Exploits (Total: 96296)

    
    
    
X2Engine <= 4.1.7 (FileUploadsFilter.php) Unrestricted File Upload Vulnerability
2014-09-24
X2Engine <= 4.1.7 (SiteController.php) PHP Object Injection Vulnerability
2014-09-24
Get Simple CMS 3.3.3 CSRF / XSS / Clickjacking
2014-09-24
xcode-select 13.4.0 Buffer Overflow
2014-09-24
Glype 1.4.9 - Local Address Filter Bypass
2014-09-24
webEdition 6.3.8.0 (SVN-Revision: 6985) - Path Traversal
CVE-2014-5258
2014-09-24
Restaurant Script (PizzaInn Project) - Stored XSS
CVE-2014-6619
2014-09-24
Glype 1.4.9 - Cookie Injection Path Traversal LFI
2014-09-24
Advantech WebAccess dvs.ocx GetColor Buffer Overflow
CVE-2014-2364
2014-09-24
EMC AlphaStor Device Manager Opcode 0x75 Command Injection
CVE-2013-0928
2014-09-24
Joomla Mac Gallery 1.5 - Arbitrary File Download
2014-09-24
Joomla Face Gallery 1.0 - Multiple vulnerabilities
2014-09-24
Onlineon E-Ticaret Database Disclosure Exploit
2014-09-24
WS10 Data Server - SCADA Exploit Overflow PoC
2014-09-24
ZyXEL Prestig P-660HNU-T1 ISP Credentials Disclosure
2014-09-24
Onlineon E-Ticaret Database Disclosure Exploit
2014-09-24
ZyXEL Prestig P-660HNU-T1 ISP Credentials Disclosure Exploit
2014-09-24
WS10 Data Server SCADA Overflow PoC Exploit
2014-09-24
EMC AlphaStor Device Manager Opcode 0x75 Command Injection Exploit
CVE-2013-0928
2014-09-24
Advantech WebAccess dvs.ocx GetColor Buffer Overflow Exploit
CVE-2014-2364
2014-09-24
PayPal Inc BB #59 - Persistent Mail Encoding Vulnerability
2014-09-23
Joomla Mac Gallery <= 1.5 Arbitrary File Download
2014-09-23
KonaKart Storefront Application Cross Site Request Forgery
2014-09-23
Glype proxy privacy settings can be disabled via CSRF
2014-09-23
TP-LINK WDR4300 XSS / Denial Of Service
2014-09-23
Pizza Inn Registration Stored XSS
2014-09-23
OKCupid Server Error Page XSS
2014-09-23
Glype Proxy 1.4.9 Filter Bypass
2014-09-23
Exponent CMS 2.3.0 Cross Site Scripting
2014-09-23
TomatoCart 1.1.8.6.1 Cross Site Scripting
2014-09-23
LittleSite 0.1 - 'file' Parameter Local File Include Vulnerability
CVE-2009-3542
2014-09-23
Glype Proxy 1.4.9 Cookie Jar Path Traversal / Code Execution / Filter Bypass
2014-09-23
Get Simple CMS 3.3.3 CSRF / XSS / Clickjacking Vulnerabilities
2014-09-23
TP-LINK WDR4300 XSS / Denial Of Service Vulnerabilities
CVE-2014-4720
2014-09-23
X2Engine 4.1.7 PHP Object Injection / Unrestricted File Upload Vulnerabilies
CVE-2014-5297
2014-09-23
LittleSite 0.1 Local File Include Vulnerability
CVE-2009-3542
2014-09-23
GS Foto Uebertraeger v3.0 iOS - File Include Vulnerability
2014-09-22
SmarterTools Smarter Track 6-10 - Information Disclosure
2014-09-22
Paypal Inc BB #32 - Multiple Persistent Vulnerabilities
2014-09-22
Joomla Face Gallery 1.0 Multiple Vulnerabilities
2014-09-21
Joomla Mac Gallery <= 1.5 Arbitrary File Download Exploit
2014-09-21
Wordpress Theme Strange File Upload / File Deletion
2014-09-21
Livefyre LiveComments Plugin - Stored XSS Vulnerability
2014-09-21
M/Monit 3.2.2 Cross Site Request Forgery
2014-09-20
Nokia Asha 501 Lock Bypass
2014-09-20
GetSimpleCMS PHP File Upload
2014-09-20
MailEnable Enterprise 6.5 XSS
2014-09-20
Seafile-server <= 3.1.5 - Remote DoS
2014-09-20
ClassApps SelectSurvey.net - Multiple SQL Injection Vulnerabilities
CVE-2014-6030
2014-09-20
Exploração de código remoto: uma técnica bastante eficaz
2014-09-20
Livefyre LiveComments Plugin - Stored XSS
CVE-2014-6420
2014-09-20
Fast Image Resizer 098 - Local Crash PoC
2014-09-20
M/Monit 3.3.2 - CSRF Vulnerability
CVE-2014-6409
2014-09-20
vBulletin 4.x Verify Email Before Registration Plugin - SQL Injection
2014-09-20
M/Monit 3.2.2 Cross Site Request Forgery Vulnerability
CVE-2014-6409
2014-09-20
GetSimpleCMS PHP File Upload Exploit
2014-09-20
Wordpress Plugin CSSJockey Membership Modules Code Execution Vulnerability
2014-09-20
Oracle MyOracle Filter Bypass
2014-09-19
WatchGuard XTM 11.8.3 Cross Site Scripting
2014-09-19
Apple Foundation NSXMLParser XML eXternal Entity (XXE)
2014-09-19
Netgear Download Center Cross Site Scripting / Open Redirect
2014-09-19
WordPress Theme Konzept Arbitrary File Upload Vulnerability
2014-09-19
Paypal BB #16 - Persistent Mail Encoding Vulnerability
2014-09-18
Android Bluetooth Enable
