Exploits (Total: 97304)

    
    
    
MacOS < 10.12.2 / iOS < 10.2 - Broken Kernel Mach Port Name uref Handling Privileged Port Name Replacement Privilege Escalation
2016-12-22
MacOS < 10.12.2 / iOS < 10.2 Kernel - _kernelrpc_mach_port_insert_right_trap Reference Count Leak / Use-After-Free
2016-12-22
MacOS < 10.12.2 / iOS < 10.2 Kernel - ipc_port_t Reference Count Leak Due to Incorrect externalMethod Overrides Use-After-Free
2016-12-22
MacOS 10.12 - Double vm_deallocate in Userspace MIG Code Use-After-Free
2016-12-22
Vesta Control Panel 0.9.8-16 - Local Privilege Escalation
2016-12-22
MacOS Kernel 10.12.1 - Writable Privileged IOKit Registry Properties Code Execution
2016-12-22
IBM AIX 6.1/7.1/7.2 - 'Bellmail' Privilege Escalation
2016-12-22
Matemática Por José SQL-i Vulnerability
2016-12-22
Zend Framework Config Download - Read ini
2016-12-22
SAP Solman 7.31 Information Disclosure
2016-12-22
NETGEAR WNR2000v5 - Remote Code Execution
2016-12-21
Microsoft Edge - Internationalization Initialization Type Confusion (MS16-144)
2016-12-21
Microsoft Edge - SIMD.toLocaleString Uninitialized Memory (MS16-145)
2016-12-21
Docebo LMS v6.9 - (Localization) Persistent Vulnerability
2016-12-21
Gnet AD1504 Wlan Adsl2+ Router - Denial of Service
2016-12-21
Webworx Design Group Cross Site Scripting
2016-12-21
Webworx Design Group Blind SQLi Vulnerabilites
2016-12-21
Webworx Design Group SQL Injection Vulnerabilites
2016-12-21
Syrian's joomla 1.6.x Download Database Backup
2016-12-21
Microsoft Internet Explorer 11 MSHTML - CSplice­Tree­Engine::Remove­Splice Use-After-Free (MS14-035)
2016-12-21
Google Android - WifiNative::setHotlist Stack Overflow
2016-12-20
WordPress Private Messages 1.0.1 SQL Injection
2016-12-20
WordPress 404 1.0 SQL Injection
2016-12-20
WordPress Support Plus Responsive Ticket System 7.1.3 SQL Injection
2016-12-20
Solution By : Jaya Shri Combine Sql injection
2016-12-20
Kobix Turkiye Script sql injection & Bypass Admin
2016-12-20
Joomla RPL 8.9.2 SQL Injection
2016-12-20
Chrome HTTP 1xx Out Of Bounds Read
2016-12-20
ntop-ng 2.5.160805 Username Enumeration
2016-12-20
Google Chrome < 31.0.1650.48 - HTTP 1xx base::String­Tokenizer­T<...>::Quick­Get­Next Out-of-Bounds Read
2016-12-20
Google Chrome + Fedora 25 / Ubuntu 16.04 - 'tracker-extract' / 'gnome-video-thumbnailer' + 'totem' Drive-By Download
2016-12-19
ntop-ng 2.5.160805 - Username Enumeration
2016-12-19
WordPress 404 Redirection Manager 1.0 Plugin - SQL Injection Vulnerability
2016-12-19
Wordpress WP Private Messages 1.0.1 Plugin - SQL Injection Vulnerability
2016-12-19
Wordpress WP Support Plus Responsive Ticket System 7.1.3 Plugin - SQL Injection Vulnerability
2016-12-19
RedStar 3.0 Server - BEAM & RSSMON Command Execution (Shellshock) Exploit
2016-12-19
Apport 2.x (Ubuntu Desktop 12.10 < 16.04) - Local Code Execution Exploit
2016-12-19
Naenara Browser 3.5 (RedStar 3.0 Desktop) - JACKRABBIT Client-Side Command Execution Exploit
2016-12-19
Docebo LMS v6.9 - (Clone Links) Persistent Vulnerability
2016-12-19
Wordpress Plugin WP Private Messages 1.0.1 - SQL Injection
2016-12-19
CodeBlocks 12.11 - DLL Hijacking Vulnerability
2016-12-19
WordPress Plugin 404 Redirection Manager 1.0 - SQL Injection
2016-12-19
Wordpress Plugin WP Support Plus Responsive Ticket System 7.1.3 - SQL Injection
2016-12-19
RedStar 3.0 Server - 'BEAM & RSSMON' Command Execution (Shellshock)
2016-12-19
ENS SQL Injection Vulnerabilites
2016-12-19
Entmip Reflected XSS & Iframe injection
2016-12-19
Managed By MINE SOLUTIONS Admin Page Bypass upload shell
2016-12-19
Apport 2.x (Ubuntu Desktop 12.10 < 16.04) - Local Code Execution
2016-12-19
Naenara Browser 3.5 (RedStar 3.0) - 'JACKRABBIT' Client-Side Command Execution
2016-12-19
Viscosity OpenVPN 2.3 Privilege Escalation Vulnerability
2016-12-18
XFINITY Gateway Technicolor DPC3941T Cross Site Request Forgery Vulnerability
2016-12-18
WordPress MailChimp 3.1.5 / 4.0.10 Cross Site Scripting Vulnerability
2016-12-18
East of Western Mobile Scripts SQLi
2016-12-18
Horos 2.1.0 Cross Site Scripting
2016-12-18
Horos 2.1.0 DICOM Medical Image Viewer Remote Memory Overflow
2016-12-18
Horos 2.1.0 Web Portal Remote Information Disclosure / Directory Traversal
2016-12-18
Joomla com_rpl SQL injection Vulnerability
2016-12-18
Joomla com_rpl SQL injection Vulnerability
2016-12-17
eramba Enterprise & Community Editions Stored XSS
2016-12-17
Escuelasdefutbolchile Sqli & Admin Page Bypass
2016-12-17
Travel agency ZoneCoders Upload Shell Exploit
2016-12-17
eramba Enterprise / Community Cross Site Scripting
2016-12-17
WordPress Quiz And Survey Master 4.7.8 / 4.5.4 XSS / CSRF
2016-12-17
ConQuest DICOM Server 1.4.17d Remote Stack Buffer Overflow
2016-12-17
OsiriX DICOM Viewer 8.0.1 (dulparse.cc) Remote Memory Corruption
2016-12-17
Orthanc DICOM Server 1.1.0 Unquoted Service Path Privilege Escalation
2016-12-17
DCMTK storescp DICOM storage (C-STORE) SCP Remote Stack Buffer Overflow
2016-12-17
Orthanc DICOM Server 1.1.0 Remote Memory Corruption
2016-12-17
iOS 10.1.1 / macOS 10.12 16A323 XNU Kernel - set_dp_control_port Lack of Locking Use-After-Free Vuln
2016-12-17
WHMCS Addon VMPanel 2.7.4 - SQL Injection Vulnerability
2016-12-17
Linux/x86 - /bin/bash -c Arbitrary Command Execution Shellcode (72 bytes)
2016-12-17
WordPress Quiz And Survey Master 4.7.8 / 4.5.4 XSS / CSRF Vulnerabilities
2016-12-17
Horos 2.1.0 Web Portal - Directory Traversal Vulnerability
2016-12-17
Horos 2.1.0 DICOM Medical Image Viewer - Denial of Service Exploit
2016-12-17
Horos 2.1.0 Cross Site Scripting Vulnerability
2016-12-17
Orthanc DICOM Server 1.1.0 - Memory Corruption Exploit
2016-12-17
OsiriX DICOM Viewer 8.0.1 - Memory Corruption Exploit
2016-12-17
ConQuest DICOM Server 1.4.17d - Stack Buffer Overflow Exploit
