Exploit-Database.net

Exploits (Total: 97231)


Linux/MIPS (Big Endian) - execve(/bin/sh) + Reverse TCP 192.168.2.157/31337 Shellcode (181 bytes)		2018-10-08
360 3.5.0.1033 - Sandbox Escape		2018-10-08
FLIR Thermal Traffic Cameras 1.01-0bb5b27 - Information Disclosure		2018-10-08
Linux/x86 - execve(/bin/sh) + MMX/ROT13/XOR Shellcode (Encoder/Decoder) (104 bytes)		2018-10-08
FLIR Thermal Traffic Cameras 1.01-0bb5b27 - RTSP Stream Disclosure Vulnerability		2018-10-07
Chamilo LMS 1.11.8 - firstname Cross-Site Scripting Vulnerability		2018-10-07
FLIR Thermal Traffic Cameras 1.01-0bb5b27 - RTSP Stream Disclosure		2018-10-06
Chamilo LMS 1.11.8 - 'firstname' Cross-Site Scripting		2018-10-06
Chrome OS /sbin/crash_reporter Symlink Traversal Vulnerability		2018-10-06
Windows Net-NTLMv2 Reflection DCOM/RPC Exploit		2018-10-06
Unitrends UEB HTTP API Remote Code Execution Exploit		2018-10-06
Claromentis Discuss 1.2.1 Cross Site Scripting Vulnerability		2018-10-06
Chamilo LMS 1.11.8 - Cross-Site Scripting Vulnerability		2018-10-06
Netis ADSL Router DL4322D RTK 2.1.1 - Cross-Site Request Forgery (Add Admin) Vulnerabilities		2018-10-06
Easy File Sharing Web Server 7.2 - Domain Name Buffer Overflow Exploit		2018-10-06
Chamilo LMS 1.11.8 - Cross-Site Scripting		2018-10-05
ISPConfig < 3.1.13 - Remote Command Execution		2018-10-05
D-Link Central WiFiManager Software Controller 1.03 - Multiple Vulnerabilities	CVE-2018-17440	2018-10-05
Netis ADSL Router DL4322D RTK 2.1.1 - Cross-Site Request Forgery (Add Admin)		2018-10-05
ISPConfig Remote Command Execution Exploit		2018-10-05
DLink Central WiFiManager Software Controller Code Execution / XSS Exploit		2018-10-05
WordPress Pie Register 3.0.15 Cross Site Scripting Vulnerability		2018-10-05
Photo #Nettoyeur 1.4.5 Insecure File Permission Vulnerability		2018-10-05
Billion ADSL Router 400G 20151105641 - Cross-Site Scripting Vulnerability		2018-10-05
WUZHICMS 2.0 - Cross-Site Scripting Vulnerability		2018-10-05
Coaster CMS 5.5.0 - Cross-Site Scripting Vulnerability		2018-10-05
OPAC EasyWeb Five 5.7 - biblio SQL Injection Vulnerability		2018-10-05
OPAC EasyWeb Five 5.7 - nome SQL Injection Vulnerability		2018-10-05
Linux Kernel 2.6.x / 3.10.x / 4.14.x (x64) - Mutagen Astronomy Local Privilege Escalation Exploit		2018-10-05
Linux/x64 - Execute /bin/nc -lvp 9090 Shellcode (60 bytes)		2018-10-05
Flippa Marketplace Clone 1.0 - date_started SQL Injection Vulnerability		2018-10-05
Education Website 1.0 - subject SQL Injection Vulnerability		2018-10-05
Binary MLM Software 1.0 - pid SQL Injection Vulnerability		2018-10-05
Singleleg MLM Software 1.0 - msg_id SQL Injection Vulnerability		2018-10-05
Hotel Booking Engine 1.0 - h_room_type SQL Injection Vulnerability		2018-10-05
Linux/x64 - execve ("/bin/bash") Shellcode (27 bytes)		2018-10-05
Fork CMS 5.4.0 - Cross-Site Scripting Vulnerability		2018-10-05
H2 Database 1.4.196 - Remote Code Execution Exploit		2018-10-05
Zahir Enterprise Plus 6 build 10b - Buffer Overflow (SEH) Exploit		2018-10-05
Snes9K 0.0.9z - Denial of Service (PoC) Exploit		2018-10-05
Linux/x64 - execve ("/bin/sh") Shellcode (24 bytes)		2018-10-05
Airties AIR5750 1.0.0.18 Cross Site Scripting Vulnerability		2018-10-05
Airties AIR5650 1.0.0.18 Cross Site Scripting Vulnerability		2018-10-05
Airties AIR5453 1.0.0.18 Cross Site Scripting Vulnerability		2018-10-05
Airties AIR5443v2 1.0.0.18 Cross Site Scripting Vulnerability		2018-10-05
Airties AIR5442 1.0.0.18 Cross Site Scripting Vulnerability		2018-10-05
Airties AIR5343v2 1.0.0.18 Cross Site Scripting Vulnerability		2018-10-05
Airties AIR5021 1.0.0.18 Cross Site Scripting Vulnerability		2018-10-05
ManageEngine AssetExplorer 6.2.0 Cross Site Scripting Vulnerability		2018-10-05
Intel Extreme Tuning Utility 6.4.1.23 Code Execution / Privilege Escalation Vulnerabilities		2018-10-05
AppArmor Filesystem Blacklisting Bypass Vulnerability		2018-10-05
Seqrite End Point Security 7.4 Privilege Escalation Vulnerability		2018-10-05
Skype On Debian Microsoft Apt Repo Addition Vulnerability		2018-10-05
Microsoft Edge - Sandbox Escape Exploit		2018-10-05
PCProtect 4.8.35 - Privilege Escalation Vulnerability		2018-10-05
WebKit - WebCore::RenderTreeBuilder::removeAnonymousWrappersForInlineChildrenIfNeeded		2018-10-05
WebKit - WebCore::SVGTextLayoutAttributes::context Use-After-Free Exploit		2018-10-05
WebKit - WebCore::RenderLayer::updateDescendantDependentFlags Use-After-Free Exploit		2018-10-05
WebKit - WebCore::SVGTRefElement::updateReferencedText Use-After-Free Exploit		2018-10-05
WebKit - WebCore::RenderMultiColumnSet::updateMinimumColumnHeight Use-After-Free Exploit		2018-10-05
WebKit - WebCore::InlineTextBox::paint Out-of-Bounds Read Exploit		2018-10-05
NICO-FTP 3.0.1.19 - Buffer Overflow (SEH)(ASLR) Exploit		2018-10-05
Linux/x86 - execve(/bin/sh) + NOT +SHIFT-N+ XOR-N Encoded Shellcode (50 bytes)		2018-10-05
virtualenv 16.0.0 - Sandbox Escape Vulnerability		2018-10-05
LayerBB Forum 1.1.1 - search_query SQL Injection Vulnerability		2018-10-05
FTP Voyager 16.2.0 - Denial of Service Exploit		2018-10-05
Airties AIR5342 1.0.0.18 - Cross-Site Scripting Vulnerability		2018-10-05
RICOH MP C1803 JPN Printer - Cross-Site Scripting Vulnerability		2018-10-05
PTC ThingWorx Password Disclosure / Cross Site Scripting Vulnerabilities		2018-10-05
Joomla Jimtawl 2.2.7 Component - id SQL Injection Vulnerability		2018-10-05
Zechat 1.5 - uname SQL Injection Vulnerability		2018-10-05
Wikindx 5.3.2 Multiple Cross-Site Scripting Vulnerability		2018-10-05
WebKit - WebCore::Node::ensureRareData Use-After-Free Exploit		2018-10-05
WebKit - WebCore::AXObjectCache::handleMenuItemSelected Use-After-Free Exploit		2018-10-05
WebKit - WebCore::SVGAnimateElementBase::resetAnimatedType Use-After-Free Exploit		2018-10-05
WordPress WebARX Website Firewall 4.9.8 XSS / Bypass Vulnerabilities		2018-10-05
WordPress Breadcrumb NavXT 6.1.0 Username Disclosure		2018-10-05
NICO-FTP 3.0.1.19 - Buffer Overflow (SEH)(ASLR)		2018-10-04
LayerBB Forum 1.1.1 - 'search_query' SQL Injection		2018-10-04
Linux\x86 - (NOT +SHIFT-N+ XOR-N) + encoded (/bin/sh) Shellcode (50 byes)		2018-10-04
virtualenv 16.0.0 - Sandbox Escape	CVE-2018-17793	2018-10-04
FTP Voyager 16.2.0 - Denial of Service (PoC)		2018-10-03
RICOH MP C1803 JPN Printer - Cross-Site Scripting	CVE-2018-17310	2018-10-03
Airties AIR5342 1.0.0.18 - Cross-Site Scripting	CVE-2018-17587	2018-10-03
Joomla! Component Jimtawl 2.2.7 - 'id' SQL Injection		2018-10-03
Zechat 1.5 - 'uname' SQL Injection		2018-10-03
OPAC EasyWeb Five 5.7 - 'nome' SQL Injection		2018-10-02
Coaster CMS 5.5.0 - Cross-Site Scripting		2018-10-02
OPAC EasyWeb Five 5.7 - 'biblio' SQL Injection		2018-10-02
Phrack: Twenty years of Escaping the Java Sandbox (Ieu Eauvidoum & disk noise)		2018-10-01
Linux Kernel 2.6.x / 3.10.x / 4.14.x (RedHat / Debian / CentOS) (x64) - 'Mutagen Astronomy' Local Privilege Escalation	CVE-2018-14634	2018-10-01
Billion ADSL Router 400G 20151105641 - Cross-Site Scripting		2018-10-01
WUZHICMS 2.0 - Cross-Site Scripting	CVE-2018-17832	2018-10-01
Flippa Marketplace Clone 1.0 - 'date_started' SQL Injection		2018-10-01
Binary MLM Software 1.0 - 'pid' SQL Injection		2018-10-01
Singleleg MLM Software 1.0 - 'msg_id' SQL Injection		2018-10-01
Education Website 1.0 - 'subject' SQL Injection		2018-10-01
Hotel Booking Engine 1.0 - 'h_room_type' SQL Injection		2018-10-01
Fork CMS 5.4.0 - Cross-Site Scripting		2018-10-01
ManageEngine AssetExplorer 6.2.0 - Cross-Site Scripting		2018-10-01
H2 Database 1.4.196 - Remote Code Execution		2018-10-01
Zahir Enterprise Plus 6 build 10b - Buffer Overflow (SEH)		2018-10-01
Snes9K 0.0.9z - Denial of Service (PoC)		2018-10-01
Microsoft Edge - Sandbox Escape	CVE-2018-8463	2018-09-28
PCProtect 4.8.35 - Privilege Escalation		2018-09-28
Rausoft ID.prove 2.95 - Username SQL injection Vulnerability		2018-09-27
Citrix StorageZones Controller Improper Access Restrictions / Traversal Exploit		2018-09-27
WordPress WP Insert 2.4.2 Arbitrary File Upload Vulnerability		2018-09-27
ManageEngine Desktop Central 10.0.271 - Cross-Site Scripting Vulnerability		2018-09-27
iWay Data Quality Suite Web Console 10.6.1.ga - XML External Entity Injection Vulnerability		2018-09-27
EE 4GEE Mini EE40_00_02.00_44 - Privilege Escalation		2018-09-27
Rausoft ID.prove 2.95 - 'Username' SQL injection		2018-09-27
ManageEngine Desktop Central 10.0.271 - Cross-Site Scripting		2018-09-27
iWay Data Quality Suite Web Console 10.6.1.ga - XML External Entity Injection		2018-09-27
CrossFont 7.5 - Denial of Service Exploit		2018-09-26
TransMac 12.2 - Denial of Service Exploit		2018-09-26
Linux/ARM - Bind (0.0.0.0:4444/TCP) Shell (/bin/sh) + Null-Free #Shellcode (92 Bytes)		2018-09-26
Linux - #VMA Use-After-Free via Buggy vmacache_flush_all() Fastpath Exploit		2018-09-26
Joomla Responsive Portfolio 1.6.1 Component - filter_order_Dir SQL Injection Vulnerability		2018-09-26
Joomla Timetable Schedule 3.6.8 Component - SQL Injection Vulnerability		2018-09-26
Linux - VMA Use-After-Free via Buggy vmacache_flush_all() Fastpath	CVE-2018-17182	2018-09-26
Linux/ARM - Bind (0.0.0.0:4444/TCP) Shell (/bin/sh) + Null-Free Shellcode (92 Bytes)		2018-09-26
CrossFont 7.5 - Denial of Service (PoC)		2018-09-26
TransMac 12.2 - Denial of Service (PoC)		2018-09-26
Faleemi Desktop Software 1.8.2 - 'Device alias' Local Buffer Overflow (SEH)		2018-09-25
Joomla eXtroForms 2.1.5 Component - filter_type_id SQL Injection Vulnerability		2018-09-25
Joomla Music Collection 3.0.3 Component - SQL Injection Vulnerability		2018-09-25
Joomla Raffle Factory 3.5.2 Component - SQL Injection Vulnerability		2018-09-25
Joomla Dutch Auction Factory 2.0.2 Component - filter_order_Dir SQL Injection Vulnerability		2018-09-25
Joomla Article Factory Manager 4.3.9 Component - SQL Injection Vulnerability		2018-09-25
Joomla AlphaIndex Dictionaries 1.0 Component - SQL Injection Vulnerability		2018-09-25
Joomla Reverse Auction Factory 4.3.8 Component - SQL Injection Vulnerability		2018-09-25
Joomla Collection Factory 4.1.9 Component - SQL Injection Vulnerability		2018-09-25
Joomla Swap Factory 2.2.1 Component - SQL Injection Vulnerability		2018-09-25
Joomla Social Factory 3.8.3 Component - SQL Injection Vulnerability		2018-09-25
Joomla Jobs Factory 2.0.4 Component - SQL Injection Vulnerability		2018-09-25
Joomla Questions 1.4.3 Component - SQL Injection Vulnerability		2018-09-25
Joomla Penny Auction Factory 2.0.4 Component - SQL Injection Vulnerability		2018-09-25
Super Cms Blog Pro 1.0 - SQL Injection Vulnerability		2018-09-25
Easy PhoroResQ 1.0 - Buffer Overflow Exploit		2018-09-25
Joomla! Component Responsive Portfolio 1.6.1 - 'filter_order_Dir' SQL Injection		2018-09-25
RICOH MP C406Z Printer - Cross-Site Scripting		2018-09-25
WebKit - 'WebCore::RenderTreeBuilder::removeAnonymousWrappersForInlineChildrenIfNeeded' Use-After-Free	CVE-2018-4197	2018-09-25
WebKit - 'WebCore::SVGTextLayoutAttributes::context' Use-After-Free	CVE-2018-4318	2018-09-25
RICOH MP 305+ Printer - Cross-Site Scripting		2018-09-25
WebKit - 'WebCore::RenderLayer::updateDescendantDependentFlags' Use-After-Free	CVE-2018-4317	2018-09-25
WebKit - 'WebCore::SVGTRefElement::updateReferencedText' Use-After-Free	CVE-2018-4315	2018-09-25
WebKit - 'WebCore::RenderMultiColumnSet::updateMinimumColumnHeight' Use-After-Free	CVE-2018-4323	2018-09-25
WebKit - 'WebCore::InlineTextBox::paint' Out-of-Bounds Read	CVE-2018-4328	2018-09-25
WebKit - 'WebCore::Node::ensureRareData' Use-After-Free	CVE-2018-4306	2018-09-25
WebKit - 'WebCore::AXObjectCache::handleMenuItemSelected' Use-After-Free	CVE-2018-4312	2018-09-25
WebKit - 'WebCore::SVGAnimateElementBase::resetAnimatedType' Use-After-Free	CVE-2018-4314	2018-09-25
Solaris - 'EXTREMEPARR' dtappgather Privilege Escalation (Metasploit)	CVE-2017-3622	2018-09-25
Joomla! Component Timetable Schedule 3.6.8 - SQL Injection	CVE-2018-17394	2018-09-25
Joomla! Component Article Factory Manager 4.3.9 - SQL Injection	CVE-2018-17380	2018-09-25
Joomla! Component AlphaIndex Dictionaries 1.0 - SQL Injection	CVE-2018-17397	2018-09-25
Joomla! Component Reverse Auction Factory 4.3.8 - SQL Injection	CVE-2018-17376	2018-09-25
Joomla! Component Collection Factory 4.1.9 - SQL Injection	CVE-2018-17383	2018-09-25
Joomla! Component Swap Factory 2.2.1 - SQL Injection	CVE-2018-17384	2018-09-25
Joomla Component eXtroForms 2.1.5 - 'filter_type_id' SQL Injection		2018-09-25
RICOH MP C6503 Plus Printer - Cross-Site Scripting		2018-09-25
Joomla! Component Social Factory 3.8.3 - SQL Injection	CVE-2018-17385	2018-09-25
Joomla! Component Jobs Factory 2.0.4 - SQL Injection	CVE-2018-17382	2018-09-25
Joomla! Component Questions 1.4.3 - SQL Injection	CVE-2018-17377	2018-09-25
Easy PhoroResQ 1.0 - Buffer Overflow		2018-09-25
Joomla! Component Penny Auction Factory 2.0.4 - SQL Injection	CVE-2018-17378	2018-09-25
Joomla! Component Music Collection 3.0.3 - SQL Injection	CVE-2018-17375	2018-09-25
Joomla! Component Raffle Factory 3.5.2 - SQL Injection	CVE-2018-17379	2018-09-25
Super Cms Blog Pro 1.0 - SQL Injection	CVE-2018-17391	2018-09-25
Joomla! Component Dutch Auction Factory 2.0.2 - 'filter_order_Dir' SQL Injection		2018-09-25
RICOH MP C2003 Printer - Cross-Site Scripting		2018-09-25
RICOH MP C307 Printer Cross Site Scripting Vulnerability		2018-09-25
RICOH MP 305+ Printer Cross Site Scripting Vulnerability		2018-09-25
RICOH MP C6503 Plus Printer Cross Site Scripting Vulnerability		2018-09-25
RICOH MP C406Z Printer Cross Site Scripting Vulnerability		2018-09-25
RICOH MP C2003 Printer Cross Site Scripting Vulnerability		2018-09-25
RICOH MP C1803 JPN Printer Cross Site Scripting Vulnerability		2018-09-25
Solaris EXTREMEPARR dtappgather Privilege Escalation Exploit		2018-09-25
EE 4GEE Mini Local Privilege Escalation Vulnerability		2018-09-25
Postman 6.3.0 Improper Certificate Validation Vulnerability		2018-09-25
RICOH MP C6003 Printer - Cross-Site Scripting Vulnerability		2018-09-24
RICOH Aficio MP 301 Printer - Cross-Site Scripting Vulnerability		2018-09-24
Beyond Remote 2.2.5.3 - Denial of Service Exploit		2018-09-24
SoftX FTP Client 3.3 - Denial of Service Exploit		2018-09-24
Termite 3.4 - Denial of Service Exploit		2018-09-24
Linux/ARM - sigaction() Based Egghunter (PWN!) + execve Shellcode (52 Bytes)		2018-09-24
Linux/ARM - Egghunter (PWN!) + execve("/bin/sh", NULL, NULL) Shellcode (28 Bytes)		2018-09-24
Joomla Auction Factory 4.5.5 Component - filter_order SQL Injection Vulnerability		2018-09-24
RICOH MP C6003 Printer - Cross-Site Scripting		2018-09-24
Linux/ARM - sigaction() Based Egghunter (PWN!) + execve("/bin/sh", NULL, NULL) Shellcode (52 Bytes)		2018-09-24
Linux/ARM - Egghunter (PWN!) + execve("/bin/sh", NULL, NULL) Shellcode (28 Bytes)		2018-09-24
Beyond Remote 2.2.5.3 - Denial of Service (PoC)		2018-09-24
Joomla Micro Deal Factory 2.4.0 Component - id SQL Injection Vulnerability		2018-09-24
Joomla AMGallery 1.2.3 Component - filter_category_id SQL Injection Exploit		2018-09-24
LG SuperSign EZ CMS 2.5 - Remote Code Execution Exploit		2018-09-24
Joomla CW Article Attachments 1.0.6 - id SQL Injection Vulnerability		2018-09-24
Collectric CMU 1.0 - lang SQL injection Vulnerability		2018-09-24
Navigate CMS 2.8 - Cross-Site Scripting Vulnerability		2018-09-24
udisks2 2.8.0 - Denial of Service Vulnerability		2018-09-24
Antidote 9.5.1 Code Execution Exploit		2018-09-24
Microsoft Windows ALPC Task Scheduler Local Privilege Elevation Exploit		2018-09-24
Staubli Jacquard Industrial System JC6 Shellshock Vulnerability		2018-09-24
WordPress FV Flowplayer 7.2.0.727 Cross Site Scripting Vulnerability		2018-09-24
MyBB Visual Editor 1.8.18 Cross Site Scripting Vulnerability		2018-09-24
WebRTC - FEC Out-of-Bounds Read Exploit		2018-09-24
WebRTC - VP9 Processing Use-After-Free Exploit		2018-09-24
mgetty 1.2.0 Buffer Overflow / Privilege Escalation Vulnerabilities		2018-09-24
HylaFAX 6.0.6 / 5.6.0 Uninitialized Pointer / Out Of Bounds Write Vulnerabilities		2018-09-24
NICO-FTP 3.0.1.19 - Buffer Overflow (SEH) Exploit		2018-09-24
Telegram Desktop 1.3.14 denial of service Vulnerability		2018-09-24
Linux/x86 - Egghunter + sigaction-based Shellcode (27 bytes)		2018-09-24
LimeSurvey 3.14.7 Cross Site Scripting Vulnerability		2018-09-24
ManageEngine Desktop Central 10.0.271 Cross Site Scripting Vulnerability		2018-09-24
ManageEngine SupportCenter Plus 8.1.0 Cross Site Scripting Vulnerability		2018-09-24
LG SuperSign EZ CMS 2.5 - Local File Inclusion Vulnerability		2018-09-24
Microsoft Windows - Double Dereference in NtEnumerateKey Elevation of Privilege Exploit		2018-09-24
Microsoft Windows - CiSetFileCache WDAC Security Feature Bypass TOCTOU Exploit		2018-09-24
WordPress Wechat Broadcast 1.2.0 Plugin - Local File Inclusion Vulnerability		2018-09-24
WordPress Localize My Post 1.0 Plugin - Local File Inclusion Vulnerability		2018-09-24
Roundcube rcfilters plugin 2.1.6 - Cross-Site Scripting Vulnerability		2018-09-24
Western Digital My Cloud Authentication Bypass Vulnerability		2018-09-24
Moodle 3.x PHP Unserialize Remote Code Execution Exploit		2018-09-24
Solaris libnspr NSPR_LOG_FILE Privilege Escalation Exploit		2018-09-24
Faleemi Plus 1.0.2 - Denial of Service Exploit		2018-09-24
InfraRecorder 0.53 - (.txt) Denial of Service Exploit		2018-09-24
CdBurnerXP 4.5.8.6795 - File Name Denial of Service Exploit		2018-09-24
TeamViewer App 13.0.100.0 - Denial of Service Exploit		2018-09-24
MediaTek Wirless Utility rt2870 - Denial of Service Exploit		2018-09-24
Clone2Go Video to iPod Converter 2.5.0 - Denial of Service Exploit		2018-09-24
Apple macOS 10.13.4 - Denial of Service Exploit		2018-09-24
Infiltrator Network Security Scanner 4.6 - Denial of Service Exploit		2018-09-24
PDF Explorer 1.5.66.2 - Denial of Service Exploit		2018-09-24
iCash 7.6.5 - Denial of Service Exploit		2018-09-24
PicaJet FX 2.6.5 - Denial of Service Exploit		2018-09-24
RoboImport 1.2.0.72 - Denial of Service Exploit		2018-09-24
PixGPS 1.1.8 - Denial of Service Exploit		2018-09-24
WordPress Arigato Autoresponder And Newsletter 2.5 SQL Injection / XSS Vulnerabilities		2018-09-24
Microsoft Edge Chakra PathTypeHandlerBase::SetAttributesHelper Type Confusion Exploit		2018-09-24
Microsoft Edge Chakra JIT localeCompare Type Confusion Exploit		2018-09-24
Linux/ARM - Jump Back Shellcode + execve("/bin/sh", NULL, NULL) Shellcode (4 Bytes)		2018-09-24
Ubisoft Uplay Desktop Client 63.0.5699.0 - Remote Code Execution Exploit		2018-09-24
NUUO NVRMini2 3.8 - cgi_system Buffer Overflow (Enable Telnet) Exploit		2018-09-24
CA Release Automation NiMi 6.5 - Remote Command Execution Exploit		2018-09-24
jiNa OCR Image to Text 1.0 - Denial of Service Exploit		2018-09-24
XAMPP Control Panel 3.2.2 - Denial of Service Exploit		2018-09-24
Notebook Pro 2.0 - Denial Of Service Exploit		2018-09-24
Netis ADSL Router DL4322D RTK 2.1.1 - Cross-Site Scripting Vulnerability		2018-09-24
Joomla! Component Auction Factory 4.5.5 - 'filter_order' SQL Injection		2018-09-24
SoftX FTP Client 3.3 - Denial of Service (PoC)		2018-09-24
RICOH Aficio MP 301 Printer - Cross-Site Scripting		2018-09-24
Termite 3.4 - Denial of Service (PoC)		2018-09-24
Joomla! Component Micro Deal Factory 2.4.0 - 'id' SQL Injection		2018-09-24
Joomla! Component AMGallery 1.2.3 - 'filter_category_id' SQL Injection		2018-09-24
udisks2 2.8.0 - Denial of Service (PoC)		2018-09-24
MyBB Visual Editor 1.8.18 - Cross-Site Scripting	CVE-2018-17128	2018-09-24
LG SuperSign EZ CMS 2.5 - Remote Code Execution	CVE-2018-17173	2018-09-24
Joomla! CW Article Attachments 1.0.6 - 'id' SQL Injection	CVE-2018-14592	2018-09-24
Collectric CMU 1.0 - 'lang' SQL injection		2018-09-24
Navigate CMS 2.8 - Cross-Site Scripting	CVE-2018-17255	2018-09-24
WebRTC - FEC Out-of-Bounds Read	CVE-2018-16083	2018-09-21
WebRTC - VP9 Processing Use-After-Free	CVE-2018-16071	2018-09-21
NICO-FTP 3.0.1.19 - Buffer Overflow (SEH)		2018-09-20
Linux/x86 - Egghunter + sigaction-based Shellcode (27 bytes)		2018-09-20
LG SuperSign EZ CMS 2.5 - Local File Inclusion	CVE-2018-16288	2018-09-19
WordPress Plugin Localize My Post 1.0 - Local File Inclusion		2018-09-19
WordPress Plugin Wechat Broadcast 1.2.0 - Local File Inclusion		2018-09-19
Roundcube rcfilters plugin 2.1.6 - Cross-Site Scripting	CVE-2018-16736	2018-09-19
Microsoft Windows - Double Dereference in NtEnumerateKey Elevation of Privilege	CVE-2018-8410	2018-09-19
Microsoft Windows - 'CiSetFileCache' WDAC Security Feature Bypass TOCTOU	CVE-2018-8449	2018-09-19
WordPress Plugin Arigato Autoresponder and Newsletter 2.5 - Blind SQL Injection / Reflected Cross-Site Scripting	CVE-2018-1002000	2018-09-18
Solaris - libnspr NSPR_LOG_FILE Privilege Escalation (Metasploit)	CVE-2006-4842	2018-09-18
Microsoft Edge Chakra JIT - 'localeCompare' Type Confusion	CVE-2018-8355	2018-09-18
Microsoft Edge Chakra - 'PathTypeHandlerBase::SetAttributesHelper' Type Confusion	CVE-2018-8384	2018-09-18
Ubisoft Uplay Desktop Client 63.0.5699.0 - Remote Code Execution		2018-09-18
NUUO NVRMini2 3.8 - 'cgi_system' Buffer Overflow (Enable Telnet)		2018-09-18
Linux/ARM - Jump Back Shellcode + execve("/bin/sh", NULL, NULL) Shellcode (4 Bytes)		2018-09-18
Netis ADSL Router DL4322D RTK 2.1.1 - Denial of Service Exploit		2018-09-17
Joomla JCK Editor 6.4.4 Component - parent SQL Injection Vulnerability		2018-09-17
CA Release Automation NiMi 6.5 - Remote Command Execution		2018-09-17
Netis ADSL Router DL4322D RTK 2.1.1 - Denial of Service (PoC)		2018-09-17
Joomla Component JCK Editor 6.4.4 - 'parent' SQL Injection		2018-09-17
Netis ADSL Router DL4322D RTK 2.1.1 - Cross-Site Scripting		2018-09-17
Oracle VirtualBox Manager 5.2.18 r124319 - Name Attribute Denial of Service Exploit		2018-09-17
Oracle VirtualBox Manager 5.2.18 r124319 - 'Name Attribute' Denial of Service (PoC)		2018-09-17
Notebook Pro 2.0 - Denial Of Service (PoC)		2018-09-17
XAMPP Control Panel 3.2.2 - Denial of Service (PoC)		2018-09-17
Socusoft Photo to Video Converter 8.07 - Registration Name Buffer Overflow Exploit		2018-09-16
Free MP3 CD Ripper 2.6 - .mp3 Buffer Overflow (SEH) Exploit		2018-09-16
Faleemi Desktop Software 1.8.2 - SavePath for ScreenShots Buffer Overflow (SEH) Exploit		2018-09-16
STOPzilla AntiMalware 6.5.2.59 - Privilege Escalation Exploit		2018-09-16
InduSoft Web Studio 8.1 SP1 - Tag Name Buffer Overflow (SEH) Exploit		2018-09-16
Android (zygote->init;) Chain from USB Privilege Escalation Exploit		2018-09-16
LG Smart IP Camera 1508190 - Backup File Download Exploit		2018-09-16
SynaMan 4.0 build 1488 - SMTP Credential Disclosure Vulnerability		2018-09-16
SynaMan 4.0 build 1488 - Authenticated Cross-Site Scripting Vulnerability		2018-09-16
Rubedo CMS 3.4.0 - Directory Traversal Vulnerability		2018-09-16
CirCarLife SCADA 4.3.0 - Credential Disclosure Exploit		2018-09-16
Linux/x86 - Random Bytewise XOR + Insertion Encoder Shellcode (54 bytes)		2018-09-16
Linux/x86 - File Modification(/etc/hosts) Polymorphic Shellcode (99 bytes)		2018-09-16
Linux/x86 - Read File (/etc/passwd) MSF Optimized Shellcode (61 bytes)		2018-09-16
IBM Identity Governance and Intelligence 5.2.3.2 / 5.2.4 - SQL Injection Vulnerability		2018-09-16
MyBB 1.8.17 - Cross-Site Scripting Vulnerability		2018-09-16
Apache Portals Pluto 3.0.0 - Remote Code Execution Exploit		2018-09-16
Apache Syncope 2.0.7 Remote Code Execution Exploit		2018-09-15
Wordpress Survey & Poll 1.5.7.3 Plugin - sss_params SQL Injection Vulnerability		2018-09-15
Watchguard AP100 AP102 AP200 1.2.9.15 - Remote Code Execution Exploit		2018-09-15
Linux/x86 - Random Bytewise XOR + Insertion Encoder Shellcode (54 bytes)		2018-09-14
Linux/86 - File Modification(/etc/hosts) Polymorphic Shellcode (99 bytes)		2018-09-14
Linux/x86 - Read File (/etc/passwd) MSF Optimized Shellcode (61 bytes)		2018-09-14
Linux/x86 - Add User(r00t/blank) Polymorphic Shellcode (103 bytes)		2018-09-14
Faleemi Plus 1.0.2 - Denial of Service (PoC)		2018-09-14
InfraRecorder 0.53 - '.txt' Denial of Service (PoC)		2018-09-14
Free MP3 CD Ripper 2.6 - '.wma' Local Buffer Overflow (SEH)		2018-09-14
Wordpress Plugin Survey & Poll 1.5.7.3 - 'sss_params' SQL Injection		2018-09-14
CdBurnerXP 4.5.8.6795 - 'File Name' Denial of Service (PoC)		2018-09-14
Watchguard AP100 AP102 AP200 1.2.9.15 - Remote Code Execution (Metasploit)		2018-09-14
Chrome OS 10820.0.0 dev-channel - app->VM via garcon TCP Command Socket		2018-09-13
Socusoft Photo to Video Converter 8.07 - 'Registration Name' Buffer Overflow		2018-09-13
Linux 4.18 - Arbitrary Kernel Read into dmesg via Missing Address Check in segfault Handler		2018-09-13
TeamViewer App 13.0.100.0 - Denial of Service (PoC)		2018-09-13
Free MP3 CD Ripper 2.6 - '.mp3' Buffer Overflow (SEH)		2018-09-13
Faleemi Desktop Software 1.8.2 - 'SavePath for ScreenShots' Buffer Overflow (SEH)		2018-09-13
STOPzilla AntiMalware 6.5.2.59 - Privilege Escalation		2018-09-13
Apache Syncope 2.0.7 - Remote Code Execution	CVE-2018-1321	2018-09-13
CloudMe 1.5.6 - Buffer Overflow		2018-09-13
MediaTek Wirless Utility rt2870 - Denial of Service (PoC)		2018-09-13
Clone2Go Video to iPod Converter 2.5.0 - Denial of Service (PoC)		2018-09-13
Apache Portals Pluto 3.0.0 - Remote Code Execution	CVE-2018-1306	2018-09-13
InduSoft Web Studio 8.1 SP1 - 'Tag Name' Buffer Overflow (SEH)		2018-09-13
LG Smart IP Camera 1508190 - Backup File Download	CVE-2018-16946	2018-09-12
MyBB 1.8.17 - Cross-Site Scripting	CVE-2018-15596	2018-09-12
IBM Identity Governance and Intelligence 5.2.3.2 / 5.2.4 - SQL Injection	CVE-2018-1756	2018-09-12
Apple macOS 10.13.4 - Denial of Service (PoC)	CVE-2018-4240	2018-09-12
Infiltrator Network Security Scanner 4.6 - Denial of Service (PoC)		2018-09-12
PDF Explorer 1.5.66.2 - Denial of Service (PoC)		2018-09-12
iCash 7.6.5 - Denial of Service (PoC)		2018-09-12
SynaMan 4.0 build 1488 - SMTP Credential Disclosure	CVE-2018-10814	2018-09-12
SynaMan 4.0 build 1488 - Authenticated Cross-Site Scripting (XSS)	CVE-2018-10763	2018-09-12
Rubedo CMS 3.4.0 - Directory Traversal	CVE-2018-16836	2018-09-12
CirCarLife SCADA 4.3.0 - Credential Disclosure	CVE-2018-12634	2018-09-12
PicaJet FX 2.6.5 - Denial of Service (PoC)		2018-09-12
RoboImport 1.2.0.72 - Denial of Service (PoC)		2018-09-12
PixGPS 1.1.8 - Denial of Service (PoC)		2018-09-12
jiNa OCR Image to Text 1.0 - Denial of Service (PoC)		2018-09-12
Android - 'zygote->init;' Chain from USB Privilege Escalation	CVE-2018-9488	2018-09-11
HTML5 Video Player 1.2.5 - Denial of Service Exploit		2018-09-11
InTouch Machine Edition 8.1 SP1 - Nombre del Tag Buffer Overflow (SEH) Exploit		2018-09-11
InTouch Machine Edition 8.1 SP1 - 'Nombre del Tag' Buffer Overflow (SEH)		2018-09-11
Sony PlayStation Vita 3.65 / 3.67 / 3.68 - 'h-encore' kernel and user modifications		2018-09-11
HTML5 Video Player 1.2.5 - Denial of Service (PoC)		2018-09-11
Bayanno Hospital Management System 4.0 - Cross-Site Scripting Vulnerability		2018-09-11
Bayanno Hospital Management System 4.0 - Cross-Site Scripting		2018-09-11
VirtualBox 5.2.6.r120293 - VM Escape Exploit		2018-09-11
RPi Cam Control < 6.4.25 - Remote Command Execution Exploit		2018-09-11
Avaya one-X 9.x / 10.0.x / 10.1.x Arbitrary File Disclosure / Deletion Vulnerabilities		2018-09-11
Tor #Browser #Firefox #TorBrowser 7.0.8 Information Disclosure Vulnerability		2018-09-11
Easy File Sharing Web Server 6.9 Buffer Overflow Exploit		2018-09-11
Zenmap Nmap 7.70 - Denial of Service Exploit		2018-09-10
Flash Slideshow Maker Professional 5.20 - Buffer Overflow (SEH) Exploit		2018-09-10
Microsoft Baseline Security Analyzer 2.3 - XML External Entity Injection Vulnerability		2018-09-10
Any Sound Recorder 2.93 - Denial of Service Exploit		2018-09-10
Photo To Video Converter Professional 8.07 - Buffer Overflow (SEH) Exploit		2018-09-10
LinkNet LW-N605R 12.20.2.1486 - Remote Code Execution Exploit		2018-09-10
Socusoft 3GP Photo Slideshow 8.05 - Buffer Overflow (SEH) Exploit		2018-09-10
VirtualBox 5.2.6.r120293 - VM Escape		2018-09-10
Ghostscript - Failed Restore Command Execution (Metasploit)	CVE-2018-16509	2018-09-10
Apache Struts 2 - Namespace Redirect OGNL Injection (Metasploit)	CVE-2018-11776	2018-09-10
RPi Cam Control < 6.4.25 - 'preview.php' Remote Command Execution		2018-09-10
Open Source Intelligence Gathering 201		2018-09-10
Open Source Intelligence Gathering 101		2018-09-10
Nmap 7.70 - Denial of Service (PoC)		2018-09-10
Any Sound Recorder 2.93 - Denial of Service (PoC)		2018-09-10
Flash Slideshow Maker Professional 5.20 - Buffer Overflow (SEH)		2018-09-10
SocuSoft iPod Photo Slideshow 8.05 - Buffer Overflow (SEH) Exploit		2018-09-10
Microsoft Baseline Security Analyzer 2.3 - XML External Entity Injection		2018-09-10
Photo To Video Converter Professional 8.07 - Buffer Overflow (SEH)		2018-09-10
Socusoft 3GP Photo Slideshow 8.05 - Buffer Overflow (SEH)		2018-09-10
LW-N605R 12.20.2.1486 - Remote Code Execution		2018-09-10
SocuSoft iPod Photo Slideshow 8.05 - Buffer Overflow (SEH)		2018-09-10
MedDream PACS Server Premium 6.7.1.1 - Directory Traversal Vulnerability		2018-09-09
DVD Photo Slideshow Professional 8.07 - Buffer Overflow (SEH) Exploit		2018-09-09
QNAP Photo Station 5.7.0 - Cross-Site Scripting Vulnerability		2018-09-09
Apache Struts 2 Namespace Redirect OGNL Injection Exploit		2018-09-08
iSmartViewPro 1.5 - 'SavePath for ScreenShots' Local Buffer Overflow (SEH)		2018-09-07
QNAP Photo Station 5.7.0 - Cross-Site Scripting	CVE-2018-0715	2018-09-07
Softneta MedDream PACS Server Premium 6.7.1.1 - Directory Traversal		2018-09-07
DVD Photo Slideshow Professional 8.07 - Buffer Overflow (SEH)		2018-09-07
Ghostscript Failed Restore Command Execution Exploit		2018-09-07
Tenable WAS-Scanner 7.4.1708 - Remote Command Execution Vulnerability		2018-09-07
DokuWiki 2018-04-22a Greebo Arbitrary Code Execution Vulnerability		2018-09-07
MedDream PACS Server Premium 6.7.1.1 - email SQL Injection Vulnerability		2018-09-07
Tenable WAS-Scanner 7.4.1708 - Remote Command Execution		2018-09-07
MedDream PACS Server Premium 6.7.1.1 - 'email' SQL Injection		2018-09-07
D-Link Dir-600M N150 - Cross-Site Scripting Vulnerability		2018-09-06
Opsview Monitor 5.x Command Execution Vulnerability		2018-09-06
Go Pro Fusion Studio 1.2 Privilege Escalation Vulnerability		2018-09-06
Cisco Umbrella Roaming Client 2.0.168 - Privilege Escalation Exploit		2018-09-06
KONE KGC 4.6.4 - Multiple Vulnerabilities		2018-09-06
WirelessHART Fieldgate SWG70 3.0 - Directory Traversal Vulnerability		2018-09-06
Apache Roller 5.0.3 - XML External Entity Injection Exploit		2018-09-06
Jorani Leave Management 0.6.5 - startdate SQL Injection Vulnerability		2018-09-06
Jorani Leave Management 0.6.5 - Cross-Site Scripting Vulnerability		2018-09-06
osCommerce 2.3.4.1 Cross Site Request Forgery Vulnerability		2018-09-06
NovaRad NovaPACS Diagnostics Viewer 8.5 - XML External Entity Injection Vulnerability		2018-09-06
Microsoft people 10.1807.2131.0 - Denial of service Exploit		2018-09-06
Tenda ADSL Router D152 - Cross-Site Scripting Vulnerability		2018-09-06
FUJI XEROX DocuCentre-V 3065 Printer - Remote Command Execution Exploit		2018-09-06
FTPShell Server 6.80 - Add Account Name Buffer Overflow (SEH) Exploit		2018-09-06
Soroush IM Desktop App 0.17.0 - Authentication Bypass Vulnerability		2018-09-06
mooSocial Store Plugin 2.6 - SQL Injection Vulnerability		2018-09-06
Linux/ARM - read(0, buf, 0xff) stager + execve("/bin/sh", NULL, NULL) Shellcode 20 Bytes		2018-09-06
iSmartViewPro 1.5 - DDNS Buffer Overflow Exploit		2018-09-06
Logicspice FAQ Script 2.9.7 - Remote Code Execution Vulnerability		2018-09-06
Simple POS 4.0.24 - columns[0][search][value] SQL Injection Vulnerability		2018-09-06
PHP File Browser Script 1 - Directory Traversal Vulnerability		2018-09-06
Online Quiz Maker 1.0 - File Include Vulnerability		2018-09-06
Trend Micro Virtual Mobile Infrastructure 5.5.1336 - Server address Denial of Service Exploit		2018-09-06
Wikipedia 12.0 - Denial of Service Exploit		2018-09-06
Online Quiz Maker 1.0 - catid SQL Injection Vulnerability		2018-09-06
Admidio 3.3.5 - Cross-Site Request Forgery (Change Permissions) Vulnerability		2018-09-06
Microsoft Windows Explorer Out-of-Bound Read - Denial of Service Exploit		2018-09-06
Symantec Mobile Encryption for iPhone 2.1.0 - Server Denial of Service Exploit		2018-09-06
D-Link DIR-615 - Denial of Service Vulnerability		2018-09-06
Xiaomi MIWiFi Xiaomi_55DD 2.8.50 Out-Of-Band Resource Load Vulnerability		2018-09-06
Visual Ping 0.8.0.0 - Host Denial of Service Exploit		2018-09-06
VSAXESS V2.6.2.70 build20171226_053 - Nickname Denial of Service Exploit		2018-09-06
FsPro Labs Event Log Explorer v4.6.1.2115 - XML External Entity Injection Vulnerability		2018-09-06
AZORult Stealer 2 Botnet SQL Injection Vulnerability		2018-09-06
gVisor Sentry Invalid Access Vulnerability		2018-09-06
Acunetix WVS Reporter 10.0 - Denial of Service Exploit		2018-09-06
Vox TG790 ADSL Router - Cross-Site Scripting Vulnerability		2018-09-06
Linux/ARM - read(0, buf, 0xff) stager + execve("/bin/sh", NULL, NULL) Shellcode 28 Bytes		2018-09-06
Network Manager VPNC Username Privilege Escalation		2018-09-06
ownCloud 0.1.2 User Impersonation Authorization Bypass Vulnerability		2018-09-06
WordPress Quizlord 2.0 Cross Site Scripting Vulnerability		2018-09-06
Cybrotech CyBroHttpServer 1.0.3 Cross Site Scripting Vulnerability		2018-09-06
D-Link DIR-601 - Credential Disclosure Vulnerability		2018-09-06
WordPress Jibu Pro 1.7 Plugin - Cross-Site Scripting Vulnerability		2018-09-06
Nord VPN 6.14.31 - Denial of Service Exploit		2018-09-06
Linux/x86 - IPv6 Reverse TCP Shellcode Generator (94 bytes)		2018-09-06
Linux/x86 - Dual Network Stack (IPv4 and IPv6) Bind TCP Shellcode		2018-09-06
Linux/ARM - execve("/bin/sh", ["/bin/sh"], NULL) Shellcode (32 Bytes)		2018-09-06
Linux/MIPS64 - execve(/bin/sh) Shellcode (48 bytes)		2018-09-06
D-Link Dir-600M N150 - Cross-Site Scripting		2018-09-06
WirelessHART Fieldgate SWG70 3.0 - Directory Traversal		2018-09-06
Apache Roller 5.0.3 - XML External Entity Injection (File Disclosure)	CVE-2014-0030	2018-09-06
Jorani Leave Management 0.6.5 - 'startdate' SQL Injection	CVE-2018-15918	2018-09-06
Cisco Umbrella Roaming Client 2.0.168 - Privilege Escalation	CVE-2018-0437	2018-09-06
Jorani Leave Management 0.6.5 - Cross-Site Scripting	CVE-2018-15917	2018-09-06
NovaRad NovaPACS Diagnostics Viewer 8.5 - XML External Entity Injection (File Disclosure)		2018-09-06
Tenda ADSL Router D152 - Cross-Site Scripting	CVE-2018-14497	2018-09-05
Microsoft people 10.1807.2131.0 - Denial of service (PoC)		2018-09-05
Obtaining Command Execution through the NetworkManager Daemon		2018-09-05
FTPShell Server 6.80 - 'Add Account Name' Buffer Overflow (SEH)		2018-09-05
FUJI XEROX DocuCentre-V 3065 Printer - Remote Command Execution		2018-09-05
mooSocial Store Plugin 2.6 - SQL Injection		2018-09-04
Linux/ARM - read(0, buf, 0xff) stager + execve("/bin/sh", NULL, NULL) Shellcode (20 Bytes)		2018-09-04
Simple POS 4.0.24 - 'columns[0][search][value]' SQL Injection		2018-09-04
PHP File Browser Script 1 - Directory Traversal		2018-09-04
Logicspice FAQ Script 2.9.7 - Remote Code Execution		2018-09-04
iSmartViewPro 1.5 - 'DDNS' Buffer Overflow		2018-09-04
Wikipedia 12.0 - Denial of Service (PoC)		2018-09-03
Online Quiz Maker 1.0 - 'catid' SQL Injection		2018-09-03
Admidio 3.3.5 - Cross-Site Request Forgery (Change Permissions)		2018-09-03
Trend Micro Virtual Mobile Infrastructure 5.5.1336 - 'Server address' Denial of Service (PoC)		2018-09-03
Microsoft Windows Explorer Out-of-Bound Read - Denial of Service (PoC)		2018-09-03
FsPro Labs Event Log Explorer v4.6.1.2115 - XML External Entity Injection		2018-09-03
Symantec Mobile Encryption for iPhone 2.1.0 - 'Server' Denial of Service (PoC)		2018-09-03
D-Link DIR-615 - Denial of Service (PoC)		2018-09-03
Visual Ping 0.8.0.0 - 'Host' Denial of Service (PoC)		2018-09-03
VSAXESS V2.6.2.70 build20171226_053 - 'Nickname' Denial of Service (PoC)		2018-09-03
DamiCMS 6.0.0 - Cross-Site Request Forgery (Change Admin Password)		2018-08-31
Network Manager VPNC - Username Privilege Escalation (Metasploit)	CVE-2018-10900	2018-08-31
Argus Surveillance DVR 4.0.0.0 - Privilege Escalation		2018-08-31
Acunetix WVS Reporter 10.0 - Denial of Service (PoC)		2018-08-31
Vox TG790 ADSL Router - Cross-Site Scripting		2018-08-31
Cybrotech CyBroHttpServer 1.0.3 - Cross-Site Scripting	CVE-2018-16134	2018-08-30
Linux/ARM - read(0, buf, 0xff) stager + execve("/bin/sh", NULL, NULL) Shellcode (28 Bytes)		2018-08-30
WordPress Plugin Quizlord 2.0 - Cross-Site Scripting		2018-08-30
DLink DIR-601 - Credential Disclosure		2018-08-30
WordPress Plugin Jibu Pro 1.7 - Cross-Site Scripting		2018-08-30
Nord VPN 6.14.31 - Denial of Service (PoC)		2018-08-30
Cybrotech CyBroHttpServer 1.0.3 - Directory Traversal Vulnerability		2018-08-30
NetworkActiv Web Server 4.0 Pre-Alpha-3.7.2 - Username Denial of Service Exploit		2018-08-30
Cybrotech CyBroHttpServer 1.0.3 - Directory Traversal	CVE-2018-16133	2018-08-30
NetworkActiv Web Server 4.0 Pre-Alpha-3.7.2 - 'Username' Denial of Service (PoC)		2018-08-30
Trillian 6.1 Build 16 - Sign In Denial of service Exploit		2018-08-29
Trillian 6.1 Build 16 - "Sign In" Denial of service (PoC)		2018-08-29
Cisco AnyConnect Secure Mobility Client 4.6.01099 - Introducir URL Denial of Service Exploit		2018-08-29
Easy PhotoResQ 1.0 - Denial Of Service Exploit		2018-08-29
Drive Power Manager 1.10 - Denial Of Service Exploit		2018-08-29
HD Tune Pro 5.70 - Denial of Service Exploit		2018-08-29
Episerver 7 patch 4 - XML External Entity Injection		2018-08-29
SIPP 3.3 - Stack-Based Buffer Overflow Exploit		2018-08-29
R 3.4.4 - Buffer Overflow (SEH) Exploit		2018-08-29
ipPulse 1.92 - TCP Port Denial of Service Exploit		2018-08-29
Fathom 2.4 - Denial Of Service Exploit		2018-08-29
		2018-08-29
Easy PhotoResQ 1.0 - Denial Of Service (PoC)		2018-08-29
Drive Power Manager 1.10 - Denial Of Service (PoC)		2018-08-29
HD Tune Pro 5.70 - Denial of Service (PoC)		2018-08-29
Cisco AnyConnect Secure Mobility Client 4.6.01099 - 'Introducir URL' Denial of Service (PoC)		2018-08-29
Argus Surveillance DVR 4.0.0.0 - Directory Traversal		2018-08-29
Skype Empresarial Office 365 16.0.10730.20053 - 'Dirección de inicio de sesión' Denial of service (PoC)		2018-08-29
Fathom 2.4 - Denial Of Service (PoC)		2018-08-29
Windows/x64 (10) - WoW64 Egghunter Shellcode (50 bytes)		2018-08-29
Linux/x86 - IPv6 Reverse TCP Shellcode Generator (94 bytes)		2018-08-29
Linux/x86 - Dual Network Stack (IPv4 and IPv6) Bind TCP Shellcode		2018-08-29
Linux/ARM - execve("/bin/sh", ["/bin/sh"], NULL) Shellcode (32 Bytes)		2018-08-29
R 3.4.4 - Buffer Overflow (SEH)		2018-08-29
SIPP 3.3 - Stack-Based Buffer Overflow		2018-08-29
Linux/MIPS64 - execve(/bin/sh) Shellcode (48 bytes)		2018-08-29
Episerver 7 patch 4 - XML External Entity Injection		2018-08-29
Argus Surveillance DVR 4.0.0.0 Privilege Escalation Vulnerability		2018-08-29
Argus Surveillance DVR 4.0.0.0 Directory Traversal Vulnerability		2018-08-29
ipPulse 1.92 - 'TCP Port' Denial of Service (PoC)		2018-08-29
phpMyAdmin 4.7.x - Cross-Site Request Forgery	CVE-2017-1000499	2018-08-29
Eaton Xpert Meter 13.4.0.10 - SSH Private Key Disclosure		2018-08-29
phpMyAdmin 4.7.x - Cross-Site Request Forgery Vulnerability		2018-08-29
NASA #openVSP 3.16.1 - Denial of Service Exploit		2018-08-29
Eaton Xpert Meter 13.4.0.10 - SSH Private Key Disclosure Exploit		2018-08-29
Immunity Debugger 1.85 - Denial of Service		2018-08-29
Immunity Debugger 1.85 - Denial of Service (PoC)		2018-08-29
NASA openVSP 3.16.1 - Denial of Service (PoC)		2018-08-29
Instagram App 41.1788.50991.0 - Denial of Service Exploit		2018-08-28
Microsoft Windows - Advanced Local Procedure Call (ALPC) Local Privilege Escalation Exploit		2018-08-28
Microsoft Windows - JScript RegExp.lastIndex Use-After-Free Exploit		2018-08-28
UltraISO 9.7.1.3519 - Buffer Overflow (SEH) Exploit		2018-08-28
Microsoft Windows - Advanced Local Procedure Call (ALPC) Local Privilege Escalation		2018-08-28
UltimatePOS 2.5 Remote Code Execution Vulnerability		2018-08-28
Dojo Toolkit 1.13 Cross Site Scripting Vulnerability		2018-08-28
Adobe Flash - AVC Processing Out-of-Bounds Read Exploit		2018-08-28
Firefox 55.0.3 - Denial of Service Exploit		2018-08-28
Cisco Network Assistant 6.3.3 - Cisco Login Denial of Service Exploit		2018-08-28
CuteFTP 5.0 - Buffer Overflow Exploit		2018-08-28
Trend Micro Enterprise Mobile Security 2.0.0.1700 - Servidor Denial of Service Exploit		2018-08-28
Microsoft Windows - JScript RegExp.lastIndex Use-After-Free	CVE-2018-8353	2018-08-28
UltraISO 9.7.1.3519 - Buffer Overflow (SEH)		2018-08-28
Instagram App 41.1788.50991.0 - Denial of Service (PoC)		2018-08-28
Schneider Electric BMX P34 CPU B - Open Redirect		2018-08-28
Libpango 1.40.8 - Denial of Service Exploit		2018-08-28
Electron WebPreferences - Remote Code Execution Exploit		2018-08-28
HP Jetdirect - Path Traversal Arbitrary Code Execution Exploit		2018-08-28
Cisco Network Assistant 6.3.3 - 'Cisco Login' Denial of Service (PoC)		2018-08-28
Apache Struts 2.3 < 2.3.34 / 2.5 < 2.5.16 - Remote Code Execution (2) Exploit		2018-08-27
Apache Struts 2.3 < 2.3.34 / 2.5 < 2.5.16 - Remote Code Execution (1) Exploit		2018-08-27
WordPress Gift Voucher 1.0.5 Plugin - template_id SQL Injection Vulnerability		2018-08-27
WordPress Plainview Activity Monitor 20161228 Plugin - Command Injection Exploit		2018-08-27
Sentrifugo HRMS 3.2 - deptid SQL Injection Vulnerability		2018-08-27
LiteCart 2.1.2 - Arbitrary File Upload Exploit		2018-08-27
ManageEngine ADManager Plus 6.5.7 - Cross-Site Scripting Vulnerability		2018-08-27
Gleez CMS 1.2.0 - Cross-Site Request Forgery (Add Admin) Vulnerability		2018-08-27
RICOH MP C4504ex Printer - Cross-Site Request Forgery (Add Admin) Vulnerability		2018-08-27
WordPress Plugin Plainview Activity Monitor 20161228 - Command Injection	CVE-2018-15877	2018-08-27
HP Jetdirect - Path Traversal Arbitrary Code Execution (Metasploit)	CVE-2017-2741	2018-08-27
Electron WebPreferences - Remote Code Execution	CVE-2018-15685	2018-08-27
Responsive FileManager < 9.13.4 - Directory Traversal	CVE-2018-15535	2018-08-27
Seagate Personal Cloud SRN21C 4.3.16.0 / 4.3.18.0 - SQL Injection		2018-08-27
Foxit PDF Reader 9.0.1.1049 - Pointer Overwrite Use-After-Free (Metasploit)	CVE-2018-9948	2018-08-27
Adobe Flash - AVC Processing Out-of-Bounds Read	CVE-2018-12827	2018-08-27
LiteCart 2.1.2 - Arbitrary File Upload		2018-08-27
Sentrifugo HRMS 3.2 - 'deptid' SQL Injection		2018-08-27
Node.JS - 'node-serialize' Remote Code Execution	CVE-2017-5941	2018-08-27
RICOH MP C4504ex Printer - Cross-Site Request Forgery (Add Admin)		2018-08-27
Libpango 1.40.8 - Denial of Service (PoC)	CVE-2018-15120	2018-08-27
Apache Struts 2.3 < 2.3.34 / 2.5 < 2.5.16 - Remote Code Execution (2)	CVE-2018-11776	2018-08-27
Trend Micro Enterprise Mobile Security 2.0.0.1700 - 'Servidor' Denial of Service (PoC)		2018-08-27
Apache Struts 2.3 < 2.3.34 / 2.5 < 2.5.16 - Remote Code Execution (1)	CVE-2018-11776	2018-08-27
CuteFTP 5.0 - Buffer Overflow		2018-08-27
Gleez CMS 1.2.0 - Cross-Site Request Forgery (Add Admin)	CVE-2018-15845	2018-08-27
Firefox 55.0.3 - Denial of Service (PoC)		2018-08-27
ManageEngine ADManager Plus 6.5.7 - Cross-Site Scripting		2018-08-26
WordPress Plugin Gift Voucher 1.0.5 - 'template_id' SQL Injection		2018-08-26
ManageEngine ADManager Plus 6.5.7 - HTML Injection	CVE-2018-15608	2018-08-26
UltimatePOS 2.5 - Remote Code Execution		2018-08-26