2014-09-18
MIUI Torch Enable
2014-09-18
MIUI Wifi Connection Message Wireless Enable
2014-09-18
WordPress Login Widget With Shortcode 3.1.1 CSRF / XSS
2014-09-18
ClassApps SelectSurvey.net 4.124.004 SQL Injection
2014-09-18
WordPress WP-Ban 1.62 Bypass
2014-09-18
OsClass 3.4.1 Local File Inclusion
2014-09-18
OsClass 3.4.1 Cross Site Scripting
2014-09-18
Livefyre LiveComments 3.0 Cross Site Scripting
2014-09-18
MODX Revolution 2.3.1-pl Cross Site Scripting
2014-09-18
seafile-server 3.1.5 Denial Of Service
2014-09-18
webEdition 6.3.8.0 Path Traversal
2014-09-18
Nokia Asha Lock Code Bypass
2014-09-18
WordPress Theme Jupiter Arbitrary File Download Vulnerability
2014-09-18
WordPress Theme Forall Arbitrary File Download Vulnerability
2014-09-18
WordPress Theme X Arbitrary File Download Vulnerability
2014-09-18
WordPress Theme Celestial-Lite Arbitrary File Download Vulnerability
2014-09-18
WordPress Theme Centum Arbitrary File Download Vulnerability
2014-09-18
WordPress Theme 3clicks Arbitrary File Download Vulnerability
2014-09-18
WordPress 0day - Hades Plus Framework Add Administrator
2014-09-18
WordPress Login Widget With Shortcode 3.1.1 CSRF / XSS Vulnerabilities
2014-09-18
WordPress WP-Ban 1.62 Bypass Vulnerability
CVE-2014-6230
2014-09-18
webEdition 6.3.8.0 Path Traversal Vulnerability
CVE-2014-5258
2014-09-18
MODX Revolution 2.3.1-pl Cross Site Scripting Vulnerability
CVE-2014-5451
2014-09-18
WordPress Plugin Sticky Social Bar XSS Vulnerablity
2014-09-18
WordPress Plugin Max Banner Ads XSS Vulnerablity
2014-09-18
WordPress Theme !LesPaul Arbitrary File Download Vulnerability
2014-09-18
USB & WiFi Flash Drive 1.3 Code Execution
2014-09-17
Laravel 2.1 Hash::make() bcrypt Truncation
2014-09-17
Delphi And C++ Builder VCL Library Heap Buffer Overflow
2014-09-17
In-Portal CMS 5.2.0 Cross Site Scripting
2014-09-17
Cart Engine 3.0 XSS / Open Redirect / SQL Injection
2014-09-17
OSSEC 2.8 umask Clear Text Passwords
2014-09-17
CM Browser SOP Bypass
2014-09-17
Phpwiki Ploticus Remote Code Execution
2014-09-17
WordPress Theme LaBomba Arbitrary File Download Vulnerability
2014-09-17
WordPress Theme Marble Arbitrary File Download Vulnerability
2014-09-17
Wordpress Webcam 2Way Videochat Plagin XSS Vulnerability
2014-09-17
Wordpress Plugin FormCraft Premium Arbitrary File Deletion
2014-09-17
ZTE ZXDSL-931VII Unauthenticated Configuration Dump
2014-09-17
Phpwiki Ploticus Remote Code Execution Exploit
CVE-2014-5519
2014-09-17
Oracle Corporation MyOracle - Persistent Vulnerability
2014-09-16
Briefcase 4.0 iOS Code Execution & File Include Vulnerability
2014-09-16
OpenStack Neutron remote reset vulnerability
2014-09-16
Linux Kernel net guard tcp_set_keepalive against crash
2014-09-16
Linux Kernel udf infinite loop when processing indirect ICBs
2014-09-16
Splendid CRM Cross Site Scripting
2014-09-16
SingleClick Connect CSRF / XSS / SQL Injection
2014-09-16
MyITCRM Cross Site Scripting
2014-09-16
DVWA Cross Site Request Forgery
2014-09-16
WordPress Wordfence 5.2.3 Cross Site Scripting / Bypass
2014-09-16
Open-Xchange 7.6.0 XSS / SSRF / Traversal
2014-09-16
Aztech DSL5018EN / DSL705E / DSL705EU DoS / Broken Session Management
2014-09-16
Wordpress Slideshow Gallery 1.4.6 - Shell Upload (Python Exploit)
CVE-2014-5460
2014-09-16
Laravel 'Hash::make()' Function Password Truncation Security Weakness
2014-09-16
USB&WiFi Flash Drive 1.3 iOS - Code Execution Vulnerability
2014-09-16
ZTE ZXDSL-931VII - Unauthenticated Configuration Dump
2014-09-16
USB&WiFi Flash Drive 1.3 iOS - Code Execution Vulnerability
2014-09-15
EGYWEB (Mantrac) <= Remote File Disclosure Exploit (.py)
2014-09-15
Multiple Aztech Modem Routers Session Hijacking Vulnerability
CVE-2014-6436
2014-09-15
Multiple Aztech Routers '/cgi-bin/AZ_Retrain.cgi' Denial of Service Vulnerability
CVE-2014-6435
2014-09-15
Aztech Modem Routers Information Disclosure Vulnerability
CVE-2014-6437
2014-09-15
Railo Remote File Include
CVE-2014-5468
2014-09-15
CacheGuard-OS 5.7.7 - CSRF Vulnerability
CVE-2014-4865
2014-09-15
SolarWinds Storage Manager Authentication Bypass
2014-09-15
ManageEngine Eventlog Analyzer Arbitrary File Upload
CVE-2014-6037
2014-09-15
