0% found this document useful (0 votes)

25 views

(url to pdf)https___www.exploit-db.com_ (3)

The document is an exploit database listing various vulnerabilities and exploits related to different software and platforms, including web applications and local systems. It includes details such as the date of discovery, title, type of vulnerability, platform affected, and the author of the exploit. The entries cover a wide range of issues including SQL injection, cross-site scripting, remote code execution, and more, with specific examples provided for each category.

Uploaded by

nalladel090575

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

25 views

(url to pdf)https___www.exploit-db.com_ (3)

Uploaded by

nalladel090575

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 5

EXPLOIT DATABASE

󰠭 EXPLOITS

󰜏 GHDB

󰈤 PAPERS

󰘚 SHELLCODES

󰡦 SEARCH EDB

󰗚 SEARCHSPLOIT MANUAL

󰕒 SUBMISSIONS

󰑴 ONLINE TRAINING
EXPLOIT DATABASE
Verified Has App 󰈲 Filters 󰈵 Reset All

󰠭 EXPLOITS
Show 120 Search:

󰜏 GHDB Date  Title Type Platform Author

abhhi (Abhishek
2023-05-02 OpenEMR v7.0.1 - Authentication credentials brute force WebApps PHP
Birdawade)
󰈤 PAPERS

2023-05-02 Advanced Host Monitor v12.56 - Unquoted Service Path Local Windows Mr Empy

󰘚 SHELLCODES 2023-05-02 PHPFusion 9.10.30 - Stored Cross-Site Scripting (XSS) WebApps PHP Mirabbas Ağalarov

MilleGPG5 5.9.2 (Gennaio 2023) - Local Privilege Escalation / Incorrect

2023-05-02 Local Windows Andrea Intilangelo
Access Control

2023-05-02 SoftExpert (SE) Suite v2.1.3 - Local File Inclusion WebApps PHP Felipe Alcantara
󰡦 SEARCH EDB

2023-05-02 Serendipity 2.4.0 - File Inclusion RCE WebApps PHP nu11secur1ty

󰗚 SEARCHSPLOIT MANUAL 2023-05-02 admidio v4.2.5 - CSV Injection WebApps PHP Mirabbas Ağalarov

2023-05-02 revive-adserver v5.4.1 - Cross-Site Scripting (XSS) WebApps PHP Mirabbas Ağalarov

󰕒 SUBMISSIONS 2023-05-02 projectSend r1605 - Private file download WebApps PHP Mirabbas Ağalarov

2023-05-02 phpMyFAQ v3.1.12 - CSV Injection WebApps PHP Mirabbas Ağalarov

PHP Restaurants 1.0 - SQLi Authentication Bypass & Cross Site

2023-05-02 WebApps PHP Or4nG.M4N
Scripting
󰑴 ONLINE TRAINING

Behnam Abasi
2023-04-25 Sophos Web Appliance 4.3.10.4 - Pre-auth command injection WebApps PHP
Vanda

2023-04-25 Wondershare Filmora 12.2.9.2233 - Unquoted Service Path Local Windows msd0pe

Multi-Vendor Online Groceries Management System 1.0 - Remote Code

2023-04-25 WebApps PHP Or4nG.M4N
Execution

2023-04-25 Arcsoft PhotoStudio 6.0.0.172 - Unquoted Service Path Local Windows msd0pe

2023-04-25 Mars Stealer 8.3 - Admin Account Takeover WebApps PHP Sköll

2023-04-25 PaperCut NG/MG 22.0.4 - Authentication Bypass WebApps Multiple MaanVader

2023-04-25 OCS Inventory NG 2.3.0.0 - Unquoted Service Path Local Windows msd0pe

2023-04-25 KodExplorer 4.49 - CSRF to Arbitrary File Upload WebApps PHP Mr Empy

ProjeQtOr Project Management System 10.3.2 - Remote Code

2023-04-20 WebApps PHP Mirabbas Ağalarov
Execution (RCE)

2023-04-20 Piwigo 13.6.0 - Stored Cross-Site Scripting (XSS) WebApps PHP Mirabbas Ağalarov

2023-04-20 FUXA V.1.1.13-1186 - Unauthenticated Remote Code Execution (RCE) WebApps TypeScript Rodolfo Mariano

2023-04-20 Linux Kernel 6.2 - Userspace Processes To Enable Mitigation Local Linux nu11secur1ty

2023-04-20 Chitor-CMS v1.1.2 - Pre-Auth SQL Injection WebApps PHP msd0pe

Parsa Rezaie
2023-04-20 Franklin Fueling Systems TS-550 - Default Password Remote Hardware
Khiabanloo

2023-04-20 GDidees CMS 3.9.1 - Local File Disclosure WebApps PHP Hadi Mene

2023-04-20 AspEmail v5.6.0.2 - Local Privilege Escalation Local Windows Zer0FauLT

Swagger UI 4.1.3 - User Interface (UI) Misrepresentation of Critical

2023-04-20 WebApps JSON Rafael Cintra Lopes
Information

2023-04-20 Bang Resto v1.0 - 'Multiple' SQL Injection WebApps PHP Rahad Chowdhury

2023-04-20 Bang Resto v1.0 - Stored Cross-Site Scripting (XSS) WebApps PHP Rahad Chowdhury

2023-04-20 Microsoft Word 16.72.23040900 - Remote Code Execution (RCE) Remote Multiple nu11secur1ty

File Replication Pro 7.5.0 - Privilege Escalation/Password reset due

2023-04-20 Local Windows Andrea Intilangelo
Incorrect Access Control

max / Zoltan
2023-04-20 Lilac-Reloaded for Nagios 2.0.8 - Remote Code Execution (RCE) WebApps PHP
Padanyi

2023-04-20 Serendipity 2.4.0 - Cross-Site Scripting (XSS) WebApps PHP Mirabbas Ağalarov

2023-04-20 Serendipity 2.4.0 - Remote Code Execution (RCE) (Authenticated) WebApps PHP Mirabbas Ağalarov

Sielco PolyEco Digital FM Transmitter 2.0.6 - Account Takeover /

2023-04-14 WebApps Hardware LiquidWorm
Lockout / EoP

Sielco PolyEco Digital FM Transmitter 2.0.6 - Unauthenticated

2023-04-14 WebApps Hardware LiquidWorm
Information Disclosure

Sielco PolyEco Digital FM Transmitter 2.0.6 - Radio Data System POST

2023-04-14 WebApps Hardware LiquidWorm
Manipulation

Sielco PolyEco Digital FM Transmitter 2.0.6 - Authorization Bypass

2023-04-14 WebApps Hardware LiquidWorm
Factory Reset
Sielco PolyEco Digital FM Transmitter 2.0.6 - Authentication Bypass
EXPLOIT DATABASE 2023-04-14 WebApps Hardware LiquidWorm
Exploit

2023-04-14 Sielco Analog FM Transmitter 2.12 - Remote Privilege Escalation Remote Hardware LiquidWorm

Sielco Analog FM Transmitter 2.12 - Improper Access Control Change

󰠭 EXPLOITS 2023-04-14
Admin Password
WebApps Hardware LiquidWorm

2023-04-14 Sielco Analog FM Transmitter 2.12 - Cross-Site Request Forgery WebApps Hardware LiquidWorm
󰜏 GHDB
Sielco Analog FM Transmitter 2.12 - 'id' Cookie Brute Force Session
2023-04-14 WebApps Hardware LiquidWorm
Hijacking

󰈤 PAPERS
2023-04-14
InnovaStudio WYSIWYG Editor 5.4 - Unrestricted File Upload / Directory
WebApps ASP Zer0FauLT
Traversal

󰘚 SHELLCODES
2023-04-14
Google Chrome Browser 111.0.5563.64 - AXPlatformNodeCocoa Fatal
Local macOS LiquidWorm
OOM/Crash (macOS)

2023-04-14 Bludit 4.0.0-rc-2 - Account takeover WebApps PHP nu11secur1ty

2023-04-10 Microsoft Edge (Chromium-based) Webview2 1.0.1661.34 - Spoofing Local Multiple nu11secur1ty
󰡦 SEARCH EDB

2023-04-10 Online Computer and Laptop Store 1.0 - Remote Code Execution (RCE) WebApps PHP Matisse Beckandt

Ahmet Ümit
󰗚 SEARCHSPLOIT MANUAL
2023-04-10 BrainyCP V1.0 - Remote Code Execution WebApps PHP
BAYRAM

2023-04-10 Paradox Security Systems IPR512 - Denial Of Service DoS Hardware Giorgi Dograshvili
󰕒 SUBMISSIONS

2023-04-10 Roxy Fileman 1.4.5 - Arbitrary File Upload WebApps ASHX Zer0FauLT

2023-04-10 ever gauzy v0.281.9 - JWT weak HMAC secret WebApps TypeScript nu11secur1ty

2023-04-08 dotclear 2.25.3 - Remote Code Execution (RCE) (Authenticated) WebApps PHP Mirabbas Ağalarov
󰑴 ONLINE TRAINING

2023-04-08 pfsenseCE v2.6.0 - Anti-brute force protection bypass Remote Hardware FabDotNET

2023-04-08 ESET Service 16.0.26.0 - 'Service ekrn' Unquoted Service Path Local Windows Milad karimi

Pentaho BA Server EE 9.3.0.0-428 - Remote Code Execution (RCE)

2023-04-08 WebApps JSP dwbzn
(Unauthenticated)

2023-04-08 WebsiteBaker v2.13.3 - Cross-Site Scripting (XSS) WebApps PHP Mirabbas Ağalarov

2023-04-08 ZCBS/ZBBS/ZPBS v4.14k - Reflected Cross-Site Scripting (XSS) WebApps CGI Abdulaziz Saad

2023-04-08 X2CRM v6.6/6.9 - Reflected Cross-Site Scripting (XSS) (Authenticated) WebApps PHP Betul Denizler

2023-04-08 X2CRM v6.6/6.9 - Stored Cross-Site Scripting (XSS) (Authenticated) WebApps PHP Betul Denizler

2023-04-08 Online-Pizza-Ordering -1.0 - Remote Code Execution (RCE) WebApps PHP nu11secur1ty

2023-04-08 Palo Alto Cortex XSOAR 6.5.0 - Stored Cross-Site Scripting (XSS) WebApps Multiple omurugur

Symantec Messaging Gateway 10.7.4 - Stored Cross-Site Scripting

2023-04-08 WebApps Multiple omurugur
(XSS)

2023-04-08 Stonesoft VPN Client 6.2.0 / 6.8.0 - Local Privilege Escalation Local Windows TOUHAMI Kasbaoui

Yuriy (Vander)
2023-04-08 Suprema BioStar 2 v2.8.16 - SQL Injection WebApps Multiple
Tsarenko

Youssef
2023-04-08 Goanywhere Encryption helper 7.1.1 - Remote Code Execution (RCE) WebApps Java
Muhammad

2023-04-08 Medicine Tracker System v1.0 - Sql Injection WebApps PHP Sanjay Singh

2023-04-08 Online Appointment System V1.0 - Cross-Site Scripting (XSS) WebApps PHP Sanjay Singh

RSA NetWitness Platform 12.2 - Incorrect Access Control / Code

2023-04-08 Local Windows hyp3rlinx
Execution

Deb Prasad
2023-04-08 ENTAB ERP 1.0 - Username PII leak WebApps ASP
Banerjee

2023-04-08 Joomla! v4.2.8 - Unauthenticated information disclosure WebApps PHP Alexandre ZANNI

2023-04-08 Lucee Scheduled Job v1.0 - Command Execution Local Multiple Alexander Philiotis

2023-04-08 ActFax 10.10 - Unquoted Path Services Local Windows Birkan ALHAN

Google Chrome 109.0.5414.74 - Code Execution via missing lib file Rafay Baloch and
2023-04-08 Local Linux
(Ubuntu) Muhammad Samak

2023-04-08 Restaurant Management System 1.0 - SQL Injection WebApps PHP calfcrusher

2023-04-08 Icinga Web 2.10 - Arbitrary File Disclosure WebApps PHP Jacob Ebben

Microsoft Excel 365 MSO (Version 2302 Build 16.0.16130.20186) 64-bit

2023-04-08 Remote Multiple nu11secur1ty
- Remote Code Execution (RCE)

2023-04-08 Adobe Connect 11.4.5 - Local File Disclosure WebApps Multiple h4shur

2023-04-08 FortiRecorder 6.4.3 - Denial of Service DoS Hardware Mohammed Adel

2023-04-08 Altenergy Power Control Software C1.2.5 - OS command injection WebApps Hardware Ahmed Alroky

2023-04-07 Wondershare Dr Fone 12.9.6 - Privilege Escalation Local Windows Thurein Soe

2023-04-07 Snitz Forum v1.0 - Blind SQL Injection WebApps ASP Emiliano Febbi
EXPLOIT DATABASE Parsa Rezaie
2023-04-07 Franklin Fueling Systems TS-550 - Exploit and Default Password Remote Hardware
Khiabanloo

Parsa Rezaie
2023-04-07 Schneider Electric v1.0 - Directory traversal & Broken Authentication Remote Hardware
Khiabanloo
󰠭 EXPLOITS

2023-04-07 ChurchCRM 4.5.1 - Authenticated SQL Injection WebApps PHP Arvandy

2023-04-07 NotrinosERP 0.7 - Authenticated Blind SQL Injection WebApps PHP Arvandy
󰜏 GHDB

Tenda N300 F3 12.01.01.48 - Malformed HTTP Request Header

2023-04-07 Remote Hardware @h454nsec
Processing

󰈤 PAPERS
2023-04-07 IBM Aspera Faspex 4.4.1 - YAML deserialization (RCE) Remote Multiple Maurice Lambert

Chunlei Shang,
󰘚 SHELLCODES
2023-04-07 MAC 1200R - Directory Traversal WebApps Hardware Jiangsu Public
Information Co., Ltd.

