Polkit 0.105-26 0.117-2 Exploit, Local Privilege Escalation
LOCAL Author: J Smith | 2021/06/15 |
Brother BRAgent 1.38 Exploit, 'WBA_Agent_Client' Unquoted Service Path
LOCAL Author: Brian Rodriguez | 2021/06/15 |
SysGauge 7.9.18 Exploit, ' SysGauge Server' Unquoted Service Path
LOCAL Author: Brian Rodriguez | 2021/06/15 |
Client Management System 1.1 Exploit, 'Search' SQL Injection
WEBAPPS Author: BHAVESH KAUL | 2021/06/15 |
Client Management System 1.1 Exploit, 'username' Stored Cross-Site Scripting (XSS)
WEBAPPS Author: BHAVESH KAUL | 2021/06/15 |
Brother BRPrint Auditor Exploit, 'Multiple' Unquoted Service Path
LOCAL Author: Brian Rodriguez | 2021/06/15 |
Tftpd64 4.64 Exploit, 'Tftpd32_svc' Unquoted Service Path
LOCAL Author: Brian Rodriguez | 2021/06/14 |
Notex the best notes 6.4 Exploit, Denial of Service (PoC)
DOS Author: Geovanni Ruiz | 2021/06/14 |
Post-it 5.0.1 Exploit, Denial of Service (PoC)
DOS Author: Geovanni Ruiz | 2021/06/14 |
Secure Notepad Private Notes 3.0.3 Exploit, Denial of Service (PoC)
DOS Author: Geovanni Ruiz | 2021/06/14 |
WibuKey Runtime 6.51 Exploit, 'WkSvW32.exe' Unquoted Service Path
LOCAL Author: Brian Rodriguez | 2021/06/14 |
OpenEMR 5.0.1.3 Exploit, 'manage_site_files' Remote Code Execution (Authenticated)
WEBAPPS Author: Ron Jost | 2021/06/14 |
Spy Emergency 25.0.650 Exploit, 'Multiple' Unquoted Service Path
LOCAL Author: Erick Galindo | 2021/06/14 |
TextPattern CMS 4.8.7 Exploit, Remote Command Execution (Authenticated)
WEBAPPS Author: Mert Daş | 2021/06/14 |
Small CRM 3.0 Exploit, 'Authentication Bypass' SQL Injection
WEBAPPS Author: BHAVESH KAUL | 2021/06/14 |
Stock Management System 1.0 Exploit, 'user_id' Blind SQL injection (Authenticated)
WEBAPPS Author: Riadh Benlamine | 2021/06/14 |
COVID19 Testing Management System 1.0 Exploit, 'State' Stored Cross-Site-Scripting (XSS)
WEBAPPS Author: BHAVESH KAUL | 2021/06/14 |
GLPI 9.4.5 Exploit, Remote Code Execution (RCE)
WEBAPPS Author: Brian Peters | 2021/06/14 |
Accela Civic Platform 21.1 Exploit, 'contactSeqNumber' Insecure Direct Object References (IDOR)
WEBAPPS Author: Abdulazeez Alaseeri | 2021/06/14 |
Accela Civic Platform 21.1 Exploit, 'successURL' Cross-Site-Scripting (XSS)
WEBAPPS Author: Abdulazeez Alaseeri | 2021/06/14 |
WoWonder Social Network Platform 3.1 Exploit, Authentication Bypass
WEBAPPS Author: ecurityforeveryone.co | 2021/06/11 |
Zenario CMS 8.8.52729 Exploit, 'cID' Blind & Error based SQL injection (Authenticated)
WEBAPPS Author: Avinash R | 2021/06/11 |
Solar-Log 500 2.8.2 Exploit, Unprotected Storage of Credentials
WEBAPPS Author: uca.Chio | 2021/06/11 |
Solar-Log 500 2.8.2 Exploit, Incorrect Access Control
WEBAPPS Author: uca.Chio | 2021/06/11 |
Grocery crud 1.6.4 Exploit, 'order_by' SQL Injection
