CVE-2018-10594
2018-10-09
ghostscript - executeonly Bypass with errorhandler Setup
CVE-2018-17961
2018-10-09
Microsoft Edge Chakra JIT - Type Confusion
CVE-2018-8467
2018-10-09
Microsoft Edge Chakra JIT - 'BailOutOnInvalidatedArrayHeadSegment' Check Bypass
CVE-2018-8466
2018-10-09
net-snmp 5.7.3 - Denial of Service
CVE-2015-5621
2018-10-09
Wikidforum 2.20 - 'message_id' SQL Injection
2018-10-09
Delta Electronics Delta Industrial Automation COMMGR 1.08 Stack Buffer Overflow Exploit
2018-10-09
ifwatchd Privilege Escalation Exploit
2018-10-09
Seqrite End Point Security 7.4 - Privilege Escalation
CVE-2018-17775
2018-10-09
Free MP3 CD Ripper 2.8 - '.wma' Buffer Overflow (SEH) (DEP Bypass)
2018-10-09
Wikidforum 2.20 - 'select_sort' SQL Injection
2018-10-09
360 3.5.0.1033 - Sandbox Escape Exploit
2018-10-09
Wikidforum 2.20 Multiple SQL Injection Vulnerability
2018-10-09
Navigate CMS - Unauthenticated Remote Code Execution Exploit
2018-10-09
Linux/x86 - execve(/bin/sh) + MMX/ROT13/XOR Shellcode (Encoder/Decoder) (104 bytes)
2018-10-09
Linux/MIPS (Big Endian) - execve(/bin/sh) + Reverse TCP 192.168.2.157/31337 Shellcode (181 bytes)
2018-10-09
Linux Kernel - Pointer Leak via BPF Exploit
2018-10-09
Linux Kernel < 4.11.8 - mq_notify: double sock_put() Local Privilege Escalation
2018-10-09
Cisco Prime Infrastructure - Unauthenticated Remote Code Execution Exploit
2018-10-08
Android - sdcardfs Changes current->fs Without Proper Locking Exploit
2018-10-08
Git Submodule - Arbitrary Code Execution Vulnerability
2018-10-08
Imperva SecureSphere 13 - Remote Command Execution Exploit
2018-10-08
net-snmp 5.7.3 - Unauthenticated Denial of Service Exploit
2018-10-08
net-snmp 5.7.3 - Authenticated Denial of Service Exploit
2018-10-08
Microsoft Windows - Net-NTLMv2 Reflection DCOM/RPC (Metasploit)
CVE-2016-3225
2018-10-08
Navigate CMS - Unauthenticated Remote Code Execution (Metasploit)
CVE-2018-17552
2018-10-08
Zahir Enterprise Plus 6 - Stack Buffer Overflow (Metasploit)
CVE-2018-17408
2018-10-08
Unitrends UEB - HTTP API Remote Code Execution (Metasploit)
CVE-2017-12478
2018-10-08
Android - sdcardfs Changes current->fs Without Proper Locking
CVE-2018-9515
2018-10-08
Linux - Kernel Pointer Leak via BPF
2018-10-08
Cisco Prime Infrastructure - Unauthenticated Remote Code Execution
CVE-2018-15379
2018-10-08
A Red Teamer’s guide to pivoting
2018-10-08
Linux Kernel < 4.11.8 - 'mq_notify: double sock_put()' Local Privilege Escalation
CVE-2017-11176
2018-10-08
Git Submodule - Arbitrary Code Execution
CVE-2018-17456
2018-10-08
net-snmp 5.7.3 - Authenticated Denial of Service (PoC)
2018-10-08
net-snmp 5.7.3 - Unauthenticated Denial of Service (PoC)
2018-10-08
Imperva SecureSphere 13 - Remote Command Execution
2018-10-08
Linux/MIPS (Big Endian) - execve(/bin/sh) + Reverse TCP 192.168.2.157/31337 Shellcode (181 bytes)
2018-10-08
360 3.5.0.1033 - Sandbox Escape
2018-10-08
FLIR Thermal Traffic Cameras 1.01-0bb5b27 - Information Disclosure
2018-10-08
Linux/x86 - execve(/bin/sh) + MMX/ROT13/XOR Shellcode (Encoder/Decoder) (104 bytes)
2018-10-08
FLIR Thermal Traffic Cameras 1.01-0bb5b27 - RTSP Stream Disclosure Vulnerability
2018-10-07
Chamilo LMS 1.11.8 - firstname Cross-Site Scripting Vulnerability
2018-10-07
FLIR Thermal Traffic Cameras 1.01-0bb5b27 - RTSP Stream Disclosure
2018-10-06
Chamilo LMS 1.11.8 - 'firstname' Cross-Site Scripting
2018-10-06
Chrome OS /sbin/crash_reporter Symlink Traversal Vulnerability
2018-10-06
Windows Net-NTLMv2 Reflection DCOM/RPC Exploit
2018-10-06
Unitrends UEB HTTP API Remote Code Execution Exploit
2018-10-06
Claromentis Discuss 1.2.1 Cross Site Scripting Vulnerability
2018-10-06
Chamilo LMS 1.11.8 - Cross-Site Scripting Vulnerability
2018-10-06
Netis ADSL Router DL4322D RTK 2.1.1 - Cross-Site Request Forgery (Add Admin) Vulnerabilities
2018-10-06
Easy File Sharing Web Server 7.2 - Domain Name Buffer Overflow Exploit
2018-10-06
Chamilo LMS 1.11.8 - Cross-Site Scripting
2018-10-05
ISPConfig < 3.1.13 - Remote Command Execution
2018-10-05
D-Link Central WiFiManager Software Controller 1.03 - Multiple Vulnerabilities
CVE-2018-17440
2018-10-05
Netis ADSL Router DL4322D RTK 2.1.1 - Cross-Site Request Forgery (Add Admin)
2018-10-05
ISPConfig Remote Command Execution Exploit
2018-10-05
DLink Central WiFiManager Software Controller Code Execution / XSS Exploit
2018-10-05
WordPress Pie Register 3.0.15 Cross Site Scripting Vulnerability
2018-10-05
Photo #Nettoyeur 1.4.5 Insecure File Permission Vulnerability
2018-10-05
Billion ADSL Router 400G 20151105641 - Cross-Site Scripting Vulnerability
2018-10-05
WUZHICMS 2.0 - Cross-Site Scripting Vulnerability
2018-10-05
Coaster CMS 5.5.0 - Cross-Site Scripting Vulnerability
2018-10-05
OPAC EasyWeb Five 5.7 - biblio SQL Injection Vulnerability
2018-10-05
OPAC EasyWeb Five 5.7 - nome SQL Injection Vulnerability
2018-10-05
Linux Kernel 2.6.x / 3.10.x / 4.14.x (x64) - Mutagen Astronomy Local Privilege Escalation Exploit
2018-10-05
Linux/x64 - Execute /bin/nc -lvp 9090 Shellcode (60 bytes)
2018-10-05
Flippa Marketplace Clone 1.0 - date_started SQL Injection Vulnerability
2018-10-05
Education Website 1.0 - subject SQL Injection Vulnerability
2018-10-05
Binary MLM Software 1.0 - pid SQL Injection Vulnerability
2018-10-05
Singleleg MLM Software 1.0 - msg_id SQL Injection Vulnerability
2018-10-05
Hotel Booking Engine 1.0 - h_room_type SQL Injection Vulnerability
2018-10-05
Linux/x64 - execve ("/bin/bash") Shellcode (27 bytes)
2018-10-05
Fork CMS 5.4.0 - Cross-Site Scripting Vulnerability
2018-10-05
H2 Database 1.4.196 - Remote Code Execution Exploit
2018-10-05
Zahir Enterprise Plus 6 build 10b - Buffer Overflow (SEH) Exploit
2018-10-05
Snes9K 0.0.9z - Denial of Service (PoC) Exploit
2018-10-05
Linux/x64 - execve ("/bin/sh") Shellcode (24 bytes)
2018-10-05
Airties AIR5750 1.0.0.18 Cross Site Scripting Vulnerability
2018-10-05
Airties AIR5650 1.0.0.18 Cross Site Scripting Vulnerability
2018-10-05
Airties AIR5453 1.0.0.18 Cross Site Scripting Vulnerability
2018-10-05
Airties AIR5443v2 1.0.0.18 Cross Site Scripting Vulnerability
2018-10-05
Airties AIR5442 1.0.0.18 Cross Site Scripting Vulnerability
2018-10-05
Airties AIR5343v2 1.0.0.18 Cross Site Scripting Vulnerability
2018-10-05
Airties AIR5021 1.0.0.18 Cross Site Scripting Vulnerability
2018-10-05
ManageEngine AssetExplorer 6.2.0 Cross Site Scripting Vulnerability
2018-10-05
Intel Extreme Tuning Utility 6.4.1.23 Code Execution / Privilege Escalation Vulnerabilities
2018-10-05
AppArmor Filesystem Blacklisting Bypass Vulnerability
2018-10-05
Seqrite End Point Security 7.4 Privilege Escalation Vulnerability
2018-10-05
Skype On Debian Microsoft Apt Repo Addition Vulnerability
2018-10-05
Microsoft Edge - Sandbox Escape Exploit
2018-10-05
PCProtect 4.8.35 - Privilege Escalation Vulnerability
2018-10-05
WebKit - WebCore::RenderTreeBuilder::removeAnonymousWrappersForInlineChildrenIfNeeded
2018-10-05
WebKit - WebCore::SVGTextLayoutAttributes::context Use-After-Free Exploit
2018-10-05
WebKit - WebCore::RenderLayer::updateDescendantDependentFlags Use-After-Free Exploit
2018-10-05
WebKit - WebCore::SVGTRefElement::updateReferencedText Use-After-Free Exploit
2018-10-05
WebKit - WebCore::RenderMultiColumnSet::updateMinimumColumnHeight Use-After-Free Exploit
2018-10-05
WebKit - WebCore::InlineTextBox::paint Out-of-Bounds Read Exploit
2018-10-05
NICO-FTP 3.0.1.19 - Buffer Overflow (SEH)(ASLR) Exploit
2018-10-05
Linux/x86 - execve(/bin/sh) + NOT +SHIFT-N+ XOR-N Encoded Shellcode (50 bytes)
2018-10-05
virtualenv 16.0.0 - Sandbox Escape Vulnerability
2018-10-05
LayerBB Forum 1.1.1 - search_query SQL Injection Vulnerability
2018-10-05
FTP Voyager 16.2.0 - Denial of Service Exploit
2018-10-05
Airties AIR5342 1.0.0.18 - Cross-Site Scripting Vulnerability
2018-10-05
RICOH MP C1803 JPN Printer - Cross-Site Scripting Vulnerability
2018-10-05
PTC ThingWorx Password Disclosure / Cross Site Scripting Vulnerabilities
2018-10-05
