Exploit-Database.net

Exploits (Total: 97712)


Sony Playstation 4 (PS4) < 7.02 - 'ValidationMessage::buildBubbleTree()' Use-After-Free WebKit Code Execution (PoC)				2020-12-21
Sony Playstation 4 (PS4) < 6.72 - 'ValidationMessage::buildBubbleTree()' Use-After-Free WebKit Code Execution (PoC)				2020-12-21
Online Marriage Registration System 1.0 - 'searchdata' SQL Injection				2020-12-21
Point of Sale System 1.0 - Multiple Stored XSS				2020-12-21
Flexmonster Pivot Table & Charts 2.7.17 - 'Remote JSON' Reflected XSS				2020-12-21
Flexmonster Pivot Table & Charts 2.7.17 - 'To remote CSV' Reflected XSS				2020-12-21
Flexmonster Pivot Table & Charts 2.7.17 - 'To OLAP' Reflected XSS				2020-12-21
Flexmonster Pivot Table & Charts 2.7.17 - 'Remote Report' Reflected XSS				2020-12-21
SCO Openserver 5.0.7 - 'outputform' Command Injection				2020-12-21
SCO Openserver 5.0.7 - 'section' Reflected XSS				2020-12-21
Spiceworks 7.5 - HTTP Header Injection				2020-12-21
Academy-LMS 4.3 - Stored XSS				2020-12-21
Spotweb 1.4.9 - 'search' SQL Injection				2020-12-21
Queue Management System 4.0.0 - "Add User" Stored XSS				2020-12-21
Wordpress Plugin Contact Form 7 5.3.1 - Unrestricted File Upload				2020-12-21
FRITZ!Box 7.20 - DNS Rebinding Protection Bypass				2020-12-19
Xeroneit Library Management System 3.1 - "Add Book Category " Stored XSS				2020-12-19
SyncBreeze 10.0.28 - 'login' Denial of Service (Poc)				2020-12-19
Smart Hospital 3.1 - "Add Patient" Stored XSS				2020-12-19
Wordpress Plugin Duplicator 1.3.26 - Unauthenticated Arbitrary File Read (Metasploit)				2020-12-19
Alumni Management System 1.0 - 'id' SQL Injection				2020-12-19
Alumni Management System 1.0 - "Course Form" Stored XSS				2020-12-19
Alumni Management System 1.0 - Unrestricted File Upload To RCE				2020-12-19
Point of Sale System 1.0 - Authentication Bypass				2020-12-19
Nxlog Community Edition 2.10.2150 - DoS (Poc)				2020-12-19
Victor CMS 1.0 - Multiple SQL Injection (Authenticated)				2020-12-19
PHPJabbers Appointment Scheduler 2.3 - Reflected XSS (Cross-Site Scripting)				2020-12-19
Employee Record System 1.0 - Multiple Stored XSS				2020-12-19
Interview Management System 1.0 - 'id' SQL Injection				2020-12-19
Interview Management System 1.0 - Stored XSS in Add New Question				2020-12-19
Online Tours & Travels Management System 1.0 - "id" SQL Injection				2020-12-19
Customer Support System 1.0 - 'id' SQL Injection				2020-12-19
Customer Support System 1.0 - "First Name" & "Last Name" Stored XSS				2020-12-19
Medical Center Portal Management System 1.0 - 'id' SQL Injection				2020-12-19
Content Management System 1.0 - 'id' SQL Injection				2020-12-19
Content Management System 1.0 - 'email' SQL Injection				2020-12-19
Content Management System 1.0 - 'First Name' Stored XSS				2020-12-19
Linksys RE6500 1.0.11.001 - Unauthenticated RCE				2020-12-19
Dolibarr ERP-CRM 12.0.3 - Remote Code Execution (Authenticated)				2020-12-19
Seotoaster 3.2.0 - Stored XSS on Edit page properties				2020-12-19
PrestaShop ProductComments 4.2.0 - 'id_products' Time Based Blind SQL Injection				2020-12-19
Magic Home Pro 1.5.1 - Authentication Bypass				2020-12-19
Raysync 3.3.3.8 - RCE				2020-12-19
Grav CMS 1.6.30 Admin Plugin 1.9.18 - 'Page Title' Persistent Cross-Site Scripting				2020-12-19
GitLab 11.4.7 - Remote Code Execution (Authenticated)				2020-12-19
Cisco ASA 9.14.1.10 and FTD 6.6.0.1 - Path Traversal (2)				2020-12-19
Solaris SunSSH 11.0 x86 - libpam Remote Root				2020-12-19
Online Marriage Registration System (OMRS) 1.0 - Remote Code Execution (Authenticated)				2020-12-19
libbabl 0.1.62 - Broken Double Free Detection (PoC)				2020-12-19
Task Management System 1.0 - 'page' Local File Inclusion				2020-12-19

Exploits/page:

Page: