nPulse.net Official

Loading

ID	Description	Type	Author	Date
44656	mySCADA myPRO 7 - Hard-Coded Credentials	remote	Emre ÖVÜNÇ	2018/05/20
44657	D-Link DSL-3782 - Authentication Bypass	webapps	Giulio Comi	2018/05/20
44658	Easy MPEG to DVD Burner 1.7.11 - Local Buffer Overflow (SEH) (DEP Bypass)	local	Juan Prescotto	2018/05/20
44659	Adobe Enterprise Manager (AEM) < 6.3 - Remote Code Execution	webapps	taticFlo	2018/05/20
44660	Joomla! Component EkRishta 2.10 - Cross-Site Scripting / SQL Injection	webapps	Sina Kheirkhah	2018/05/20
44645	Healwire Online Pharmacy 3.0 - Persistent Cross-Site Scripting / Cross-Site Request Forgery	webapps	0R	2018/05/18
44646	Monstra CMS before 3.0.4 - Cross-Site Scripting	webapps	Berk Dusunur	2018/05/18
44647	SAP NetWeaver Web Dynpro 6.4 < 7.5 - Information Disclosure	webapps	Richard Alviarez	2018/05/18
44648	HPE iMC 7.3 - Remote Code Execution (Metasploit)	remote	rendyTof	2018/05/18
44649	Prime95 29.4b8 - Stack Buffer Overflow (SEH)	local	rash_manucoo	2018/05/18
44650	Cisco SA520W Security Appliance - Path Traversal	webapps	Nassim Asrir	2018/05/18
44651	Infinity Market Classified Ads Script 1.6.2 - Cross-Site Request Forgery	webapps	0R	2018/05/18
44652	DynoRoot DHCP - Client Command Injection	local	Kevin Kirsche	2018/05/18
44653	Microsoft Edge Chakra JIT - Bound Check Elimination Bug	dos	Google Security Research	2018/05/18
44654	Linux 4.8.0 < 4.8.0-46 - AF_PACKET packet_set_ring Privilege Escalation (Metasploit)	local	etasploi	2018/05/18
44655	SAP B2B / B2C CRM 2.x < 4.x - Local File Inclusion	webapps	Richard Alviarez	2018/05/18
44636	NodAPS 4.0 - SQL injection / Cross-Site Request Forgery	webapps	0R	2018/05/17
44637	Intelbras NCLOUD 300 1.0 - Authentication bypass	webapps	Pedro Aguiar	2018/05/17
44638	Nanopool Claymore Dual Miner 7.3 - Remote Code Execution	remote	everseBrai	2018/05/17
44639	SuperCom Online Shopping Ecommerce Cart 1 - Persistent Cross-Site scripting / Cross site request forgery / Authentication bypass	webapps	0R	2018/05/17
44640	Powerlogic/Schneider Electric IONXXXX Series - Cross-Site Request Forgery	webapps	4rkd3vil	2018/05/17
44641	Linux < 4.16.9 / < 4.14.41 - 4-byte Infoleak via Uninitialized Struct Field in compat adjtimex Syscall	dos	Google Security Research	2018/05/17
44642	Jenkins CLI - HTTP Java Deserialization (Metasploit)	remote	etasploi	2018/05/17
44643	Apache Struts 2 - Struts 1 Plugin Showcase OGNL Code Execution (Metasploit)	remote	etasploi	2018/05/17
44624	MyBB Admin Notes Plugin 1.1 - Cross-Site Request Forgery	webapps	xB	2018/05/16
44625	VirtueMart 3.1.14 - Persistent Cross-Site Scripting	webapps	Mattia Furlani	2018/05/16
44626	Rockwell Scada System 27.011 - Cross-Site Scripting	webapps	4rkd3vil	2018/05/16
44627	Multiplayer BlackJack Online Casino Game 2.5 - Persistent Cross-Site Scripting	webapps	0R	2018/05/16
44628	Horse Market Sell & Rent Portal Script 1.5.7 - Cross-Site Request Forgery	webapps	0R	2018/05/16
44629	WhatsApp 2.18.31 - Memory Corruption	dos	Juan Sacco	2018/05/16
44630	Microsoft Windows - Token Process Trust SID Access Check Bypass Privilege Escalation	local	Google Security Research	2018/05/16
44631	totemomail Encryption Gateway 6.0.0 Build 371 - Cross-Site Request Forgery	webapps	Compass Security	2018/05/16