WEBAPPS Author: onyShave | 2021/06/11 |
WordPress Plugin Database Backups 1.2.2.6 Exploit, 'Database Backup Download' CSRF
WEBAPPS Author: xB | 2021/06/11 |
OpenEMR 5.0.0 Exploit, Remote Code Execution (Authenticated)
WEBAPPS Author: Ron Jost | 2021/06/11 |
Microsoft SharePoint Server 16.0.10372.20060 Exploit, 'GetXmlDataFromDataSource' Server-Side Request Forgery (SSRF)
WEBAPPS Author: Alex Birnberg | 2021/06/11 |
Cerberus FTP Web Service 11 Exploit, 'svg' Stored Cross-Site Scripting (XSS)
WEBAPPS Author: Mohammad Hossein Kaviyany | 2021/06/11 |
Accela Civic Platform 21.1 Exploit, 'servProvCode' Cross-Site-Scripting (XSS)
WEBAPPS Author: Abdulazeez Alaseeri | 2021/06/11 |
n+otes 1.6.2 Exploit, Denial of Service (PoC)
DOS Author: Geovanni Ruiz | 2021/06/10 |
Sticky Notes Widget Version 3.0.6 Exploit, Denial of Service (PoC)
DOS Author: Geovanni Ruiz | 2021/06/10 |
memono Notepad Version 4.2 Exploit, Denial of Service (PoC)
LOCAL Author: Geovanni Ruiz | 2021/06/10 |
TextPattern CMS 4.8.7 Exploit, Stored Cross-Site Scripting (XSS)
WEBAPPS Author: Mert Daş | 2021/06/10 |
Student Result Management System 1.0 Exploit, 'class' SQL Injection
WEBAPPS Author: Riadh Benlamine | 2021/06/10 |
GravCMS 1.10.7 Exploit, Arbitrary YAML Write/Update (Unauthenticated) (2)
WEBAPPS Author: egen | 2021/06/09 |
WordPress Plugin visitors-app 0.3 Exploit, 'user-agent' Stored Cross-Site Scripting (XSS)
WEBAPPS Author: Mesut Cetin | 2021/06/09 |
OpenCart 3.0.3.6 Exploit, 'subject' Stored Cross-Site Scripting
WEBAPPS Author: Mert Daş | 2021/06/09 |
OpenCart 3.0.3.7 Exploit, 'Change Password' Cross-Site Request Forgery (CSRF)
WEBAPPS Author: Mert Daş | 2021/06/09 |
Intelbras Router RF 301K Exploit, 'DNS Hijacking' Cross-Site Request Forgery (CSRF)
WEBAPPS Author: Rodolfo Mariano | 2021/06/09 |
WordPress Plugin wpDiscuz 7.0.4 Exploit, Remote Code Execution (Unauthenticated)
WEBAPPS Author: Fellipe Oliveira | 2021/06/08 |
Backup Key Recovery 2.2.7 Exploit, Denial of Service (PoC)
LOCAL Author: Erick Galindo | 2021/06/08 |
Nsauditor 3.2.3 Exploit, Denial of Service (PoC)
DOS Author: Erick Galindo | 2021/06/08 |
NBMonitor 1.6.8 Exploit, Denial of Service (PoC)
DOS Author: Erick Galindo | 2021/06/08 |
Wordpress Plugin wpDiscuz 7.0.4 Exploit, Arbitrary File Upload (Unauthenticated)
WEBAPPS Author: nD3sc0n0c1d | 2021/06/07 |
Grav CMS 1.7.10 Exploit, Server-Side Template Injection (SSTI) (Authenticated)
WEBAPPS Author: no | 2021/06/07 |
Rocket.Chat 3.12.1 Exploit, NoSQL Injection to RCE (Unauthenticated)
WEBAPPS Author: no | 2021/06/07 |
IcoFX 2.6 Exploit, '.ico' Buffer Overflow SEH + DEP Bypass using JOP
LOCAL Author: Austin Babcock | 2021/06/07 |
WordPress Plugin Smart Slider-3 3.5.0.8 Exploit, 'name' Stored Cross-Site Scripting (XSS)