Joomla Jimtawl 2.2.7 Component - id SQL Injection Vulnerability
2018-10-05
Zechat 1.5 - uname SQL Injection Vulnerability
2018-10-05
Wikindx 5.3.2 Multiple Cross-Site Scripting Vulnerability
2018-10-05
WebKit - WebCore::Node::ensureRareData Use-After-Free Exploit
2018-10-05
WebKit - WebCore::AXObjectCache::handleMenuItemSelected Use-After-Free Exploit
2018-10-05
WebKit - WebCore::SVGAnimateElementBase::resetAnimatedType Use-After-Free Exploit
2018-10-05
WordPress WebARX Website Firewall 4.9.8 XSS / Bypass Vulnerabilities
2018-10-05
WordPress Breadcrumb NavXT 6.1.0 Username Disclosure
2018-10-05
NICO-FTP 3.0.1.19 - Buffer Overflow (SEH)(ASLR)
2018-10-04
LayerBB Forum 1.1.1 - 'search_query' SQL Injection
2018-10-04
Linux\x86 - (NOT +SHIFT-N+ XOR-N) + encoded (/bin/sh) Shellcode (50 byes)
2018-10-04
virtualenv 16.0.0 - Sandbox Escape
CVE-2018-17793
2018-10-04
FTP Voyager 16.2.0 - Denial of Service (PoC)
2018-10-03
RICOH MP C1803 JPN Printer - Cross-Site Scripting
CVE-2018-17310
2018-10-03
Airties AIR5342 1.0.0.18 - Cross-Site Scripting
CVE-2018-17587
2018-10-03
Joomla! Component Jimtawl 2.2.7 - 'id' SQL Injection
2018-10-03
Zechat 1.5 - 'uname' SQL Injection
2018-10-03
OPAC EasyWeb Five 5.7 - 'nome' SQL Injection
2018-10-02
Coaster CMS 5.5.0 - Cross-Site Scripting
2018-10-02
OPAC EasyWeb Five 5.7 - 'biblio' SQL Injection
2018-10-02
Phrack: Twenty years of Escaping the Java Sandbox (Ieu Eauvidoum & disk noise)
2018-10-01
Linux Kernel 2.6.x / 3.10.x / 4.14.x (RedHat / Debian / CentOS) (x64) - 'Mutagen Astronomy' Local Privilege Escalation
CVE-2018-14634
2018-10-01
Billion ADSL Router 400G 20151105641 - Cross-Site Scripting
2018-10-01
WUZHICMS 2.0 - Cross-Site Scripting
CVE-2018-17832
2018-10-01
Flippa Marketplace Clone 1.0 - 'date_started' SQL Injection
2018-10-01
Binary MLM Software 1.0 - 'pid' SQL Injection
2018-10-01
Singleleg MLM Software 1.0 - 'msg_id' SQL Injection
2018-10-01
Education Website 1.0 - 'subject' SQL Injection
2018-10-01
Hotel Booking Engine 1.0 - 'h_room_type' SQL Injection
2018-10-01
Fork CMS 5.4.0 - Cross-Site Scripting
2018-10-01
ManageEngine AssetExplorer 6.2.0 - Cross-Site Scripting
2018-10-01
H2 Database 1.4.196 - Remote Code Execution
2018-10-01
Zahir Enterprise Plus 6 build 10b - Buffer Overflow (SEH)
2018-10-01
Snes9K 0.0.9z - Denial of Service (PoC)
2018-10-01
Microsoft Edge - Sandbox Escape
CVE-2018-8463
2018-09-28
PCProtect 4.8.35 - Privilege Escalation
2018-09-28
Rausoft ID.prove 2.95 - Username SQL injection Vulnerability
2018-09-27
Citrix StorageZones Controller Improper Access Restrictions / Traversal Exploit
2018-09-27
WordPress WP Insert 2.4.2 Arbitrary File Upload Vulnerability
2018-09-27
ManageEngine Desktop Central 10.0.271 - Cross-Site Scripting Vulnerability
2018-09-27
iWay Data Quality Suite Web Console 10.6.1.ga - XML External Entity Injection Vulnerability
2018-09-27
EE 4GEE Mini EE40_00_02.00_44 - Privilege Escalation
2018-09-27
Rausoft ID.prove 2.95 - 'Username' SQL injection
2018-09-27
ManageEngine Desktop Central 10.0.271 - Cross-Site Scripting
2018-09-27
iWay Data Quality Suite Web Console 10.6.1.ga - XML External Entity Injection
2018-09-27
CrossFont 7.5 - Denial of Service Exploit
2018-09-26
TransMac 12.2 - Denial of Service Exploit
2018-09-26
Linux/ARM - Bind (0.0.0.0:4444/TCP) Shell (/bin/sh) + Null-Free #Shellcode (92 Bytes)
2018-09-26
Linux - #VMA Use-After-Free via Buggy vmacache_flush_all() Fastpath Exploit
2018-09-26
Joomla Responsive Portfolio 1.6.1 Component - filter_order_Dir SQL Injection Vulnerability
2018-09-26
Joomla Timetable Schedule 3.6.8 Component - SQL Injection Vulnerability
2018-09-26
Linux - VMA Use-After-Free via Buggy vmacache_flush_all() Fastpath
CVE-2018-17182
2018-09-26
Linux/ARM - Bind (0.0.0.0:4444/TCP) Shell (/bin/sh) + Null-Free Shellcode (92 Bytes)
2018-09-26
CrossFont 7.5 - Denial of Service (PoC)
2018-09-26
TransMac 12.2 - Denial of Service (PoC)
2018-09-26
Faleemi Desktop Software 1.8.2 - 'Device alias' Local Buffer Overflow (SEH)
2018-09-25
Joomla eXtroForms 2.1.5 Component - filter_type_id SQL Injection Vulnerability
2018-09-25
Joomla Music Collection 3.0.3 Component - SQL Injection Vulnerability
2018-09-25
Joomla Raffle Factory 3.5.2 Component - SQL Injection Vulnerability
2018-09-25
Joomla Dutch Auction Factory 2.0.2 Component - filter_order_Dir SQL Injection Vulnerability
2018-09-25
Joomla Article Factory Manager 4.3.9 Component - SQL Injection Vulnerability
2018-09-25
Joomla AlphaIndex Dictionaries 1.0 Component - SQL Injection Vulnerability
2018-09-25
Joomla Reverse Auction Factory 4.3.8 Component - SQL Injection Vulnerability
2018-09-25
Joomla Collection Factory 4.1.9 Component - SQL Injection Vulnerability
2018-09-25
Joomla Swap Factory 2.2.1 Component - SQL Injection Vulnerability
2018-09-25
Joomla Social Factory 3.8.3 Component - SQL Injection Vulnerability
2018-09-25
Joomla Jobs Factory 2.0.4 Component - SQL Injection Vulnerability
2018-09-25
Joomla Questions 1.4.3 Component - SQL Injection Vulnerability
2018-09-25
Joomla Penny Auction Factory 2.0.4 Component - SQL Injection Vulnerability
2018-09-25
Super Cms Blog Pro 1.0 - SQL Injection Vulnerability
2018-09-25
Easy PhoroResQ 1.0 - Buffer Overflow Exploit
2018-09-25
Joomla! Component Responsive Portfolio 1.6.1 - 'filter_order_Dir' SQL Injection
2018-09-25
RICOH MP C406Z Printer - Cross-Site Scripting
2018-09-25
WebKit - 'WebCore::RenderTreeBuilder::removeAnonymousWrappersForInlineChildrenIfNeeded' Use-After-Free
CVE-2018-4197
2018-09-25
WebKit - 'WebCore::SVGTextLayoutAttributes::context' Use-After-Free
CVE-2018-4318
2018-09-25
RICOH MP 305+ Printer - Cross-Site Scripting
2018-09-25
WebKit - 'WebCore::RenderLayer::updateDescendantDependentFlags' Use-After-Free
CVE-2018-4317
2018-09-25
WebKit - 'WebCore::SVGTRefElement::updateReferencedText' Use-After-Free
CVE-2018-4315
2018-09-25
WebKit - 'WebCore::RenderMultiColumnSet::updateMinimumColumnHeight' Use-After-Free
CVE-2018-4323
2018-09-25
WebKit - 'WebCore::InlineTextBox::paint' Out-of-Bounds Read
CVE-2018-4328
2018-09-25
WebKit - 'WebCore::Node::ensureRareData' Use-After-Free
CVE-2018-4306
2018-09-25
WebKit - 'WebCore::AXObjectCache::handleMenuItemSelected' Use-After-Free
CVE-2018-4312
2018-09-25
WebKit - 'WebCore::SVGAnimateElementBase::resetAnimatedType' Use-After-Free
CVE-2018-4314
2018-09-25
Solaris - 'EXTREMEPARR' dtappgather Privilege Escalation (Metasploit)
CVE-2017-3622
2018-09-25
Joomla! Component Timetable Schedule 3.6.8 - SQL Injection
CVE-2018-17394
2018-09-25
Joomla! Component Article Factory Manager 4.3.9 - SQL Injection
CVE-2018-17380
2018-09-25
Joomla! Component AlphaIndex Dictionaries 1.0 - SQL Injection
CVE-2018-17397
2018-09-25
Joomla! Component Reverse Auction Factory 4.3.8 - SQL Injection
CVE-2018-17376
2018-09-25
Joomla! Component Collection Factory 4.1.9 - SQL Injection
CVE-2018-17383
2018-09-25
Joomla! Component Swap Factory 2.2.1 - SQL Injection
CVE-2018-17384
2018-09-25
Joomla Component eXtroForms 2.1.5 - 'filter_type_id' SQL Injection
2018-09-25
RICOH MP C6503 Plus Printer - Cross-Site Scripting
2018-09-25
Joomla! Component Social Factory 3.8.3 - SQL Injection
CVE-2018-17385
2018-09-25
Joomla! Component Jobs Factory 2.0.4 - SQL Injection
CVE-2018-17382
2018-09-25
Joomla! Component Questions 1.4.3 - SQL Injection
CVE-2018-17377
2018-09-25
Easy PhoroResQ 1.0 - Buffer Overflow
2018-09-25
Joomla! Component Penny Auction Factory 2.0.4 - SQL Injection
CVE-2018-17378
2018-09-25
Joomla! Component Music Collection 3.0.3 - SQL Injection
CVE-2018-17375
2018-09-25
Joomla! Component Raffle Factory 3.5.2 - SQL Injection
CVE-2018-17379
2018-09-25
Super Cms Blog Pro 1.0 - SQL Injection
CVE-2018-17391
2018-09-25
Joomla! Component Dutch Auction Factory 2.0.2 - 'filter_order_Dir' SQL Injection
2018-09-25
RICOH MP C2003 Printer - Cross-Site Scripting
2018-09-25
RICOH MP C307 Printer Cross Site Scripting Vulnerability
2018-09-25
RICOH MP 305+ Printer Cross Site Scripting Vulnerability
2018-09-25
RICOH MP C6503 Plus Printer Cross Site Scripting Vulnerability
2018-09-25
RICOH MP C406Z Printer Cross Site Scripting Vulnerability
2018-09-25
RICOH MP C2003 Printer Cross Site Scripting Vulnerability
2018-09-25
RICOH MP C1803 JPN Printer Cross Site Scripting Vulnerability
2018-09-25
Solaris EXTREMEPARR dtappgather Privilege Escalation Exploit
2018-09-25
EE 4GEE Mini Local Privilege Escalation Vulnerability
2018-09-25
Postman 6.3.0 Improper Certificate Validation Vulnerability
2018-09-25
RICOH MP C6003 Printer - Cross-Site Scripting Vulnerability
2018-09-24
RICOH Aficio MP 301 Printer - Cross-Site Scripting Vulnerability
2018-09-24
Beyond Remote 2.2.5.3 - Denial of Service Exploit
2018-09-24
SoftX FTP Client 3.3 - Denial of Service Exploit
2018-09-24
Termite 3.4 - Denial of Service Exploit
2018-09-24
Linux/ARM - sigaction() Based Egghunter (PWN!) + execve Shellcode (52 Bytes)
2018-09-24
Linux/ARM - Egghunter (PWN!) + execve("/bin/sh", NULL, NULL) Shellcode (28 Bytes)
2018-09-24
Joomla Auction Factory 4.5.5 Component - filter_order SQL Injection Vulnerability
2018-09-24
RICOH MP C6003 Printer - Cross-Site Scripting
2018-09-24
Linux/ARM - sigaction() Based Egghunter (PWN!) + execve("/bin/sh", NULL, NULL) Shellcode (52 Bytes)
2018-09-24
Linux/ARM - Egghunter (PWN!) + execve("/bin/sh", NULL, NULL) Shellcode (28 Bytes)
2018-09-24
Beyond Remote 2.2.5.3 - Denial of Service (PoC)
2018-09-24
Joomla Micro Deal Factory 2.4.0 Component - id SQL Injection Vulnerability
2018-09-24
Joomla AMGallery 1.2.3 Component - filter_category_id SQL Injection Exploit
2018-09-24
LG SuperSign EZ CMS 2.5 - Remote Code Execution Exploit
2018-09-24
Joomla CW Article Attachments 1.0.6 - id SQL Injection Vulnerability
2018-09-24
Collectric CMU 1.0 - lang SQL injection Vulnerability
2018-09-24
Navigate CMS 2.8 - Cross-Site Scripting Vulnerability
2018-09-24
udisks2 2.8.0 - Denial of Service Vulnerability
2018-09-24
Antidote 9.5.1 Code Execution Exploit
2018-09-24
Microsoft Windows ALPC Task Scheduler Local Privilege Elevation Exploit
2018-09-24
Staubli Jacquard Industrial System JC6 Shellshock Vulnerability
2018-09-24
WordPress FV Flowplayer 7.2.0.727 Cross Site Scripting Vulnerability
2018-09-24
MyBB Visual Editor 1.8.18 Cross Site Scripting Vulnerability
2018-09-24
WebRTC - FEC Out-of-Bounds Read Exploit
2018-09-24
WebRTC - VP9 Processing Use-After-Free Exploit
2018-09-24
mgetty 1.2.0 Buffer Overflow / Privilege Escalation Vulnerabilities
2018-09-24
HylaFAX 6.0.6 / 5.6.0 Uninitialized Pointer / Out Of Bounds Write Vulnerabilities
2018-09-24
NICO-FTP 3.0.1.19 - Buffer Overflow (SEH) Exploit
2018-09-24
Telegram Desktop 1.3.14 denial of service Vulnerability
2018-09-24
Linux/x86 - Egghunter + sigaction-based Shellcode (27 bytes)
2018-09-24
LimeSurvey 3.14.7 Cross Site Scripting Vulnerability
2018-09-24
ManageEngine Desktop Central 10.0.271 Cross Site Scripting Vulnerability
2018-09-24
ManageEngine SupportCenter Plus 8.1.0 Cross Site Scripting Vulnerability
2018-09-24
LG SuperSign EZ CMS 2.5 - Local File Inclusion Vulnerability
2018-09-24
Microsoft Windows - Double Dereference in NtEnumerateKey Elevation of Privilege Exploit
2018-09-24
Microsoft Windows - CiSetFileCache WDAC Security Feature Bypass TOCTOU Exploit
2018-09-24
WordPress Wechat Broadcast 1.2.0 Plugin - Local File Inclusion Vulnerability
2018-09-24
WordPress Localize My Post 1.0 Plugin - Local File Inclusion Vulnerability
2018-09-24
Roundcube rcfilters plugin 2.1.6 - Cross-Site Scripting Vulnerability
2018-09-24
Western Digital My Cloud Authentication Bypass Vulnerability
2018-09-24
Moodle 3.x PHP Unserialize Remote Code Execution Exploit
2018-09-24
Solaris libnspr NSPR_LOG_FILE Privilege Escalation Exploit
2018-09-24
Faleemi Plus 1.0.2 - Denial of Service Exploit
2018-09-24
InfraRecorder 0.53 - (.txt) Denial of Service Exploit
2018-09-24
CdBurnerXP 4.5.8.6795 - File Name Denial of Service Exploit
2018-09-24
TeamViewer App 13.0.100.0 - Denial of Service Exploit
2018-09-24
MediaTek Wirless Utility rt2870 - Denial of Service Exploit
2018-09-24
Clone2Go Video to iPod Converter 2.5.0 - Denial of Service Exploit
2018-09-24
Apple macOS 10.13.4 - Denial of Service Exploit
2018-09-24
Infiltrator Network Security Scanner 4.6 - Denial of Service Exploit
2018-09-24
PDF Explorer 1.5.66.2 - Denial of Service Exploit
2018-09-24
iCash 7.6.5 - Denial of Service Exploit
2018-09-24
PicaJet FX 2.6.5 - Denial of Service Exploit
2018-09-24
RoboImport 1.2.0.72 - Denial of Service Exploit
2018-09-24
PixGPS 1.1.8 - Denial of Service Exploit
2018-09-24
WordPress Arigato Autoresponder And Newsletter 2.5 SQL Injection / XSS Vulnerabilities
2018-09-24
Microsoft Edge Chakra PathTypeHandlerBase::SetAttributesHelper Type Confusion Exploit
2018-09-24
Microsoft Edge Chakra JIT localeCompare Type Confusion Exploit
2018-09-24
Linux/ARM - Jump Back Shellcode + execve("/bin/sh", NULL, NULL) Shellcode (4 Bytes)
2018-09-24
Ubisoft Uplay Desktop Client 63.0.5699.0 - Remote Code Execution Exploit
2018-09-24
NUUO NVRMini2 3.8 - cgi_system Buffer Overflow (Enable Telnet) Exploit
2018-09-24
CA Release Automation NiMi 6.5 - Remote Command Execution Exploit
2018-09-24
jiNa OCR Image to Text 1.0 - Denial of Service Exploit
2018-09-24
XAMPP Control Panel 3.2.2 - Denial of Service Exploit
2018-09-24
Notebook Pro 2.0 - Denial Of Service Exploit
2018-09-24
Netis ADSL Router DL4322D RTK 2.1.1 - Cross-Site Scripting Vulnerability
2018-09-24
Joomla! Component Auction Factory 4.5.5 - 'filter_order' SQL Injection
2018-09-24
SoftX FTP Client 3.3 - Denial of Service (PoC)
2018-09-24
RICOH Aficio MP 301 Printer - Cross-Site Scripting
2018-09-24
Termite 3.4 - Denial of Service (PoC)
2018-09-24
Joomla! Component Micro Deal Factory 2.4.0 - 'id' SQL Injection
2018-09-24
Joomla! Component AMGallery 1.2.3 - 'filter_category_id' SQL Injection
2018-09-24
udisks2 2.8.0 - Denial of Service (PoC)
2018-09-24
MyBB Visual Editor 1.8.18 - Cross-Site Scripting
CVE-2018-17128
2018-09-24
LG SuperSign EZ CMS 2.5 - Remote Code Execution
CVE-2018-17173
2018-09-24
Joomla! CW Article Attachments 1.0.6 - 'id' SQL Injection
CVE-2018-14592
2018-09-24
Collectric CMU 1.0 - 'lang' SQL injection
2018-09-24
Navigate CMS 2.8 - Cross-Site Scripting
CVE-2018-17255
2018-09-24
WebRTC - FEC Out-of-Bounds Read
CVE-2018-16083
2018-09-21
WebRTC - VP9 Processing Use-After-Free
CVE-2018-16071
2018-09-21
NICO-FTP 3.0.1.19 - Buffer Overflow (SEH)
2018-09-20
Linux/x86 - Egghunter + sigaction-based Shellcode (27 bytes)
2018-09-20
LG SuperSign EZ CMS 2.5 - Local File Inclusion
CVE-2018-16288
2018-09-19
WordPress Plugin Localize My Post 1.0 - Local File Inclusion
2018-09-19
WordPress Plugin Wechat Broadcast 1.2.0 - Local File Inclusion
2018-09-19
Roundcube rcfilters plugin 2.1.6 - Cross-Site Scripting
CVE-2018-16736
2018-09-19
Microsoft Windows - Double Dereference in NtEnumerateKey Elevation of Privilege
CVE-2018-8410
2018-09-19
Microsoft Windows - 'CiSetFileCache' WDAC Security Feature Bypass TOCTOU
CVE-2018-8449
2018-09-19
WordPress Plugin Arigato Autoresponder and Newsletter 2.5 - Blind SQL Injection / Reflected Cross-Site Scripting
CVE-2018-1002000
2018-09-18
Solaris - libnspr NSPR_LOG_FILE Privilege Escalation (Metasploit)
CVE-2006-4842
2018-09-18
Microsoft Edge Chakra JIT - 'localeCompare' Type Confusion
CVE-2018-8355
2018-09-18
Microsoft Edge Chakra - 'PathTypeHandlerBase::SetAttributesHelper' Type Confusion
CVE-2018-8384
2018-09-18
Ubisoft Uplay Desktop Client 63.0.5699.0 - Remote Code Execution
2018-09-18
NUUO NVRMini2 3.8 - 'cgi_system' Buffer Overflow (Enable Telnet)
2018-09-18
Linux/ARM - Jump Back Shellcode + execve("/bin/sh", NULL, NULL) Shellcode (4 Bytes)
2018-09-18
Netis ADSL Router DL4322D RTK 2.1.1 - Denial of Service Exploit
2018-09-17
Joomla JCK Editor 6.4.4 Component - parent SQL Injection Vulnerability
2018-09-17
CA Release Automation NiMi 6.5 - Remote Command Execution
2018-09-17
Netis ADSL Router DL4322D RTK 2.1.1 - Denial of Service (PoC)
2018-09-17
Joomla Component JCK Editor 6.4.4 - 'parent' SQL Injection
2018-09-17
Netis ADSL Router DL4322D RTK 2.1.1 - Cross-Site Scripting
2018-09-17
Oracle VirtualBox Manager 5.2.18 r124319 - Name Attribute Denial of Service Exploit
2018-09-17
Oracle VirtualBox Manager 5.2.18 r124319 - 'Name Attribute' Denial of Service (PoC)
2018-09-17
Notebook Pro 2.0 - Denial Of Service (PoC)
2018-09-17
XAMPP Control Panel 3.2.2 - Denial of Service (PoC)
2018-09-17
Socusoft Photo to Video Converter 8.07 - Registration Name Buffer Overflow Exploit
2018-09-16
Free MP3 CD Ripper 2.6 - .mp3 Buffer Overflow (SEH) Exploit
2018-09-16
Faleemi Desktop Software 1.8.2 - SavePath for ScreenShots Buffer Overflow (SEH) Exploit
2018-09-16
STOPzilla AntiMalware 6.5.2.59 - Privilege Escalation Exploit
2018-09-16
InduSoft Web Studio 8.1 SP1 - Tag Name Buffer Overflow (SEH) Exploit
2018-09-16
Android (zygote->init;) Chain from USB Privilege Escalation Exploit
2018-09-16
LG Smart IP Camera 1508190 - Backup File Download Exploit
2018-09-16
SynaMan 4.0 build 1488 - SMTP Credential Disclosure Vulnerability
2018-09-16
SynaMan 4.0 build 1488 - Authenticated Cross-Site Scripting Vulnerability
2018-09-16
Rubedo CMS 3.4.0 - Directory Traversal Vulnerability
2018-09-16
CirCarLife SCADA 4.3.0 - Credential Disclosure Exploit
2018-09-16
Linux/x86 - Random Bytewise XOR + Insertion Encoder Shellcode (54 bytes)
2018-09-16
Linux/x86 - File Modification(/etc/hosts) Polymorphic Shellcode (99 bytes)
2018-09-16
Linux/x86 - Read File (/etc/passwd) MSF Optimized Shellcode (61 bytes)
2018-09-16
IBM Identity Governance and Intelligence 5.2.3.2 / 5.2.4 - SQL Injection Vulnerability
2018-09-16
MyBB 1.8.17 - Cross-Site Scripting Vulnerability
2018-09-16
Apache Portals Pluto 3.0.0 - Remote Code Execution Exploit
2018-09-16
Apache Syncope 2.0.7 Remote Code Execution Exploit
2018-09-15
Wordpress Survey & Poll 1.5.7.3 Plugin - sss_params SQL Injection Vulnerability
2018-09-15
Watchguard AP100 AP102 AP200 1.2.9.15 - Remote Code Execution Exploit
2018-09-15
Linux/x86 - Random Bytewise XOR + Insertion Encoder Shellcode (54 bytes)
2018-09-14
Linux/86 - File Modification(/etc/hosts) Polymorphic Shellcode (99 bytes)
2018-09-14
Linux/x86 - Read File (/etc/passwd) MSF Optimized Shellcode (61 bytes)
2018-09-14
Linux/x86 - Add User(r00t/blank) Polymorphic Shellcode (103 bytes)
2018-09-14
Faleemi Plus 1.0.2 - Denial of Service (PoC)
2018-09-14
InfraRecorder 0.53 - '.txt' Denial of Service (PoC)
2018-09-14
Free MP3 CD Ripper 2.6 - '.wma' Local Buffer Overflow (SEH)
2018-09-14
Wordpress Plugin Survey & Poll 1.5.7.3 - 'sss_params' SQL Injection
2018-09-14
CdBurnerXP 4.5.8.6795 - 'File Name' Denial of Service (PoC)
2018-09-14
Watchguard AP100 AP102 AP200 1.2.9.15 - Remote Code Execution (Metasploit)
2018-09-14
Chrome OS 10820.0.0 dev-channel - app->VM via garcon TCP Command Socket
2018-09-13
Socusoft Photo to Video Converter 8.07 - 'Registration Name' Buffer Overflow
2018-09-13
Linux 4.18 - Arbitrary Kernel Read into dmesg via Missing Address Check in segfault Handler
2018-09-13
TeamViewer App 13.0.100.0 - Denial of Service (PoC)
2018-09-13
Free MP3 CD Ripper 2.6 - '.mp3' Buffer Overflow (SEH)
2018-09-13
Faleemi Desktop Software 1.8.2 - 'SavePath for ScreenShots' Buffer Overflow (SEH)
2018-09-13
STOPzilla AntiMalware 6.5.2.59 - Privilege Escalation
2018-09-13
Apache Syncope 2.0.7 - Remote Code Execution
CVE-2018-1321
2018-09-13
CloudMe 1.5.6 - Buffer Overflow
2018-09-13
MediaTek Wirless Utility rt2870 - Denial of Service (PoC)
2018-09-13
Clone2Go Video to iPod Converter 2.5.0 - Denial of Service (PoC)
2018-09-13
Apache Portals Pluto 3.0.0 - Remote Code Execution
CVE-2018-1306
2018-09-13
InduSoft Web Studio 8.1 SP1 - 'Tag Name' Buffer Overflow (SEH)
2018-09-13
LG Smart IP Camera 1508190 - Backup File Download
CVE-2018-16946
2018-09-12
MyBB 1.8.17 - Cross-Site Scripting
CVE-2018-15596
2018-09-12
IBM Identity Governance and Intelligence 5.2.3.2 / 5.2.4 - SQL Injection
CVE-2018-1756
2018-09-12
Apple macOS 10.13.4 - Denial of Service (PoC)
CVE-2018-4240
2018-09-12
Infiltrator Network Security Scanner 4.6 - Denial of Service (PoC)
2018-09-12
PDF Explorer 1.5.66.2 - Denial of Service (PoC)
2018-09-12
iCash 7.6.5 - Denial of Service (PoC)
2018-09-12
SynaMan 4.0 build 1488 - SMTP Credential Disclosure
CVE-2018-10814
2018-09-12
SynaMan 4.0 build 1488 - Authenticated Cross-Site Scripting (XSS)
CVE-2018-10763
2018-09-12
Rubedo CMS 3.4.0 - Directory Traversal
CVE-2018-16836
2018-09-12
CirCarLife SCADA 4.3.0 - Credential Disclosure
CVE-2018-12634
2018-09-12
PicaJet FX 2.6.5 - Denial of Service (PoC)
2018-09-12
RoboImport 1.2.0.72 - Denial of Service (PoC)
2018-09-12
PixGPS 1.1.8 - Denial of Service (PoC)
2018-09-12
jiNa OCR Image to Text 1.0 - Denial of Service (PoC)
2018-09-12
Android - 'zygote->init;' Chain from USB Privilege Escalation
CVE-2018-9488
2018-09-11
HTML5 Video Player 1.2.5 - Denial of Service Exploit
2018-09-11
InTouch Machine Edition 8.1 SP1 - Nombre del Tag Buffer Overflow (SEH) Exploit
2018-09-11
InTouch Machine Edition 8.1 SP1 - 'Nombre del Tag' Buffer Overflow (SEH)
2018-09-11
Sony PlayStation Vita 3.65 / 3.67 / 3.68 - 'h-encore' kernel and user modifications
2018-09-11
HTML5 Video Player 1.2.5 - Denial of Service (PoC)
2018-09-11
Bayanno Hospital Management System 4.0 - Cross-Site Scripting Vulnerability
2018-09-11
Bayanno Hospital Management System 4.0 - Cross-Site Scripting
2018-09-11
VirtualBox 5.2.6.r120293 - VM Escape Exploit
2018-09-11
RPi Cam Control < 6.4.25 - Remote Command Execution Exploit
2018-09-11
Avaya one-X 9.x / 10.0.x / 10.1.x Arbitrary File Disclosure / Deletion Vulnerabilities
2018-09-11
Tor #Browser #Firefox #TorBrowser 7.0.8 Information Disclosure Vulnerability
2018-09-11
Easy File Sharing Web Server 6.9 Buffer Overflow Exploit
2018-09-11
Zenmap Nmap 7.70 - Denial of Service Exploit
2018-09-10
Flash Slideshow Maker Professional 5.20 - Buffer Overflow (SEH) Exploit
2018-09-10
Microsoft Baseline Security Analyzer 2.3 - XML External Entity Injection Vulnerability
2018-09-10
Any Sound Recorder 2.93 - Denial of Service Exploit
2018-09-10
Photo To Video Converter Professional 8.07 - Buffer Overflow (SEH) Exploit
2018-09-10
LinkNet LW-N605R 12.20.2.1486 - Remote Code Execution Exploit
2018-09-10
Socusoft 3GP Photo Slideshow 8.05 - Buffer Overflow (SEH) Exploit
2018-09-10
VirtualBox 5.2.6.r120293 - VM Escape
2018-09-10
Ghostscript - Failed Restore Command Execution (Metasploit)
CVE-2018-16509
2018-09-10
Apache Struts 2 - Namespace Redirect OGNL Injection (Metasploit)
CVE-2018-11776
2018-09-10
RPi Cam Control < 6.4.25 - 'preview.php' Remote Command Execution
2018-09-10
Open Source Intelligence Gathering 201
2018-09-10
Open Source Intelligence Gathering 101
2018-09-10
Nmap 7.70 - Denial of Service (PoC)
2018-09-10
Any Sound Recorder 2.93 - Denial of Service (PoC)
2018-09-10
Flash Slideshow Maker Professional 5.20 - Buffer Overflow (SEH)
2018-09-10
SocuSoft iPod Photo Slideshow 8.05 - Buffer Overflow (SEH) Exploit
2018-09-10
Microsoft Baseline Security Analyzer 2.3 - XML External Entity Injection
2018-09-10
Photo To Video Converter Professional 8.07 - Buffer Overflow (SEH)
2018-09-10
Socusoft 3GP Photo Slideshow 8.05 - Buffer Overflow (SEH)
2018-09-10
LW-N605R 12.20.2.1486 - Remote Code Execution
2018-09-10
SocuSoft iPod Photo Slideshow 8.05 - Buffer Overflow (SEH)
2018-09-10
MedDream PACS Server Premium 6.7.1.1 - Directory Traversal Vulnerability
2018-09-09
DVD Photo Slideshow Professional 8.07 - Buffer Overflow (SEH) Exploit
2018-09-09
QNAP Photo Station 5.7.0 - Cross-Site Scripting Vulnerability
2018-09-09
Apache Struts 2 Namespace Redirect OGNL Injection Exploit
2018-09-08
iSmartViewPro 1.5 - 'SavePath for ScreenShots' Local Buffer Overflow (SEH)
2018-09-07
QNAP Photo Station 5.7.0 - Cross-Site Scripting
CVE-2018-0715
2018-09-07
Softneta MedDream PACS Server Premium 6.7.1.1 - Directory Traversal
2018-09-07
DVD Photo Slideshow Professional 8.07 - Buffer Overflow (SEH)
2018-09-07
Ghostscript Failed Restore Command Execution Exploit
2018-09-07
Tenable WAS-Scanner 7.4.1708 - Remote Command Execution Vulnerability
2018-09-07
DokuWiki 2018-04-22a Greebo Arbitrary Code Execution Vulnerability
2018-09-07
MedDream PACS Server Premium 6.7.1.1 - email SQL Injection Vulnerability
2018-09-07
Tenable WAS-Scanner 7.4.1708 - Remote Command Execution
2018-09-07
MedDream PACS Server Premium 6.7.1.1 - 'email' SQL Injection
2018-09-07
D-Link Dir-600M N150 - Cross-Site Scripting Vulnerability
2018-09-06
Opsview Monitor 5.x Command Execution Vulnerability
2018-09-06
Go Pro Fusion Studio 1.2 Privilege Escalation Vulnerability
2018-09-06
Cisco Umbrella Roaming Client 2.0.168 - Privilege Escalation Exploit
2018-09-06
KONE KGC 4.6.4 - Multiple Vulnerabilities
2018-09-06
WirelessHART Fieldgate SWG70 3.0 - Directory Traversal Vulnerability
2018-09-06
Apache Roller 5.0.3 - XML External Entity Injection Exploit
2018-09-06
Jorani Leave Management 0.6.5 - startdate SQL Injection Vulnerability
2018-09-06
Jorani Leave Management 0.6.5 - Cross-Site Scripting Vulnerability
2018-09-06
osCommerce 2.3.4.1 Cross Site Request Forgery Vulnerability
2018-09-06
NovaRad NovaPACS Diagnostics Viewer 8.5 - XML External Entity Injection Vulnerability
2018-09-06
Microsoft people 10.1807.2131.0 - Denial of service Exploit
2018-09-06
Tenda ADSL Router D152 - Cross-Site Scripting Vulnerability
2018-09-06
FUJI XEROX DocuCentre-V 3065 Printer - Remote Command Execution Exploit
2018-09-06
FTPShell Server 6.80 - Add Account Name Buffer Overflow (SEH) Exploit
2018-09-06
Soroush IM Desktop App 0.17.0 - Authentication Bypass Vulnerability
2018-09-06
mooSocial Store Plugin 2.6 - SQL Injection Vulnerability
2018-09-06
Linux/ARM - read(0, buf, 0xff) stager + execve("/bin/sh", NULL, NULL) Shellcode 20 Bytes
2018-09-06
iSmartViewPro 1.5 - DDNS Buffer Overflow Exploit
2018-09-06
Logicspice FAQ Script 2.9.7 - Remote Code Execution Vulnerability
2018-09-06
Simple POS 4.0.24 - columns[0][search][value] SQL Injection Vulnerability
2018-09-06
PHP File Browser Script 1 - Directory Traversal Vulnerability
2018-09-06
Online Quiz Maker 1.0 - File Include Vulnerability
2018-09-06
Trend Micro Virtual Mobile Infrastructure 5.5.1336 - Server address Denial of Service Exploit
2018-09-06
Wikipedia 12.0 - Denial of Service Exploit
2018-09-06
Online Quiz Maker 1.0 - catid SQL Injection Vulnerability
2018-09-06
Admidio 3.3.5 - Cross-Site Request Forgery (Change Permissions) Vulnerability
2018-09-06
Microsoft Windows Explorer Out-of-Bound Read - Denial of Service Exploit
2018-09-06
Symantec Mobile Encryption for iPhone 2.1.0 - Server Denial of Service Exploit
2018-09-06
D-Link DIR-615 - Denial of Service Vulnerability
2018-09-06
Xiaomi MIWiFi Xiaomi_55DD 2.8.50 Out-Of-Band Resource Load Vulnerability
2018-09-06
Visual Ping 0.8.0.0 - Host Denial of Service Exploit
2018-09-06
VSAXESS V2.6.2.70 build20171226_053 - Nickname Denial of Service Exploit
2018-09-06
FsPro Labs Event Log Explorer v4.6.1.2115 - XML External Entity Injection Vulnerability
2018-09-06
AZORult Stealer 2 Botnet SQL Injection Vulnerability
2018-09-06
gVisor Sentry Invalid Access Vulnerability
2018-09-06
Acunetix WVS Reporter 10.0 - Denial of Service Exploit
2018-09-06
Vox TG790 ADSL Router - Cross-Site Scripting Vulnerability
2018-09-06
Linux/ARM - read(0, buf, 0xff) stager + execve("/bin/sh", NULL, NULL) Shellcode 28 Bytes
2018-09-06
Network Manager VPNC Username Privilege Escalation
2018-09-06
ownCloud 0.1.2 User Impersonation Authorization Bypass Vulnerability
2018-09-06
WordPress Quizlord 2.0 Cross Site Scripting Vulnerability
2018-09-06
Cybrotech CyBroHttpServer 1.0.3 Cross Site Scripting Vulnerability
2018-09-06
D-Link DIR-601 - Credential Disclosure Vulnerability
2018-09-06
WordPress Jibu Pro 1.7 Plugin - Cross-Site Scripting Vulnerability
2018-09-06
Nord VPN 6.14.31 - Denial of Service Exploit
2018-09-06
Linux/x86 - IPv6 Reverse TCP Shellcode Generator (94 bytes)
2018-09-06
Linux/x86 - Dual Network Stack (IPv4 and IPv6) Bind TCP Shellcode
2018-09-06
Linux/ARM - execve("/bin/sh", ["/bin/sh"], NULL) Shellcode (32 Bytes)
2018-09-06
Linux/MIPS64 - execve(/bin/sh) Shellcode (48 bytes)
2018-09-06
D-Link Dir-600M N150 - Cross-Site Scripting
2018-09-06
WirelessHART Fieldgate SWG70 3.0 - Directory Traversal
2018-09-06
Apache Roller 5.0.3 - XML External Entity Injection (File Disclosure)
CVE-2014-0030
2018-09-06
Jorani Leave Management 0.6.5 - 'startdate' SQL Injection
CVE-2018-15918
2018-09-06
Cisco Umbrella Roaming Client 2.0.168 - Privilege Escalation
CVE-2018-0437
2018-09-06
Jorani Leave Management 0.6.5 - Cross-Site Scripting
CVE-2018-15917
2018-09-06
NovaRad NovaPACS Diagnostics Viewer 8.5 - XML External Entity Injection (File Disclosure)
2018-09-06
Tenda ADSL Router D152 - Cross-Site Scripting
CVE-2018-14497
2018-09-05
Microsoft people 10.1807.2131.0 - Denial of service (PoC)
2018-09-05
Obtaining Command Execution through the NetworkManager Daemon
2018-09-05
FTPShell Server 6.80 - 'Add Account Name' Buffer Overflow (SEH)
2018-09-05
FUJI XEROX DocuCentre-V 3065 Printer - Remote Command Execution
2018-09-05
mooSocial Store Plugin 2.6 - SQL Injection
2018-09-04
Linux/ARM - read(0, buf, 0xff) stager + execve("/bin/sh", NULL, NULL) Shellcode (20 Bytes)
2018-09-04
Simple POS 4.0.24 - 'columns[0][search][value]' SQL Injection
2018-09-04
PHP File Browser Script 1 - Directory Traversal
2018-09-04
Logicspice FAQ Script 2.9.7 - Remote Code Execution
2018-09-04
iSmartViewPro 1.5 - 'DDNS' Buffer Overflow
2018-09-04
Wikipedia 12.0 - Denial of Service (PoC)
2018-09-03
Online Quiz Maker 1.0 - 'catid' SQL Injection
2018-09-03
Admidio 3.3.5 - Cross-Site Request Forgery (Change Permissions)
2018-09-03
Trend Micro Virtual Mobile Infrastructure 5.5.1336 - 'Server address' Denial of Service (PoC)
2018-09-03
Microsoft Windows Explorer Out-of-Bound Read - Denial of Service (PoC)
2018-09-03
FsPro Labs Event Log Explorer v4.6.1.2115 - XML External Entity Injection
2018-09-03
Symantec Mobile Encryption for iPhone 2.1.0 - 'Server' Denial of Service (PoC)
2018-09-03
D-Link DIR-615 - Denial of Service (PoC)
2018-09-03
Visual Ping 0.8.0.0 - 'Host' Denial of Service (PoC)
2018-09-03
VSAXESS V2.6.2.70 build20171226_053 - 'Nickname' Denial of Service (PoC)
2018-09-03
DamiCMS 6.0.0 - Cross-Site Request Forgery (Change Admin Password)
2018-08-31
Network Manager VPNC - Username Privilege Escalation (Metasploit)
CVE-2018-10900
2018-08-31
Argus Surveillance DVR 4.0.0.0 - Privilege Escalation
2018-08-31
Acunetix WVS Reporter 10.0 - Denial of Service (PoC)
2018-08-31
Vox TG790 ADSL Router - Cross-Site Scripting
2018-08-31
Cybrotech CyBroHttpServer 1.0.3 - Cross-Site Scripting
CVE-2018-16134
2018-08-30
Linux/ARM - read(0, buf, 0xff) stager + execve("/bin/sh", NULL, NULL) Shellcode (28 Bytes)
2018-08-30
WordPress Plugin Quizlord 2.0 - Cross-Site Scripting
2018-08-30
DLink DIR-601 - Credential Disclosure
2018-08-30
WordPress Plugin Jibu Pro 1.7 - Cross-Site Scripting
2018-08-30
Nord VPN 6.14.31 - Denial of Service (PoC)
2018-08-30
Cybrotech CyBroHttpServer 1.0.3 - Directory Traversal Vulnerability
2018-08-30
NetworkActiv Web Server 4.0 Pre-Alpha-3.7.2 - Username Denial of Service Exploit
2018-08-30
Cybrotech CyBroHttpServer 1.0.3 - Directory Traversal
CVE-2018-16133
2018-08-30
NetworkActiv Web Server 4.0 Pre-Alpha-3.7.2 - 'Username' Denial of Service (PoC)
2018-08-30
Trillian 6.1 Build 16 - Sign In Denial of service Exploit
2018-08-29
Trillian 6.1 Build 16 - "Sign In" Denial of service (PoC)
2018-08-29
Cisco AnyConnect Secure Mobility Client 4.6.01099 - Introducir URL Denial of Service Exploit
2018-08-29
Easy PhotoResQ 1.0 - Denial Of Service Exploit
2018-08-29
Drive Power Manager 1.10 - Denial Of Service Exploit
2018-08-29
HD Tune Pro 5.70 - Denial of Service Exploit
2018-08-29
Episerver 7 patch 4 - XML External Entity Injection
2018-08-29
SIPP 3.3 - Stack-Based Buffer Overflow Exploit
2018-08-29
R 3.4.4 - Buffer Overflow (SEH) Exploit
2018-08-29
ipPulse 1.92 - TCP Port Denial of Service Exploit
2018-08-29
Fathom 2.4 - Denial Of Service Exploit
2018-08-29
2018-08-29
Easy PhotoResQ 1.0 - Denial Of Service (PoC)
2018-08-29
Drive Power Manager 1.10 - Denial Of Service (PoC)
2018-08-29
HD Tune Pro 5.70 - Denial of Service (PoC)
2018-08-29
Cisco AnyConnect Secure Mobility Client 4.6.01099 - 'Introducir URL' Denial of Service (PoC)
2018-08-29
Argus Surveillance DVR 4.0.0.0 - Directory Traversal
2018-08-29
Skype Empresarial Office 365 16.0.10730.20053 - 'Dirección de inicio de sesión' Denial of service (PoC)
2018-08-29
Fathom 2.4 - Denial Of Service (PoC)
2018-08-29
Windows/x64 (10) - WoW64 Egghunter Shellcode (50 bytes)
2018-08-29
Linux/x86 - IPv6 Reverse TCP Shellcode Generator (94 bytes)
2018-08-29
Linux/x86 - Dual Network Stack (IPv4 and IPv6) Bind TCP Shellcode
2018-08-29
Linux/ARM - execve("/bin/sh", ["/bin/sh"], NULL) Shellcode (32 Bytes)
2018-08-29
R 3.4.4 - Buffer Overflow (SEH)
2018-08-29
SIPP 3.3 - Stack-Based Buffer Overflow
2018-08-29
Linux/MIPS64 - execve(/bin/sh) Shellcode (48 bytes)
2018-08-29
Episerver 7 patch 4 - XML External Entity Injection
2018-08-29
Argus Surveillance DVR 4.0.0.0 Privilege Escalation Vulnerability
2018-08-29
Argus Surveillance DVR 4.0.0.0 Directory Traversal Vulnerability
2018-08-29
ipPulse 1.92 - 'TCP Port' Denial of Service (PoC)
2018-08-29
phpMyAdmin 4.7.x - Cross-Site Request Forgery
CVE-2017-1000499
2018-08-29
Eaton Xpert Meter 13.4.0.10 - SSH Private Key Disclosure
2018-08-29
phpMyAdmin 4.7.x - Cross-Site Request Forgery Vulnerability
2018-08-29
NASA #openVSP 3.16.1 - Denial of Service Exploit
2018-08-29
Eaton Xpert Meter 13.4.0.10 - SSH Private Key Disclosure Exploit
2018-08-29
Immunity Debugger 1.85 - Denial of Service
2018-08-29
Immunity Debugger 1.85 - Denial of Service (PoC)
2018-08-29
NASA openVSP 3.16.1 - Denial of Service (PoC)
2018-08-29
Instagram App 41.1788.50991.0 - Denial of Service Exploit
2018-08-28
Microsoft Windows - Advanced Local Procedure Call (ALPC) Local Privilege Escalation Exploit
2018-08-28
Microsoft Windows - JScript RegExp.lastIndex Use-After-Free Exploit
2018-08-28
UltraISO 9.7.1.3519 - Buffer Overflow (SEH) Exploit
2018-08-28
Microsoft Windows - Advanced Local Procedure Call (ALPC) Local Privilege Escalation
2018-08-28
UltimatePOS 2.5 Remote Code Execution Vulnerability
2018-08-28
Dojo Toolkit 1.13 Cross Site Scripting Vulnerability
2018-08-28
Adobe Flash - AVC Processing Out-of-Bounds Read Exploit
2018-08-28
Firefox 55.0.3 - Denial of Service Exploit
2018-08-28
Cisco Network Assistant 6.3.3 - Cisco Login Denial of Service Exploit
2018-08-28
CuteFTP 5.0 - Buffer Overflow Exploit
2018-08-28
Trend Micro Enterprise Mobile Security 2.0.0.1700 - Servidor Denial of Service Exploit
2018-08-28
Microsoft Windows - JScript RegExp.lastIndex Use-After-Free
CVE-2018-8353
2018-08-28
UltraISO 9.7.1.3519 - Buffer Overflow (SEH)
2018-08-28
Instagram App 41.1788.50991.0 - Denial of Service (PoC)
2018-08-28
Schneider Electric BMX P34 CPU B - Open Redirect
2018-08-28
Libpango 1.40.8 - Denial of Service Exploit
2018-08-28
Electron WebPreferences - Remote Code Execution Exploit
2018-08-28
HP Jetdirect - Path Traversal Arbitrary Code Execution Exploit
2018-08-28
Cisco Network Assistant 6.3.3 - 'Cisco Login' Denial of Service (PoC)
2018-08-28
Apache Struts 2.3 < 2.3.34 / 2.5 < 2.5.16 - Remote Code Execution (2) Exploit
2018-08-27
Apache Struts 2.3 < 2.3.34 / 2.5 < 2.5.16 - Remote Code Execution (1) Exploit
2018-08-27
WordPress Gift Voucher 1.0.5 Plugin - template_id SQL Injection Vulnerability
2018-08-27
WordPress Plainview Activity Monitor 20161228 Plugin - Command Injection Exploit
2018-08-27
Sentrifugo HRMS 3.2 - deptid SQL Injection Vulnerability
2018-08-27
LiteCart 2.1.2 - Arbitrary File Upload Exploit
2018-08-27
ManageEngine ADManager Plus 6.5.7 - Cross-Site Scripting Vulnerability
2018-08-27
Gleez CMS 1.2.0 - Cross-Site Request Forgery (Add Admin) Vulnerability
2018-08-27
RICOH MP C4504ex Printer - Cross-Site Request Forgery (Add Admin) Vulnerability
2018-08-27
WordPress Plugin Plainview Activity Monitor 20161228 - Command Injection
CVE-2018-15877
2018-08-27
HP Jetdirect - Path Traversal Arbitrary Code Execution (Metasploit)
CVE-2017-2741
2018-08-27
Electron WebPreferences - Remote Code Execution
CVE-2018-15685
2018-08-27
Responsive FileManager < 9.13.4 - Directory Traversal
CVE-2018-15535
2018-08-27
Seagate Personal Cloud SRN21C 4.3.16.0 / 4.3.18.0 - SQL Injection
2018-08-27
Foxit PDF Reader 9.0.1.1049 - Pointer Overwrite Use-After-Free (Metasploit)
CVE-2018-9948
2018-08-27
Adobe Flash - AVC Processing Out-of-Bounds Read
CVE-2018-12827
2018-08-27
LiteCart 2.1.2 - Arbitrary File Upload
2018-08-27
Sentrifugo HRMS 3.2 - 'deptid' SQL Injection
2018-08-27
Node.JS - 'node-serialize' Remote Code Execution
CVE-2017-5941
2018-08-27
RICOH MP C4504ex Printer - Cross-Site Request Forgery (Add Admin)
2018-08-27
Libpango 1.40.8 - Denial of Service (PoC)
CVE-2018-15120
2018-08-27
Apache Struts 2.3 < 2.3.34 / 2.5 < 2.5.16 - Remote Code Execution (2)
CVE-2018-11776
2018-08-27
Trend Micro Enterprise Mobile Security 2.0.0.1700 - 'Servidor' Denial of Service (PoC)
2018-08-27
Apache Struts 2.3 < 2.3.34 / 2.5 < 2.5.16 - Remote Code Execution (1)
CVE-2018-11776
2018-08-27
CuteFTP 5.0 - Buffer Overflow
2018-08-27
Gleez CMS 1.2.0 - Cross-Site Request Forgery (Add Admin)
CVE-2018-15845
2018-08-27
Firefox 55.0.3 - Denial of Service (PoC)
2018-08-27
ManageEngine ADManager Plus 6.5.7 - Cross-Site Scripting
2018-08-26
WordPress Plugin Gift Voucher 1.0.5 - 'template_id' SQL Injection
2018-08-26
ManageEngine ADManager Plus 6.5.7 - HTML Injection
CVE-2018-15608
2018-08-26
UltimatePOS 2.5 - Remote Code Execution
2018-08-26
Vox TG790 ADSL Router - Cross-Site Request Forgery (Add Admin)
2018-08-26
SkypeApp 12.8.487.0 - 'Cuenta de Skype o Microsoft' Denial of Service (PoC)
2018-08-26
StyleWriter 4 1.0 - Denial of Service (PoC)
2018-08-26
Epiphany Web Browser 3.28.1 - Denial of Service (PoC)
2018-08-26
PCViewer vt1000 - Directory Traversal
2018-08-26
Twitter-Clone 1 - 'code' SQL Injection
2018-08-26
CuteFTP 8.3.1 - Denial of Service (PoC)
2018-08-26
Softdisk 3.0.3 - Denial Of Service (PoC)
2018-08-26
Windows 10 Diagnostics Hub Standard Collector Service - Privilege Escalation
CVE-2018-0952
2018-08-26
Geutebrueck re_porter 16 - Cross-Site Scripting
CVE-2018-15533
2018-08-26
Easyboot 6.6.0 - Denial Of Service (PoC)
2018-08-26
Geutebrueck re_porter 7.8.974.20 - Credential Disclosure
CVE-2018-15534
2018-08-26
UltraISO 9.7.1.3519 - Denial Of Service (PoC)
2018-08-26
Textpad 7.6.4 - Denial Of Service (PoC)
2018-08-26
KingMedia 4.1 - Remote Code Execution
2018-08-26
ZyXEL VMG3312-B10B - Cross-Site Scripting
2018-08-26
Project64 2.3.2 - Buffer Overflow (SEH)
2018-08-26
Apache Struts 2.x Remote Code Execution Vulnerability
2018-08-24
Couchbase Server Remote Code Execution Vulnerability
2018-08-24
Foxit PDF Reader 9.0.1.1049 Pointer Overwrite Use-After-Free Exploit
2018-08-24
Seagate Personal Cloud SRN21C SQL Injection Vulnerability
2018-08-24
Epiphany Web Browser 3.28.1 - Denial of Service Exploit
2018-08-24
SkypeApp 12.8.487.0 - Cuenta de Skype o Microsoft Denial of Service Exploit
2018-08-24
StyleWriter 4 1.0 - Denial of Service Exploit
2018-08-24
CuteFTP 8.3.1 - Denial of Service Exploit
2018-08-24
Vox TG790 ADSL Router - Cross-Site Request Forgery (Add Admin) Vulnerability
2018-08-24
PCViewer vt1000 - Directory Traversal Vulnerability
2018-08-24
Windows 10 Diagnostics Hub Standard Collector Service - Privilege Escalation Exploit
2018-08-24
Ghostscript - Multiple Vulnerabilities
2018-08-24
Geutebrueck re_porter 7.8.974.20 - Credential Disclosure Vulnerability
2018-08-24
Geutebrueck re_porter 16 - Cross-Site Scripting Vulnerability
2018-08-24
UltraISO 9.7.1.3519 - Denial Of Service Exploit
2018-08-24
Softdisk 3.0.3 - Denial Of Service Exploit
2018-08-24
Easyboot 6.6.0 - Denial Of Service Exploit
2018-08-24
Textpad 7.6.4 - Denial Of Service Exploit
2018-08-24
KingMedia 4.1 - Remote Code Execution Exploit
2018-08-24
OpenSSH 7.7 - Username Enumeration Exploit
2018-08-24
Hikvision IP Camera 5.4.0 - User Enumeration Exploit
2018-08-24
ZyXEL VMG3312-B10B - Cross-Site Scripting Vulnerability
2018-08-24
Wordpress Ninja Forms 3.3.13 Plugin - CSV Injection Vulnerability
2018-08-24
Twitter-Clone 1 - userid SQL Injection Vulnerability
2018-08-24
Twitter-Clone 1 - Cross-Site Request Forgery (Delete Post) Vulnerability
2018-08-24
Project64 2.3.2 - Buffer Overflow (SEH) Exploit
2018-08-24
Project64 2.3.2 - Denial Of Service Exploit
2018-08-24
Linux rc.local Payload Persistence Module Exploit
2018-08-24
Autostart Desktop Item Persistence Exploit
2018-08-24
BMC MyIT Java System Solutions SSO Plugin 4.0.13.1 Cross Site Scripting Vulnerability
2018-08-24
Easylogin Pro 1.3.0 - Unserialize Remote Code Execution Exploit
2018-08-24
SEIG SCADA System 9 - Remote Code Execution Exploit
2018-08-24
SEIG Modbus 3.4 - Remote Code Execution Exploit
2018-08-24
SEIG Modbus 3.4 - Denial of Service Exploit
2018-08-24
Prime95 29.4b7 - Denial Of Service Exploit
2018-08-24
Restorator 1793 - Denial of Service Exploit
2018-08-24
Zortam MP3 Media Studio 23.95 - Denial of Service Exploit
2018-08-24
Countly - Persistent Cross-Site Scripting Vulnerability
2018-08-24
WordPress Chained Quiz 1.0.8 Plugin - answer SQL Injection Vulnerability
2018-08-24
WordPress Tagregator 0.6 Plugin - Cross-Site Scripting Vulnerability
2018-08-24
MyBB Moderator Log Notes Plugin 1.1 - Cross-Site Request Forgery Vulnerability
2018-08-24
Xen xen-netback xenvif_set_hash_mapping Integer Overflow Exploit
2018-08-24
Microsoft Edge Chakra JIT - InitializeNumberFormat and InitializeDateTimeFormat Type Confusion Explo
2018-08-24
Microsoft Edge Chakra JIT - InlineArrayPush Type Confusion Exploit
2018-08-24
Microsoft Edge Chakra JIT - DictionaryPropertyDescriptor::CopyFrom Type Confusion Exploit
2018-08-24
Microsoft Edge Chakra JIT - Scope Parsing Type Confusion Exploit
2018-08-24
Microsoft Edge Chakra JIT - ImplicitCallFlags Check Bypass with Intl Exploit
2018-08-24
ADM 3.1.2RHG1 - Remote Code Execution Exploit
2018-08-24
OpenSSH 2.3 < 7.4 - Username Enumeration Exploit
2018-08-24
CEWE Photoshow 6.3.4 - Denial of Service Exploit
2018-08-24
Linux PAM 0.6.9 Authentication Replay Vulnerability
2018-08-24
Apple Smart Card Services Memory Corruption Vulnerability
2018-08-24
OpenSC 0.18.0 Buffer Overflow / Out Of Bounds Read Vulnerability
2018-08-24
Yubico PIV Tool 1.5.0 Buffer Overflow Vulnerability
2018-08-24
Yubico 0.1.9 libykneomgr Out Of Bounds Read / Write Vulnerability
2018-08-24
Jetty 6.1.6 Cross Site Scripting Vulnerability
2018-08-24
Easy RM To MP3 Converter 2.6 Stack Buffer Overflow Exploit
2018-08-24
Wordpress Plugin Ninja Forms 3.3.13 - CSV Injection
2018-08-21
OpenSSH 7.7 - Username Enumeration
CVE-2018-15473
2018-08-21
Twitter-Clone 1 - Cross-Site Request Forgery (Delete Post)
2018-08-21
Hikvision IP Camera 5.4.0 - User Enumeration (Metasploit)
2018-08-21
Twitter-Clone 1 - 'userid' SQL Injection
2018-08-21
Project64 2.3.2 - Denial Of Service (PoC)
2018-08-21
Countly - Persistent Cross-Site Scripting
2018-08-20
Easylogin Pro 1.3.0 - Encryptor.php Unserialize Remote Code Execution
CVE-2018-15576
2018-08-20
Prime95 29.4b7 - Denial Of Service (PoC)
2018-08-20
WordPress Plugin Tagregator 0.6 - Cross-Site Scripting
CVE-2018-10752
2018-08-20
MyBB Moderator Log Notes Plugin 1.1 - Cross-Site Request Forgery
2018-08-20
Restorator 1793 - Denial of Service (PoC)
2018-08-20
Zortam MP3 Media Studio 23.95 - Denial of Service (PoC)
2018-08-20
WordPress Plugin Chained Quiz 1.0.8 - 'answer' SQL Injection
2018-08-20
SEIG Modbus 3.4 - Remote Code Execution
CVE-2013-0662
2018-08-20
SEIG Modbus 3.4 - Denial of Service (PoC)
CVE-2013-0662
2018-08-20
SEIG SCADA System 9 - Remote Code Execution
CVE-2013-0657
2018-08-20
Microsoft Edge Chakra JIT - InitializeNumberFormat and InitializeDateTimeFormat Type Confusion
CVE-2018-8298
2018-08-17
Microsoft Edge Chakra JIT - 'InlineArrayPush' Type Confusion
2018-08-17
Microsoft Edge Chakra JIT - 'DictionaryPropertyDescriptor::CopyFrom' Type Confusion
CVE-2018-8291
2018-08-17
Microsoft Edge Chakra JIT - Scope Parsing Type Confusion
CVE-2018-8279
2018-08-17
Microsoft Edge Chakra JIT - ImplicitCallFlags Check Bypass with Intl
CVE-2018-8288
2018-08-17
ADM 3.1.2RHG1 - Remote Code Execution
CVE-2018-11510
2018-08-17
CEWE Photoshow 6.3.4 - Denial of Service (PoC)
2018-08-17
OpenSSH 2.3 < 7.4 - Username Enumeration (PoC)
2018-08-17
Mikrotik WinBox 6.42 - Credential Disclosure (golang)
2018-08-17
Wordpress Export Users to CSV 1.1.1 Plugin - CSV Injection Vulnerability
2018-08-17
Pimcore 5.2.3 - SQL Injection / Cross-Site Scripting / Cross-Site Request Forgery Vulnerabilities
2018-08-17
WebkitGTK+ 2.20.3 - ImageBufferCairo::getImageData() Buffer Overflow Exploit
2018-08-17
CentralManagement Software 1.4.13 - Denial of Service Exploit
2018-08-17
Oracle Glassfish OSE 4.1 - Path Traversal (Metasploit)
CVE-2017-1000028
2018-08-17
Pimcore 5.2.3 - SQL Injection / Cross-Site Scripting / Cross-Site Request Forgery
CVE-2018-14057
2018-08-16
Central Management Software 1.4.13 - Denial of Service (PoC)
2018-08-16
Wordpress Plugin Export Users to CSV 1.1.1 - CSV Injection
2018-08-16
WebkitGTK+ 2.20.3 - 'ImageBufferCairo::getImageData()' Buffer Overflow (PoC)
CVE-2018-12293
2018-08-16
ownCloud iOS Application 3.7.3 Cross Site Scripting Vulnerability
2018-08-16
Atmosphere 1.x / 2.x Cross Site Scripting Vulnerability
2018-08-16
TP-Link WR840N 0.9.1 3.16 - Denial of Service Exploit
2018-08-16
OpenEMR 5.0.1.3 - Arbitrary File Actions Vulnerability
2018-08-16
ObserverIP Scan Tool 1.4.0.1 - Denial of Service Exploit
2018-08-16
ObserverIP Scan Tool 1.4.0.1 - Denial of Service (PoC)
2018-08-16
TP-Link WR840N 0.9.1 3.16 - Denial of Service (PoC)
CVE-2018-15172
2018-08-16
OpenEMR 5.0.1.3 - Arbitrary File Actions
CVE-2018-15140
2018-08-16
cPanel Filename Based Stored XSS < v76 Exploit
2018-08-16
ASUSTOR ADM 3.1.0.RFQ3 - Remote Command Execution / SQL Injection Vulnerabilities
2018-08-15
ASUS-DSL N10 1.1.2.2_17 - Authentication Bypass Vulnerability
2018-08-15
JioFi 4G M2S 1.0.2 - Denial of Service Exploit
2018-08-15
ASUS-DSL N10 1.1.2.2_17 - Authentication Bypass
2018-08-15
ASUSTOR ADM 3.1.0.RFQ3 - Remote Command Execution / SQL Injection
CVE-2018-11509
2018-08-15
JioFi 4G M2S 1.0.2 - Denial of Service (PoC)
CVE-2018-15181
2018-08-15
Cloudme 1.9 - Buffer Overflow (DEP) (Metasploit)
CVE-2018-6892
2018-08-15
Oracle GlassFish Server Open Source Edition 4.1 - Path Traversal (Metasploit)
CVE-2017-1000028
2018-08-15
cgit 1.2.1 - Directory Traversal (Metasploit)
CVE-2018-14912
2018-08-15
Wansview 1.0.2 - Denial of Service (PoC)
2018-08-15
Oracle Weblogic Server - Deserialization Remote Code Execution (Metasploit)
CVE-2018-2628
2018-08-15
Android - Directory Traversal over USB via Injection in blkid Output
CVE-2018-9445
2018-08-15
Switch Port Mapping Tool 2.81.2 - 'Name Field' Denial of Service (PoC)
2018-08-15
IBM Sterling B2B Integrator 5.2.0.1/5.2.6.3 - Cross-Site Scripting
CVE-2018-1513
2018-08-15
PLC Wireless Router GPN2.4P21-C-CN - Denial of Service
2018-08-15
Acunetix WVS 10.0 Build 20150623 - Denial of Service (PoC)
2018-08-15
PostgreSQL 9.4-0.5.3 - Privilege Escalation
CVE-2017-14798
2018-08-15
IP Finder 1.5 - Denial of Service (PoC)
2018-08-15
Monitoring software iSmartViewPro 1.5 - 'SavePath for ScreenShots' Buffer Overflow
2018-08-15
Microsoft DirectX SDK - 'Xact.exe' Remote Code Execution
2018-08-15
MyBB Like Plugin 3.0.0 - Cross-Site Scripting
2018-08-15
MyBB Thank You/Like Plugin 3.0.0 - Cross-Site Scripting
CVE-2018-14888
2018-08-15
Zimbra 8.6.0_GA_1153 - Cross-Site Scripting
CVE-2016-3411
2018-08-15
iSmartViewPro 1.5 - 'Password' Buffer Overflow
2018-08-15
Linux Kernel 4.14.7 (Ubuntu 16.04 / CentOS 7) - (KASLR & SMEP Bypass) Arbitrary File Read
CVE-2017-18344.
2018-08-15
reSIProcate 1.10.2 - Heap Overflow
CVE-2018-12584
2018-08-15
TP-Link C50 Wireless Router 3 - Cross-Site Request Forgery (Information Disclosure)
2018-08-15
TP-Link C50 Wireless Router 3 - Cross-Site Request Forgery (Remote Reboot)
2018-08-15
Mikrotik WinBox 6.42 - Credential Disclosure (Metasploit)
2018-08-15
osTicket 1.10.1 - Arbitrary File Upload
CVE-2017-15580
2018-08-15
TP-Link Wireless N Router WR840N - Denial of Service (PoC)
2018-08-15
LG-Ericsson iPECS NMS 30M - Directory Traversal
2018-08-15
iSmartViewPro 1.5 - 'Account' Buffer Overflow
2018-08-15
iSmartViewPro 1.5 - 'Device Alias' Buffer Overflow
2018-08-15
Monstra-Dev 3.0.4 - Cross-Site Request Forgery (Account Hijacking)
2018-08-15
CloudMe Sync 1.10.9 - Buffer Overflow (SEH)(DEP Bypass)
2018-08-15
Wavemaker Studio 6.6 - Server-Side Request Forgery
2018-08-15
Sitecore.Net 8.1 - Directory Traversal
CVE-2018-7669
2018-08-15
AgataSoft Auto PingMaster 1.5 - Buffer Overflow (SEH)
2018-08-15
Cloudme 1.9 - Buffer Overflow (DEP) Exploit
2018-08-15
Android - Directory Traversal over USB via Injection in blkid Output Exploit
2018-08-15
Oracle GlassFish Server Open Source Edition 4.1 - Path Traversal Exploit
2018-08-15
cgit 1.2.1 - Directory Traversal Exploit
2018-08-15
Wansview 1.0.2 - Denial of Service Exploit
2018-08-15
WordPress Ultimate Product Catalog 4.3.11 Plugin - SQL Injection Vulnerability
2018-08-15
Switch Port Mapping Tool 2.81.2 - Name Field Denial of Service Exploit
2018-08-15
PLC Wireless Router GPN2.4P21-C-CN - Denial of Service
2018-08-15
Acunetix WVS 10.0 Build 20150623 - Denial of Service Exploit
2018-08-15
IBM Sterling B2B Integrator 5.2.0.1/5.2.6.3 - Cross-Site Scripting Vulnerability
2018-08-15
Linux/x64 - Add Root User (toor/toor) Shellcode (99 bytes)
2018-08-15
PostgreSQL 9.4-0.5.3 - Privilege Escalation Exploit
2018-08-15
Microsoft DirectX SDK - Xact.exe Remote Code Execution Exploit
2018-08-15
iSmartViewPro 1.5 - SavePath for ScreenShots Buffer Overflow Exploit
2018-08-15
IP Finder 1.5 - Denial of Service Exploit
2018-08-15
Dicoogle PACS 2.5.0 Web Server Directory Traversal Exploit
2018-08-15
Wavemaker Studio 6.6 - Server-Side Request Forgery Vulnerability
2018-08-15
Monstra-Dev 3.0.4 - Cross-Site Request Forgery (Account Hijacking) Vulnerability
2018-08-15
Oracle Weblogic Server Deserialization Remote Code Execution Exploit
2018-08-11
iSmartViewPro 1.5 - Password Buffer Overflow Exploit
2018-08-11
MyBB Like Plugin 3.0.0 - Cross-Site Scripting Vulnerability
2018-08-11
MyBB Thank You/Like Plugin 3.0.0 - Cross-Site Scripting Vulnerability
2018-08-11
Zimbra 8.6.0_GA_1153 - Cross-Site Scripting Vulnerability
2018-08-11
Linux #Kernel #LinuxKernel 4.14.7 ( #Ubuntu 16.04 / #CentOS 7) Arbitrary File Read Exploit
2018-08-09
Mikrotik WinBox 6.42 - Credential Disclosure Exploit
2018-08-09
TPLink Archer C50 V3 Wireless Router 3 - CSRF (Remote Reboot) Vulnerability
2018-08-09
TPLink Archer C50 V3 Wireless Router 3 - CSRF (Information Disclosure) Vulnerability
2018-08-09
CloudMe Sync 1.10.9 - Buffer Overflow (SEH) Exploit
2018-08-09
AgataSoft Auto PingMaster 1.5 - Buffer Overflow (SEH) Exploit
2018-08-09
Sitecore.Net 8.1 - Directory Traversal Vulnerability
2018-08-09
Ericsson-LG iPECS NMS 30M - Directory Traversal Vulnerability
2018-08-09
TP-Link TL-WR840N - Denial of Service Vulnerability
2018-08-09
man-cgi Local File Inclusion Vulnerability
2018-08-09
reSIProcate 1.10.2 Heap Overflow Exploit
2018-08-08
iSmartViewPro 1.5 - Account Buffer Overflow Exploit
2018-08-08
iSmartViewPro 1.5 - Device Alias Buffer Overflow Exploit
2018-08-08
Microsoft Windows SCF File Feature Bypass Vulnerability
2018-08-08
OpenEMR < 5.0.1 - Remote Code Execution Exploit
2018-08-08
OCS Inventory NG Webconsole Shell Upload Vulnerability
2018-08-08
QNap QVR Client 5.0.3.23100 - Denial of Service Exploit
2018-08-08
Open-AudIT Community 2.2.6 - Cross-Site Scripting Vulnerability
2018-08-08
Monstra 3.0.4 - Cross-Site Scripting Vulnerability
2018-08-08
LAMS < 3.1 - Cross-Site Scripting Vulnerability
2018-08-08
Subrion CMS 4.2.1 - Cross-Site Scripting Vulnerability
2018-08-08
onArcade 2.4.2 - Cross-Site Request Forgery (Add Admin) Vulnerability
2018-08-08
CMS ISWEB 3.5.3 - Directory Traversal Vulnerability
2018-08-08
Fortinet FortiClient 5.2.3 (Windows 10 x64 Creators) - Local Privilege Escalation Exploit
2018-08-08
cgit < 1.2.1 - cgit_clone_objects() Directory Traversal Vulnerability
2018-08-08
Vuze Bittorrent Client 5.7.6.0 - SSDP Processing XML External Entity Injection Vulnerability
2018-08-08
Plex Media Server 1.13.2.5154 - SSDP Processing XML External Entity Injection Vulnerability
2018-08-08
PHP Template Store Script 3.0.6 - Cross-Site Scripting Vulnerability
2018-08-08
Wedding Slideshow Studio 1.36 - Buffer Overflow Exploit
2018-08-08
Linux Kernel UDP Fragmentation Offset (UFO) Privilege Escalation Exploit
2018-08-08
Linux/x86 - Reverse TCP (::FFFF:192.168.1.5:4444/TCP) Shell (/bin/sh) + Null-Free + IPv6 (86 bytes)
2018-08-08
Basic B2B Script 2.0.0 - Cross-Site Scripting Vulnerability
2018-08-08
ASUS DSL-N12E C1 1.1.2.3_345 - Remote Command Execution Exploit
2018-08-08
Seq 4.2.476 - Authentication Bypass Vulnerability
2018-08-08
AgataSoft Auto PingMaster 1.5 - Host name Denial of Service PoC Exploit
2018-08-08
PageResponse FB Inboxer Add-on 1.2 - search_field SQL Injection Vulnerability
2018-08-08
TI Online Examination System v2 - Arbitrary File Download Vulnerability
2018-08-08
Chartered Accountant : Auditor Website 2.0.1 - Cross-Site Scripting Vulnerability
2018-08-08
WityCMS 0.6.2 - Cross-Site Request Forgery (Password Change) Vulnerability
2018-08-08
Imperva SecureSphere 12.0.0.50 - SealMode Shell Escape Exploit
2018-08-08
Imperva SecureSphere 11.5 / 12.0 / 13.0 - Privilege Escalation Exploit
2018-08-08
CoSoSys Endpoint Protector 4.5.0.1 - Authenticated Remote Root Command Injection Exploit
2018-08-08
Universal Media Server 7.1.0 - SSDP Processing XML External Entity Injection Vulnerability
2018-08-08
DataLife Engine 13.0 Cross Site Scripting Vulnerability
2018-08-08
WebRTC - H264 NAL Packet Processing Type Confusion Exploit
2018-08-08
WebRTC - FEC Processing Overflow Exploit
2018-08-08
WebRTC - VP8 Block Decoding Use-After-Free Exploit
2018-08-08
Easy DVD Creator 2.5.11 Buffer Overflow Exploit
2018-08-08
My Video Converter 1.5.24 Buffer Overflow Exploit
2018-08-08
Allok Fast AVI MPEG Splitter 1.2 SEH Overwrite Exploit
2018-08-08
Linux/ARM - Reverse (::1:4444/TCP) Shell (/bin/sh) +IPv6 Shellcode (116 Bytes)
2018-08-08
Switch Port Mapping Tool 2.81 - SNMP Community Name Denial of Service PoC Exploit
2018-08-08
ipPulse 1.92 - Licence Key Denial of Service PoC Exploit
2018-08-08
HRSale 1.0.6 Local File Disclosure Vulnerability
2018-08-08
MicroFocus Secure Messaging Gateway Remote Code Execution Exploit
2018-08-08
Vtiger CRM 6.3.0 Authenticated Logo Upload Remote Command Execution Exploit
2018-08-08
SonicWall Global Management System XMLRPC Exploit
2018-08-08
Microsoft Wireless Display Adapter 2 Command Injection / Broken Access Control Vulnerability
2018-08-08
Allok MOV Converter 4.6.1217 Buffer Overflow Exploit
2018-08-08
Responsive Filemanager 9.13.1 Server-Side Request Forgery Vulnerability
2018-08-08
Charles Proxy 4.2 - Local root Privilege Escalation Exploit
2018-08-08
QNap QVR Client 5.0.3.23100 - Denial of Service (PoC)
2018-08-07
OpenEMR < 5.0.1 - Remote Code Execution
2018-08-07
Open-AudIT Community 2.2.6 - Cross-Site Scripting
2018-08-06
Monstra 3.0.4 - Cross-Site Scripting
2018-08-06
CMS ISWEB 3.5.3 - Directory Traversal
2018-08-06
onArcade 2.4.2 - Cross-Site Request Forgery (Add Admin)
2018-08-06
LAMS < 3.1 - Cross-Site Scripting
2018-08-06
Subrion CMS 4.2.1 - Cross-Site Scripting
2018-08-06
Fortinet FortiClient 5.2.3 (Windows 10 x64 Creators) - Local Privilege Escalation
2018-08-05
cgit < 1.2.1 - 'cgit_clone_objects()' Directory Traversal
2018-08-03
Linux Kernel - UDP Fragmentation Offset (UFO) Privilege Escalation (Metasploit)
2018-08-03
Plex Media Server 1.13.2.5154 - SSDP Processing XML External Entity Injection
2018-08-03
Vuze Bittorrent Client 5.7.6.0 - SSDP Processing XML External Entity Injection
2018-08-03
Linux/ARM - Bind (4444/TCP) Shell +IPv6 Shellcode (128 Bytes)
2018-08-03
PHP Template Store Script 3.0.6 - Cross-Site Scripting
2018-08-03
Wedding Slideshow Studio 1.36 - Buffer Overflow
2018-08-03
Entrepreneur Job Portal Script 3.0.1 - Cross-Site Scripting
2018-08-03
Basic B2B Script 2.0.0 - Cross-Site Scripting
2018-08-03
Linux/x86 - Reverse Shell (/bin/sh)+Null Free+IPv6 Shellcode (86 bytes)
2018-08-03
AgataSoft Auto PingMaster 1.5 - 'Host name' Denial of Service (PoC)
2018-08-02
Seq 4.2.476 - Authentication Bypass
2018-08-02
ASUS DSL-N12E_C1 1.1.2.3_345 - Remote Command Execution
2018-08-02
Allok Fast AVI MPEG Splitter 1.2 - Buffer Overflow (PoC)
2018-08-02
Universal Media Server 7.1.0 - SSDP Processing XML External Entity Injection
2018-08-02
SecureSphere 12.0.0.50 - SealMode Shell Escape (Metasploit)
2018-08-02
CoSoSys Endpoint Protector 4.5.0.1 - Authenticated Remote Root Command Injection
2018-08-02
Imperva SecureSphere 11.5 / 12.0 / 13.0 - Privilege Escalation
2018-08-02
PageResponse FB Inboxer Add-on 1.2 - 'search_field' SQL Injection
2018-08-02
TI Online Examination System v2 - Arbitrary File Download
2018-08-02
WityCMS 0.6.2 - Cross-Site Request Forgery (Password Change)
2018-08-02
Sun Solaris 11.3 AVS - Local Kernel root Exploit
2018-08-02
Chartered Accountant : Auditor Website 2.0.1 - Cross-Site Scripting
2018-08-02
SonicWall Global Management System - XMLRPC set_time_zone Command Injection (Metasploit)
2018-08-01
WebRTC - H264 NAL Packet Processing Type Confusion
2018-08-01
WebRTC - FEC Processing Overflow
2018-08-01
WebRTC - VP8 Block Decoding Use-After-Free
2018-08-01
Axis Network Camera - .srv to parhand RCE (Metasploit)
2018-08-01
Linux/ARM - Reverse (::1:4444/TCP) Shell +IPv6 Shellcode (116 Bytes)
2018-08-01
Switch Port Mapping Tool 2.81 - 'SNMP Community Name' Denial of Service (PoC)
2018-08-01
ipPulse 1.92 - 'Licence Key' Denial of Service (PoC)
2018-08-01
Allok MOV Converter 4.6.1217 - Buffer Overflow (SEH)
2018-08-01
fusermount - user_allow_other Restriction Bypass and SELinux Label Control Exploit
2018-07-30
Charles Proxy 4.2 - Local root Privilege Escalation
2018-07-30
fusermount - user_allow_other Restriction Bypass and SELinux Label Control
2018-07-30
H2 Database 1.4.197 - Information Disclosure
2018-07-30
Microsoft Windows Kernel - win32k!NtUserConsoleControl Denial of Service #PoC Exploit
2018-07-30
H2Database 1.4.197 - Information Disclosure Exploit
2018-07-30
ipPulse 1.92 - IP Address/HostName-Comment Denial of Service #PoC Exploit
2018-07-30
Microsoft Windows Kernel - 'win32k!NtUserConsoleControl' Denial of Service (PoC)
2018-07-30