2016-12-17
DCMTK 3.6.0 storescp - Stack Buffer Overflow Exploit
2016-12-17
XenForo 1.5.x Remote Code Execution Vulnerability
2016-12-17
Nagios 4.2.2 - Arbitrary Code Execution Exploit
2016-12-17
Nagios 4.2.4 - Privilege Escalation Exploit
2016-12-17
2016-12-17
2016-12-17
Nidesoft MP3 Converter 2.6.18 - SEH Local Buffer Overflow Exploit
2016-12-17
VMPanel 2.7.4 - SQL Injection Web Vulnerability
2016-12-17
APT - Repository Signing Bypass via Memory Allocation Failure Vulnerability
2016-12-17
Apple macOS 10.12.1/iOS 10 SecureTransport SSL handshake OCSP MiTM and DoS Vulnerabilities
2016-12-17
WordPress Google Analytics Counter Tracker 3.1.5 PHP Object Injection Vulnerability
2016-12-17
Adobe Animate 15.2.1.95 - Memory Corruption Vulnerability
2016-12-17
PHP 7.0.13 Use After Free unserialize() PoC Exploit
2016-12-17
Joomla DT Register Component - cat SQL Injection Vulnerability
2016-12-17
McAfee Virus Scan Enterprise for Linux - Remote Code Execution Exploit
2016-12-17
Samsung Devices KNOX Extensions - OTP Service Heap Overflow Exploit
2016-12-17
Samsung Devices KNOX Extensions - OTP TrustZone Trustlet Stack Buffer Overflow Exploit
2016-12-17
TP-LINK TD-W8151N - Denial of Service Vulnerability
2016-12-17
OpenSSL 1.1.0a/1.1.0b - Denial of Service Exploit
2016-12-17
WordPress Multisite Post Duplicator 0.9.5.1 Plugin - Cross-Site Request Forgery Vulnerability
2016-12-17
2016-12-17
iOS 10.1.x - Certificate File Memory Corruption Vulnerability
2016-12-17
Serva 3.0.0 HTTP Server - Denial of Service Exploit
2016-12-17
Smart Guard Network Manager 6.3.2 - SQL Injection Vulnerability
2016-12-17
10-Strike Network File Search Pro 2.3 - SEH Local Buffer Overflow Exploit
2016-12-17
EasyPHP Devserver 16.1.1 - Insecure File Permissions Privilege Escalation Vulnerability
2016-12-17
ARG-W4 ADSL Router - Multiple Vulnerabilities
2016-12-17
Microsoft Remote Desktop Client For Mac 8.0.36 Remote Code Execution Vulnerability
2016-12-17
Netgear R7000 - Cross-Site Scripting Vulnerability
2016-12-17
2016-12-17
2016-12-17
2016-12-17
Splunk Enterprise 6.4.3 - Server-Side Request Forgery Vulnerability
2016-12-17
Roundcube 1.2.2 - Remote Code Execution Vulnerability
2016-12-17
Windows/x64 - Bind Shell TCP Shellcode (508 bytes)
2016-12-17
Netgear R7000 - Command Injection Vulnerability
2016-12-17
Apache HTTPD Web Server 2.4.23 Memory Exhaustion Vulnerability
2016-12-17
Alcatel Lucent Omnivista 8770 Remote Code Execution Exploit
2016-12-17
FreeBSD / Apple libc link_ntoa() buffer overflow Exploit
2016-12-17
OpenSSH 7.2 - Denial of Service Exploit
2016-12-17
Linux Kernel 4.4.0 AF_PACKET Race Condition / Privilege Escalation Exploit
2016-12-17
Cisco Unified Communications Manager 7/8/9 - Directory Traversal Vulnerability
2016-12-17
TP-LINK TD-W8951ND - Denial of Service Exploit
2016-12-17
Dual DHCP DNS Server 7.29 - Denial of Service Exploit
2016-12-17
Windows 10 x86/x64 WLAN AutoConfig - Denial of Service (POC) Exploit
2016-12-17
Edge SkateShop - Authentication bypass Vulnerability
2016-12-17
Sony IPELA ENGINE IP Cameras Backdoor Accounts Vulnerability
2016-12-17
Linux/x86 - Netcat (-e option disabled) Reverse Shell Shellcode (180 bytes)
2016-12-17
Microsoft PowerShell - XML External Entity Injection Vulnerability
2016-12-17
2016-12-17
2016-12-17
2016-12-17
2016-12-17
Microsoft Edge - JSON.parse Info Leak Vulnerability
2016-12-17
Android - Inter-Process munmap with User-Controlled Size in android.graphics.Bitmap Vulnerability
2016-12-17
Android - IOMXNodeInstance::enableNativeBuffers Unchecked Index Vulnerability
2016-12-17
AbanteCart 1.2.7 - Cross-Site Scripting Vulnerability
2016-12-17
Wordpress Single Personal Message 1.0.3 Plugin - SQL Injection Vulnerability
2016-12-17
DiskBoss Enterprise 7.4.28 - GET Buffer Overflow Exploit
2016-12-17
Dup Scout Enterprise 9.1.14 - Buffer Overflow (SEH) Exploit
2016-12-17
Shuttle Tech ADSL Wireless 920 WM - Multiple Vulnerabilities
2016-12-17
Microsoft Event Viewer 1.0 - XML External Entity Injection Vulnerability
2016-12-17
Microsoft MSINFO32.EXE 6.1.7601 - .NFO XML External Entity Injection Vulnerability
2016-12-17
Apache CouchDB 2.0.0 - Local Privilege Escalation Vulnerability
2016-12-17
NetCat 0.7.1 - Denial of Service Exploit
2016-12-17
Microsoft Internet Explorer 9 IEFRAME - CView::Ensure­Size Use-After-Free (MS13-021)
2016-12-16
WordPress Plugin Quiz And Survey Master 4.5.4 / 4.7.8 - Cross-Site Request Forgery
2016-12-16
Microsoft Internet Explorer 9 IEFRAME - CMarkup­Pointer::Move­To­Gap Use-After-Free
2016-12-16
WHMCS Addon VMPanel 2.7.4 - SQL Injection
2016-12-16
iOS 10.1.1 / macOS 10.12 16A323 XNU Kernel - set_dp_control_port Lack of Locking Use-After-Free
2016-12-16
Horos 2.1.0 Web Portal - Directory Traversal
2016-12-16
Horos 2.1.0 DICOM Medical Image Viewer - Denial of Service
2016-12-16
DCMTK 3.6.0 storescp - Stack Buffer Overflow
2016-12-16
ConQuest DICOM Server 1.4.17d - Stack Buffer Overflow
2016-12-16
OsiriX DICOM Viewer 8.0.1 - Memory Corruption
2016-12-16
Orthanc DICOM Server 1.1.0 - Memory Corruption
2016-12-16
Linux/x86 - /bin/bash -c Arbitrary Command Execution Shellcode (72 bytes)
2016-12-16
macOS 10.12 XNU UaF due to lack of locking in set_dp_control_port
2016-12-16
Nidesoft MP3 Converter 2.6.18 Buffer Overflow
2016-12-16
Nagios Core Curl Command Injection / Code Execution
2016-12-16
WordPress MailChimp 3.1.5 / 4.0.10 Cross Site Scripting
2016-12-16
XenForo 1.5.x Remote Code Execution
2016-12-16
CMS NETGEAR powered by PICTOR Local File Inclusion
2016-12-16
Microsoft Internet Explorer 9 MSHTML CMarkup::ReloadInCompatView Use-After-Free
2016-12-16
Microsoft Internet Explorer 9 IEFRAME CMarkupPointer::MoveToGap Use-After-Free
2016-12-16
Microsoft Internet Explorer 9 IEFRAME CMarkup..RemovePointerPos Use-After-Free
2016-12-16
FCA US LLC UconnectPhone - XFS Attack & XSS Vulnerability
2016-12-15
Microsoft Internet Explorer 9 IEFRAME - CMarkup::Remove­Pointer­Pos Use-After-Free (MS13-055)
2016-12-15
Microsoft Internet Explorer 9 MSHTML - CMarkup::Reload­In­Compat­View Use-After-Free
2016-12-15
Nagios Core < 4.2.4 - Privilege Escalation
2016-12-15
Nagios Core < 4.2.2 - Curl Command Injection / Remote Code Execution
2016-12-15
Nidesoft MP3 Converter 2.6.18 - SEH Local Buffer Overflow
2016-12-15
Opial CMS v2.0 - Multiple Web Vulnerabilities
2016-12-15
APT Repository Signing Bypass via Memory Allocation Failure
2016-12-15
VMPanel 2.7.4 - SQL Injection Web Vulnerability
2016-12-15
TP-LINK TD-W8151N Denial Of Service
2016-12-15
Symantec Arbitrary DLL Execution Submission
2016-12-15
APT - Repository Signing Bypass via Memory Allocation Failure
2016-12-14
Apache 2.4.23 (mod_http2) - Denial of Service
2016-12-14
Adobe Animate 15.2.1.95 - Memory Corruption
2016-12-14
VMPanel 2.7.4 - SQL Injection Web Vulnerability
2016-12-14
Microsoft (MEPN EDU) - Client Side Cross Site Vulnerability
2016-12-14
Adobe Animate < = v15.2.1.95 Memory Corruption Vulnerability
2016-12-14
Apple macOS 10.12.2 Safari SSL handshake Memory Exhaustion [UNPATCHED]
2016-12-14
Samsung Devices KNOX Extensions OTP TrustZone Trustlet Stack Buffer Overflow
2016-12-14
McAfee Virus Scan Enterprise For Linux Remote Code Execution
2016-12-14
Samsung Devices KNOX Extensions - OTP TrustZone Trustlet Stack Buffer Overflow
2016-12-13
Samsung Devices KNOX Extensions - OTP Service Heap Overflow
2016-12-13
Joomla Component DT Register - 'cat' SQL Injection
2016-12-13
McAfee Virus Scan Enterprise for Linux - Remote Code Execution
2016-12-13
TP-LINK TD-W8151N - Denial of Service
2016-12-13
PHP 7.0.13 Use After Free unserialize() PoC
2016-12-13
GateHouse Media LLC - XSS
2016-12-13
Smart Guard Network Manager 6.3.2 SQL Injection
2016-12-13
Joomla extension DT Register SQL injection
2016-12-13
WordPress Google Analytics Counter Tracker 3.1.5 PHP Object Injection
2016-12-13
10-Strike Network File Search Pro 2.3 Buffer Overflow
2016-12-13
Viscosity Open VPN 2.3 Privilege Escalation
2016-12-13
WordPress Plugin Multisite Post Duplicator 0.9.5.1 - Cross-Site Request Forgery
2016-12-13
Microsoft Internet Explorer 9 IEFRAME - CSelection­Interact­Button­Behavior::_Update­Button­Location Use-After-Free (MS13-047)
2016-12-13
iOS 10.1.x - Certificate File Memory Corruption
2016-12-13
Bluemix Container Authorization Controls
2016-12-12
WordPress Multisite Post Duplicator 0.9.5.1 Cross Site Request Forgery
2016-12-12
Gstreamer ID3v2 1.0 Out-Of-Bounds
2016-12-12
Serva 3.0.0 HTTP Server - Denial of Service
2016-12-12
Smart Guard Network Manager 6.3.2 - SQL Injection
2016-12-12
Serva 3.0.0 HTTP Server Module Remote Denial of Service Exploit
2016-12-12
OpenSSL 1.1.0a/1.1.0b - Denial of Service
2016-12-12
10-Strike Network File Search Pro 2.3 - SEH Local Buffer Overflow
2016-12-12
Powered by Apogee Essence CMS Admin Page ByPass
2016-12-12
Netgear R7000 - XSS via. DHCP hostname
2016-12-12
Avant Browser Remote DoS Exploit
2016-12-12
Opera 41.0.2353.69 Carriage Return Null Object Memory Exhaustion
2016-12-12
En Chiquitín Escuela Admin Page Bypass
2016-12-12
ctools Upload File Browser
2016-12-12
TODOS LOS DERECHOS RESERVADOS SQLi Vulnerability
2016-12-12
EasyPHP Devserver 16.1.1 - Insecure File Permissions Privilege Escalation
2016-12-12
ARG-W4 ADSL Router - Multiple Vulnerabilities
2016-12-12
Netgear R7000 - Cross-Site Scripting
2016-12-11
Bangladesh College and University Teacher's Data Dork
2016-12-10
Chaordic Search v1.1 Cross Site Scripting
2016-12-10
Roundcube 1.2.2 Command Execution via Email
2016-12-09
Splunk Enterprise 6.4.3 - Server-Side Request Forgery
2016-12-09
Microsoft Internet Explorer 9 MSHTML - CElement::Has­Flag Memory Corruption
2016-12-09
Splunk Enterprise 6.4.3 - Server-Side Request Forgery
2016-12-09
Microsoft Internet Explorer 9 MSHTML - CDisp­Node::Insert­Sibling­Node Use-After-Free (MS13-037) (2)
2016-12-09
Microsoft Internet Explorer 9 MSHTML - CDisp­Node::Insert­Sibling­Node Use-After-Free (MS13-037)
2016-12-09
Roundcube 1.2.2 - Remote Code Execution
2016-12-09
Netgear R7000 Command Injection
2016-12-09
Microsoft Remote Desktop Client For Mac 8.0.36 Remote Code Execution
2016-12-09
Windows x64 - Bind Shell TCP Shellcode (508 bytes)
2016-12-08
Cisco Unified Communications Manager Administrative Web Interface Directory traversal
2016-12-08
Netgear R7000 - Command Injection
2016-12-08
OpenSSH 7.2 Denial Of Service
2016-12-08
FreeBSD/Apple libc link_ntoa() buffer overflow
2016-12-07
Dual DHCP DNS Server 7.29 Denial Of Service
2016-12-07
PwC ACE Software For SAP Security 8.10.304 ABAP Injection
2016-12-07
Linux Kernel 4.4.0 (Ubuntu 14.04/16.04 x86-64) AF_PACKET Race Condition Privilege Escalation
2016-12-07
OpenSSH 7.2 - Denial of Service
2016-12-07
Cisco Unified Communications Manager 7/8/9 - Directory Traversal
2016-12-07
TP-LINK TD-W8951ND - Denial of Service
2016-12-07
Dual DHCP DNS Server 7.29 - Denial of Service
2016-12-07
Firefox SVG cross domain cookie vulnerability
2016-12-07
Linux Kernel 4.4.0 (Ubuntu 14.04/16.04 x86-64) - 'AF_PACKET' Race Condition Privilege Escalation
2016-12-07
AbanteCart 1.2.7 Cross Site Scripting
2016-12-07
Sony IPELA ENGINE IP Cameras Backdoor Accounts
2016-12-07
powered by BOWE Admin Page Bypass
2016-12-07
Microsoft PowerShell XXE Injection
2016-12-07
Microsoft Edge CBase-Scriptable::Private-Query-Interface Memory Corruption
2016-12-07
Edge SkateShop Authentication Bypass
2016-12-07
Microsoft Windows 10 x86/x64 WLAN AutoConfig Named Pipe Proof Of Concept
2016-12-07
Windows 10 x86/x64 WLAN AutoConfig - Denial of Service (POC)
2016-12-06
Exploits/page:


Page:
1-4-2 (www01)