44632	WordPress Plugin Metronet Tag Manager 1.2.7 - Cross-Site Request Forgery	webapps	x	2018/05/16
44633	Libuser - roothelper Privilege Escalation (Metasploit)	local	etasploi	2018/05/16
44634	RSA Authentication Manager 8.2.1.4.0-build1394922 / < 8.3 P1 - XML External Entity Injection / Cross-Site Flashing / DOM Cross-Site Scripting	webapps	SEC Consult	2018/05/16
44635	Inteno IOPSYS 2.0 - 4.2.0 p910nd - Remote Command Execution	remote	eonse	2018/05/16
44619	2345 Security Guard 3.7 - '2345NsProtect.sys' Denial of Service	dos	nhkg	2018/05/14
44621	Monstra CMS 3.0.4 - Remote Code Execution	webapps	ameelNabb	2018/05/14
44622	XATABoost 1.0.0 - SQL Injection	webapps	gThuraMoeMyin	2018/05/14
44616	Microsoft Windows 2003 SP2 - 'RRAS' SMB Remote Code Execution	remote	porta	2018/05/13
44617	WUZHI CMS 4.1.0 - 'form[qq_10]' Cross-Site Scripting	webapps	iguan	2018/05/13
44618	WUZHI CMS 4.1.0 - 'tag[pinyin]' Cross-Site Scripting	webapps	iguan	2018/05/13
44612	Open-AudIT Professional - 2.1.1 - Cross-Site Scripting	webapps	Tejesh Kolisetty	2018/05/11
44613	Open-AudIT Community - 2.2.0 – Cross-Site Scripting	webapps	Tejesh Kolisetty	2018/05/11
44614	EMC RecoverPoint 4.3 - 'Admin CLI' Command Injection	local	Paul Taylor	2018/05/11
44615	2345 Security Guard 3.7 - '2345BdPcSafe.sys' Denial of Service	dos	nhkg	2018/05/11
44606	Fastweb FASTGate 0.00.47 - Cross-site Request Forgery	webapps	Raffaele Sabato	2018/05/10
44607	ModbusPal 1.6b - XML External Entity Injection	webapps	Trent Gordon	2018/05/10
44608	MyBB Latest Posts on Profile Plugin 1.1 - Cross-Site Scripting	webapps	xB	2018/05/10
44610	Dell Touchpad - 'ApMsgFwd.exe' Denial of Service	dos	Souhail Hammou	2018/05/10
44611	Mantis 1.1.3 - manage_proj_page PHP Code Execution (Metasploit)	remote	etasploi	2018/05/10
44603	FxCop 10/12 - XML External Entity Injection	local	yp3rlin	2018/05/09
44605	Allok Video Splitter 3.1.12.17 - Denial of Service	dos	chille	2018/05/09
44596	FTPShell Client 6.7 - Buffer Overflow	remote	4wd3	2018/05/08
44597	Palo Alto Networks - readSessionVarsFromFile() Session Corruption (Metasploit)	remote	etasploi	2018/05/08
44598	PlaySMS - import.php Authenticated CSV File Upload Code Execution (Metasploit)	remote	etasploi	2018/05/08
44599	PlaySMS 1.4 - sendfromfile.php Authenticated _Filename_ Field Code Execution (Metasploit)	remote	etasploi	2018/05/08
44600	2345 Security Guard 3.7 - Denial of Service	dos	nhkg	2018/05/08
44589	CSP MySQL User Manager 2.3.1 - Authentication Bypass	webapps	Youssef Mami	2018/05/06
44590	DeviceLock Plug and Play Auditor 5.72 - Unicode Buffer Overflow (SEH)	local	yp3rlin	2018/05/06
44593	HWiNFO 5.82-3410 - Denial of Service	dos	zy	2018/05/06
44595	WordPress Plugin User Role Editor < 4.25 - Privilege Escalation	webapps	Tomislav Paskalev	2018/05/06
44601	GNU wget - Cookie Injection	local	Harry Sintonen	2018/05/06
44584	Google Chrome V8 - Object Allocation Size Integer Overflow	remote	Google Security Research	2018/05/04
44585	WordPress Plugin WF Cookie Consent 1.1.3 - Cross-Site Scripting	webapps	0U	2018/05/04
44586	Windows WMI - Recieve Notification Exploit (Metasploit)	local	etasploi	2018/05/04
44587	IceWarp Mail Server < 11.1.1 - Directory Traversal	webapps	Trustwave's SpiderLabs	2018/05/04
44576	GPON Routers - Authentication Bypass / Command Injection	remote	pnmento	2018/05/03
44623	JasperReports - Authenticated File Read	webapps	Hector Monsegur	2018/05/03
44564	LibreOffice/Open Office - '.odt' Information Disclosure	local	Richard Davy	2018/05/02
44565	Easy MPEG to DVD Burner 1.7.11 - Local Buffer Overflow (SEH)	local	Marwan Shamel	2018/05/02
44566	WebKit - 'WebCore::jsElementScrollHeightGetter' Use-After-Free	dos	Google Security Research	2018/05/02
44567	Cockpit CMS 0.4.4 < 0.5.5 - Server-Side Request Forgery	webapps	Qian Wu_ Bo Wang_ Jiawang Zhang	2018/05/02
44568	xdebug < 2.5.5 - Unauthenticated OS Command Execution (Metasploit)	remote	etasploi	2018/05/02
44569	Metasploit Framework - 'msfd' Remote Code Execution (via Browser) (Metasploit)	remote	etasploi	2018/05/02
44570	Metasploit Framework - 'msfd' Remote Code Execution (Metasploit)	remote	etasploi	2018/05/02
44571	Exim < 4.90.1 - 'base64d' Remote Code Execution	remote	traight_blas	2018/05/02
44572	Schneider Electric InduSoft Web Studio and InTouch Machine Edition - Denial of Service	dos	Tenable NS	2018/05/02
44573	Adobe Reader PDF - Client Side Request Injection	local	Alex Inführ	2018/05/02
44574	Norton Core Secure WiFi Router - 'BLE' Command Injection (PoC)	remote	mbed	2018/05/02
44577	TBK DVR4104 / DVR4216 - Credentials Leak	remote	zel	2018/05/02
44582	Call of Duty Modern Warefare 2 - Buffer Overflow	remote	omo550	2018/05/02
44563	WordPress Plugin Responsive Cookie Consent 1.7 / 1.6 / 1.5 - Authenticated Persistent Cross-Site Scripting	webapps	0U	2018/05/01
44557	Drupal < 7.58 - 'Drupalgeddon3' Authenticated Remote Code (Metasploit)	remote	ixP4ck3	2018/04/30
44558	Navicat < 12.0.27 - Oracle Connection Overflow	dos	Kevin McGuigan	2018/04/30
44559	WordPress Plugin Form Maker 1.12.20 - CSV Injection	webapps	Sairam Jetty	2018/04/30
44560	Nagios XI 5.2.[6-9]_ 5.3_ 5.4 - Chained Remote Root	webapps	Jared Arave	2018/04/30
44561	macOS 10.13.2 - Double mach_port_deallocate in kextd due to Failure to Comply with MIG Ownership Rules	dos	Google Security Research	2018/04/30
44562	macOS/iOS - ReportCrash mach port Replacement due to Failure to Respect MIG Ownership Rules	dos	Google Security Research	2018/04/30
44579	Linux Kernel < 4.17-rc1 - 'AF_LLC' Double Free	dos	ecuriTea	2018/04/30
44544	WordPress Plugin WP with Spritz 1.0 - Remote File Inclusion	webapps	adee	2018/04/26
44545	SickRage < v2018.03.09 - Clear-Text Credentials HTTP Response	webapps	Sven Fassbender	2018/04/26
44546	October CMS User Plugin 1.4.5 - Persistent Cross-Site Scripting	webapps	xB	2018/04/26
44547	MyBB Threads to Link Plugin 1.3 - Cross-Site Scripting	webapps	xB	2018/04/26
44548	GitList 0.6 - Unauthenticated Remote Code Execution	webapps	Kacper Szurek	2018/04/26
44549	Allok AVI to DVD SVCD VCD Converter 4.0.1217 - Buffer Overflow (SEH)	local	3jv1	2018/04/26
44550	TP-Link Technologies TL-WA850RE Wi-Fi Range Extender - Unauthenticated Remote Reboot	webapps	adee	2018/04/26
44551	Frog CMS 0.9.5 - Persistent Cross-Site Scripting	webapps	Wenming Jiang	2018/04/26
44543	Jfrog Artifactory < 4.16 - Unauthenticated Arbitrary File Upload / Remote Command Execution	webapps	Alessio Sergi	2018/04/26
44534	Shopy Point of Sale v1.0 - CSV Injection	webapps	bitse	2018/04/25

Exploit Database

Latest Exploits

Loading

Credits and Partners