Vox TG790 ADSL Router - Cross-Site Request Forgery (Add Admin)		2018-08-26
SkypeApp 12.8.487.0 - 'Cuenta de Skype o Microsoft' Denial of Service (PoC)		2018-08-26
StyleWriter 4 1.0 - Denial of Service (PoC)		2018-08-26
Epiphany Web Browser 3.28.1 - Denial of Service (PoC)		2018-08-26
PCViewer vt1000 - Directory Traversal		2018-08-26
Twitter-Clone 1 - 'code' SQL Injection		2018-08-26
CuteFTP 8.3.1 - Denial of Service (PoC)		2018-08-26
Softdisk 3.0.3 - Denial Of Service (PoC)		2018-08-26
Windows 10 Diagnostics Hub Standard Collector Service - Privilege Escalation	CVE-2018-0952	2018-08-26
Geutebrueck re_porter 16 - Cross-Site Scripting	CVE-2018-15533	2018-08-26
Easyboot 6.6.0 - Denial Of Service (PoC)		2018-08-26
Geutebrueck re_porter 7.8.974.20 - Credential Disclosure	CVE-2018-15534	2018-08-26
UltraISO 9.7.1.3519 - Denial Of Service (PoC)		2018-08-26
Textpad 7.6.4 - Denial Of Service (PoC)		2018-08-26
KingMedia 4.1 - Remote Code Execution		2018-08-26
ZyXEL VMG3312-B10B - Cross-Site Scripting		2018-08-26
Project64 2.3.2 - Buffer Overflow (SEH)		2018-08-26
Apache Struts 2.x Remote Code Execution Vulnerability		2018-08-24
Couchbase Server Remote Code Execution Vulnerability		2018-08-24
Foxit PDF Reader 9.0.1.1049 Pointer Overwrite Use-After-Free Exploit		2018-08-24
Seagate Personal Cloud SRN21C SQL Injection Vulnerability		2018-08-24
Epiphany Web Browser 3.28.1 - Denial of Service Exploit		2018-08-24
SkypeApp 12.8.487.0 - Cuenta de Skype o Microsoft Denial of Service Exploit		2018-08-24
StyleWriter 4 1.0 - Denial of Service Exploit		2018-08-24
CuteFTP 8.3.1 - Denial of Service Exploit		2018-08-24
Vox TG790 ADSL Router - Cross-Site Request Forgery (Add Admin) Vulnerability		2018-08-24
PCViewer vt1000 - Directory Traversal Vulnerability		2018-08-24
Windows 10 Diagnostics Hub Standard Collector Service - Privilege Escalation Exploit		2018-08-24
Ghostscript - Multiple Vulnerabilities		2018-08-24
Geutebrueck re_porter 7.8.974.20 - Credential Disclosure Vulnerability		2018-08-24
Geutebrueck re_porter 16 - Cross-Site Scripting Vulnerability		2018-08-24
UltraISO 9.7.1.3519 - Denial Of Service Exploit		2018-08-24
Softdisk 3.0.3 - Denial Of Service Exploit		2018-08-24
Easyboot 6.6.0 - Denial Of Service Exploit		2018-08-24
Textpad 7.6.4 - Denial Of Service Exploit		2018-08-24
KingMedia 4.1 - Remote Code Execution Exploit		2018-08-24
OpenSSH 7.7 - Username Enumeration Exploit		2018-08-24
Hikvision IP Camera 5.4.0 - User Enumeration Exploit		2018-08-24
ZyXEL VMG3312-B10B - Cross-Site Scripting Vulnerability		2018-08-24
Wordpress Ninja Forms 3.3.13 Plugin - CSV Injection Vulnerability		2018-08-24
Twitter-Clone 1 - userid SQL Injection Vulnerability		2018-08-24
Twitter-Clone 1 - Cross-Site Request Forgery (Delete Post) Vulnerability		2018-08-24
Project64 2.3.2 - Buffer Overflow (SEH) Exploit		2018-08-24
Project64 2.3.2 - Denial Of Service Exploit		2018-08-24
Linux rc.local Payload Persistence Module Exploit		2018-08-24
Autostart Desktop Item Persistence Exploit		2018-08-24
BMC MyIT Java System Solutions SSO Plugin 4.0.13.1 Cross Site Scripting Vulnerability		2018-08-24
Easylogin Pro 1.3.0 - Unserialize Remote Code Execution Exploit		2018-08-24
SEIG SCADA System 9 - Remote Code Execution Exploit		2018-08-24
SEIG Modbus 3.4 - Remote Code Execution Exploit		2018-08-24
SEIG Modbus 3.4 - Denial of Service Exploit		2018-08-24
Prime95 29.4b7 - Denial Of Service Exploit		2018-08-24
Restorator 1793 - Denial of Service Exploit		2018-08-24
Zortam MP3 Media Studio 23.95 - Denial of Service Exploit		2018-08-24
Countly - Persistent Cross-Site Scripting Vulnerability		2018-08-24
WordPress Chained Quiz 1.0.8 Plugin - answer SQL Injection Vulnerability		2018-08-24
WordPress Tagregator 0.6 Plugin - Cross-Site Scripting Vulnerability		2018-08-24
MyBB Moderator Log Notes Plugin 1.1 - Cross-Site Request Forgery Vulnerability		2018-08-24
Xen xen-netback xenvif_set_hash_mapping Integer Overflow Exploit		2018-08-24
Microsoft Edge Chakra JIT - InitializeNumberFormat and InitializeDateTimeFormat Type Confusion Explo		2018-08-24
Microsoft Edge Chakra JIT - InlineArrayPush Type Confusion Exploit		2018-08-24
Microsoft Edge Chakra JIT - DictionaryPropertyDescriptor::CopyFrom Type Confusion Exploit		2018-08-24
Microsoft Edge Chakra JIT - Scope Parsing Type Confusion Exploit		2018-08-24
Microsoft Edge Chakra JIT - ImplicitCallFlags Check Bypass with Intl Exploit		2018-08-24
ADM 3.1.2RHG1 - Remote Code Execution Exploit		2018-08-24
OpenSSH 2.3 < 7.4 - Username Enumeration Exploit		2018-08-24
CEWE Photoshow 6.3.4 - Denial of Service Exploit		2018-08-24
Linux PAM 0.6.9 Authentication Replay Vulnerability		2018-08-24
Apple Smart Card Services Memory Corruption Vulnerability		2018-08-24
OpenSC 0.18.0 Buffer Overflow / Out Of Bounds Read Vulnerability		2018-08-24
Yubico PIV Tool 1.5.0 Buffer Overflow Vulnerability		2018-08-24
Yubico 0.1.9 libykneomgr Out Of Bounds Read / Write Vulnerability		2018-08-24
Jetty 6.1.6 Cross Site Scripting Vulnerability		2018-08-24
Easy RM To MP3 Converter 2.6 Stack Buffer Overflow Exploit		2018-08-24
Wordpress Plugin Ninja Forms 3.3.13 - CSV Injection		2018-08-21
OpenSSH 7.7 - Username Enumeration	CVE-2018-15473	2018-08-21
Twitter-Clone 1 - Cross-Site Request Forgery (Delete Post)		2018-08-21
Hikvision IP Camera 5.4.0 - User Enumeration (Metasploit)		2018-08-21
Twitter-Clone 1 - 'userid' SQL Injection		2018-08-21
Project64 2.3.2 - Denial Of Service (PoC)		2018-08-21
Countly - Persistent Cross-Site Scripting		2018-08-20
Easylogin Pro 1.3.0 - Encryptor.php Unserialize Remote Code Execution	CVE-2018-15576	2018-08-20
Prime95 29.4b7 - Denial Of Service (PoC)		2018-08-20
WordPress Plugin Tagregator 0.6 - Cross-Site Scripting	CVE-2018-10752	2018-08-20
MyBB Moderator Log Notes Plugin 1.1 - Cross-Site Request Forgery		2018-08-20
Restorator 1793 - Denial of Service (PoC)		2018-08-20
Zortam MP3 Media Studio 23.95 - Denial of Service (PoC)		2018-08-20
WordPress Plugin Chained Quiz 1.0.8 - 'answer' SQL Injection		2018-08-20
SEIG Modbus 3.4 - Remote Code Execution	CVE-2013-0662	2018-08-20
SEIG Modbus 3.4 - Denial of Service (PoC)	CVE-2013-0662	2018-08-20
SEIG SCADA System 9 - Remote Code Execution	CVE-2013-0657	2018-08-20
Microsoft Edge Chakra JIT - InitializeNumberFormat and InitializeDateTimeFormat Type Confusion	CVE-2018-8298	2018-08-17
Microsoft Edge Chakra JIT - 'InlineArrayPush' Type Confusion		2018-08-17
Microsoft Edge Chakra JIT - 'DictionaryPropertyDescriptor::CopyFrom' Type Confusion	CVE-2018-8291	2018-08-17
Microsoft Edge Chakra JIT - Scope Parsing Type Confusion	CVE-2018-8279	2018-08-17
Microsoft Edge Chakra JIT - ImplicitCallFlags Check Bypass with Intl	CVE-2018-8288	2018-08-17
ADM 3.1.2RHG1 - Remote Code Execution	CVE-2018-11510	2018-08-17
CEWE Photoshow 6.3.4 - Denial of Service (PoC)		2018-08-17
OpenSSH 2.3 < 7.4 - Username Enumeration (PoC)		2018-08-17
Mikrotik WinBox 6.42 - Credential Disclosure (golang)		2018-08-17
Wordpress Export Users to CSV 1.1.1 Plugin - CSV Injection Vulnerability		2018-08-17
Pimcore 5.2.3 - SQL Injection / Cross-Site Scripting / Cross-Site Request Forgery Vulnerabilities		2018-08-17
WebkitGTK+ 2.20.3 - ImageBufferCairo::getImageData() Buffer Overflow Exploit		2018-08-17
CentralManagement Software 1.4.13 - Denial of Service Exploit		2018-08-17
Oracle Glassfish OSE 4.1 - Path Traversal (Metasploit)	CVE-2017-1000028	2018-08-17
Pimcore 5.2.3 - SQL Injection / Cross-Site Scripting / Cross-Site Request Forgery	CVE-2018-14057	2018-08-16
Central Management Software 1.4.13 - Denial of Service (PoC)		2018-08-16
Wordpress Plugin Export Users to CSV 1.1.1 - CSV Injection		2018-08-16
WebkitGTK+ 2.20.3 - 'ImageBufferCairo::getImageData()' Buffer Overflow (PoC)	CVE-2018-12293	2018-08-16
ownCloud iOS Application 3.7.3 Cross Site Scripting Vulnerability		2018-08-16
Atmosphere 1.x / 2.x Cross Site Scripting Vulnerability		2018-08-16
TP-Link WR840N 0.9.1 3.16 - Denial of Service Exploit		2018-08-16
OpenEMR 5.0.1.3 - Arbitrary File Actions Vulnerability		2018-08-16
ObserverIP Scan Tool 1.4.0.1 - Denial of Service Exploit		2018-08-16
ObserverIP Scan Tool 1.4.0.1 - Denial of Service (PoC)		2018-08-16
TP-Link WR840N 0.9.1 3.16 - Denial of Service (PoC)	CVE-2018-15172	2018-08-16
OpenEMR 5.0.1.3 - Arbitrary File Actions	CVE-2018-15140	2018-08-16
cPanel Filename Based Stored XSS < v76 Exploit		2018-08-16
ASUSTOR ADM 3.1.0.RFQ3 - Remote Command Execution / SQL Injection Vulnerabilities		2018-08-15
ASUS-DSL N10 1.1.2.2_17 - Authentication Bypass Vulnerability		2018-08-15
JioFi 4G M2S 1.0.2 - Denial of Service Exploit		2018-08-15
ASUS-DSL N10 1.1.2.2_17 - Authentication Bypass		2018-08-15
ASUSTOR ADM 3.1.0.RFQ3 - Remote Command Execution / SQL Injection	CVE-2018-11509	2018-08-15
JioFi 4G M2S 1.0.2 - Denial of Service (PoC)	CVE-2018-15181	2018-08-15
Cloudme 1.9 - Buffer Overflow (DEP) (Metasploit)	CVE-2018-6892	2018-08-15
Oracle GlassFish Server Open Source Edition 4.1 - Path Traversal (Metasploit)	CVE-2017-1000028	2018-08-15
cgit 1.2.1 - Directory Traversal (Metasploit)	CVE-2018-14912	2018-08-15
Wansview 1.0.2 - Denial of Service (PoC)		2018-08-15
Oracle Weblogic Server - Deserialization Remote Code Execution (Metasploit)	CVE-2018-2628	2018-08-15
Android - Directory Traversal over USB via Injection in blkid Output	CVE-2018-9445	2018-08-15
Switch Port Mapping Tool 2.81.2 - 'Name Field' Denial of Service (PoC)		2018-08-15
IBM Sterling B2B Integrator 5.2.0.1/5.2.6.3 - Cross-Site Scripting	CVE-2018-1513	2018-08-15
PLC Wireless Router GPN2.4P21-C-CN - Denial of Service		2018-08-15
Acunetix WVS 10.0 Build 20150623 - Denial of Service (PoC)		2018-08-15
PostgreSQL 9.4-0.5.3 - Privilege Escalation	CVE-2017-14798	2018-08-15
IP Finder 1.5 - Denial of Service (PoC)		2018-08-15
Monitoring software iSmartViewPro 1.5 - 'SavePath for ScreenShots' Buffer Overflow		2018-08-15
Microsoft DirectX SDK - 'Xact.exe' Remote Code Execution		2018-08-15
MyBB Like Plugin 3.0.0 - Cross-Site Scripting		2018-08-15
MyBB Thank You/Like Plugin 3.0.0 - Cross-Site Scripting	CVE-2018-14888	2018-08-15
Zimbra 8.6.0_GA_1153 - Cross-Site Scripting	CVE-2016-3411	2018-08-15
iSmartViewPro 1.5 - 'Password' Buffer Overflow		2018-08-15
Linux Kernel 4.14.7 (Ubuntu 16.04 / CentOS 7) - (KASLR & SMEP Bypass) Arbitrary File Read	CVE-2017-18344.	2018-08-15
reSIProcate 1.10.2 - Heap Overflow	CVE-2018-12584	2018-08-15
TP-Link C50 Wireless Router 3 - Cross-Site Request Forgery (Information Disclosure)		2018-08-15
TP-Link C50 Wireless Router 3 - Cross-Site Request Forgery (Remote Reboot)		2018-08-15
Mikrotik WinBox 6.42 - Credential Disclosure (Metasploit)		2018-08-15
osTicket 1.10.1 - Arbitrary File Upload	CVE-2017-15580	2018-08-15
TP-Link Wireless N Router WR840N - Denial of Service (PoC)		2018-08-15
LG-Ericsson iPECS NMS 30M - Directory Traversal		2018-08-15
iSmartViewPro 1.5 - 'Account' Buffer Overflow		2018-08-15
iSmartViewPro 1.5 - 'Device Alias' Buffer Overflow		2018-08-15
Monstra-Dev 3.0.4 - Cross-Site Request Forgery (Account Hijacking)		2018-08-15
CloudMe Sync 1.10.9 - Buffer Overflow (SEH)(DEP Bypass)		2018-08-15
Wavemaker Studio 6.6 - Server-Side Request Forgery		2018-08-15
Sitecore.Net 8.1 - Directory Traversal	CVE-2018-7669	2018-08-15
AgataSoft Auto PingMaster 1.5 - Buffer Overflow (SEH)		2018-08-15
Cloudme 1.9 - Buffer Overflow (DEP) Exploit		2018-08-15
Android - Directory Traversal over USB via Injection in blkid Output Exploit		2018-08-15
Oracle GlassFish Server Open Source Edition 4.1 - Path Traversal Exploit		2018-08-15
cgit 1.2.1 - Directory Traversal Exploit		2018-08-15
Wansview 1.0.2 - Denial of Service Exploit		2018-08-15
WordPress Ultimate Product Catalog 4.3.11 Plugin - SQL Injection Vulnerability		2018-08-15
Switch Port Mapping Tool 2.81.2 - Name Field Denial of Service Exploit		2018-08-15
PLC Wireless Router GPN2.4P21-C-CN - Denial of Service		2018-08-15
Acunetix WVS 10.0 Build 20150623 - Denial of Service Exploit		2018-08-15
IBM Sterling B2B Integrator 5.2.0.1/5.2.6.3 - Cross-Site Scripting Vulnerability		2018-08-15
Linux/x64 - Add Root User (toor/toor) Shellcode (99 bytes)		2018-08-15
PostgreSQL 9.4-0.5.3 - Privilege Escalation Exploit		2018-08-15
Microsoft DirectX SDK - Xact.exe Remote Code Execution Exploit		2018-08-15
iSmartViewPro 1.5 - SavePath for ScreenShots Buffer Overflow Exploit		2018-08-15
IP Finder 1.5 - Denial of Service Exploit		2018-08-15
Dicoogle PACS 2.5.0 Web Server Directory Traversal Exploit		2018-08-15
Wavemaker Studio 6.6 - Server-Side Request Forgery Vulnerability		2018-08-15
Monstra-Dev 3.0.4 - Cross-Site Request Forgery (Account Hijacking) Vulnerability		2018-08-15
Oracle Weblogic Server Deserialization Remote Code Execution Exploit		2018-08-11
iSmartViewPro 1.5 - Password Buffer Overflow Exploit		2018-08-11
MyBB Like Plugin 3.0.0 - Cross-Site Scripting Vulnerability		2018-08-11
MyBB Thank You/Like Plugin 3.0.0 - Cross-Site Scripting Vulnerability		2018-08-11
Zimbra 8.6.0_GA_1153 - Cross-Site Scripting Vulnerability		2018-08-11
Linux #Kernel #LinuxKernel 4.14.7 ( #Ubuntu 16.04 / #CentOS 7) Arbitrary File Read Exploit		2018-08-09
Mikrotik WinBox 6.42 - Credential Disclosure Exploit		2018-08-09
TPLink Archer C50 V3 Wireless Router 3 - CSRF (Remote Reboot) Vulnerability		2018-08-09
TPLink Archer C50 V3 Wireless Router 3 - CSRF (Information Disclosure) Vulnerability		2018-08-09
CloudMe Sync 1.10.9 - Buffer Overflow (SEH) Exploit		2018-08-09
AgataSoft Auto PingMaster 1.5 - Buffer Overflow (SEH) Exploit		2018-08-09
Sitecore.Net 8.1 - Directory Traversal Vulnerability		2018-08-09
Ericsson-LG iPECS NMS 30M - Directory Traversal Vulnerability		2018-08-09
TP-Link TL-WR840N - Denial of Service Vulnerability		2018-08-09
man-cgi Local File Inclusion Vulnerability		2018-08-09
reSIProcate 1.10.2 Heap Overflow Exploit		2018-08-08
iSmartViewPro 1.5 - Account Buffer Overflow Exploit		2018-08-08
iSmartViewPro 1.5 - Device Alias Buffer Overflow Exploit		2018-08-08
Microsoft Windows SCF File Feature Bypass Vulnerability		2018-08-08
OpenEMR < 5.0.1 - Remote Code Execution Exploit		2018-08-08
OCS Inventory NG Webconsole Shell Upload Vulnerability		2018-08-08
QNap QVR Client 5.0.3.23100 - Denial of Service Exploit		2018-08-08
Open-AudIT Community 2.2.6 - Cross-Site Scripting Vulnerability		2018-08-08
Monstra 3.0.4 - Cross-Site Scripting Vulnerability		2018-08-08
LAMS < 3.1 - Cross-Site Scripting Vulnerability		2018-08-08
Subrion CMS 4.2.1 - Cross-Site Scripting Vulnerability		2018-08-08
onArcade 2.4.2 - Cross-Site Request Forgery (Add Admin) Vulnerability		2018-08-08
CMS ISWEB 3.5.3 - Directory Traversal Vulnerability		2018-08-08
Fortinet FortiClient 5.2.3 (Windows 10 x64 Creators) - Local Privilege Escalation Exploit		2018-08-08
cgit < 1.2.1 - cgit_clone_objects() Directory Traversal Vulnerability		2018-08-08
Vuze Bittorrent Client 5.7.6.0 - SSDP Processing XML External Entity Injection Vulnerability		2018-08-08
Plex Media Server 1.13.2.5154 - SSDP Processing XML External Entity Injection Vulnerability		2018-08-08
PHP Template Store Script 3.0.6 - Cross-Site Scripting Vulnerability		2018-08-08
Wedding Slideshow Studio 1.36 - Buffer Overflow Exploit		2018-08-08
Linux Kernel UDP Fragmentation Offset (UFO) Privilege Escalation Exploit		2018-08-08
Linux/x86 - Reverse TCP (::FFFF:192.168.1.5:4444/TCP) Shell (/bin/sh) + Null-Free + IPv6 (86 bytes)		2018-08-08
Basic B2B Script 2.0.0 - Cross-Site Scripting Vulnerability		2018-08-08
ASUS DSL-N12E C1 1.1.2.3_345 - Remote Command Execution Exploit		2018-08-08
Seq 4.2.476 - Authentication Bypass Vulnerability		2018-08-08
AgataSoft Auto PingMaster 1.5 - Host name Denial of Service PoC Exploit		2018-08-08
PageResponse FB Inboxer Add-on 1.2 - search_field SQL Injection Vulnerability		2018-08-08
TI Online Examination System v2 - Arbitrary File Download Vulnerability		2018-08-08
Chartered Accountant : Auditor Website 2.0.1 - Cross-Site Scripting Vulnerability		2018-08-08
WityCMS 0.6.2 - Cross-Site Request Forgery (Password Change) Vulnerability		2018-08-08
Imperva SecureSphere 12.0.0.50 - SealMode Shell Escape Exploit		2018-08-08
Imperva SecureSphere 11.5 / 12.0 / 13.0 - Privilege Escalation Exploit		2018-08-08
CoSoSys Endpoint Protector 4.5.0.1 - Authenticated Remote Root Command Injection Exploit		2018-08-08
Universal Media Server 7.1.0 - SSDP Processing XML External Entity Injection Vulnerability		2018-08-08
DataLife Engine 13.0 Cross Site Scripting Vulnerability		2018-08-08
WebRTC - H264 NAL Packet Processing Type Confusion Exploit		2018-08-08
WebRTC - FEC Processing Overflow Exploit		2018-08-08
WebRTC - VP8 Block Decoding Use-After-Free Exploit		2018-08-08
Easy DVD Creator 2.5.11 Buffer Overflow Exploit		2018-08-08
My Video Converter 1.5.24 Buffer Overflow Exploit		2018-08-08
Allok Fast AVI MPEG Splitter 1.2 SEH Overwrite Exploit		2018-08-08
Linux/ARM - Reverse (::1:4444/TCP) Shell (/bin/sh) +IPv6 Shellcode (116 Bytes)		2018-08-08
Switch Port Mapping Tool 2.81 - SNMP Community Name Denial of Service PoC Exploit		2018-08-08
ipPulse 1.92 - Licence Key Denial of Service PoC Exploit		2018-08-08
HRSale 1.0.6 Local File Disclosure Vulnerability		2018-08-08
MicroFocus Secure Messaging Gateway Remote Code Execution Exploit		2018-08-08
Vtiger CRM 6.3.0 Authenticated Logo Upload Remote Command Execution Exploit		2018-08-08
SonicWall Global Management System XMLRPC Exploit		2018-08-08
Microsoft Wireless Display Adapter 2 Command Injection / Broken Access Control Vulnerability		2018-08-08
Allok MOV Converter 4.6.1217 Buffer Overflow Exploit		2018-08-08
Responsive Filemanager 9.13.1 Server-Side Request Forgery Vulnerability		2018-08-08
Charles Proxy 4.2 - Local root Privilege Escalation Exploit		2018-08-08
QNap QVR Client 5.0.3.23100 - Denial of Service (PoC)		2018-08-07
OpenEMR < 5.0.1 - Remote Code Execution		2018-08-07
Open-AudIT Community 2.2.6 - Cross-Site Scripting		2018-08-06
Monstra 3.0.4 - Cross-Site Scripting		2018-08-06
CMS ISWEB 3.5.3 - Directory Traversal		2018-08-06
onArcade 2.4.2 - Cross-Site Request Forgery (Add Admin)		2018-08-06
LAMS < 3.1 - Cross-Site Scripting		2018-08-06
Subrion CMS 4.2.1 - Cross-Site Scripting		2018-08-06
Fortinet FortiClient 5.2.3 (Windows 10 x64 Creators) - Local Privilege Escalation		2018-08-05
cgit < 1.2.1 - 'cgit_clone_objects()' Directory Traversal		2018-08-03
Linux Kernel - UDP Fragmentation Offset (UFO) Privilege Escalation (Metasploit)		2018-08-03
Plex Media Server 1.13.2.5154 - SSDP Processing XML External Entity Injection		2018-08-03
Vuze Bittorrent Client 5.7.6.0 - SSDP Processing XML External Entity Injection		2018-08-03
Linux/ARM - Bind (4444/TCP) Shell +IPv6 Shellcode (128 Bytes)		2018-08-03
PHP Template Store Script 3.0.6 - Cross-Site Scripting		2018-08-03
Wedding Slideshow Studio 1.36 - Buffer Overflow		2018-08-03
Entrepreneur Job Portal Script 3.0.1 - Cross-Site Scripting		2018-08-03
Basic B2B Script 2.0.0 - Cross-Site Scripting		2018-08-03
Linux/x86 - Reverse Shell (/bin/sh)+Null Free+IPv6 Shellcode (86 bytes)		2018-08-03
AgataSoft Auto PingMaster 1.5 - 'Host name' Denial of Service (PoC)		2018-08-02
Seq 4.2.476 - Authentication Bypass		2018-08-02
ASUS DSL-N12E_C1 1.1.2.3_345 - Remote Command Execution		2018-08-02
Allok Fast AVI MPEG Splitter 1.2 - Buffer Overflow (PoC)		2018-08-02
Universal Media Server 7.1.0 - SSDP Processing XML External Entity Injection		2018-08-02
SecureSphere 12.0.0.50 - SealMode Shell Escape (Metasploit)		2018-08-02
CoSoSys Endpoint Protector 4.5.0.1 - Authenticated Remote Root Command Injection		2018-08-02
Imperva SecureSphere 11.5 / 12.0 / 13.0 - Privilege Escalation		2018-08-02
PageResponse FB Inboxer Add-on 1.2 - 'search_field' SQL Injection		2018-08-02
TI Online Examination System v2 - Arbitrary File Download		2018-08-02
WityCMS 0.6.2 - Cross-Site Request Forgery (Password Change)		2018-08-02
Sun Solaris 11.3 AVS - Local Kernel root Exploit		2018-08-02
Chartered Accountant : Auditor Website 2.0.1 - Cross-Site Scripting		2018-08-02
SonicWall Global Management System - XMLRPC set_time_zone Command Injection (Metasploit)		2018-08-01
WebRTC - H264 NAL Packet Processing Type Confusion		2018-08-01
WebRTC - FEC Processing Overflow		2018-08-01
WebRTC - VP8 Block Decoding Use-After-Free		2018-08-01
Axis Network Camera - .srv to parhand RCE (Metasploit)		2018-08-01
Linux/ARM - Reverse (::1:4444/TCP) Shell +IPv6 Shellcode (116 Bytes)		2018-08-01
Switch Port Mapping Tool 2.81 - 'SNMP Community Name' Denial of Service (PoC)		2018-08-01
ipPulse 1.92 - 'Licence Key' Denial of Service (PoC)		2018-08-01
Allok MOV Converter 4.6.1217 - Buffer Overflow (SEH)		2018-08-01
fusermount - user_allow_other Restriction Bypass and SELinux Label Control Exploit		2018-07-30
Charles Proxy 4.2 - Local root Privilege Escalation		2018-07-30
fusermount - user_allow_other Restriction Bypass and SELinux Label Control		2018-07-30
H2 Database 1.4.197 - Information Disclosure		2018-07-30
Microsoft Windows Kernel - win32k!NtUserConsoleControl Denial of Service #PoC Exploit		2018-07-30
H2Database 1.4.197 - Information Disclosure Exploit		2018-07-30
ipPulse 1.92 - IP Address/HostName-Comment Denial of Service #PoC Exploit		2018-07-30
Microsoft Windows Kernel - 'win32k!NtUserConsoleControl' Denial of Service (PoC)		2018-07-30
ipPulse 1.92 - 'IP Address/HostName-Comment' Denial of Service (PoC)		2018-07-30
ProjectSend - SQL Injection Vulnerability		2018-07-29
WordPress Plugin Responsive Thumbnail Slider - Arbitrary File Upload (Metasploit)		2018-07-28
Skia - Heap Overflow in SkScan::FillPath due to Precision Error		2018-07-28
SoftNAS Cloud < 4.0.3 - OS Command Injection		2018-07-28
NetScanTools Basic Edition 2.5 - 'Hostname' Denial of Service (PoC)		2018-07-28
Online Trade 1 - Information Disclosure		2018-07-28
QNap QVR Client 5.1.1.30070 - 'Password' Denial of Service (PoC)		2018-07-28
Core FTP 2.0 - 'XRMD' Denial of Service (PoC)		2018-07-28
Inteno’s IOPSYS - (Authenticated) Local Privilege Escalation		2018-07-28
Trivum Multiroom Setup Tool 8.76 - Corss-Site Request Forgery (Admin Bypass)		2018-07-28
GetGo Download Manager 6.2.1.3200 - Denial of Service (PoC)		2018-07-28
10-Strike LANState 8.8 - Local Buffer Overflow (SEH)		2018-07-28
10-Strike Bandwidth Monitor 3.7 - Local Buffer Overflow (SEH)		2018-07-28
D-link DAP-1360 - Path Traversal / Cross-Site Scripting		2018-07-28
Micro Focus Secure Messaging Gateway (SMG) < 471 - Remote Code Execution (Metasploit)		2018-07-28
Nagios Core 4.4.1 - Denial of Service		2018-07-28
Linux/x86 - Bind (4444/TCP) Shell (/bin/sh) + IPv6 Shellcode (100 bytes)		2018-07-28
Microsoft Windows - 'dnslint.exe' Drive-By Download		2018-07-28
Tenda Wireless N150 Router 5.07.50 - Cross-Site Request Forgery (Reboot Router)		2018-07-28
Windows Speech Recognition - Buffer Overflow (PoC)		2018-07-28
Davolink DVW 3200 Router - Password Disclosure		2018-07-28
Splinterware System Scheduler Pro 5.12 - Buffer Overflow (SEH)		2018-07-28
NUUO NVRmini - 'upgrade_handle.php' Remote Command Execution		2018-07-28
GeoVision GV-SNVR0811 - Directory Traversal		2018-07-28
TP-Link TL-WR840N - Denial of Service		2018-07-28
Touchpad / Trivum WebTouch Setup 2.53 build 13163 - Authentication Bypass		2018-07-28
MSVOD 10 - 'cid' SQL Injection		2018-07-28
Google Chrome - SwiftShader OpenGL Texture Bindings Reference Count Leak		2018-07-28
Google Chrome - Swiftshader Blitting Floating-Point Precision Errors		2018-07-28
Google Chrome - Swiftshader Texture Allocation Integer Overflow		2018-07-28
WordPress Responsive Thumbnail Slider Plugin - Arbitrary File Upload Exploit		2018-07-27
NetScanTools Basic Edition 2.5 - Hostname Denial of Service (PoC) Exploit		2018-07-27
Skia - Heap Overflow in SkScan::FillPath due to Precision Error Vulnerability		2018-07-27
Online Trade 1 - Information Disclosure Vulnerability		2018-07-27
QNap #QVR Client 5.1.1.30070 - Password Denial of Service #PoC Exploit		2018-07-27
Tracto #ERC20 Integer Overflow Vulnerability		2018-07-27
SoftNAS Cloud OS Command Injection Vulnerability		2018-07-27
Axis Network Camera Remote Command Execution Exploit		2018-07-27
FTPShell Client 5.22 Remote Buffer Overflow Exploit		2018-07-27
CleanMyMac3 Local Privilege Escalation Exploit		2018-07-27
Super CMS Blog Pro PHP Script 1.0 SQL Injection / Shell Upload Vulnerabilities		2018-07-27
WordPress Snazzy Maps 1.1.3 Cross Site Scripting Vulnerability		2018-07-27
WordPress Strong Testimonials 2.31.4 Cross Site Scripting Vulnerability		2018-07-27
WordPress Gwolle Guestbook 2.5.3 Cross Site Scripting Vulnerability		2018-07-27
Core FTP 2.0 - XRMD Denial of Service PoC Exploit		2018-07-26
Trivum Multiroom Setup Tool 8.76 - Cross-Site Request Forgery (Admin Bypass) Vulnerability		2018-07-26
Inteno IOPSYS - (Authenticated) Local Privilege Escalation Exploit		2018-07-26
GetGo Download Manager 6.2.1.3200 - Buffer Overflow Exploit		2018-07-25
10-Strike LANState 8.8 - Local Buffer Overflow (SEH) Exploit		2018-07-25
10-Strike Bandwidth Monitor 3.7 - Local Buffer Overflow (SEH) Exploit		2018-07-25
Sourcetree Remote Code Execution Exploit		2018-07-24
GeoVision GV-SNVR0811 Directory Traversal Vulnerability		2018-07-24
SMPlayer 18.6.0 Memory Corruption Exploit		2018-07-24
Micro Focus Secure Messaging Gateway (SMG) < 471 - Remote Code Execution Exploit		2018-07-24
Nagios Core 4.4.1 - Denial of Service Vulnerability		2018-07-24
D-link DAP-1360 - Path Traversal / Cross-Site Scripting Vulnerabilities		2018-07-24
NetworkManager #VPNC 1.2.4 Privilege Escalation Vulnerability		2018-07-24
Cisco Adaptive Security Appliance Path Traversal Exploit		2018-07-24
WordPress LimoLabs 1.0.0 Remote Password Disclosure Vulnerability		2018-07-24
Windows Speech Recognition - Buffer Overflow Exploit		2018-07-24
Splinterware System Scheduler Pro 5.12 - Buffer Overflow (SEH) Exploit		2018-07-24
Tenda #Wireless N150 Router 5.07.50 - Cross-Site Request Forgery (Reboot Router) Exploit		2018-07-24
Davolink DVW 3200 Router - Password Disclosure Exploit		2018-07-24
NUUO NVRmini - upgrade_handle.php Remote Command Execution Vulnerability		2018-07-24