WEBAPPS Author: Hardik Solanki | 2021/06/07 |
Sticky Notes & Color Widgets 1.4.2 Exploit, Denial of Service (PoC)
DOS Author: Geovanni Ruiz | 2021/06/07 |
OptiLink ONT1GEW GPON 2.1.11_X101 Build 1127.190306 Exploit, Remote Code Execution (Authenticated)
WEBAPPS Author: ecNigm | 2021/06/07 |
My Notes Safe 5.3 Exploit, Denial of Service (PoC)
DOS Author: Geovanni Ruiz | 2021/06/04 |
Macaron Notes great notebook 5.5 Exploit, Denial of Service (PoC)
DOS Author: Geovanni Ruiz | 2021/06/04 |
Color Notes 1.4 Exploit, Denial of Service (PoC)
DOS Author: Geovanni Ruiz | 2021/06/04 |
Gitlab 13.10.2 Exploit, Remote Code Execution (Authenticated)
WEBAPPS Author: no | 2021/06/04 |
Monstra CMS 3.0.4 Exploit, Remote Code Execution (Authenticated)
WEBAPPS Author: Ron Jost | 2021/06/04 |
Inkpad Notepad & To do list 4.3.61 Exploit, Denial of Service (PoC)
DOS Author: Brian Rodriguez | 2021/06/04 |
4Images 1.8 Exploit, 'redirect' Reflected XSS
WEBAPPS Author: Piyush Patil | 2021/06/03 |
Gitlab 13.9.3 Exploit, Remote Code Execution (Authenticated)
WEBAPPS Author: no | 2021/06/03 |
FUDForum 3.1.0 Exploit, 'author' Reflected XSS
WEBAPPS Author: Piyush Patil | 2021/06/03 |
FUDForum 3.1.0 Exploit, 'srch' Reflected XSS
WEBAPPS Author: Piyush Patil | 2021/06/03 |
Blacknote 2.2.1 Exploit, Denial of Service (PoC)
DOS Author: Brian Rodriguez | 2021/06/03 |
Notepad notes 2.6.7 Exploit, Denial of Service (PoC)
DOS Author: Brian Rodriguez | 2021/06/03 |
ColorNote 4.1.9 Exploit, Denial of Service (PoC)
DOS Author: Brian Rodriguez | 2021/06/03 |
BasicNote 1.1.9 Exploit, Denial of Service (PoC)
DOS Author: Brian Rodriguez | 2021/06/03 |
CHIYU IoT Devices Exploit, Denial of Service (DoS)
WEBAPPS Author: irpedrotavare | 2021/06/03 |
CHIYU IoT Devices Exploit, 'Telnet' Authentication Bypass
REMOTE Author: irpedrotavare | 2021/06/03 |
Seo Panel 4.8.0 Exploit, 'from_time' Reflected XSS
WEBAPPS Author: Piyush Patil | 2021/06/03 |
PHP 8.1.0-dev Exploit, 'User-Agentt' Remote Code Execution
WEBAPPS Author: last10 | 2021/06/03 |
Seo Panel 4.8.0 Exploit, 'category' Reflected XSS
WEBAPPS Author: Piyush Patil | 2021/06/02 |
Seo Panel 4.8.0 Exploit, 'search_name' Reflected XSS
WEBAPPS Author: Piyush Patil | 2021/06/02 |
Products.PluggableAuthService 2.6.0 Exploit, Open Redirect
WEBAPPS Author: Piyush Patil | 2021/06/02 |
Intel(R) Audio Service x64 01.00.1080.0 Exploit, 'IntelAudioService' Unquoted Service Path
LOCAL Author: Geovanni Ruiz | 2021/06/02 |
GetSimple CMS 3.3.4 Exploit, Information Disclosure
WEBAPPS Author: Ron Jost | 2021/06/02 |
Apache Airflow 1.10.10 Exploit, 'Example Dag' Remote Code Execution
WEBAPPS Author: Pepe Berba | 2021/06/02 |
Thecus N4800Eco Nas Server Control Panel Exploit, Comand Injection
WEBAPPS Author: Metin Yunus Kandemir | 2021/06/02 |
Veyon 4.4.1 Exploit, 'VeyonService' Unquoted Service Path
LOCAL Author: Víctor García | 2021/06/01 |
Atlassian Jira 8.15.0 Exploit, Information Disclosure (Username Enumeration)
WEBAPPS Author: Mohammed Aloraimi | 2021/06/01 |
CHIYU TCP/IP Converter devices Exploit, CRLF injection
WEBAPPS Author: irpedrotavare | 2021/06/01 |
CHIYU IoT devices Exploit, 'Multiple' Cross-Site Scripting (XSS)
WEBAPPS Author: irpedrotavare | 2021/06/01 |
WordPress Plugin WP Prayer version 1.6.1 Exploit, 'prayer_messages' Stored Cross-Site Scripting (XSS) (Authenticated)
WEBAPPS Author: Bastijn Ouwendijk | 2021/06/01 |
Ubee EVW327 Exploit, 'Enable Remote Access' Cross-Site Request Forgery (CSRF)
WEBAPPS Author: ate | 2021/06/01 |
ProjeQtOr Project Management 9.1.4 Exploit, Remote Code Execution
WEBAPPS Author: Temel Demir | 2021/06/01 |
LogonTracer 1.2.0 Exploit, Remote Code Execution (Unauthenticated)
WEBAPPS Author: 0ldm45 | 2021/06/01 |
DupTerminator 1.4.5639.37199 Exploit, Denial of Service (PoC)
DOS Author: Brian Rodriguez | 2021/06/01 |
Selenium 3.141.59 Exploit, Remote Code Execution (Firefox/geckodriver)
WEBAPPS Author: Jon Stratton | 2021/05/28 |
Trixbox 2.8.0.4 Exploit, 'lang' Path Traversal
WEBAPPS Author: Ron Jost | 2021/05/28 |
Trixbox 2.8.0.4 Exploit, 'lang' Remote Code Execution (Unauthenticated)
WEBAPPS Author: Ron Jost | 2021/05/28 |
WordPress Plugin LifterLMS 4.21.0 Exploit, Stored Cross-Site Scripting (XSS)
WEBAPPS Author: aptain_hoo | 2021/05/28 |
PHPFusion 9.03.50 Exploit, Remote Code Execution
WEBAPPS Author: 0ldm45 | 2021/05/28 |
Postbird 0.8.4 Exploit, Javascript Injection
WEBAPPS Author: Debshubra Chakraborty | 2021/05/27 |
Pluck CMS 4.7.13 Exploit, File Upload Remote Code Execution (Authenticated)
WEBAPPS Author: Ron Jost | 2021/05/26 |
ProFTPd 1.3.5 Exploit, 'mod_copy' Remote Command Execution (2)
REMOTE Author: hellbr3a | 2021/05/26 |
Codiad 2.8.4 Exploit, Remote Code Execution (Authenticated) (3)
WEBAPPS Author: Ron Jost | 2021/05/26 |
RarmaRadio 2.72.8 Exploit, Denial of Service (PoC)
DOS Author: Ismael Nava | 2021/05/26 |
WordPress Plugin Cookie Law Bar 1.2.1 Exploit, 'clb_bar_msg' Stored Cross-Site Scripting (XSS)
WEBAPPS Author: Mesut Cetin | 2021/05/25 |
Gadget Works Online Ordering System 1.0 Exploit, 'Category' Persistent Cross-Site Scripting (XSS)
WEBAPPS Author: Vinay H C | 2021/05/25 |
WordPress Plugin ReDi Restaurant Reservation 21.0307 Exploit, 'Comment' Stored Cross-Site Scripting (XSS)
WEBAPPS Author: Bastijn Ouwendijk | 2021/05/24 |
Codiad 2.8.4 Exploit, Remote Code Execution (Authenticated) (2)
WEBAPPS Author: Ron Jost | 2021/05/24 |
Shopizer 2.16.0 Exploit, 'Multiple' Cross-Site Scripting (XSS)
WEBAPPS Author: Marek Toth | 2021/05/24 |