Rejetto HTTP File Server (HFS) 2.3.x - Remote Command Execution (1)
CVE-2014-6287
2014-09-15
Connect Back (139 bytes)
2014-09-15
ALCASAR <= 2.8.1 - Remote Root Code Execution Vulnerability
2014-09-15
Briefcase 4.0 iOS - Code Execution & File Include Vulnerability
2014-09-15
EGYWEB (Mantrac) <= Remote File Disclosure Exploit
2014-09-15
MantisBT Null byte poisoning in LDAP authentication
2014-09-14
WordPress Wordfence Security Plugin Multiple Vulnerabilities
2014-09-14
WordPress Photo Album Plus 5.4.4 Cross Site Scripting
2014-09-13
Travel Portal II 6.0 Cross Site Request Forgery
2014-09-13
Food Order Portal 8.3 Cross Site Request Forgery
2014-09-13
HttpFileServer 2.3.x Remote Command Execution
2014-09-13
Joomla Spider Form Maker 4.3 SQL Injection
2014-09-13
Rooted SSH/SFTP Daemon Default Login Credentials
2014-09-13
Comodo Internet Security - HIPS/Sandbox Escape PoC
2014-09-13
Ammyy Admin 3.5 - RCE
2014-09-13
HttpFileServer 2.3.x Remote Command Execution Vulnerability
CVE-2014-6287
2014-09-13
IBM WebSphere Application Server Cross Site Scripting
2014-09-12
WordPress Trinity Theme Arbitrary File Download
2014-09-12
Railo 4.2.1 Remote File Inclusion
2014-09-12
ChatSecure IM 2.2.4 iOS Persistent Web Vulnerability
2014-09-12
Photorange 1.0 Local File Inclusion
2014-09-12
OroCRM Cross Site Scripting
2014-09-12
Airties Air6372SO Modem Web Interface Cross Site Scripting
2014-09-12
Food Order Portal 'admin_user_delete.php' Cross Site Request Forgery Vulnerability
2014-09-12
Joomla Spider Form Maker <= 3.4 - SQLInjection
2014-09-12
Railo 4.2.1 Remote File Inclusion Exploit
CVE-2014-5468
2014-09-12
ManageEngine Eventlog Analyzer Arbitrary File Upload Exploit
CVE-2014-6037
2014-09-12
SolarWinds Storage Manager Authentication Bypass Exploit
2014-09-12
Joomla Spider Form Maker <= 4.3 SQL Injection Vulnerability
2014-09-12
WordPress SMWF Theme Arbitrary File Download Vulnerability
2014-09-12
WordPress Markant Theme Arbitrary File Download Vulnerability
2014-09-12
WordPress yakimabait Theme Arbitrary File Download Vulnerability
2014-09-12
WordPress TheLoft Theme Arbitrary File Download Vulnerability
2014-09-12
WordPress core theme Arbitrary File Download Vulnerability
2014-09-12
WordPress eboard theme Arbitrary File Download
2014-09-12
Briefcase 4.0 iOS - Code Exec & File Include Vulnerability
2014-09-11
CHICKEN Scheme on the Android platform select() buffer overrun
2014-09-11
Apache Tomcat 7.0.39 Remote Code Execution
2014-09-11
ChatSecure IM 2.2.4 iOS - Persistent XSS Vulnerability
2014-09-11
Photorange 1.0 iOS - File Inclusion Vulnerability
2014-09-11
Joomla Spider Contacts 1.3.6 (index.php contacts_id param) - SQL Injection
2014-09-11
OroCRM - Stored XSS Vulnerability
2014-09-11
WordPress felis theme Arbitrary File Download Vulnerability
2014-09-11
WordPress MichaelCanthony theme Arbitrary File Download Vulnerability
2014-09-11
Wordpress Support Plus Responsive Ticket System 2.0 Plugin - Multiple Vulnerabilities
2014-09-11
Wordpress shorttermbraces theme Arbitrary File Download Vulnerability
2014-09-11
WordPress Trinity theme Arbitrary File Download Vulnerability
2014-09-11
WordPress striking_r2 Arbitrary File Download Vulnerability
2014-09-11
Joomla Spider Contacts <= 1.3.6 SQL Injection Exploit
2014-09-11
ChatSecure IM v2.2.4 iOS - Persistent Web Vulnerability
2014-09-10
PHP Stock Management System 1.02 Multiple Vulnerabilty
2014-09-10
JobScheduler XML eXternal Entity Injection
2014-09-09
WordPress Antioch Arbitrary File Download
2014-09-09
JobScheduler Cross Site Scripting
2014-09-09
JobScheduler Path Traversal
2014-09-09
Alcasar 2.8 Remote Root Command Execution
2014-09-09
GDB Server Remote Payload Execution
2014-09-09
PHP Stock Management System 1.02 - Multiple Vulnerabilty
2014-09-09
ALCASAR 2.8 - Remote Root Code Execution Vulnerability
2014-09-09
ManageEngine Desktop Central StatusUpdate Arbitrary File Upload
CVE-2014-5005
2014-09-09
Parallels Plesk Sitebuilder 9.5 - Multiple Vulnerabilities
2014-09-09
Obfuscated Shellcode Linux x86 - chmod 777 (/etc/passwd + /etc/shadow) & Add New Root User & Execute /bin/bash
2014-09-09
Wordpress WP Support Plus Responsive Ticket System 2.0 Plugin - Multiple Vulnerabilities
2014-09-09
WordPress Epic Arbitrary File Download Vulnerability
2014-09-09
WordPress Urban City Arbitrary File Download Vulnerability
2014-09-09
WordPress Antioch Arbitrary File Download Vulnerability
2014-09-09
WordPress Authentic Arbitrary File Download Vulnerability
2014-09-09
GDB Server Remote Payload Execution Exploit
2014-09-09
TNG Sitebuilding v. 10.0.3 - Admin Panel Motion Logs Downloader Exploit
2014-09-09
PHP Stock Management System 1.02 - Multiple Vulnerabilty
2014-09-09
ALCASAR 2.8 Remote Root Code Execution Exploit
2014-09-09
Wordpress epic theme Arbitrary File Download Vulnerability
2014-09-08
Wordpress Authentic Theme Arbitrary File Download Vulnerability
2014-09-08
IP Board 3.4.6 CSRF Token hjiacking
2014-09-08
LoadedCommerce7 Systemic Query Factory Vulnerability
2014-09-08
Joomla Spider Calendar <= 3.2.6 SQL Injection Exploit
2014-09-08
phpMyFAQ 2.8.12 Multiple Vulnerabilities
2014-09-08
vBulletin 5.1.2 Cross Site Scripting
2014-09-08
WordPress W3 Total Cache Plugin 'admin.php' Cross Site Request Forgery Vulnerability
2014-09-08
WordPress Xhanch My Twitter Plugin Cross Site Request Forgery Vulnerability
2014-09-08
WordPress WP to Twitter Plugin Authorization Bypass Vulnerability
2014-09-08
WordPress Ninja Forms Plugin Authorization Bypass Vulnerability
2014-09-08
WordPress Antioch Theme 'download.php' Arbitrary File Download Vulnerabilitiy
2014-09-08
WordPress Epic Theme 'download.php' Arbitrary File Download Vulnerabilitiy
2014-09-08
WordPress Authentic Theme 'download.php' Arbitrary File Download Vulnerabilitiy
2014-09-08
WordPress Urban City Theme 'download.php' Arbitrary File Download Vulnerabilitiy
2014-09-08
Mpay24 PrestaShop Payment Module 1.5 - Multiple Vulnerabilities
CVE-2014-2008
2014-09-08
Joomla Spider Calendar <= 3.2.6 - SQL Injection
2014-09-08
Jenkins 1.578 - Multiple Vulnerabilities
2014-09-08
Atmail Webmail 7.2 - Multiple Vulnerabilities
2014-09-08
TP-LINK Model No. TL-WR841N / TL-WR841ND - Multiple Vulnerabilities
2014-09-08
TP-LINK Model No. TL-WR340G / TL-WR340GD - Multiple Vulnerabilities
2014-09-08
osCommerce 2.3.4 - Multiple vulnerabilities
2014-09-08
Zen Cart 1.5.3 - Multiple Vulnerabilities
2014-09-08
phpMyFAQ 2.8.X - Multiple Vulnerabilities
CVE-2014-6045
2014-09-08
vBulletin 5.1.X - Persistent Cross-Site Scripting
2014-09-08
WordPress Acento Theme (view-pdf.php file param) - Arbitrary File Download
2014-09-08
Wordpress Bulk Delete Users by Email Plugin 1.0 - CSRF
2014-09-08
Wordpress Bulk Delete Users by Email Plugin 1.0 - CSRF Vulnerability
2014-09-08
PhpOnlineChat 3.0 - XSS Vulnerability
2014-09-08
Syslog LogAnalyzer 3.6.5 - Stored XSS Exploit
2014-09-08
PHP Stock Management System 1.02 - Multiple Persistent Cross Site Scripting Vulnerabilities
2014-09-08
ace /tmp file vulnerability
2014-09-07
Apple iOS 7.1.2 Merge Apps Service Local Bypass Vulnerability
2014-09-07
ManageEngine Desktop Central StatusUpdate Arbitrary File Upload Exploit
2014-09-07
WordPress NativeChurch theme Arbitrary File Download Vulnerability
2014-09-07
WordPress lote27 theme Arbitrary File Download Vulnerability
2014-09-07
WordPress FR0_theme theme Arbitrary File Download Vulnerability
2014-09-07
WordPress acento theme Arbitrary File Download Vulnerability
2014-09-07
Wordpress Like Dislike Counter Plugin SQL Injection Vulnerability
2014-09-07
Magsad CMS Cross-Site Scripting Vulnerability
2014-09-07
Microsoft Windows perfect forward secrecy
2014-09-07
Microsoft Office 2010 registers command lines with unquoted pathnames
2014-09-07
WordPress Spider Facebook Plugin 'facebook.php' SQL Injection Vulnerability
2014-09-07
PhpOnlineChat 3.0 - XSS
CVE-2014-100017
2014-09-07
Wordpress Like Dislike Counter 1.2.3 Plugin - SQL Injection Vulnerability
2014-09-07
LoadedCommerce7 - Systemic Query Factory Vulnerability
CVE-2014-5140
2014-09-07
IP Board 3.x - CSRF Token hjiacking
2014-09-07
Photorange v1.0 iOS - File Include Web Vulnerability
2014-09-06
Joomla Spider Calendar <= 3.2.6 SQL Injection Vulnerability
2014-09-06
Impress CMS 1.3.7 Open Redirect
2014-09-05
Xshopsaz CMS Multiple Vulnerability
2014-09-05
ProjectDox 8.1 XSS / User Enumeration / Ciphertext Reuse
2014-09-05
TIBCO Spotfire Server vulnerabilities
2014-09-05
Apache POI 3.10.1-20140818 security issues with OOXML
2014-09-05
V8 Memory Corruption and Stack Overflow
2014-09-05
procmail heap overflow
2014-09-05
BulletProof FTP Client 2010 - Buffer Overflow (SEH) Exploit
CVE-2014-2973
2014-09-05
MyBB User Social Networks Plugin 1.2 - Stored XSS
2014-09-05
Wordpress Plugins Premium Gallery Manager - Unauthenticated Configuration Access Vulnerability
2014-09-05
MyBB User Social Networks Plugin 1.2 - Stored XSS Vulnerability
2014-09-05
Wordpress Spider Facebook 1.0.8 Authenticated SQL Injection Vulnerability
2014-09-05
Wordpress Like Dislike Counter Plugin SQL Injection Vulnerability
2014-09-05
vBulletin 5.1.X - Cross Site Scripting Vulnerability
2014-09-05
Wordpress Plugins Premium Gallery Manager Unauthenticated Configuration Access Vulnerability
2014-09-05
WordPress The Retailer theme Arbitrary File Download Vulnerability
2014-09-05
IP Board 3.x CSRF - Token hjiacking Vulnerability
2014-09-05
vtiger.com Cross Site Scripting
2014-09-04
Jenkins 1.578 Cross Site Request Forgery / Command Execution
2014-09-04
Olat Stored Cross Site Scripting
2014-09-04
Mpay24 Payment Module 1.5 Information Disclosure / SQL Injection
2014-09-04
WordPress Advanced Access Manager 2.8.2 File Write / Code Execution
2014-09-04
BlackCat CMS 1.0.3 Cross Site Scripting
2014-09-04
MyWebSQL 3.4 Cross Site Scripting
2014-09-04
Mozilla Firefox Secret Leak PoC
2014-09-04
Mpay24 Payment Module 1.5 Information Disclosure / SQL Injection Mpay24 Payment Module 1.5 Informat
CVE-2014-2008
2014-09-04
MyWebSQL 3.4 Cross Site Scripting Vulnerability
CVE-2014-4735
2014-09-04
BlackCat CMS 1.0.3 Cross Site Scripting Vulnerability
CVE-2014-5259
2014-09-04
LogAnalyzer 3.6.5 Cross Site Scripting Vulnerability
CVE-2014-6070
2014-09-04
WWW File Share Pro 7.0 Denial Of Service Exploit
2014-09-04
JQuery 1.4.2 Cross Site Scripting Vulnerability
2014-09-04
Subex ROC Fraud Management System 7.4 SQL Injection Vulnerability
2014-09-04
Google Chrome 31.0 XSS Auditor Bypass Vulnerability
2014-09-04
Android Browser Same Origin Policy Bypass Vulnerability
2014-09-04
Facebook Messenger / App MIME Sniffing Cross Site Scripting
2014-09-03
Advantech WebAccess 7.2 Buffer Overflow
2014-09-03
WordPress Huge IT Image Gallery 1.0.0 SQL Injection
2014-09-03
LogAnalyzer 3.6.5 Cross Site Scripting
2014-09-03
Android Browser Same Origin Policy Bypass
2014-09-03
vBulletin 4.0.x - 4.1.2 (search.php cat param) - SQL Injection Exploit
2014-09-03
LeapFTP 3.1.0 URL Handling Buffer Overflow Exploit
2014-09-03
vBulletin 4.0.x => 4.1.2 Automatic SQL Injection exploit
2014-09-03
Apple iOS v7.1.2 iPhone - Merge App Bypass Vulnerability
2014-09-02
Apple iOS v7.1.2 - (Merge Apps) Bypass Vulnerability
2014-09-02
WordPress CuckooTap Theme & eShop Arbitrary File Download
2014-09-02
WWW File Share Pro v7.0 Denial of Service Vulnerability
2014-09-02
Avira License Application Cross Site Request Forgery Vulnerability
2014-09-02
net-snmp snmptrapd crash
2014-09-02
Mozilla Firefox <= 9.0.1 and Thunderbird <= 3.1.20 Information Disclosure Vulnerability
CVE-2014-1564
2014-09-02
Syslog LogAnalyzer 3.6.5 - Stored XSS (Python Exploit)
CVE-2014-6070
2014-09-02
Wordpress Huge-IT Image Gallery 1.0.1 - Authenticated SQL Injection
CVE-2014-7153
2014-09-02
Wordpress Huge-IT Image Gallery 1.0.1 Authenticated SQL Injection
2014-09-02
Wickr v2.3.3 iOS - ***** ***** *****
2014-09-01
Mulitple WordPress Themes (admin-ajax.php img param) - Arbitrary File Download
CVE-2015-1579
2014-09-01
Wing FTP Server Authenticated Command Execution
CVE-2015-4107
2014-09-01
WordPress Slideshow Gallery Plugin 1.4.6 - Shell Upload Vulnerability
CVE-2014-5460
2014-09-01
LeapFTP 3.1.0 - URL Handling SEH Buffer Overflow
2014-09-01
ManageEngine EventLog Analyzer - Multiple Vulnerabilities
CVE-2014-6037
2014-09-01
ManageEngine Desktop Central - Arbitrary File Upload / RCE
CVE-2013-7390
2014-09-01
Arachni Web Application Scanner Web UI - Stored XSS Vulnerability
CVE-2014-5469
2014-09-01
WordPress acento theme Arbitrary File Download Vulnerability
2014-09-01
WordPress lote27 theme Arbitrary File Download Vulnerability
2014-09-01
WordPress FR0_theme theme Arbitrary File Download Vulnerability
2014-09-01
ManageEngine Desktop Central - Arbitrary File Upload / RCE Vulnerabilities
CVE-2014-5005
2014-09-01
WordPress Slideshow Gallery Plugin 1.4.6 - Shell Upload Vulnerability
CVE-2014-5460
2014-09-01
WordPress CuckooTap Theme & eShop Arbitrary File Download
2014-09-01
ManageEngine EventLog Analyzer Multiple Vulnerabilities
CVE-2014-6037
2014-09-01
F5 Unauthenticated rsync access to Remote Root Code Execution
2014-08-31
MX-SmartTimer SQL Injection
2014-08-31
HTML Help Workshop 1.4 - Local Buffer Overflow Exploit (SEH)
2014-08-31
HTML Help Workshop 1.4 Buffer Overflow
2014-08-30
Sierra Library Services Platform 1.2_3 XSS / Enumeration
2014-08-30
ehsanweb CMS Cross-Site Scripting Vulnerability
2014-08-30
IrPopUP SQL Injection Vulnerability
2014-08-30
iPhone Call From LockScreen ByPass By Siri On iOS 7.1.2 (0day) *youtube
2014-08-30
Internet Explorer MS14-029 Memory Corruption PoC
2014-08-30
Wing FTP Server Authenticated Command Execution Exploit
2014-08-30
WWW File Share Pro v7.0 - Denial of Service Vulnerability
2014-08-29
WWW File Share Pro v7.0 - Remote Denial of Service
2014-08-29
Jappix Cross Site Scripting
2014-08-29
DomainTrader Domain Parking / Auction Script 2.5.3 CSRF / XSS
2014-08-29
XRMS Blind SQL Injection / Command Execution
2014-08-29
PhpWiki Ploticus Command Injection
2014-08-29
ActualAnalyzer Remote Command Execution
2014-08-29
NRPE 2.15 Remote Command Execution
2014-08-29
Plogger Authenticated Arbitrary File Upload
2014-08-29
Aerohive Hive Manager / Hive OS Complete Fail Multiple Vulns
2014-08-29
F5 BIG-IP 11.5.1 Cross Site Scripting
2014-08-29
F5 Big-IP - Unauthenticated rsync Access
2014-08-29
HTML Help Workshop 1.4 - (SEH) Buffer Overflow
2014-08-29
NRPE 2.15 - Remote Code Execution Vulnerability
CVE-2014-2913
2014-08-29
Avira License - Cross Site Request Forgery Vulnerability
2014-08-28
Avira Service - Unvalidated CSRF Token Account Hijacking
2014-08-28
WooCommerce Store Exporter 1.7.5 Cross Site Scripting
2014-08-28
Furniture Site Manager SQL Injection
2014-08-28
WordPress ShortCode 1.1 Local File Inclusion
2014-08-28
Encore Discovery Solution 4.3 Open Redirect / Session Token In URL
2014-08-28
ManageEngine EventLog Analyzer 7 Cross Site Scripting
2014-08-28
ManageEngine DeviceExpert 5.9 Credential Disclosure
2014-08-28
glibc Off-by-One NUL Byte gconv_translit_find Exploit
2014-08-28
Microsoft Internet Explorer - Memory Corruption PoC (MS14-029)
CVE-2014-1815
2014-08-28
XRms - Blind SQL Injection and Command Execution
CVE-2014-5520
2014-08-28
PhpWiki - Remote Command Execution
CVE-2014-5519
2014-08-28
ActualAnalyzer Lite 2.81 - Unauthenticated Command Execution
2014-08-28
ManageEngine DeviceExpert 5.9 - User Credential Disclosure
CVE-2014-5377
2014-08-28
Firefox WebIDL Privileged Javascript Injection
CVE-2014-1510
2014-08-28
Plogger 1.0-RC1 - Authenticated Arbitrary File Upload
CVE-2014-2223
2014-08-28
WordPress ShortCode Plugin 0.2.3 - Local File Inclusion Vulnerability
CVE-2014-5465
2014-08-28
Internet Explorer MS14-029 Memory Corruption PoC
CVE-2014-1815
2014-08-28
Firefox WebIDL Privileged Javascript Injection Exploit
CVE-2014-1510
2014-08-28
XRMS - Blind SQL Injection and Command Execution Exploit
2014-08-28
PhpWiki - Remote Command Execution Exploit
2014-08-28
ActualAnalyzer Lite 2.81 - Unauthenticated Command Execution Exploit
2014-08-28
Plogger 1.0-RC1 - Authenticated Arbitrary File Upload Exploit
CVE-2014-2223
2014-08-28
WordPress ShortCode Plugin 1.1 - Local File Inclusion Vulnerability
CVE-2014-5465
2014-08-28
WordPress WPtouch Mobile 3.4.5 Shell Upload
2014-08-27
Grand MA 300 Fingerprint Reader Weak PIN Verification
2014-08-27
RSA Identity Management And Governance Authentication Bypass
2014-08-27
vm-support 0.88 File Overwrite / Information Disclosure
2014-08-27
Joomla Spider 2.8.3 SQL Injection
2014-08-27
glibc - Off-by-One NUL Byte gconv_translit_find Exploit
CVE-2014-5119
2014-08-27
WooCommerce Store Exporter 1.7.5 - Multiple XSS Vulnerabilities
2014-08-27
glibc Off-by-One NUL Byte gconv_translit_find Exploit
CVE-2014-5119
2014-08-27
Barracuda Networks Web Security Flex 4.1 Persistent Vulnerabilities
2014-08-26
Barracuda Networks Web Security Flex Appliance 4.x Filter Bypass *youtube
2014-08-26
MySQL token (Keystone) retain access via an expired token
2014-08-26
CMS 2.1.1 SQL Injection
2014-08-26
MEHR Automation System Arbitrary File Download
2014-08-26
Online Time Tracking Cross Site Scripting
2014-08-26
SSDP Amplification Scanner
2014-08-26
WordPress KenBurner Slider Arbitrary File Download
2014-08-26
Dragonfly 1.0.5 Remote Code Execution
2014-08-26
VTLS-Virtua SQL Injection
2014-08-26
ntopng 1.2.0 Cross Site Scripting
2014-08-26
Joomla! Spider Video Player Extension 'theme' Parameter SQL Injection Vulnerability
2014-08-26
Granding MA300 Weak Pin Encryption Brute-force Weakness
CVE-2014-5381
2014-08-26
Granding MA300 Traffic Sniffing MitM Fingerprint PIN Disclosure
CVE-2014-5380
2014-08-26
VTLS Virtua InfoStation.cgi - SQL Injection
CVE-2014-2081
2014-08-26
ntopng 1.2.0 - XSS Injection
CVE-2014-5464
2014-08-26
WordPress Plugin KenBurner Slider Arbitrary File Download Vulnerability
2014-08-26
Dragonfly 1.0.5 Remote Code Execution Exploit
2014-08-26
VTLS Virtua InfoStation.cgi - SQL Injection Vulnerability
CVE-2014-2081
2014-08-26
ntopng 1.2.0 - XSS Vulnerability
2014-08-26
ManageEngine Password Manager MetadataServlet.dat SQL Injection Exploit
CVE-2014-3996
2014-08-26
Wifi FTP Server iOS - Directory Traversal Vulnerability
2014-08-25
Seafile local horizontal privilege escalation vulnerability
2014-08-25
Zarafa Multiple incorrect default permissions
2014-08-25
Apache Traffic Server releases for security incident
2014-08-25
ManageEngine Password Manager MetadataServlet.dat SQL Injection
CVE-2014-3996
2014-08-25
Innovaphone PBX Admin-GUI - CSRF Vulnerability
CVE-2014-5335
2014-08-25
PHP Stock Management System 1.02 - Multiple Persistent Cross-Site Scripting Vulnerabilities
2014-08-25
Baidu Spark Browser v26.5.9999.3511 Remote Stack Overflow DoS
CVE-2014-5349
2014-08-25
IBM 1754 GCM KVM Multiple Vulnerabilities
CVE-2014-2085
2014-08-25
Air Transfer Iphone 1.3.9 Multiple Vulnerabilities
2014-08-24
WordPress KenBurner Slider Plugin 'admin-ajax.php' Arbitrary File Download Vulnerabilitiy
2014-08-24
Air Transfer Iphone 1.3.9 - Multiple Vulnerabilities
2014-08-24
CMS Agencija O2 Cross Site Scripting / SQL Injection
2014-08-23
Fatt Free CRM Cross Site Scripting
2014-08-23
OpenOffice 4.1.0 Calc Command Injection
2014-08-23
OpenOffice Targeted Data Exposure Using Crafted OLE Objects
2014-08-23
Innovaphone PBX Cross Site Request Forgery
2014-08-23
SMF Incorrect Flood Filter Headers
2014-08-23
ICMPv6 DoS attacks resulting from IPv6 EH drops
2014-08-23
Wickr v2.3.3 iOS - ***** ***** **** Issue
2014-08-22
Barracuda Web Security Flex 4.1 - Persistent Vulnerabilities
2014-08-22
Dashing Times SQL Injection
2014-08-22
MyBB 1.8 Beta 3 Cross Site Scripting / SQL Injection
2014-08-22
ArcGIS For Server 10.1.1 XSS / Open Redirect
2014-08-22
MyAwards MyBB Module Cross Site Request Forgery Vulnerability
2014-08-22
Dashing Times SQL Injection Vulnerability
2014-08-22
Innovaphone PBX Cross Site Request Forgery Vulnerability
CVE-2014-5335
2014-08-22
CMS Agencija O2 Cross Site Scripting / SQL Injection Vulnerabilities
2014-08-22
WordPress Mobile Pack 2.0.1 Information Disclosure
2014-08-21
Delphi And C++ Builder VCL Library Buffer Overflow
2014-08-21
Panda Security 2014 Privilege Escalation
2014-08-21
ESET Windows Products 7.0 Privilege Escalation
2014-08-21
WordPress All In One SEO Pack 2.2.2 Cross Site Scripting
2014-08-21
ManageEngine Desktop Central / Password Manager Pro / IT360 SQL Injection
2014-08-21
ArticleFR 3.0.4 SQL Injection
2014-08-21
HybridAuth install.php PHP Code Execution
2014-08-21
MyBB 1.8 Beta 3 - Multiple Vulnerabilities
2014-08-21
MyBB 1.8 Beta 3 - Cross Site Scripting & SQL Injection Vulnerabilities
2014-08-21
Barracuda Networks WSF - Filter Bypass & Persistent Bug
2014-08-20
EMC Documentum Cross Site Request Forgery
2014-08-20
EMC Documentum Code Execution / DQL Injection
2014-08-20
EMC Documentum Cross Site Scripting
2014-08-20
EMC Documentum D2 Privilege Escalation
2014-08-20
BlazeDVD Pro 7.0 Buffer Overflow
2014-08-20
RSA Archer GRC Platform 5.5 SP1 Privilege Escalation / CSRF / Access Bypass
2014-08-20
Apache OFBiz 11.04.04 / 12.04.03 Cross Site Scripting
2014-08-20
ArticleFR 'id' Parameter SQL Injection Vulnerability
CVE-2014-5097
2014-08-20
ManageEngine Password Manager Pro and ManageEngine IT360 SQL Injection Vulnerability
CVE-2014-3997
2014-08-20
BlazeDVD Pro 7.0 - (.plf) Buffer Overflow (SEH)
2014-08-20
ArticleFR 3.0.4 SQL Injection Vulnerability
CVE-2014-5097
2014-08-20
HybridAuth install.php PHP Code Execution Exploit
2014-08-20
Wickr v2.3.3 iOS - ****** ****** ***
2014-08-19
Wickr v2.3.3 iOS - ***** ***** ***** ***** 2
2014-08-19
Barracuda WSF v4.x - Bypass & Persistent Vulnerabilities
2014-08-19
Tenda A5s Router Authentication Bypass Vulnerability
2014-08-19
Wordpress 3.9.1 pluggable.php CSRF vulnerability
2014-08-19
Apache HttpComponents client Hostname verification MITM attack
2014-08-19
WordPress Disqus 2.7.7 Cross Site Request Forgery
2014-08-19
Outlook.com For Android Failed Validation
2014-08-19
Senkas Kolibri WebServer 2.0 Buffer Overflow
2014-08-19
WordPress WP Content Source Control Plugin 'download.php' Directory Traversal Vulnerability
CVE-2014-5368
2014-08-19
Firefox toString console.time Privileged Javascript Injection
CVE-2013-1670
2014-08-19
Gitlab-shell Code Execution
CVE-2013-4490
2014-08-19
BlazeDVD Pro v7.0 - (.plf) Buffer Overflow (SEH) Exploit
2014-08-19
BulletProof FTP Client 2010 - Buffer Overflow (SEH) Exploit
2014-08-19
Wickr v2.3.3 iOS - ***** ***** *****
2014-08-18
Tenda A5s Router 3.02.05_CN - Authentication Bypass Vulnerability
CVE-2014-5246
2014-08-18
Gitlab-shell Code Execution Exploit
CVE-2013-4490
2014-08-18
Tenda A5s Router Authentication Bypass
CVE-2014-5246
2014-08-18
Senkas Kolibri WebServer 2.0 Buffer Overflow Exploit
CVE-2010-5301
2014-08-18
Firefox toString console.time Privileged Javascript Injection Exploit
CVE-2013-1670
2014-08-18
Wickr v2.3.3 - ***** ***** Vulnerability
2014-08-17
RiverBed Stingray Traffic Manager Virtual Appliance 9.6 XSS
2014-08-17
Windows Live Mail 2011 runs rogue C:\Program.exe when opening associated URLs
2014-08-16
Optical Society of America&#39;s Prism Information Leak
2014-08-15
MyConnection Server (MCS) 9.7i Cross Site Scripting Vulnerability
CVE-2014-5113
2014-08-15
Lyris ListManagerWeb 8.95a Cross Site Scripting Vulnerability
CVE-2014-5188
2014-08-15
Wordpress Gallery Objects 0.4 SQL Injection Vulnerability
2014-08-15
Google Chrome 36.0.1985.142 PKP sensitive information leak
2014-08-14
Google Chrome 36.0.1985.142 Use-after-free vulnerability
2014-08-14
Ribose Cross Site Request Forgery
2014-08-14
Disqus 2.7.5 Cross Site Request Forgery / Cross Site Scripting
2014-08-14
Ganeti Insecure Archive Permission
2014-08-14
Jamroom 5.2.6 Cross Site Scripting
2014-08-14
Disqus for Wordpress 2.7.5 - Admin Stored CSRF and XSS
CVE-2014-5345
2014-08-14
VMTurbo Operations Manager 4.6 vmtadmin.cgi Remote Command Execution
CVE-2014-5073
2014-08-14
VirtualBox 3D Acceleration Virtual Machine Escape
CVE-2014-0983
2014-08-14
BlackBerry Z10 Authentication Bypass Vulnerability
CVE-2014-2388
2014-08-14
HybridAuth 2.2.2 - Remote Code Execution Vulnerability
2014-08-14
VirtualBox 3D Acceleration Virtual Machine Escape Exploit
CVE-2014-0983
2014-08-14
Jamroom 5.2.6 Cross Site Scripting Vulnerability
CVE-2014-5098
2014-08-14
Disqus 2.7.5 Cross Site Request Forgery / Cross Site Scripting
2014-08-14
Ribose Cross Site Request Forgery Vulnerability
2014-08-14
Opendaylight 1.0 Local File Inclusion / Remote File Inclusion
2014-08-13
WordPress 3.9 XMLRPC Denial of Service Exploit
2014-08-13
WordPress CK-And-SyntaxHighLighter Arbitrary File Upload
2014-08-13
WordPress Disqus 2.7.5 CSRF / Cross Site Scripting
2014-08-13
GEL CMS 4.0 SQL Injection
2014-08-13
CS-Cart 4.2.0 Session Hijacking
2014-08-13
Apache Cordova 3.5.0 Data Leak
2014-08-13
VirtualBox Guest Additions VBoxGuest.sys Privilege Escalation
2014-08-13
VirtualBox Guest Additions - VBoxGuest.sys Privilege Escalation
CVE-2014-2477
2014-08-13
GEL CMS 4.0 SQL Injection Vulnerability
2014-08-13
CS-Cart 4.2.0 Session Hijacking Vulnerability
2014-08-13
WordPress Disqus 2.7.5 CSRF / Cross Site Scripting Vulnerabilities
2014-08-13
VirtualBox Guest Additions VBoxGuest.sys Privilege Escalation Exploit
CVE-2014-2477
2014-08-13
Espo CRM Cross Site Scripting
2014-08-12
Exploits/page:


Page:
1-4-2 (www02)