Loading
Exploit Database
Latest Exploits
Loading
| ID | Description | Type | Author | Date | |
|---|---|---|---|---|---|
| 46512 | phpBB 3.2.3 - Remote Code Execution | webapps | llyshk | 2019/12/12 | Detailed Page |
| 46513 | Oracle Weblogic Server - Deserialization Remote Command Execution (Patch Bypass) | remote | llyshk | 2019/10/25 | Detailed Page |
| 46590 | Bootstrapy CMS - Multiple SQL Injection | webapps | Ahmet Ümit BAYRAM | 2019/03/21 | Detailed Page |
| 46589 | Canarytokens 2019-03-01 - Detection Bypass | dos | Gionathan Reale | 2019/03/21 | Detailed Page |
| 46588 | Placeto CMS Alpha v4 - 'page' SQL Injection | webapps | Abdullah Çelebi | 2019/03/21 | Detailed Page |
| 46587 | uHotelBooking System - 'system_page' SQL Injection | webapps | Ahmet Ümit BAYRAM | 2019/03/21 | Detailed Page |
| 46586 | The Company Business Website CMS - Multiple Vulnerabilities | webapps | Ahmet Ümit BAYRAM | 2019/03/21 | Detailed Page |
| 46585 | Rails 5.2.1 - Arbitrary File Content Disclosure | webapps | otoriousRebe | 2019/03/21 | Detailed Page |
| 46584 | DVD X Player 5.5.3 - '.plf' Buffer Overflow | local | Paolo Perego | 2019/03/21 | Detailed Page |
| 46583 | Netartmedia Vlog System - 'email' SQL Injection | webapps | Ahmet Ümit BAYRAM | 2019/03/21 | Detailed Page |
| 46582 | Netartmedia Deals Portal - 'Email' SQL Injection | webapps | Ahmet Ümit BAYRAM | 2019/03/20 | Detailed Page |
| 46581 | PLC Wireless Router GPN2.4P21-C-CN - Cross-Site Request Forgery | webapps | Kumar Saurav | 2019/03/20 | Detailed Page |
| 46580 | PLC Wireless Router GPN2.4P21-C-CN - Incorrect Access Control | webapps | Kumar Saurav | 2019/03/20 | Detailed Page |
| 46579 | 202CMS v10beta - Multiple SQL Injection | webapps | Mehmet EMIROGLU | 2019/03/20 | Detailed Page |
| 46578 | NetShareWatcher 1.5.8.0 - Local SEH Buffer Overflow | local | Peyman Forouzan | 2019/03/20 | Detailed Page |
| 46577 | Netartmedia PHP Business Directory 4.2 - SQL Injection | webapps | Ahmet Ümit BAYRAM | 2019/03/20 | Detailed Page |
| 46576 | Netartmedia PHP Dating Site - SQL Injection | webapps | Ahmet Ümit BAYRAM | 2019/03/20 | Detailed Page |
| 46575 | Netartmedia Jobs Portal 6.1 - SQL Injection | webapps | Ahmet Ümit BAYRAM | 2019/03/20 | Detailed Page |
| 46574 | Netartmedia PHP Real Estate Agency 4.0 - SQL Injection | webapps | Ahmet Ümit BAYRAM | 2019/03/20 | Detailed Page |
| 46573 | Netartmedia PHP Car Dealer - SQL Injection | webapps | Ahmet Ümit BAYRAM | 2019/03/20 | Detailed Page |
| 46572 | Jenkins 2.137 and Pipeline Groovy Plugin 2.61 - ACL Bypass and Metaprogramming RCE (Metasploit) | remote | etasploi | 2019/03/19 | Detailed Page |
| 46571 | Google Chrome < M73 - FileSystemOperationRunner Use-After-Free | dos | Google Security Research | 2019/03/19 | Detailed Page |
| 46570 | Google Chrome < M73 - MidiManagerWin Use-After-Free | dos | Google Security Research | 2019/03/19 | Detailed Page |
| 46569 | Microsoft Edge - Flash click2play Bypass with CObjectElement::FinalCreateObject | dos | Google Security Research | 2019/03/19 | Detailed Page |
| 46568 | Microsoft VBScript - VbsErase Memory Corruption | dos | Google Security Research | 2019/03/19 | Detailed Page |