Docker based datastores for IBM Instana 241-2 243-0 - No Shahid Parvez
2023-04-07 Remote Multiple
Authentication (zippon)
󰡦 SEARCH EDB

2023-04-06 craftercms 4.x.x - CORS WebApps Multiple nu11secur1ty

2023-04-06 Purchase Order Management-1.0 - Local File Inclusion WebApps PHP nu11secur1ty
󰗚 SEARCHSPLOIT MANUAL

2023-04-06 WIMAX SWC-5100W Firmware V(1.11.0.1 :1.9.9.4) - Authenticated RCE Remote Hardware Momen Eldawakhly

2023-04-06 HospitalRun 1.0.0-beta - Local Root Exploit for macOS Local macOS Jean Pereira
󰕒 SUBMISSIONS

2023-04-06 Unified Remote 3.13.0 - Remote Code Execution (RCE) Remote Windows H4rk3nz0

2023-04-06 Mitel MiCollab AWV 8.1.2.4 and 9.1.3 - Directory Traversal and LFI WebApps CGI Kahvi-0

󰑴 ONLINE TRAINING
2023-04-06
Agilebio Lab Collector Electronic Lab Notebook v4.234 - Remote Code
WebApps PHP Anthony Cole
Execution (RCE)

2023-04-06 Osprey Pump Controller 1.0.1 - (eventFileSelected) Command Injection Remote Hardware LiquidWorm

Osprey Pump Controller 1.0.1 - Unauthenticated Remote Code

2023-04-06 Remote Hardware LiquidWorm
Execution Exploit

2023-04-06 Osprey Pump Controller 1.0.1 - Cross-Site Request Forgery Remote Hardware LiquidWorm

Osprey Pump Controller 1.0.1 - Authentication Bypass Credentials

2023-04-06 Remote Hardware LiquidWorm
Modification

2023-04-06 Osprey Pump Controller v1.0.1 - Unauthenticated Reflected XSS Remote Hardware LiquidWorm

2023-04-06 Osprey Pump Controller 1.0.1 - (userName) Blind Command Injection Remote Hardware LiquidWorm

Osprey Pump Controller 1.0.1 - (pseudonym) Semi-blind Command

2023-04-06 Remote Hardware LiquidWorm
Injection

2023-04-06 Osprey Pump Controller 1.0.1 - Administrator Backdoor Access Remote Hardware LiquidWorm

2023-04-06 Osprey Pump Controller 1.0.1 - Unauthenticated File Disclosure Remote Hardware LiquidWorm

Osprey Pump Controller 1.0.1 - Predictable Session Token / Session

2023-04-06 Remote Hardware LiquidWorm
Hijack

2023-04-06 ChurchCRM v4.5.3-121fcc1 - SQL Injection WebApps PHP nu11secur1ty

Ömer Hasan
2023-04-06 flatnux 2021-03.25 - Remote Code Execution (Authenticated) WebApps PHP
Durmuş

ABUS Security Camera TVIP 20000-21150 - LFI, RCE and SSH Root
2023-04-06 Remote Hardware [email protected]
Access

2023-04-06 pdfkit v0.8.7.2 - Command Injection Local Ruby UNICORD

Muhammad Navaid
2023-04-06 Simple Food Ordering System v1.0 - Cross-Site Scripting (XSS) WebApps PHP
Zafar Ansari

Muhammad Navaid
2023-04-06 Music Gallery Site v1.0 - SQL Injection on page Master.php WebApps PHP
Zafar Ansari

Muhammad Navaid
2023-04-06 Music Gallery Site v1.0 - SQL Injection on page view_music_details.php WebApps PHP
Zafar Ansari

Muhammad Navaid
2023-04-06 Music Gallery Site v1.0 - Broken Access Control WebApps PHP
Zafar Ansari

Muhammad Navaid
2023-04-06 Music Gallery Site v1.0 - SQL Injection on music_list.php WebApps PHP
Zafar Ansari

Employee Task Management System v1.0 - SQL Injection on edit- Muhammad Navaid
2023-04-06 WebApps PHP
task.php Zafar Ansari

Employee Task Management System v1.0 - SQL Injection on (task- Muhammad Navaid
2023-04-06 WebApps PHP
details.php?task_id=?) Zafar Ansari

Showing 361 to 480 of 45,819 entries FIRST PREVIOUS 1 2 3 4 5 … 382 NEXT LAST

Databases

Links
Sites
EXPLOIT DATABASE

Solutions