Loading
Exploit Database
Latest Exploits
Loading
| ID | Description | Type | Author | Date | |
|---|---|---|---|---|---|
| 47150 | Axway SecureTransport 5 - Unauthenticated XML Injection | webapps | Dominik Penner | 2019/07/22 | Detailed Page |
| 47149 | Comtrend-AR-5310 - Restricted Shell Escape | local | AMRI Amine | 2019/07/22 | Detailed Page |
| 47148 | BACnet Stack 0.8.6 - Denial of Service | dos | morill | 2019/07/22 | Detailed Page |
| 47147 | Docker - Container Escape | local | ominikczarnotato | 2019/07/19 | Detailed Page |
| 47146 | REDCap < 9.1.2 - Cross-Site Scripting | webapps | Alexandre ZANNI | 2019/07/19 | Detailed Page |
| 47145 | Web Ofisi Firma 13 - 'oz' SQL Injection | webapps | Ahmet Ümit BAYRAM | 2019/07/19 | Detailed Page |
| 47144 | Web Ofisi Rent a Car 3 - 'klima' SQL Injection | webapps | Ahmet Ümit BAYRAM | 2019/07/19 | Detailed Page |
| 47143 | Web Ofisi Firma Rehberi 1 - 'il' SQL Injection | webapps | Ahmet Ümit BAYRAM | 2019/07/19 | Detailed Page |
| 47142 | Web Ofisi Emlak 3 - 'emlak_durumu' SQL Injection | webapps | Ahmet Ümit BAYRAM | 2019/07/19 | Detailed Page |
| 47141 | Web Ofisi Emlak 2 - 'ara' SQL Injection | webapps | Ahmet Ümit BAYRAM | 2019/07/19 | Detailed Page |
| 47140 | Web Ofisi Platinum E-Ticaret 5 - 'q' SQL Injection | webapps | Ahmet Ümit BAYRAM | 2019/07/19 | Detailed Page |
| 47139 | Web Ofisi E-Ticaret 3 - 'a' SQL Injection | webapps | Ahmet Ümit BAYRAM | 2019/07/19 | Detailed Page |
| 47138 | fuelCMS 1.4.1 - Remote Code Execution | webapps | xd0ff | 2019/07/19 | Detailed Page |
| 47137 | MAPLE Computer WBT SNMP Administrator 2.0.195.15 - Remote Buffer Overflow (EggHunter) | remote | asaga9 | 2019/07/19 | Detailed Page |
| 47136 | WordPress Plugin OneSignal 1.17.5 - 'subdomain' Persistent Cross-Site Scripting | webapps | iquidWor | 2019/07/18 | Detailed Page |
| 47135 | Microsoft Windows 10 1903/1809 - RPCSS Activation Kernel Security Callback Privilege Escalation | local | Google Security Research | 2019/07/18 | Detailed Page |
| 47134 | Windows - NtUserSetWindowFNID Win32k User Callback Privilege Escalation (Metasploit) | local | etasploi | 2019/07/17 | Detailed Page |
| 47133 | Linux - Broken Permission and Object Lifetime Handling for PTRACE_TRACEME | local | Google Security Research | 2019/07/17 | Detailed Page |
| 47132 | Oracle Siebel CRM 19.0 - Persistent Cross-Site Scripting | webapps | Sarath Nair | 2019/07/17 | Detailed Page |
| 47131 | WinMPG iPod Convert 3.0 - 'Register' Denial of Service | dos | tresse | 2019/07/17 | Detailed Page |
| 47130 | MAPLE Computer WBT SNMP Administrator 2.0.195.15 - Remote Buffer Overflow | remote | yp3rlin | 2019/07/17 | Detailed Page |
| 47129 | PHP Laravel Framework 5.5.40 / 5.6.x < 5.6.30 - token Unserialize Remote Command Execution (Metasploit) | remote | etasploi | 2019/07/16 | Detailed Page |
| 47128 | Microsoft Windows 10 < build 17763 - AppXSvc Hard Link Privilege Escalation (Metasploit) | local | etasploi | 2019/07/16 | Detailed Page |
| 47127 | Microsoft Compiled HTML Help / Uncompiled .chm File - XML External Entity Injection | dos | yp3rlin | 2019/07/16 | Detailed Page |
| 47126 | DameWare Remote Support 12.0.0.509 - 'Host' Buffer Overflow (SEH) | local | Xavi Beltran | 2019/07/16 | Detailed Page |
| 47125 | CentOS Control Web Panel 0.9.8.838 - User Enumeration | webapps | Pongtorn Angsuchotmetee_ Nissana Sirijirakal_ Narin Boonwasanarak | 2019/07/16 | Detailed Page |
| 47124 | CentOS Control Web Panel 0.9.8.836 - Privilege Escalation | webapps | Pongtorn Angsuchotmetee_ Nissana Sirijirakal_ Narin Boonwasanarak | 2019/07/16 | Detailed Page |
| 47123 | CentOS Control Web Panel 0.9.8.836 - Authentication Bypass | webapps | Pongtorn Angsuchotmetee | 2019/07/16 | Detailed Page |
| 47122 | R 3.4.4 (Windows 10 x64) - Buffer Overflow SEH (DEP/ASLR Bypass) | local | lackleitu | 2019/07/16 | Detailed Page |
| 47121 | FlightPath < 4.8.2 / < 5.0-rc2 - Local File Inclusion | webapps | Mohammed Althibyani | 2019/07/15 | Detailed Page |
| 47120 | Microsoft Windows Remote Desktop - 'BlueKeep' Denial of Service (Metasploit) | dos | RAMELLA Sebastien | 2019/07/15 | Detailed Page |
| 47119 | Android 7 - 9 VideoPlayer - 'ihevcd_parse_pps' Out-of-Bounds Write | dos | Marcin Kozlowski | 2019/07/15 | Detailed Page |
| 47118 | CISCO Small Business 200 / 300 / 500 Switches - Multiple Vulnerabilities | webapps | amika | 2019/07/15 | Detailed Page |
| 47117 | NETGEAR WiFi Router JWNR2010v5 / R6080 - Authentication Bypass | webapps | adee | 2019/07/15 | Detailed Page |
| 47116 | Streamripper 2.6 - 'Song Pattern' Buffer Overflow | local | Andrey Stoykov | 2019/07/15 | Detailed Page |
| 47115 | Microsoft Windows 10.0.17134.648 - HTTP -> SMB NTLM Reflection Leads to Privilege Elevation | local | Google Security Research | 2019/07/12 | Detailed Page |
| 47114 | Xymon 4.3.25 - useradm Command Execution (Metasploit) | remote | etasploi | 2019/07/12 | Detailed Page |
| 47113 | Microsoft Font Subsetting - DLL Heap Corruption in ComputeFormat4CmapData | dos | Google Security Research | 2019/07/12 | Detailed Page |
| 47112 | Citrix SD-WAN Appliance 10.2.2 - Authentication Bypass / Remote Command Execution | webapps | Chris Lyne | 2019/07/12 | Detailed Page |
| 47111 | Jenkins Dependency Graph View Plugin 0.13 - Persistent Cross-Site Scripting | webapps | Ishaq Mohammed | 2019/07/12 | Detailed Page |
| 47110 | Sahi Pro 8.0.0 - Remote Command Execution | webapps | kku | 2019/07/12 | Detailed Page |
| 47109 | MyT Project Management 1.5.1 - User[username] Persistent Cross-Site Scripting | webapps | Metin Yunus Kandemir | 2019/07/12 | Detailed Page |
| 47107 | Tenda D301 v2 Modem Router - Persistent Cross-Site Scripting | webapps | BDO1 | 2019/07/12 | Detailed Page |
| 47106 | Sitecore 9.0 rev 171002 - Persistent Cross-Site Scripting | webapps | Owais Mehtab | 2019/07/11 | Detailed Page |
| 47105 | SNMPc Enterprise Edition 9/10 - Mapping Filename Buffer Overflow | local | ar | 2019/07/11 | Detailed Page |
| 47103 | Microsoft DirectWrite / AFDKO - Heap-Based Out-of-Bounds Read/Write in OpenType Font Handling Due to Empty ROS Strings | dos | Google Security Research | 2019/07/10 | Detailed Page |
| 47102 | Microsoft DirectWrite / AFDKO - NULL Pointer Dereferences in OpenType Font Handling While Accessing Empty dynarrays | dos | Google Security Research | 2019/07/10 | Detailed Page |
| 47101 | Microsoft DirectWrite / AFDKO - Multiple Bugs in OpenType Font Handling Related to the _post_ Table | dos | Google Security Research | 2019/07/10 | Detailed Page |
| 47100 | Microsoft DirectWrite / AFDKO - Out-of-Bounds Read in OpenType Font Handling Due to Undefined FontName Index | dos | Google Security Research | 2019/07/10 | Detailed Page |
| 47099 | Microsoft DirectWrite / AFDKO - Stack Corruption in OpenType Font Handling While Processing CFF Blend DICT Operator | dos | Google Security Research | 2019/07/10 | Detailed Page |
| 47098 | Microsoft DirectWrite / AFDKO - Heap-Based Buffer Overflow in OpenType Font Handling in readStrings | dos | Google Security Research | 2019/07/10 | Detailed Page |
| 47097 | Microsoft DirectWrite / AFDKO - Heap-Based Out-of-Bounds Read/Write in OpenType Font Handling Due to Unbounded iFD | dos | Google Security Research | 2019/07/10 | Detailed Page |
| 47096 | Microsoft DirectWrite / AFDKO - Heap-Based Buffer Overflow Due to Integer Overflow in readTTCDirectory | dos | Google Security Research | 2019/07/10 | Detailed Page |
| 47095 | Microsoft DirectWrite / AFDKO - Heap-Based Buffer Overflow in OpenType Font Handling in readCharset | dos | Google Security Research | 2019/07/10 | Detailed Page |
| 47094 | Microsoft DirectWrite / AFDKO - Heap-Based Buffer Overflow in OpenType Font Handling in readFDSelect | dos | Google Security Research | 2019/07/10 | Detailed Page |
| 47093 | Microsoft DirectWrite / AFDKO - Heap-Based Buffer Overflow in OpenType Font Handling in readEncoding | dos | Google Security Research | 2019/07/10 | Detailed Page |
| 47092 | Microsoft DirectWrite / AFDKO - Stack Corruption in OpenType Font Handling Due to Incorrect Handling of blendArray | dos | Google Security Research | 2019/07/10 | Detailed Page |
| 47091 | Microsoft DirectWrite / AFDKO - Interpreter Stack Underflow in OpenType Font Handling Due to Missing CHKUFLOW | dos | Google Security Research | 2019/07/10 | Detailed Page |
| 47090 | Microsoft DirectWrite / AFDKO - Use of Uninitialized Memory While Freeing Resources in var_loadavar | dos | Google Security Research | 2019/07/10 | Detailed Page |
| 47089 | Microsoft DirectWrite / AFDKO - Stack-Based Buffer Overflow in do_set_weight_vector_cube for Large nAxes | dos | Google Security Research | 2019/07/10 | Detailed Page |
| 47088 | Microsoft DirectWrite / AFDKO - Stack Corruption in OpenType Font Handling Due to Negative nAxes | dos | Google Security Research | 2019/07/10 | Detailed Page |
| 47087 | Microsoft DirectWrite / AFDKO - Stack Corruption in OpenType Font Handling Due to Negative cubeStackDepth | dos | Google Security Research | 2019/07/10 | Detailed Page |
| 47086 | Microsoft DirectWrite / AFDKO - Stack Corruption in OpenType Font Handling due to Out-of-Bounds cubeStackDepth | dos | Google Security Research | 2019/07/10 | Detailed Page |
| 47085 | Mozilla Spidermonkey - Unboxed Objects Uninitialized Memory Access | dos | Google Security Research | 2019/07/10 | Detailed Page |
| 47084 | Microsoft Windows - Font Subsetting DLL Heap-Based Out-of-Bounds Read in MergeFonts | dos | Google Security Research | 2019/07/10 | Detailed Page |
| 47079 | Firefox 67.0.4 - Denial of Service | dos | Tejas Ajay Naik | 2019/07/09 | Detailed Page |
| 47078 | WordPress Plugin Like Button 1.6.0 - Authentication Bypass | webapps | Benjamin Lim | 2019/07/08 | Detailed Page |
| 47077 | Karenderia Multiple Restaurant System 5.3 - SQL Injection | webapps | Mehmet EMIROGLU | 2019/07/08 | Detailed Page |
| 47080 | Apache mod_ssl < 2.8.7 OpenSSL - 'OpenFuckV2.c' Remote Buffer Overflow (2) | remote | Brian Peters | 2019/07/07 | Detailed Page |
| 47076 | Microsoft Exchange 2003 - base64-MIME Remote Code Execution | remote | Charles Truscott | 2019/07/05 | Detailed Page |
| 47075 | Karenderia Multiple Restaurant System 5.3 - Local File Inclusion | webapps | Mehmet EMIROGLU | 2019/07/05 | Detailed Page |
| 47073 | Apache Tomcat - CGIServlet enableCmdLineArguments Remote Code Execution (Metasploit) | remote | etasploi | 2019/07/03 | Detailed Page |
| 47072 | Serv-U FTP Server - prepareinstallation Privilege Escalation (Metasploit) | local | etasploi | 2019/07/03 | Detailed Page |
| 47071 | Symantec DLP 15.5 MP1 - Cross-Site Scripting | webapps | Chapman Schleiss | 2019/07/03 | Detailed Page |
| 47070 | Mac OS X TimeMachine - 'tmdiagnose' Command Injection Privilege Escalation (Metasploit) | local | etasploi | 2019/07/02 | Detailed Page |
| 47069 | Centreon 19.04 - Remote Code Execution | webapps | ska | 2019/07/02 | Detailed Page |
| 47067 | FaceSentry Access Control System 6.4.8 - Remote SSH Root | remote | iquidWor | 2019/07/01 | Detailed Page |
| 47066 | FaceSentry Access Control System 6.4.8 - Remote Root Exploit | webapps | iquidWor | 2019/07/01 | Detailed Page |
| 47065 | FaceSentry Access Control System 6.4.8 - Cross-Site Request Forgery | webapps | iquidWor | 2019/07/01 | Detailed Page |
| 47064 | FaceSentry Access Control System 6.4.8 - Remote Command Injection | webapps | iquidWor | 2019/07/01 | Detailed Page |
| 47063 | CyberPanel 1.8.4 - Cross-Site Request Forgery | webapps | Bilgi Birikim Sistemleri | 2019/07/01 | Detailed Page |
| 47062 | Sahi pro 8.x - Directory Traversal | webapps | Alexander Bluestein | 2019/07/01 | Detailed Page |
| 47061 | SAP Crystal Reports - Information Disclosure | webapps | Mohamed M.Fouad | 2019/07/01 | Detailed Page |
| 47060 | ZoneMinder 1.32.3 - Cross-Site Scripting | webapps | Joey Lane | 2019/07/01 | Detailed Page |
| 47059 | PowerPanel Business Edition - Cross-Site Scripting | webapps | Joey Lane | 2019/07/01 | Detailed Page |
| 47058 | Varient 1.6.1 - SQL Injection | webapps | Mehmet EMIROGLU | 2019/07/01 | Detailed Page |
| 47047 | Linux Mint 18.3-19.1 - 'yelp' Command Injection | remote | 1ack0w | 2019/07/01 | Detailed Page |
| 47046 | CiuisCRM 1.6 - 'eventType' SQL Injection | webapps | Mehmet EMIROGLU | 2019/07/01 | Detailed Page |
| 47045 | WorkSuite PRM 2.4 - 'password' SQL Injection | webapps | Mehmet EMIROGLU | 2019/07/01 | Detailed Page |
| 47044 | LibreNMS 1.46 - 'addhost' Remote Code Execution | webapps | ska | 2019/06/28 | Detailed Page |
| 47039 | Nagios XI 5.5.6 - Magpie_debug.php Root Remote Code Execution (Metasploit) | remote | etasploi | 2019/06/26 | Detailed Page |
| 47038 | Mozilla Spidermonkey - IonMonkey 'Array.prototype.pop' Type Confusion | dos | Google Security Research | 2019/06/26 | Detailed Page |
| 47037 | WordPress Plugin Live Chat Unlimited 2.8.3 - Cross-Site Scripting | webapps | 0z | 2019/06/25 | Detailed Page |
| 47036 | WordPress Plugin iLive 1.0.4 - Cross-Site Scripting | webapps | 0z | 2019/06/25 | Detailed Page |
| 47035 | BlogEngine.NET 3.3.6/3.3.7 - 'path' Directory Traversal | webapps | Aaron Bishop | 2019/06/25 | Detailed Page |
| 47034 | AZADMIN CMS 1.0 - SQL Injection | webapps | felipe andrian | 2019/06/25 | Detailed Page |
| 47033 | Fortinet FCM-MB40 - Cross-Site Request Forgery / Remote Command Execution | webapps | ORca | 2019/06/25 | Detailed Page |
| 47031 | SAPIDO RB-1732 - Remote Command Execution | remote | 1nm3n.aoto | 2019/06/25 | Detailed Page |
| 47030 | SuperDoctor5 - 'NRPE' Remote Code Execution | remote | Simon Gurney | 2019/06/25 | Detailed Page |
| 47029 | Microsoft Windows Font Cache Service - Insecure Sections Privilege Escalation | dos | Google Security Research | 2019/06/24 | Detailed Page |
Credits and Partners
All rights reserved nPulse.net 2009 - 2019
Powered by: MVCP / ASPF / PHP 7.2 / NGINX / FreeBSD
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |