Exploit-Database.net

Exploits (Total: 96936)


Online Marriage Registration System 1.0 - Persistent Cross-Site Scripting				2020-05-27
BIND - 'TSIG' Denial of Service				2020-05-27
WordPress Plugin Drag and Drop File Upload Contact Form 1.3.3.2 - Remote Code Execution				2020-05-26
Pi-hole 4.4.0 - Remote Code Execution (Authenticated)				2020-05-26
Joomla! Plugin XCloner Backup 3.5.3 - Local File Inclusion (Authenticated)				2020-05-26
StreamRipper32 2.6 - Buffer Overflow (PoC)				2020-05-26
Open-AudIT 3.3.0 - Reflective Cross-Site Scripting (Authenticated)				2020-05-26
OpenEMR 5.0.1 - Remote Code Execution				2020-05-26
Synology DiskStation Manager - smart.cgi Remote Command Execution (Metasploit)				2020-05-25
Plesk/myLittleAdmin - ViewState .NET Deserialization (Metasploit)				2020-05-25
Online Discussion Forum Site 1.0 - Remote Code Execution				2020-05-25
Victor CMS 1.0 - 'add_user' Persistent Cross-Site Scripting				2020-05-25
GoldWave - Buffer Overflow (SEH Unicode)				2020-05-25
Wordpress Plugin Form Maker 5.4.1 - 's' SQL Injection (Authenticated)				2020-05-25
WebLogic Server - Deserialization RCE - BadAttributeValueExpException (Metasploit)				2020-05-23
VUPlayer 2.49 .m3u - Local Buffer Overflow (DEP,ASLR)				2020-05-23
Gym Management System 1.0 - Unauthenticated Remote Code Execution				2020-05-23
Druva inSync Windows Client 6.6.3 - Local Privilege Escalation				2020-05-23
Dolibarr 11.0.3 - Persistent Cross-Site Scripting				2020-05-23
Filetto 1.0 - 'FEAT' Denial of Service (PoC)				2020-05-23
Konica Minolta FTP Utility 1.0 - 'NLST' Denial of Service (PoC)				2020-05-23
Konica Minolta FTP Utility 1.0 - 'LIST' Denial of Service (PoC)				2020-05-23
OpenEDX platform Ironwood 2.5 - Remote Code Execution				2020-05-23
CloudMe 1.11.2 - Buffer Overflow (SEH,DEP,ASLR)				2020-05-23
PHPFusion 9.03.50 - Persistent Cross-Site Scripting				2020-05-23
Composr CMS 10.0.30 - Persistent Cross-Site Scripting				2020-05-23
forma.lms 5.6.40 - Cross-Site Request Forgery (Change Admin Email)				2020-05-23
AbsoluteTelnet 11.21 - 'Username' Denial of Service (PoC)				2020-05-23
CraftCMS 3 vCard Plugin 1.0.0 - Remote Code Execution				2020-05-23
Pi-Hole - heisenbergCompensator Blocklist OS Command Execution (Metasploit)				2020-05-23
Victor CMS 1.0 - Authenticated Arbitrary File Upload				2020-05-23
NukeViet VMS 4.4.00 - Cross-Site Request Forgery (Change Admin Password)				2020-05-23
Submitty 20.04.01 - Persistent Cross-Site Scripting				2020-05-23
php-fusion 9.03.50 - 'ctype' SQL Injection				2020-05-23
qdPM 9.1 - 'cfg[app_app_name]' Persistent Cross-Site Scripting				2020-05-23
Victor CMS 1.0 - 'cat_id' SQL Injection				2020-05-23
Victor CMS 1.0 - 'comment_author' Persistent Cross-Site Scripting				2020-05-23
HP LinuxKI 6.01 - Remote Command Injection				2020-05-23
Online Healthcare management system 1.0 - Authentication Bypass				2020-05-23
Online Healthcare Patient Record Management System 1.0 - Authentication Bypass				2020-05-23
online Chatting System 1.0 - 'id' SQL Injection				2020-05-23
Monstra CMS 3.0.4 - Authenticated Arbitrary File Upload				2020-05-23
forma.lms The E-Learning Suite 2.3.0.2 - Persistent Cross-Site Scripting				2020-05-23
Oracle Hospitality RES 3700 5.7 - Remote Code Execution				2020-05-23
Online Examination System 1.0 - 'eid' SQL Injection				2020-05-23
Wordpress Plugin Ajax Load More 5.3.1 - '#1' Authenticated SQL Injection				2020-05-23
Mikrotik Router Monitoring System 1.2.3 - 'community' SQL Injection				2020-05-23
ManageEngine Service Desk 10.0 - Cross-Site Scripting				2020-05-23
vBulletin 5.6.1 - 'nodeId' SQL Injection				2020-05-23
E-Commerce System 1.0 - Unauthenticated Remote Code Execution				2020-05-23

Exploits/page:

Page: