Exploits (Total: 97044)

    
    
    
MTS MBlaze Ultra Wi-Fi / ZTE AC3633 - Multiple Vulnerabilities
2014-07-21
micro_httpd by ACME Buffer Overflow
2014-07-20
vBulletin 5.1.2 SQL Injection *youtube
2014-07-20
Apache httpd mod_status Heap Buffer Overflow Remote Code Execution
2014-07-20
Wordpress WP BackupPlus - Database And Files Backup Download (0day)
2014-07-20
vBulletin 5.1.2 SQL Injection Exploit 0day
2014-07-20
Apache 2.4.7 httpd mod_status Heap Buffer Overflow Vulnerability
CVE-2014-0226
2014-07-20
Dahua DVR Authentication Bypass
2014-07-19
Microsoft Windows XP SP3 MQAC.sys - Arbitrary Write Privilege Escalation
CVE-2014-4971
2014-07-19
Foundry CMS Multiple Vulnerability
2014-07-19
Barracuda Message Archiver 650 - Persistent Vulnerability
2014-07-18
Trixbox XSS / LFI / SQL Injection / Code Execution
2014-07-18
OL-Commerce 2.1.1 Cross Site Scripting / SQL Injection
2014-07-18
Omeka 2.2 Cross Site Request Forgery / Cross Site Scripting
2014-07-18
Yealink VoIP Phone SIP-T38G Default Credentials
2014-07-18
Aruba Networks ClearPass Policy Manager SQL Injection and Credential Disclosure
2014-07-18
ACME micro_httpd - Denial of Service
CVE-2014-4927
2014-07-18
Wordpress Plugin Gallery Objects 0.4 - SQL Injection
CVE-2014-5201
2014-07-18
Barracuda Networks Message Archiver 650 - Persistent XSS Vulnerability
2014-07-18
Trixbox XSS / LFI / SQL Injection / Code Execution Vulnerabilities
2014-07-18
OL-Commerce 2.1.1 Cross Site Scripting / SQL Injection Vulnerabilities
2014-07-18
Barracuda Networks Message Archiver 650 - Persistent XSS Vulnerability
2014-07-18
Microsoft MSN HBE - TB Blind SQL Injection Vulnerability
2014-07-17
Microsoft MSN HBE - TB Blind SQL Injection Vulnerability
2014-07-17
Joomla Youtube Gallery 4.1.7 SQL Injection
2014-07-17
Citrix Netscaler Disclosure / Cross Site Scripting
2014-07-17
e107 2.0 alpha2 Cross Site Scripting
2014-07-17
OpenVPN Access Server Arbitrary Code Execution
2014-07-17
Alfresco Community Edition 4.2.f Server Side Request Forgery
2014-07-17
Microsoft Internet Explorer ShowSaveFileDialog() Sandbox Bypass
2014-07-17
Microsoft Windows DirectShow Privilege Escalation
2014-07-17
Microsoft Internet Explorer Request Object Confusion Sandbox Bypass
2014-07-17
Microsoft Internet Explorer CSS import Memory Corruption
2014-07-17
Bitdefender GravityZone File Disclosure / Missing Authentication
2014-07-17
Fonality trixbox /var/www/html/maint/modules/home/index.php lang Parameter Remote Code Execution
CVE-2014-5112
2014-07-17
Fonality trixbox /maint/modules/endpointcfg/endpointcfg.php lang Path Traversal Remote File Access
CVE-2014-5111
2014-07-17
Fonality trixbox /maint/modules/repo/repo.php lang Parameter Path Traversal Remote File Access
CVE-2014-5111
2014-07-17
Fonality trixbox /maint/modules/asterisk_info/asterisk_info.php lang Parameter Path Traversal Remote File Access
CVE-2014-5111
2014-07-17
Fonality trixbox /maint/modules/home/index.php lang Parameter Path Traversal Remote File Access
CVE-2014-5111
2014-07-17
Fonality trixbox /maint/modules/endpointcfg/endpoint_generic.php mac Parameter SQL Injection
CVE-2014-5109
2014-07-17
ol-commerce /OL-Commerce/admin/create_account.php entry_country_id Parameter SQL Injection
CVE-2014-5104
2014-07-17
ol-commerce /OL-Commerce/create_account.php country Parameter SQL Injection
CVE-2014-5104
2014-07-17
ol-commerce /OL-Commerce/affiliate_show_banner.php affiliate_banner_id Parameter SQL Injection
CVE-2014-5104
2014-07-17
ol-commerce /OL-Commerce/affiliate_signup.php a_country Parameter SQL Injection
CVE-2014-5104
2014-07-17
Omeka 2.2 - CSRF And Stored XSS Vulnerability
CVE-2014-5100
2014-07-17
Citrix Netscaler 9.3-62.4 Disclosure / Cross Site Scripting Vulnerabilities
CVE-2014-4347
2014-07-17
e107 2.0 alpha2 Cross Site Scripting Vulnerability
CVE-2014-4734
2014-07-17
Bitdefender GravityZone 5.1.5.386 - Multiple Vulnerabilities
2014-07-17
Omeka 2.2 - CSRF And Stored XSS Vulnerability
2014-07-17
OctavoCMS Admin Panel Cross Site Scripting
2014-07-16
HP Data Protection Manager 8.10 Remote Command Execution
2014-07-16
Browserify 4.2.0 Remote Command Execution
2014-07-16
Wordpress WPTouch Authenticated File Upload
2014-07-16
Elipse E3 Scada PLC Denial Of Service
2014-07-16
Oracle VirtualBox Guest Additions Arbitrary Write Privilege Escalation
2014-07-16
Alfresco /cmisbrowser url Parameter Server Side Request Forgery (SSRF)
CVE-2014-9302
2014-07-16
Alfresco /proxy endpoint Parameter Server Side Request Forgery (SSRF)
CVE-2014-9301
2014-07-16
Node Browserify 4.2.0 - Remote Code Execution Vulnerability
CVE-2014-7192
2014-07-16
Bilboplanet 2.0 - Multiple XSS Vulnerabilities
2014-07-16
Boat Browser 8.0 and 8.0.1 - Remote Code Execution Vulnerability
CVE-2014-4968
2014-07-16
Joomla Youtube Gallery Component - SQL Injection Vulnerability
CVE-2014-4960
2014-07-16
Bitdefender GravityZone 5.1.5.386 - Multiple Vulnerabilities
CVE-2014-5350
2014-07-16
WordPress Tidio Gallery 1.1 Shell Upload / XSS
2014-07-15
WordPress CopySafe PDF Protection 0.6 Shell Upload
2014-07-15
United.com Insecure Transit
2014-07-15
WEBMIS CMS Shell Upload
2014-07-15
OpenCart <= 1.5.6.4 (cart.php) PHP Object Injection Vulnerability
2014-07-15
Rosetta JSONP GET/POST Response Disclosure
2014-07-14
DZS Video Gallery for WordPress XSS, FPD and RCE vulnerabilities
2014-07-14
glibc locale issues PoC
2014-07-14
WEBMIS CMS Arbitrary File Upload Vulnerability
2014-07-14
WordPress CopySafe PDF Protection Plugin Arbitrary File Upload Vulnerability
2014-07-14
HP Data Protector Manager 8.10 - Remote Command Execution
CVE-2014-2623
2014-07-14
D-Link Unauthenticated UPnP M-SEARCH Multicast Command Injection
2014-07-14
D-Link HNAP Request Remote Buffer Overflow
CVE-2014-3936
2014-07-14
D-Link info.cgi POST Request Buffer Overflow
2014-07-14
Shopizer 1.1.5 - Multiple Vulnerabilities
CVE-2014-4962
2014-07-14
Linux x86 - Socket Re-use Shellcode (50 bytes)
CVE-2014-4943
2014-07-14
Kolibri WebServer 2.0 - GET Request SEH Exploit
CVE-2014-4158
2014-07-14
InvGate Service Desk 4.2.36 SQL Injection
2014-07-13
WordPress Download Manager 2.6.8 Shell Upload
2014-07-13
WeBid 1.1.1 Cross Site Scripting / LDAP Injection
2014-07-13
Dell Sonicwall Scrutinizer 11.01 Code Execution / SQL Injection
2014-07-13
Shopizer 1.1.5 Code Execution / XSS / CSRF / Data Manipulation
2014-07-13
Schrack MICROCONTROL XSS / Disclosure / Weak Default Password
2014-07-13
D-Link DSP-W215 - v1.02 info.cgi POST Request Buffer Overflow
2014-07-13
D-Link DSP-W215/DIR-505 and others HNAP Request Remote Buffer Overflow
2014-07-13
WordPress DZS-VideoGallery Plugin Cross Site Scripting and Command Injection Vulnerabilities
CVE-2014-9094
2014-07-13
Flash "Rosetta" JSONP GET/POST Response Disclosure Exploit
2014-07-13
Aerohive HiveOS 5.1r5 - 6.1r5 - Multiple Vulnerabilities
2014-07-12
OpenVPN Private Tunnel Core Service - Unquoted Service Path Elevation Of Privilege
CVE-2014-5455
2014-07-12
D-Link DSP-W215 (info.cgi) POST Request Buffer Overflow Exploit
2014-07-12
D-Link DIR-300 / DIR-645 Unauthenticated UPnP M-SEARCH Multicast Command Injection
2014-07-12
D-Link DIR-505 HNAP Request Remote Buffer Overflow Exploit
CVE-2014-3936
2014-07-12
InvGate Service Desk 4.2.36 SQL Injection Vulnerability
2014-07-12
Shopizer 1.1.5 Multiple Vulnerability
2014-07-12
PayPal MOShipping API - Bypass & Multiple Vulnerabilities
2014-07-11
C99 Shell Authentication Bypass via Backdoor
2014-07-11
OpenVPN Private Tunnel Core Unquoted Service Path Elevation Of Privilege
2014-07-11
Zen Cart 1.5.3 - CSRF & Admin Panel XSS
2014-07-11
glibc Directory traversal in locale environment handling
2014-07-11
WordPress BSK PDF Manager 1.3.2 SQL Injection
2014-07-10
OctavoCMS Cross Site Scripting
2014-07-10
Infoblox 6.8.4.x OS Command Injection
2014-07-10
Android NFC Denial Of Service
2014-07-10
Infoblox 6.8.4.x Weak MySQL Password
2014-07-10
WeBid Multiple Cross Site Scripting And LDAP Injection Vulnerabilities
CVE-2014-5101
2014-07-10
Infoblox 6.8.2.11 - OS Command Injection
CVE-2014-3418
2014-07-10
OpenVAS Manager 4.0 - Authentication Bypass Vulnerability PoC
CVE-2013-6765
2014-07-10
C99.php Shell - Authentication Bypass
2014-07-10
Wordpress BSK PDF Manager 1.3.2 Authenticated SQL Injection Vulnerability
2014-07-10
C99.php Shell - Authentication Bypass Vulnerability
2014-07-10
Infoblox 6.8.2.11 - OS Command Injection / Weak MySQL Password Vulnerability
CVE-2014-3418
2014-07-10
Zen Cart 1.5.3 - CSRF & Admin Panel XSS
2014-07-10
Paypal Inc BB #108 MOS - Bypass & Persistent Vulnerability
2014-07-09
Netgear WNR1000v3 Credential Disclosure
2014-07-09
Virtualbox GKSu root command injection in ext-pack
2014-07-09
PerfectView CRM Cross Site Scripting
2014-07-09
xClassified 1.2 Bypass / Cross Site Scripting / SQL Injection
2014-07-09
Quick.Cart 6.4 & Quick.Cms 5.4 Cross Site Scripting
2014-07-09
Linux Kernel 3.15.1 ft1000 Null Pointer Dereference
2014-07-09
IBM AIX Runtime Linker Allows Privilege Escalation Via Arbitrary File Writes
2014-07-09
WordPress BSK PDF Manager Plugin 'wp-admin/admin.php' Multiple SQL Injection Vulnerabilities
CVE-2014-4944
2014-07-09
win32 / windows 7 Add Admin User Shellcode - 194 bytes
2014-07-09
Quick.Cart 6.4 & Quick.Cms 5.4 - Cross Site Scripting Vulnerability
2014-07-09
Wordpress Theme PricerrTheme Shell Upload Vulnerability
2014-07-09
Wordpress Theme ProjectTheme Shell Upload Vulnerability
2014-07-09
Yahoo! Bug Bounty #30 YM - Persistent Mail Vulnerability
2014-07-08
Paypal Bug Bounty #108 MOS - Persistent Web Vulnerability
2014-07-08
Atom CMS Shell Upload / SQL Injection
2014-07-08
Yahoo! Flickr API Cross Site Scripting
2014-07-08
Lime Survey 2.05+ Build 140618 XSS / SQL Injection
2014-07-08
Photo Org WonderApplications 8.3 File Inclusion
2014-07-08
xClassified 1.2 SQL Injection
2014-07-08
EMC Documentum Content Server Privilege Escalation
2014-07-08
EMC Documentum Foundation Services (DFS) XXE Injection
2014-07-08
Techboard/Syac Backdoor Access
2014-07-08
Joomla JChatSocial 2.2 Cross Site Scripting
2014-07-08
Feed2JS File Disclosure
2014-07-08
Apache Syncope Insecure Password Generation
2014-07-08
Android OS Authorization Missing
2014-07-08
Apple iTunes 11.2.2 Insecure Libraries
2014-07-08
Microsoft Internet Explorer 9/10 - CFormElement Use-After-Free and Memory Corruption PoC (MS14-035)
CVE-2014-0282
2014-07-08
Yokogawa CS3000 BKFSim_vhfd.exe Buffer Overflow
CVE-2014-3888
2014-07-08
Dolibarr CMS 3.5.3 - Multiple Security Vulnerabilities
CVE-2014-3991
2014-07-08
Atom CMS Shell Upload / SQL Injection / Bypass Vulnerabilities
2014-07-08
Lime Survey 2.05+ Build 140618 XSS / SQL Injection Vulnerabilities
2014-07-08
Yokogawa CS3000 BKFSim_vhfd.exe Buffer Overflow Exploit
CVE-2014-3888
2014-07-08
Yahoo! Messenger v11 - Bypass & Persistent Vulnerability
2014-07-07
WordPress NextGEN Gallery 2.0.63 Shell Upload
2014-07-07
FoeCMS XSS / SQL Injection / Open Redirect
2014-07-07
Symbiose Webos Cross Site Scripting / Path Disclosure
2014-07-07
Wordpress MailPoet (wysija-newsletters) Unauthenticated File Upload
2014-07-07
Wordpress MailPoet - (wysija-newsletters) Unauthenticated File Upload
CVE-2014-4725
2014-07-07
xClassified 'ads.php' SQL Injection Vulnerability
CVE-2014-4741
2014-07-07
AtomCMS SQL Injection and Arbitrary File Upload Vulnerabilities
CVE-2014-4852
2014-07-07
Photo Org WonderApplications 8.3 iOS - File Include Vulnerability
2014-07-07
Gitlist Unauthenticated Remote Command Execution
CVE-2013-7392
2014-07-07
Oracle Event Processing FileUploadServlet Arbitrary File Upload
CVE-2014-2424
2014-07-07
Netgear WNR1000v3 - Password Recovery Credential Disclosure Vulnerability
2014-07-07
Yahoo! BB #29 YM - Bypass & Persistent Vulnerability
2014-07-06
Yahoo! Bug Bounty #25 Flickr API - Persistent Vulnerability
2014-07-06
PHP 5.4.29 phpinfo() SSL Private Keys Leak PoC
2014-07-06
Frog CMS 0.9.5 - Arbitrary File Upload
CVE-2014-4912
2014-07-06
BoltWire 4.10 Arbitrary File Upload Vulnerability
CVE-2014-4169
2014-07-06
Gitlist Unauthenticated Remote Command Execution Exploit
CVE-2014-4511
2014-07-06
Oracle Event Processing FileUploadServlet Arbitrary File Upload Exploit
CVE-2014-2424
2014-07-06
FoeCMS Multiple Vulnerabilities
2014-07-06
WordPress NextGEN Gallery 2.0.63 Shell Upload Vulnerability
2014-07-06
Kanboard 1.0.5 Cross Site Request Forgery Vulnerability
CVE-2014-3920
2014-07-06
Core FTP LE 2.2 - Heap Overflow PoC
CVE-2014-4643
2014-07-06
LimeSurvey 2.05+ Multiple Vulnerabilities
2014-07-06
Invision Power Board 3.4.6 Full Path Disclosure
2014-07-05
Ubisoft Uplay 4.6 - Insecure File Permissions Local Privilege Escalation
2014-07-05
IP.Board 3.4.x / 3.3.x Cross Site Scripting
2014-07-04
Ntop-NG 1.1 Cross Site Scripting
2014-07-04
Ubisoft Uplay 4.6 Insecure File Permissions Local Privilege Escalation
2014-07-04
PHP 5.4.29 phpinfo() Type Confusion Information Leak Vulnerability
2014-07-04
Baidu Spark Browser v26.5.9999.3511 - Remote Stack Overflow Vulnerability (DoS)
2014-07-04
Kerio Control 8.3.1 - Blind SQL Injection Vulnerability
CVE-2014-3857
2014-07-04
Photo Org WA v8.3 iOS - File Include Vulnerability
2014-07-03
Baidu Spark Browser v26.5.9999.3511 Remote Stack Overflow Vulnerability (DoS)
2014-07-03
PNP4Nagios XSS
2014-07-03
WP-Business Directory (wp-ttisbdir) plugin 1.0.2 XSS
2014-07-03
Android 4.3 KeyStore Stack Buffer Overflow
2014-07-03
Ubisoft Uplay 4.6 - Insecure File Permissions Local Privilege Escalation
CVE-2014-5453
2014-07-03
Internet Explorer 8 Fixed Col Span ID full ASLR, DEP and EMET 4.1.X bypass
2014-07-02
TP-LINK Model No. TL-WR340G/TL-WR340GD - Multiple Vulnerabilities
2014-07-02
KMail/KIO POP3 SSL MITM Flaw
2014-07-02
CMS ContWEB - ATI Sql Injection
2014-07-02
Kerio Control <= 8.3.1 Boolean-based blind SQL Injection
2014-07-02
Wordpress blogstand-smart-banner.1.0 Cross Site Scripting
2014-07-02
IBM Algorithmics RICOS Multiple severe vulnerabilities
2014-07-02
Kerio Control 8.3.1 - Blind SQL Injection
CVE-2014-3857
2014-07-02
Zurmo CRM - Persistent XSS Vulnerability
2014-07-02
Baidu Spark Browser 26.5.9999.3511 - Remote Stack Overflow Vulnerability (DoS)
CVE-2014-5349
2014-07-02
EMC Documentum eRoom Cross Site Scripting
2014-07-01
EMC Network Configuration Manager (NCM) Session Fixation
2014-07-01
ZeroCMS 1.0 Cross Site Scripting
2014-07-01
OCS-Inventory NG Cross Site Scripting
2014-07-01
Gitlist <= 0.4.0 anonymous RCE
2014-07-01
Microsoft Internet Explorer 8 - Fixed Col Span ID Full ASLR, DEP & EMET 4.1.x Bypass (MS12-037)
CVE-2012-1876
2014-07-01
Flussonic Media Server 4.1.25 - 4.3.3 - Aribtrary File Disclosure
2014-07-01
IBM Algorithmics RICOS 4.5.0 - 4.7.0 - Multiple Vulnerabilities
CVE-2014-0864
2014-07-01
IBM Algorithmics RICOS 4.5.0 - 4.7.0 - Multiple Vulnerabilities
CVE-2014-0864
2014-07-01
Flussonic Media Server 4.1.25 - 4.3.3 - Aribtrary File Disclosure Vulnerability
2014-07-01
Internet Explorer 8 - Fixed Col Span ID Full ASLR, DEP & EMET 4.1.X Bypass
CVE-2012-1876
2014-07-01
MongoDB NoSQL Collection Enumeration Via Injection Exploit
2014-07-01
OpenSSL DTLS Fragment Buffer Overflow DoS Exploit
2014-07-01
Supermicro Onboard IPMI Port 49152 Sensitive File Exposure Exploit
2014-07-01
Horde Framework Unserialize PHP Code Execution Standalone Exploit
2014-06-30
Sun/Oracle GlassFish Server Authenticated Code Execution
2014-06-30
Flussonic Media Server 4.3.3 Multiple Vulnerabilities
2014-06-30
Back To The Future: Unix Wildcards Gone Wild
2014-06-30
Gitlist <= 0.4.0 - Remote Code Execution
CVE-2013-7392
2014-06-30
Gitlist <= 0.4.0 - Remote Code Execution Exploit
CVE-2014-4511
2014-06-30
Internet Explorer 8, 9, 10 - CInput Use-After-Free (MS14-035) - Crash PoC
CVE-2014-0282
2014-06-30
check_dhcp 2.0.2 (Nagios) Arbitrary Option File Read Race Condition
2014-06-29
openSIS 4.5 - 5.3 SQL Injection vulnerability
2014-06-29
openSIS 4.5 - 5.3 Cross Site Request Forgery Vulnerability
2014-06-29
Wordpress wp-construction-mode.1.8 Cross Site Scripting
2014-06-29
Wordpress ml-slider 2.5 Cross Site Scripting
2014-06-29
Linux Kernel sctp sk_ack_backlog wrap-around problem
2014-06-29
Asterisk Phreaking How-To
2014-06-29
check_dhcp 2.0.2 (Nagios Plugins) - Arbitrary Option File Read Race Condition Exploit
CVE-2014-4703
2014-06-28
chkrootkit 0.49 - Local Root Vulnerability
CVE-2014-0476
2014-06-28
linux/x86 mkdir() 'haxor' and exit() Shellcode - 39 bytes
2014-06-28
linux/x86 shutdown -h now Shellcode - 56 bytes
2014-06-28
linux/x86 shutdown -h now x86_64 Shellcode - 65 bytes
2014-06-28
Mailspect Control Panel 4.0.5 Code Execution / File Read / XSS
2014-06-27
Python CGIHTTPServer File Disclosure / Code Execution
2014-06-27
WordPress Simple Share Buttons Adder 4.4 CSRF / XSS
2014-06-27
Thomson TWG87OUIR Cross Site Request Forgery
2014-06-27
HP Enterprise Maps 1.00 Authenticated XXE Injection
2014-06-27
MS14-009 .NET Deployment Service IE Sandbox Escape
2014-06-27
MS13-097 Registry Symlink IE Sandbox Escape
2014-06-27
.NET Deployment Service - IE Sandbox Escape (MS14-009)
CVE-2014-0257
2014-06-27
Endeca Latitude 2.2.2 - CSRF Vulnerability
CVE-2014-2399
2014-06-27
Wordpress Simple Share Buttons Adder Plugin 4.4 - Multiple Vulnerabilities
CVE-2014-4717
2014-06-27
Python CGIHTTPServer Encoded Path Traversal
CVE-2014-4650
2014-06-27
Registry Symlink - IE Sandbox Escape (MS13-097)
CVE-2013-5045
2014-06-27
HP AutoPass License Server File Upload
CVE-2013-6221
2014-06-27
Mailspect Control Panel 4.0.5 - Multiple Vulnerabilities
2014-06-27
elFinder 2.0 - file manager for web(rc1) - File Upload Vulnerability
2014-06-27
Thomson TWG87OUIR - POST Password CSRF Vulnerability
2014-06-27
Endeca Latitude 2.2.2 - CSRF Vulnerability
CVE-2014-2399
2014-06-27
Python CGIHTTPServer Encoded Path Traversal Vulnerability
2014-06-27
Wordpress TimThumb 2.8.13 WebShot - Remote Code Execution Exploit
2014-06-27
MS13-097 Registry Symlink IE Sandbox Escape Exploit
CVE-2013-5045
2014-06-27
MS14-009 .NET Deployment Service IE Sandbox Escape Exploit
2014-06-27
Wordpress Plugin Maxgalleria Lite Wordpress Post Title Edit Vulnerbility
2014-06-27
Wordpress Plugin Easy2map Authenticated User Shell Upload/Path Disclosure
2014-06-27
HP AutoPass License Server File Upload Exploit
CVE-2013-6221
2014-06-27
Cogent DataHub Command Injection Exploit
CVE-2014-3789
2014-06-27
Linux kernel 3.15.1 sensitive information leak
2014-06-26
phpMyAdmin 4.2.3 XSS
2014-06-26
Endeca Latitude 2.2.2 Cross Site Request Forgery
2014-06-26
Storesprite 7 Cross Site Scripting
2014-06-26
Sophos Antivirus 9.5.1 Cross Site Scripting
2014-06-26
G Data TotalProtection 2014 Code Execution
2014-06-26
ZeroCMS Exploit For SQL Injection
2014-06-25
Exploiting Wildcard Expansion on Linux
2014-06-25
TimThumb 2.8.13 Remote Code Execution
2014-06-25
ZeusCart 4.x Remote SQL Injection
2014-06-25
Samba 4.1.8 remote Denial of Service
2014-06-25
Cogent DataHub Command Injection
CVE-2014-3789
2014-06-25
Lunar CMS 3.3 - Unauthenticated Remote Command Execution Exploit
2014-06-25
Thomson TWG87OUIR - POST Password CSRF
CVE-2014-4716
2014-06-25
Supermicro IPMI/BMC Cleartext Password Scanner
2014-06-24
SpamTitan 6.01 Cross Site Scripting
2014-06-24
jQuery PHP Arbitrary Upload
2014-06-24
Wordpress TimThumb 2.8.13 WebShot - Remote Code Execution (0day)
CVE-2014-4663
2014-06-24
ZeusCart 'prodid' Parameter SQL Injection Vulnerability
CVE-2014-3868
2014-06-24
AlienVault OSSIM av-centerd Command Injection
CVE-2014-3804
2014-06-24
D-Link hedwig.cgi Buffer Overflow in Cookie Header
2014-06-24
D-Link authentication.cgi Buffer Overflow
2014-06-24
Microsoft Internet Explorer 8 / 9 / 10 - CInput Use-After-Free Crash PoC (MS14-035)
CVE-2014-0282
2014-06-24
Lunar CMS 3.3 - CSRF And Stored XSS Vulnerability
2014-06-24
D-Link DIR645, DIR865, DIR845 authentication.cgi Buffer Overflow
2014-06-24
D-Link DIR300, DIR600, DIR645 hedwig.cgi Buffer Overflow in Cookie Header
2014-06-24
WordPress image-symlinks Plugin Arbitrary File Upload Vulnerability
2014-06-24
Linux kernel 2.6.32 local denial of service
2014-06-23
Wordpress 3.9.1-CSRF vulnerability
2014-06-23
Linux Kernel user namespace Local Privilege Escalation PoC
2014-06-23
D-link DSL-2760U-E1 Persistent XSS
2014-06-23
Lunar CMS 3.3 CSRF And Stored XSS Vulnerability
2014-06-23
Lunar CMS 3.3 Unauthenticated Remote Command Execution Exploit
2014-06-23
cups-filters 1.0.52 execute arbitrary commands
2014-06-23
Zyxel P660RT2 EE BF and XSS vulnerabilities
2014-06-23
ZeroCMS 1.0 - (zero_transact_article.php article_id POST parameter) SQL Injection Vulnerability
CVE-2014-4194
2014-06-23
Windows - Add Admin User Shellcode (194 bytes)
2014-06-22
Wordpress 3.9.1 - CSRF Vulnerability
2014-06-22
D-link DSL-2760U-E1 - Persistent XSS Vulnerability
2014-06-22
Freefloat FTP Server PUT Command Buffer Overflow
2014-06-21
EmailArchitect Enterprise Email Server XSS
2014-06-21
Postie 1.4.3 XSS
2014-06-21
SimpleMail 1.0.6 (free version) XSS
2014-06-21
D-Link DIR-601 TFTP Directory Traversal Vulnerability
2014-06-21
Adobe Photoshop CS5.1 U3D.8BI Stack Based Buffer Overflow
2014-06-21
glibc 2.12 vfprintf function Multiple Vulnerabilities
2014-06-21
glibc 2.18 integer overflows in malloc (heap corruption)
2014-06-21
Adobe Photoshop CS5.1 U3D.8bi Stack Based Buffer Overflow
2014-06-21
Lunar CMS 3.3 - CSRF And Stored XSS Vulnerability
CVE-2014-4718
2014-06-21
Linux Kernel <= 3.13 - Local Privilege Escalation PoC (gid)
CVE-2014-4014
2014-06-21
D-link DSL-2760U-E1 - Persistent XSS
CVE-2014-4645
2014-06-21
PayPal SecurityKey Card Serialnumber Module Code Injection
2014-06-20
Motorola SBG901 Wireless Modem Cross Site Request Forgery
2014-06-20
SugarCRM 6.5.16 XXE Injection
2014-06-20
Dolphin 7.1.4 SQL Injection
2014-06-20
Docket 0.11 VMM-Container Breakout
2014-06-20
CDVI ACAC22 Authentication / Denial Of Service
2014-06-20
Secunia CSI/VIM Cross Site Scripting
2014-06-20
web2Project 3.1 SQL Injection
2014-06-20
Wordpress Theme Manbiz2 Arbitrary File Download Vulnerability
2014-06-20
Wordpress Theme Awake Arbitrary File Download Vulnerability
2014-06-20
Wordpress Theme Dejavu Arbitrary File Download Vulnerability
2014-06-20
Wordpress Theme Construct Arbitrary File Download Vulnerability
2014-06-20
Wordpress Theme Echelon Arbitrary File Download Vulnerability
2014-06-20
Wordpress Theme Elegance Arbitrary File Download Vulnerability
2014-06-20
Wordpress Theme Fusion Arbitrary File Download Vulnerability
2014-06-20
Wordpress Theme Myriad Arbitrary File Download Vulnerability
2014-06-20
Wordpress Theme Infocus Arbitrary File Download Vulnerability
2014-06-20
Wordpress Theme Modular Arbitrary File Download Vulnerability
2014-06-20
Wordpress Theme Method Arbitrary File Download Vulnerability
2014-06-20
AlienVault OSSIM av-centerd Command Injection Exploit
CVE-2014-3804
2014-06-20
ZeroCMS 1.0 SQL Injection Vulnerability
CVE-2014-4194
2014-06-20
Linux Kernel mm/shmem.c denial of service
2014-06-19
web2Project 3.1 - Multiple Vulnerabilities
CVE-2014-3119
2014-06-19
Ericom AccessNow Server Buffer Overflow
CVE-2014-3913
2014-06-19
Ericom AccessNow Server Buffer Overflow Exploit
CVE-2014-3913
2014-06-19
web2Project 3.1 SQL Injection Vulnerability
CVE-2014-3119
2014-06-19
Dolphin 7.1.4 SQL Injection Vulnerability
CVE-2014-3810
2014-06-19
Zabbix 1.8.x-2.2.x Local File Inclusion via XXE Attack
2014-06-18
Ubisoft Rayman Legends 1.2.103716 Buffer Overflow
2014-06-18
ZTE WXV10 W300 Disclosure / CSRF / Default
2014-06-18
BarracudaDrive 6.7.2 Cross Site Scripting
2014-06-18
Cacti Superlinks Plugin 1.4-2 - SQL Injection
CVE-2014-4644
2014-06-18
Docker 0.11 - VMM-Container Breakout
2014-06-18
Rocket Servergraph Admin Center fileRequestor Remote Code Execution
CVE-2014-3914
2014-06-18
AlienVault OSSIM < 4.7.0 - av-centerd 'get_log_line()' Remote Code Execution
CVE-2014-3805
2014-06-18
Ubisoft Rayman Legends 1.2.103716 - Remote Stack Buffer Overflow Vulnerability
CVE-2014-4334
2014-06-18
ZTE WXV10 W300 - Multiple Vulnerabilities
CVE-2014-4018
2014-06-18
docker 0.11 VMM-container Breakout
2014-06-18
Secunia.com CSI/VIM - Persistent Validation Vulnerabilities
2014-06-17
Paypal Bug Bounty #36 - SecurityKey Card Vulnerability
2014-06-17
Onnto RAID Master Code Execution
2014-06-17
Widget Corp CMS SQL Injection
2014-06-17
ClipBucket CMS Cross Site Scripting
2014-06-17
Motorola SBG901 Wireless Modem - CSRF Vulnerability
CVE-2014-3778
2014-06-17
Adobe Reader for Android addJavascriptInterface Exploit
CVE-2014-0514
2014-06-17
Easy File Management Web Server Stack Buffer Overflow
2014-06-17
Java Debug Wire Protocol Remote Code Execution
CVE-2015-3292
2014-06-17
Java Debug Wire Protocol Remote Code Execution Exploit
2014-06-17
Oracle Database Java VM Security vulnerabilities
2014-06-16
PostgreSQL 8.4.1 Denial Of Service Integer Overflow
2014-06-15
PowerDNS in default configuration is vulnerable to DoS attack
2014-06-15
PhotoCart Authorization Bypass Vulnerability
2014-06-15
Linux Kernel 3.15-rc3 media_enum_entities() Infoleak vulnerability
2014-06-15
ISC BIND 9.10.0 P1 remote denial of service
2014-06-15
Yealink VoIP Phone SIP-T38G - Multiple Vulnerabilities
CVE-2013-5759
2014-06-14
ZeroCMS 1.0 - zero_transact_user.php, Handling Privilege Escalation
2014-06-14
Plesk 10.4.4/11.0.9 - SSO XXE/XSS Injection Exploit
2014-06-14
SHOUTcast DNAS 2.2.1 - Stored XSS Vulnerability
2014-06-14
PostgreSQL <= 8.4.1 JOIN Hashtable Size Integer Overflow Vulnerability
2014-06-14
SHOUTcast DNAS 2.2.1 Cross Site Scripting
2014-06-13
Core FTP LE 2.2 Heap Overflow
2014-06-13
Yealink VoIP Phones XSS / CRLF Injection
2014-06-13
Plesk 10.4.4 / 11.0.9 XXE Injection
2014-06-13
ZTE / TP-Link RomPager Denial Of Service
2014-06-13
PHP 5.6 heap-based buffer overflow in DNS TXT record parsing
2014-06-13
netKar PRO 1.1 - (.nkuser) File Creation NULL Pointer Denial Of Service Vulnerability
2014-06-13
ZeroCMS 1.0 - zero_transact_user.php Handling Privilege Escalation
2014-06-13
Yealink VoIP Phone SIP-T38G - Privileges Escalation
CVE-2013-5758
2014-06-13
Yealink VoIP Phone SIP-T38G - Remote Command Execution
CVE-2013-5758
2014-06-13
Yealink VoIP Phone SIP-T38G - Local File Inclusion
CVE-2013-5756
2014-06-13
Yealink VoIP Phone SIP-T38G - Default Credentials
CVE-2013-5755
2014-06-13
ZTE and TP-Link RomPager - DoS Exploit
2014-06-13
Plesk 10.4.4/11.0.9 - SSO XXE/XSS Injection Exploit
2014-06-13
PostgreSQL <= 8.4.1 JOIN Hashtable Size Integer Overflow Denial Of Service Vulnerability
CVE-2010-0733
2014-06-13
Openfiler NAS/SAN Appliance 2.99 XSS / Traversal / Command Injection
2014-06-12
Samsung Cross Site Scripting
2014-06-12
CodeIgniter 2.1.4 Weak Encryption
2014-06-12
Oracle Access Manager Information Disclosure
2014-06-12
IBM AIX 6.1.8+ Privilege Escalation
2014-06-12
Yealink VoIP Phones '/servlet' HTTP Response Splitting Vulnerability
CVE-2014-3427
2014-06-12
IBM AIX 6.1.8 libodm - Arbitrary File Write
CVE-2012-2179
2014-06-12
ZeroCMS 1.0 - SQL Injection Vulnerability
2014-06-12
PayPal GoToMaxx PDFMailer - Local Overflow Vulnerability
2014-06-11
JW Player for Flash & HTML5 Video CSRF
2014-06-11
Member Approval 131109 permits unapproved registrations CSRF
2014-06-11
PayPal supports terrorism
2014-06-11
Linux Kernel user namespace bug
2014-06-11
Linux Kernel 3.14 / target information leak
2014-06-11
SHOUTcast DNAS 2.2.1 - Stored XSS
CVE-2014-4166
2014-06-11
Core FTP LE 2.2 - Heap Overflow PoC
CVE-2014-4643
2014-06-11
eFront 3.6.14.4 Persistent Cross Site Scripting Vulnerability
2014-06-10
DotNetNuke dnnUI_NewsArticlesSlider Arbitrary File Download
2014-06-10
DotNetNuke CodeEditor Arbitrary File Download
2014-06-10
DotNetNuke ASPSlideshow Arbitrary File Download
2014-06-10
DotNetNuke EasyDnnGallery Arbitrary File Download
2014-06-10
DotNetNuke ResponsiveSidebar Arbitrary File Download
2014-06-10
Xornic Contact Us Form CAPTCHA Bypass / XSS
2014-06-10
ZeroCMS 1.0 SQL Injection
2014-06-10
AlogoSec FireFlow 6.3 Cross Site Scripting
2014-06-10
SpiceWorks IT Ticketing System Cross Site Scripting
2014-06-10
WordPress Featured Comments Plugin Cross Site Request Forgery Vulnerability
CVE-2014-4163
2014-06-10
WordPress JW Player for Flash & HTML5 Video Plugin Cross Site Request Forgery Vulnerability
CVE-2014-4030
2014-06-10
ZeroCMS 1.0 - (zero_view_article.php article_id param) SQL Injection Vulnerability
CVE-2014-4034
2014-06-10
CM3 AcoraCMS Several Vulnerabilities
2014-06-09
musl libc remote stack-based buffer overflow in DNS response parsing
2014-06-09
Linux Kernel 3.14.5 futex local privilege escalation
2014-06-09
PHP 5.5.13 acinclude.m4 overwrite arbitrary files
2014-06-09
DevExpress ASPxFileManager 10.2 < 13.2.8 - Directory Traversal
CVE-2014-2575
2014-06-09
WebTitan 4.01 (Build 68) - Multiple Vulnerabilities
CVE-2014-4306
2014-06-09
eFront 3.6.14.4 (surname param) - Persistent XSS Vulnerability
CVE-2014-4033
2014-06-09
DevExpress ASPxFileManager 10.2 to 13.2.8 - Directory Traversal
CVE-2014-2575
2014-06-09
WebTitan 4.01 (Build 68) - Multiple Vulnerabilities
2014-06-09
eFront 3.6.14.4 (surname param) - Persistent XSS Vulnerability
2014-06-09
WordPress Elegance Theme 'elegance/lib/scripts/dl-skin.php' Local File Disclosure Vulnerability
2014-06-08
WordPress Infocus Theme '/infocus/lib/scripts/dl-skin.php' Local File Disclosure Vulnerability
2014-06-08
SAP Hard-Coded Credentials
2014-06-07
SAP SLD Information Tampering
2014-06-07
Madness Pro 1.14 Cross Site Scripting
2014-06-07
Madness Pro 1.14 SQL Injection
2014-06-07
WebTitan 4.01 Build 68 SQL Injection / Command Execution
2014-06-07
Sagem 2604 Password Disclosure
2014-06-07
Sagem 2604 Password Disclosure Vulnerability
2014-06-07
WahmShoppes eStore Multiple Vulnerability
2014-06-06
GNUTLS insufficient session id length check PoC
2014-06-06
EMC Documentum Content Server Escalation / Injection
2014-06-06
DevExpress ASP.NET File Manager 13.2.8 Directory Traversal
2014-06-06
EMC Documentum Digital Asset Manager Blind DQL Injection
2014-06-06
Cloudera Manager 4.8.2 / 5.0.0 Information Disclosure
2014-06-06
GNU Libtasn1 3.5 asn1_get_bit_der function out-of-bounds access
2014-06-06
OpenSSL Multiple Vulnerabilities
2014-06-06
OpenSSL 1.0.1g NULL Pointer Dereference
2014-06-06
OpenSSL 1.0.1g ChangeCipherSpec Attack
2014-06-06
OpenSSL 1.0.1g long non-initial fragment buffer overflow
2014-06-06
Madness Pro <= 1.14 - SQL Injection
2014-06-06
Madness Pro <= 1.14 - Persistent XSS
2014-06-06
DevExpress ASP.NET File Manager 13.2.8 Directory Traversal
CVE-2014-2575
2014-06-06
WahmShoppes eStore Cross Site Scripting / SQL Injection Vulnerabilities
2014-06-06
linux/x86 Netcat Shellcode 58 bytes
2014-06-06
Madness Pro <= 1.14 Persistent XSS / SQL InjectionVulnerabilities
2014-06-06
GnuTLS 3.3.3 remote memory corruption
2014-06-05
chkrootkit local root vulnerability
2014-06-05
Horde Ldap Stricter parameter check in bind() to detect empty passwords
2014-06-05
Foreman Smart-Proxy Remote Command Injection Vulnerability
CVE-2014-0007
2014-06-05
BSI Advance Hotel Booking System Persistent XSS Vulnerability
2014-06-05
F*EX 20140313-1 HTTP Response Splitting / Cross Site Scripting
CVE-2014-3875
2014-06-05
Files Desk Pro 1.4 Local File Inclusion
2014-06-04
PHPBTTracker+ 2.2 SQL Injection
2014-06-04
Privacy Pro 1.2 Local File Inclusion
2014-06-04
TigerCom My Assistant 1.1 Local File Inclusion
2014-06-04
AllReader 1.0 Local File Inclusion
2014-06-04
NG WifiTransfer Pro 1.1 Local File Inclusion
2014-06-04
iScan Online Mobile 2.0.1 Command Injection
2014-06-04
Transform Foundation Server 4.3.1 / 5.2 Cross Site Scripting
2014-06-04
Bluetooth Photo-File Share 2.1 LFI / File Upload
2014-06-04
Infoware MapSuite Server-Side Request Forgery
2014-06-04
Infoware MapSuite Cross Site Scripting
2014-06-04
Infoware MapSuite Path Traversal
2014-06-04
RSA Adaptive Authentication Cross Site Scripting
2014-06-04
FEX 20140313-1 HTTP Response Splitting / Cross Site Scripting
2014-06-04
Adobe Acrobat / Reader XI-X AcroBroker Sandbox Bypass
2014-06-04
FCKeditor 2.6.10 Cross Site Scripting
2014-06-04
PayPal Inc BB #74 - Persistent Core Backend Vulnerability
2014-06-03
dbus-glib pam_fprintd Local Root Exploit
2014-06-03
BEdita 3.4.0 CMS Multiple Vulnerabilities
2014-06-03
Cetil Cross Site Scripting
2014-06-03
DCMTK Privilege Escalation
2014-06-03
Xilisoft Video Converter Ultimate 7.8.1 build-20140505 DLL Hijacking
2014-06-03
s3dvt Privilege Escalation
2014-06-03
PHP 5.5.12 denial of service (performance degradation) by_printf
2014-06-03
PHP 5.5.12 denial of service (infinite loop or out-of-bounds memory access)
2014-06-03
IPSwitch IMail Server WEB client 12.4 persistent XSS
CVE-2014-3878
2014-06-03
Bluetooth Photo-File Share 2.1 iOS - Multiple Vulnerabilities
2014-06-03
AllReader 1.0 iOS - Multiple Vulnerabilities
2014-06-03
TigerCom My Assistant 1.1 iOS - Local File Inclusion
2014-06-03
Privacy Pro 1.2 HZ iOS - Local File Inclusion
2014-06-03
Files Desk Pro 1.4 iOS - Local File Inclusion
2014-06-03
NG WifiTransfer Pro 1.1 - Local File Inclusion
2014-06-03
PHPBTTracker+ 2.2 - SQL Injection
2014-06-03
Xilisoft Video Converter Ultimate Dll Hijacking Exploit (quserex.dll)
CVE-2014-3860
2014-06-03
Wordpress Plugin CopySafe Web Protection Shell Upload (0day) Vulnerability
2014-06-03
Wordpress Plugin CopySafe PDF Protection Shell Upload (0day) Vulnerability
2014-06-03
PHPBTTracker+ 2.2 - SQL Injection Vulnerability
2014-06-03
iScan Online Mobile 2.0.1 iOS - Command Inject Vulnerability
2014-06-02
WordPress iMember360is 3.9.001 XSS Disclosure Code Execution
2014-06-02
Apache Tomcat 8.0.3 denial of service by using a Content-Length 0
2014-06-02
Assesi SQL Injection
2014-06-02
WordPress Participants Database 1.5.4.8 SQL Injection
2014-06-02
Ubuntu 12.04 3.x x86_64 perf_swevent_init Local Root
2014-06-02
Catapulta I.W. Edition Login Enumeration
2014-06-02
WordPress Popup Images Cross Site Scripting
2014-06-02
dbus-glib pam_fprintd - Local Root Exploit
CVE-2013-0292
2014-06-02
Wordpress Participants Database 1.5.4.8 - SQL Injection
CVE-2014-3961
2014-06-02
Easy File Management Web Server 5.3 - UserID Remote Buffer Overflow (ROP)
2014-06-01
Zyxel P-660HW-T1 v3 Wireless Router - CSRF Vulnerability
2014-06-01
Sharetronix 3.3 - Multiple Vulnerabilities
CVE-2014-3415
2014-06-01
Exploits/page:


Page:
1-4-2 (www01)