Exploits (Total: 96786)

    
    
    
Quest NetVault Backup Server < 11.4.5 - Process Manager Service SQL Injection / Remote Code Execution
2019-02-22
AirDrop 2.0 - Denial of Service (DoS)
2019-02-21
MikroTik RouterOS < 6.43.12 (stable) / < 6.42.12 (long-term) - Firewall and NAT Bypass
2019-02-21
ScreenStream 3.0.15 - Denial of Service
2019-02-21
Virtual VCR Max .0a - '.vcr' Buffer Overflow (PoC)
2019-02-21
RealTerm Serial Terminal 2.0.0.70 - 'Echo Port' Buffer Overflow (SEH)
2019-02-21
EI-Tube 3 - SQL Injection
2019-02-21
Valentina Studio 9.0.5 Linux - 'Host' Buffer Overflow (PoC)
2019-02-21
C4G Basic Laboratory Information System (BLIS) 3.4 - SQL Injection
2019-02-21
Memu Play 6.0.7 - Privilege Escalation
2019-02-21
Belkin Wemo UPnP - Remote Code Execution (Metasploit)
2019-02-20
MatrixSSL < 4.0.2 - Stack Buffer Overflow Verifying x.509 Certificates
2019-02-20
Android Kernel < 4.8 - ptrace seccomp Filter Bypass
2019-02-20
FaceTime - Texture Processing Memory Corruption
2019-02-20
WinRAR 5.61 - '.lng' Denial of Service
2019-02-20
webERP 4.15 - 'ImportBankTransaction' Blind SQL Injection
2019-02-20
FTPShell Server 6.83 - 'Account name to ban' Denial of Service (PoC)
2019-02-20
HotelDruid 2.3 - Cross-Site Scripting
2019-02-20
Apple macOS 10.13.5 - Local Privilege Escalation
2019-02-20
Jenkins - Remote Code Execution
2019-02-19
Ask Expert Script 3.0.5 - Cross Site Scripting / SQL Injection
2019-02-19
Zoho ManageEngine Netflow Analyzer Professional 7.0.0.2 - Path Traversal / Cross-Site Scripting
2019-02-19
XAMPP 5.6.8 - SQL Injection / Persistent Cross-Site Scripting
2019-02-19
eDirectory - SQL Injection
2019-02-19
BulletProof FTP Server 2019.0.0.50 - 'SMTP Server' Denial of Service (PoC)
2019-02-19
Valentina Studio 9.0.4 - 'Host' Denial of Service (PoC)
2019-02-19
Zuz Music 2.1 - 'zuzconsole/___contact ' Persistent Cross-Site Scripting
2019-02-19
Listing Hub CMS 1.0 - 'pages.php id' SQL Injection
2019-02-19
Find a Place CMS Directory 1.5 - 'assets/external/data_2.php cate' SQL Injection
2019-02-19
NetSetMan 4.7.1 - 'Workgroup' Denial of Service (PoC)
2019-02-19
MaxxAudio Drivers WavesSysSvc64.exe 1.6.2.0 - File Permissions SYSTEM Privilege Escalation
2019-02-19
WordPress Plugin WooCommerce - GloBee (cryptocurrency) Payment Gateway 1.1.1 - Payment Bypass / Unauthorized Order Status Spoofing
2019-02-18
Zoho ManageEngine ServiceDesk Plus (SDP) < 10.0 build 10012 - Arbitrary File Upload
2019-02-18
Oracle Java Runtime Environment - Heap Out-of-Bounds Read During TTF Font Rendering in AlternateSubstitutionSubtable::process
2019-02-18
Oracle Java Runtime Environment - Heap Out-of-Bounds Read During TTF Font Rendering in ExtractBitMap_blocClass
2019-02-18
Oracle Java Runtime Environment - Heap Out-of-Bounds Read During TTF Font Rendering in OpenTypeLayoutEngine::adjustGlyphPositions
2019-02-18
Oracle Java Runtime Environment - Heap Out-of-Bounds Read During OTF Font Rendering in glyph_CloseContour
2019-02-18
Comodo Dome Firewall 2.7.0 - Cross-Site Scripting
2019-02-18
ArangoDB Community Edition 3.4.2-1 - Cross-Site Scripting
2019-02-18
Apache CouchDB 2.3.0 - Cross-Site Scripting
2019-02-18
Webiness Inventory 2.3 - 'ProductModel' Arbitrary File Upload
2019-02-18
M/Monit 3.7.2 - Privilege Escalation
2019-02-18
NBMonitor 1.6.5.0 - 'Key' Denial of Service (PoC)
2019-02-18
CMSsite 1.0 - 'post' SQL Injection
2019-02-18
MISP 2.4.97 - SQL Command Execution via Command Injection in STIX Module
2019-02-18
Master IP CAM 01 3.3.4.2103 - Remote Command Execution
2019-02-18
qdPM 9.1 - 'search[keywords]' Cross-Site Scripting
2019-02-18
qdPM 9.1 - 'type' Cross-Site Scripting
2019-02-18
macOS - execve(/bin/sh) + Null-Free Shellcode (31 bytes)
2019-02-18
macOS - Bind (4444/TCP) Shell (/bin/sh) + Null-Free Shellcode (123 bytes)
2019-02-18
Exploits/page:


Page:
1-4-2 (www01)