| 46567 | Microsoft Internet Explorer 11 - VBScript Execution Policy Bypass in MSHTML | dos | Google Security Research | 2019/03/19 | Detailed Page |
| 46566 | Google Chrome < M73 - Data Race in ExtensionsGuestViewMessageFilter | dos | Google Security Research | 2019/03/19 | Detailed Page |
| 46565 | Google Chrome < M73 - Double-Destruction Race in StoragePartitionService | dos | Google Security Research | 2019/03/19 | Detailed Page |
| 46564 | libseccomp < 2.4.0 - Incorrect Compilation of Arithmetic Comparisons | dos | Google Security Research | 2019/03/19 | Detailed Page |
| 46563 | Netartmedia Real Estate Portal 5.0 - SQL Injection | webapps | Ahmet Ümit BAYRAM | 2019/03/19 | Detailed Page |
| 46562 | Netartmedia PHP Mall 4.1 - SQL Injection | webapps | Ahmet Ümit BAYRAM | 2019/03/19 | Detailed Page |
| 46561 | Advanced Host Monitor 11.92 beta - Local Buffer Overflow | local | Peyman Forouzan | 2019/03/19 | Detailed Page |
| 46560 | Netartmedia Event Portal 2.0 - 'Email' SQL Injection | webapps | Ahmet Ümit BAYRAM | 2019/03/19 | Detailed Page |
| 46559 | eNdonesia Portal 8.7 - Multiple Vulnerabilities | webapps | Mehmet EMIROGLU | 2019/03/19 | Detailed Page |
| 46558 | MyBB Upcoming Events Plugin 1.32 - Cross-Site Scripting | webapps | xB | 2019/03/19 | Detailed Page |
| 46557 | Gila CMS 1.9.1 - Cross-Site Scripting | webapps | Ahmet Ümit BAYRAM | 2019/03/19 | Detailed Page |
| 46556 | BMC Patrol Agent - Privilege Escalation Code Execution Execution (Metasploit) | remote | etasploi | 2019/03/18 | Detailed Page |
| 46555 | TheCarProject v2 - Multiple SQL Injection | webapps | Mehmet EMIROGLU | 2019/03/18 | Detailed Page |
| 46554 | WinAVI iPod/3GP/MP4/PSP Converter 4.4.2 - Denial of Service | dos | chille | 2019/03/18 | Detailed Page |
| 46553 | WinMPG Video Convert 9.3.5 - Denial of Service | dos | chille | 2019/03/18 | Detailed Page |
| 46551 | Moodle 3.4.1 - Remote Code Execution | webapps | Darryn Ten | 2019/03/15 | Detailed Page |
| 46550 | Laundry CMS - Multiple Vulnerabilities | webapps | Mehmet EMIROGLU | 2019/03/15 | Detailed Page |
| 46549 | Vembu Storegrid Web Interface 4.4.0 - Multiple Vulnerabilities | webapps | Gionathan Reale | 2019/03/15 | Detailed Page |
| 46548 | ICE HRM 23.0 - Multiple Vulnerabilities | webapps | Mehmet EMIROGLU | 2019/03/15 | Detailed Page |
| 46547 | Mail Carrier 2.5.1 - 'MAIL FROM' Buffer Overflow | remote | Joseph McDonagh | 2019/03/15 | Detailed Page |
| 46546 | CMS Made Simple Showtime2 Module 3.6.2 - Authenticated Arbitrary File Upload | webapps | Daniele Scanu | 2019/03/15 | Detailed Page |
| 46545 | NetData 1.13.0 - HTML Injection | webapps | 4vita | 2019/03/15 | Detailed Page |
| 46544 | Apache UNO / LibreOffice Version: 6.1.2 / OpenOffice 4.1.6 API - Remote Code Execution | remote | ud0wood | 2019/03/14 | Detailed Page |
| 46543 | FTPGetter Standard 5.97.0.177 - Remote Code Execution | remote | 4fz5uck | 2019/03/14 | Detailed Page |
| 46542 | Pegasus CMS 1.0 - 'extra_fields.php' Plugin Remote Code Execution | webapps | 3zk0 | 2019/03/14 | Detailed Page |
| 46541 | Intel Modular Server System 10.18 - Cross-Site Request Forgery (Change Admin Password) | webapps | iquidWor | 2019/03/14 | Detailed Page |
| 46540 | Apache Tika-server < 1.18 - Command Injection | remote | Rhino Security Labs | 2019/03/13 | Detailed Page |
| 46539 | elFinder PHP Connector < 2.1.48 - exiftran Command Injection (Metasploit) | remote | etasploi | 2019/03/13 | Detailed Page |
| 46538 | pfSense 2.4.4-p1 (HAProxy Package 0.59_14) - Persistent Cross-Site Scripting | webapps | Gionathan Reale | 2019/03/13 | Detailed Page |
| 46537 | WordPress Plugin GraceMedia Media Player 1.0 - Local File Inclusion | webapps | Manuel García Cárdenas | 2019/03/13 | Detailed Page |
| 46536 | Microsoft Windows MSHTML Engine - _Edit_ Remote Code Execution | local | Eduardo Braun Prado | 2019/03/13 | Detailed Page |
| 46535 | Core FTP Server FTP / SFTP Server v2 Build 674 - 'SIZE' Directory Traversal | dos | Kevin Randall | 2019/03/13 | Detailed Page |
| 46534 | Core FTP Server FTP / SFTP Server v2 Build 674 - 'MDTM' Directory Traversal | dos | Kevin Randall | 2019/03/13 | Detailed Page |
| 46533 | Microsoft Windows - .reg File / Dialog Box Message Spoofing | dos | yp3rlin | 2019/03/13 | Detailed Page |
| 46532 | Core FTP 2.0 build 653 - 'PBSZ' Denial of Service (PoC) | dos | odorse | 2019/03/12 | Detailed Page |
| 46531 | PilusCart 1.4.1 - Cross-Site Request Forgery (Add Admin) | webapps | Gionathan Reale | 2019/03/12 | Detailed Page |
| 46530 | NetSetMan 4.7.1 - Local Buffer Overflow (SEH Unicode) | local | Devin Casadey | 2019/03/11 | Detailed Page |
| 46529 | Linux Kernel 4.4 (Ubuntu 16.04) - 'snd_timer_user_ccallback()' Kernel Pointer Leak | dos | ally081 | 2019/03/11 | Detailed Page |
| 46528 | Flexpaper PHP Publish Service 2.3.6 - Remote Code Execution | webapps | edtimmyse | 2019/03/11 | Detailed Page |
| 46527 | PRTG Network Monitor 18.2.38 - Authenticated Remote Code Execution | webapps | 4LV | 2019/03/11 | Detailed Page |
| 46526 | OpenKM 6.3.2 < 6.3.7 - Remote Command Execution (Metasploit) | webapps | kku | 2019/03/11 | Detailed Page |
| 46525 | Liferay CE Portal < 7.1.2 ga3 - Remote Command Execution (Metasploit) | webapps | kku | 2019/03/11 | Detailed Page |
| 46522 | Sony Playstation 4 (PS4) < 6.20 - WebKit Code Execution (PoC) | local | pecte | 2019/03/08 | Detailed Page |
| 46520 | DirectAdmin 1.55 - 'CMD_ACCOUNT_ADMIN' Cross-Site Request Forgery | webapps | anhNh | 2019/03/08 | Detailed Page |
| 46518 | McAfee ePO 5.9.1 - Registered Executable Local Access Bypass | webapps | eonjz | 2019/03/08 | Detailed Page |
| 46517 | OrientDB 3.0.17 GA Community Edition - Cross-Site Request Forgery / Cross-Site Scripting | webapps | Ozer Goker | 2019/03/08 | Detailed Page |
| 46510 | Drupal < 8.5.11 / < 8.6.10 - RESTful Web Services unserialize() Remote Command Execution (Metasploit) | remote | etasploi | 2019/03/07 | Detailed Page |
| 46509 | Imperva SecureSphere 13.x - 'PWS' Command Injection (Metasploit) | remote | etasploi | 2019/03/07 | Detailed Page |
| 46508 | FreeBSD - Intel SYSRET Privilege Escalation (Metasploit) | local | etasploi | 2019/03/07 | Detailed Page |
| 46507 | Anyburn 4.3 x86 - 'Copy disc to image file' Buffer Overflow (Unicode) (SEH) | local | odorse | 2019/03/07 | Detailed Page |
| 46506 | QNAP TS-431 QTS < 4.2.2 - Remote Command Execution (Metasploit) | remote | kku | 2019/03/07 | Detailed Page |
| 46505 | Kados R10 GreenBee - Multiple SQL Injection | webapps | Mehmet EMIROGLU | 2019/03/07 | Detailed Page |
| 46504 | Android - getpidcon() Usage in Hardware binder ServiceManager Permits ACL Bypass | dos | Google Security Research | 2019/03/06 | Detailed Page |
| 46503 | Android - binder Use-After-Free via racy Initialization of ->allow_user_free | dos | Google Security Research | 2019/03/06 | Detailed Page |
| 46502 | Linux < 4.20.14 - Virtual Address 0 is Mappable via Privileged write() to /proc/*/mem | dos | Google Security Research | 2019/03/06 | Detailed Page |
| 46500 | OpenDocMan 1.3.4 - 'search.php where' SQL Injection | webapps | Mehmet EMIROGLU | 2019/03/05 | Detailed Page |
| 46498 | Fiberhome AN5506-04-F RP2669 - Persistent Cross-Site Scripting | webapps | auc | 2019/03/04 | Detailed Page |
| 46497 | WordPress Plugin Cerber Security_ Antispam & Malware Scan 8.0 - Multiple Bypass Vulnerabilities | webapps | d0x21so | 2019/03/04 | Detailed Page |
| 46496 | Craft CMS 3.1.12 Pro - Cross-Site Scripting | webapps | Ismail Tasdelen | 2019/03/04 | Detailed Page |
| 46495 | Bolt CMS 3.6.4 - Cross-Site Scripting | webapps | Ismail Tasdelen | 2019/03/04 | Detailed Page |
| 46494 | MarcomCentral FusionPro VDP Creator < 10.0 - Directory Traversal | webapps | v3rrid | 2019/03/04 | Detailed Page |
| 46489 | Raisecom XPON ISCOMHT803G-U_2.0.0_140521_R4.1.47.002 - Remote Code Execution | webapps | ameelNabb | 2019/03/04 | Detailed Page |
| 46488 | zzzphp CMS 1.6.1 - Cross-Site Request Forgery | webapps | Yang Chenglong | 2019/03/04 | Detailed Page |
| 46487 | Splunk Enterprise 7.2.4 - Custom App RCE (Persistent Backdoor - Custom Binary Payload) | webapps | Matteo Malvica | 2019/03/04 | Detailed Page |
| 46486 | Booked Scheduler 2.7.5 - Remote Command Execution (Metasploit) | webapps | kku | 2019/03/04 | Detailed Page |
| 46485 | Microsoft Edge Chakra 1.11.4 - Read Permission via Type Confusion | dos | Fahad Aid Alharbi | 2019/03/04 | Detailed Page |
| 46484 | FileZilla 3.40.0 - 'Local search' / 'Local site' Denial of Service (PoC) | dos | Mr Winst0n | 2019/03/04 | Detailed Page |
| 46483 | OOP CMS BLOG 1.0 - Multiple Cross-Site Request Forgery | webapps | Mr Winst0n | 2019/03/04 | Detailed Page |
| 46482 | OOP CMS BLOG 1.0 - Multiple SQL Injection | webapps | Mr Winst0n | 2019/03/04 | Detailed Page |
| 46481 | elFinder 2.1.47 - Command Injection vulnerability in the PHP connector | webapps | 3rv | 2019/03/04 | Detailed Page |
| 46480 | CMSsite 1.0 - Multiple Cross-Site Request Forgery | webapps | Mr Winst0n | 2019/03/04 | Detailed Page |
| 45496 | STOPzilla AntiMalware 6.5.2.59 - Privilege Escalation (2) | local | Ivan Ivanovic | 2019/03/04 | Detailed Page |
| 46511 | WordPress Core 5.0 - Remote Code Execution | webapps | llyshk | 2019/03/01 | Detailed Page |
| 46479 | Cisco WebEx Meetings < 33.6.6 / < 33.9.1 - Privilege Escalation | local | ecureAut | 2019/03/01 | Detailed Page |
| 46478 | macOS XNU - Copy-on-Write Behavior Bypass via Mount of User-Owned Filesystem Image | dos | Google Security Research | 2019/03/01 | Detailed Page |
Credits and Partners
All rights reserved nPulse.net 2009 - 2019
Powered by: MVCP / ASPF / PHP 7.2 / NGINX / FreeBSD
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |