Microsoft Windows 11 Exploit, Kernel Privilege Escalation
LOCAL Author: Milad karimi | 2025/04/22 |
WordPress Core 6.2 Exploit, Directory Traversal
WEBAPPS Author: Milad karimi | 2025/04/22 |
Firefox ESR 115.11 Exploit, PDF.js Arbitrary JavaScript execution
REMOTE Author: Milad karimi | 2025/04/22 |
code-projects Online Exam Mastering System 1.0 Exploit, Reflected Cross-Site Scripting (XSS)
REMOTE Author: Pruthu Raut | 2025/04/22 |
WonderCMS 3.4.2 Exploit, Remote Code Execution (RCE)
REMOTE Author: Milad karimi | 2025/04/22 |
Microsoft Windows 11 23h2 Exploit, CLFS.sys Elevation of Privilege
LOCAL Author: Milad karimi | 2025/04/22 |
OpenSSH server (sshd) 9.8p1 Exploit, Race Condition
REMOTE Author: Milad karimi | 2025/04/22 |
tar-fs 3.0.0 Exploit, Arbitrary File Write/Overwrite
LOCAL Author: ybersploi | 2025/04/22 |
FoxCMS 1.2.5 Exploit, Remote Code Execution (RCE)
WEBAPPS Author: eryLazyTec | 2025/04/19 |
Drupal 11.x-dev Exploit, Full Path Disclosure
WEBAPPS Author: Milad karimi | 2025/04/19 |
KiviCare Clinic & Patient Management System (EHR) 3.6.4 Exploit, Unauthenticated SQL Injection
WEBAPPS Author: amogo | 2025/04/18 |
UJCMS 9.6.3 Exploit, User Enumeration via IDOR
WEBAPPS Author: Cyd Tseng | 2025/04/18 |
Inventio Lite 4 Exploit, SQL Injection
WEBAPPS Author: ointedse | 2025/04/18 |
Langflow 1.3.0 Exploit, Remote Code Execution (RCE)
REMOTE Author: eryLazyTec | 2025/04/18 |
Apache Commons Text 1.10.0 Exploit, Remote Code Execution
WEBAPPS Author: Arjun Chaudhary | 2025/04/18 |
Tatsu 3.3.11 Exploit, Unauthenticated RCE
WEBAPPS Author: Milad karimi | 2025/04/18 |
Hunk Companion Plugin 1.9.0 Exploit, Unauthenticated Plugin Installation
WEBAPPS Author: Jun Takemura | 2025/04/18 |
AnyDesk 9.0.1 Exploit, Unquoted Service Path
LOCAL Author: Parastou Razi | 2025/04/17 |
compop.ca 3.5.3 Exploit, Arbitrary code Execution
WEBAPPS Author: mlin | 2025/04/17 |
Blood Bank & Donor Management System 2.4 Exploit, CSRF Improper Input Validation
WEBAPPS Author: Kwangyun Keum | 2025/04/17 |
Usermin 2.100 Exploit, Username Enumeration
WEBAPPS Author: jespe | 2025/04/17 |
Angular-Base64-Upload Library 0.1.21 Exploit, Unauthenticated Remote Code Execution (RCE)
WEBAPPS Author: Ravindu Wickramasinghe | 2025/04/17 |
ABB Cylon Aspect 3.08.02 (ethernetUpdate.php) Exploit, Authenticated Path Traversal
HARDWARE Author: iquidWor | 2025/04/17 |
ABB Cylon Aspect 3.08.02 (deployStart.php) Exploit, Unauthenticated Command Execution
HARDWARE Author: iquidWor | 2025/04/17 |
TP-Link VN020 F3v(T) TT_V6.2.1021 Exploit, Denial Of Service (DOS)
REMOTE Author: Mohamed Maatallah | 2025/04/17 |
TP-Link VN020 F3v(T) TT_V6.2.1021 Exploit, Buffer Overflow Memory Corruption
REMOTE Author: Mohamed Maatallah | 2025/04/17 |
WooCommerce Customers Manager 29.4 Exploit, Post-Authenticated SQL Injection
WEBAPPS Author: Ivan Spiridonov | 2025/04/16 |
Smart Manager 8.27.0 Exploit, Post-Authenticated SQL Injection
WEBAPPS Author: Ivan Spiridonov | 2025/04/16 |
Dell EMC iDRAC7/iDRAC8 2.52.52.52 Exploit, Remote Code Execution (RCE)
REMOTE Author: hotubia | 2025/04/16 |
KodExplorer 4.52 Exploit, Open Redirect
WEBAPPS Author: Rahad Chowdhury | 2025/04/16 |
ASUS ASMB8 iKVM 1.14.51 Exploit, Remote Code Execution (RCE)
LOCAL Author: b3rsic | 2025/04/16 |
Car Rental Project 1.0 Exploit, Remote Code Execution
WEBAPPS Author: b3rsic | 2025/04/16 |
Ruckus IoT Controller 1.7.1.0 Exploit, Undocumented Backdoor Account
LOCAL Author: b3rsic | 2025/04/16 |
Ethercreative Logs 3.0.3 Exploit, Path Traversal
WEBAPPS Author: b3rsic | 2025/04/16 |
FLIR AX8 1.46.16 Exploit, Remote Command Injection
WEBAPPS Author: b3rsic | 2025/04/16 |
Fortinet FortiOS_ FortiProxy_ and FortiSwitchManager 7.2.0 Exploit, Authentication bypass
REMOTE Author: b3rsic | 2025/04/16 |
Garage Management System 1.0 (categoriesName) Exploit, Stored XSS
WEBAPPS Author: b3rsic | 2025/04/16 |
WebMethods Integration Server 10.15.0.0000-0092 Exploit, Improper Access on Login Page
REMOTE Author: Rasime Ekici | 2025/04/16 |
ProConf 6.0 Exploit, Insecure Direct Object Reference (IDOR)
WEBAPPS Author: b3rsic | 2025/04/16 |
phpMyFAQ 3.2.10 Exploit, Unintended File Download Triggered by Embedded Frames
WEBAPPS Author: e | 2025/04/16 |
ABB Cylon Aspect 3.08.03 (webServerDeviceLabelUpdate.php) Exploit, File Write DoS
HARDWARE Author: iquidWor | 2025/04/16 |
ABB Cylon Aspect 4.00.00 (factorySaved.php) Exploit, Unauthenticated XSS
HARDWARE Author: iquidWor | 2025/04/16 |
ABB Cylon Aspect 4.00.00 (factorySetSerialNum.php) Exploit, Remote Code Execution
HARDWARE Author: iquidWor | 2025/04/16 |
ABB Cylon Aspect 3.08.02 Exploit, Cross-Site Request Forgery (CSRF)
HARDWARE Author: iquidWor | 2025/04/16 |
Zabbix 7.0.0 Exploit, SQL Injection
WEBAPPS Author: 4nb | 2025/04/16 |
NagVis 1.9.33 Exploit, Arbitrary File Read
WEBAPPS Author: erose | 2025/04/16 |
Teedy 1.11 Exploit, Account Takeover via Stored Cross-Site Scripting (XSS)
WEBAPPS Author: Ayato Shitomi @ Fore-Z co.ltd | 2025/04/16 |
Hugging Face Transformers MobileViTV2 4.41.1 Exploit, Remote Code Execution (RCE)
REMOTE Author: The Kernel Panic | 2025/04/16 |
phpMyFAQ 3.1.7 Exploit, Reflected Cross-Site Scripting (XSS)
WEBAPPS Author: odeSecLa | 2025/04/16 |
Cacti 1.2.26 Exploit, Remote Code Execution (RCE) (Authenticated)
WEBAPPS Author: 3Ex | 2025/04/15 |
ABB Cylon Aspect 3.08.02 Exploit, Cookie User Password Disclosure
HARDWARE Author: iquidWor | 2025/04/15 |
ABB Cylon Aspect 3.08.03 Exploit, Hard-coded Secrets
WEBAPPS Author: iquidWor | 2025/04/15 |
ABB Cylon Aspect 3.08.03 (MapServicesHandler) Exploit, Authenticated Reflected XSS
WEBAPPS Author: iquidWor | 2025/04/15 |
ABB Cylon Aspect 3.07.02 (userManagement.php) Exploit, Weak Password Policy
HARDWARE Author: iquidWor | 2025/04/15 |
ABB Cylon Aspect 3.08.03 (CookieDB) Exploit, SQL Injection
HARDWARE Author: iquidWor | 2025/04/15 |
ABB Cylon Aspect 3.08.02 (webServerUpdate.php) Exploit, Input Validation Config Poisoning
HARDWARE Author: iquidWor | 2025/04/15 |
ABB Cylon Aspect 3.08.02 (escDevicesUpdate.php) Exploit, Denial of Service (DOS)
HARDWARE Author: iquidWor | 2025/04/15 |
ABB Cylon Aspect 3.08.02 (bbmdUpdate.php) Exploit, Remote Code Execution
HARDWARE Author: iquidWor | 2025/04/15 |
ABB Cylon Aspect 3.08.02 (uploadDb.php) Exploit, Remote Code Execution
HARDWARE Author: iquidWor | 2025/04/15 |
ABB Cylon Aspect 3.08.02 (licenseUpload.php) Exploit, Stored Cross-Site Scripting
HARDWARE Author: iquidWor | 2025/04/15 |
ABB Cylon Aspect 3.08.02 (licenseServerUpdate.php) Exploit, Stored Cross-Site Scripting
HARDWARE Author: iquidWor | 2025/04/15 |
Ivanti Connect Secure 22.7R2.5 Exploit, Remote Code Execution (RCE)
REMOTE Author: Abdualhadi khalifa | 2025/04/15 |
IBMi Navigator 7.5 Exploit, Server Side Request Forgery (SSRF)
WEBAPPS Author: yp3rlin | 2025/04/15 |
Plane 0.23.1 Exploit, Server side request forgery (SSRF)
WEBAPPS Author: Saud Alenazi | 2025/04/15 |
IBMi Navigator 7.5 Exploit, HTTP Security Token Bypass
WEBAPPS Author: yp3rlin | 2025/04/15 |
OpenCMS 17.0 Exploit, Stored Cross Site Scripting (XSS)
WEBAPPS Author: Siddhartha Naik | 2025/04/15 |
Adapt Authoring Tool 0.11.3 Exploit, Remote Command Execution (RCE)
WEBAPPS Author: Eui Chul Chung | 2025/04/15 |
Really Simple Security 9.1.1.1 Exploit, Authentication Bypass
WEBAPPS Author: Antonio Francesco Sardella | 2025/04/15 |
Spring Boot common-user-management 0.1 Exploit, Remote Code Execution (RCE)
WEBAPPS Author: 3sc | 2025/04/15 |
Pymatgen 2024.1 Exploit, Remote Code Execution (RCE)
REMOTE Author: Mohammed Idrees Banyamer | 2025/04/15 |
GestioIP 3.5.7 Exploit, Remote Command Execution (RCE)
REMOTE Author: Maximiliano Belino | 2025/04/14 |
GestioIP 3.5.7 Exploit, Cross-Site Scripting (XSS)
REMOTE Author: Maximiliano Belino | 2025/04/14 |
GestioIP 3.5.7 Exploit, Reflected Cross-Site Scripting (Reflected XSS)
REMOTE Author: Maximiliano Belino | 2025/04/14 |
GestioIP 3.5.7 Exploit, Stored Cross-Site Scripting (Stored XSS)
REMOTE Author: Maximiliano Belino | 2025/04/14 |
GestioIP 3.5.7 Exploit, Cross-Site Request Forgery (CSRF)
REMOTE Author: Maximiliano Belino | 2025/04/14 |
SilverStripe 5.3.8 Exploit, Stored Cross Site Scripting (XSS) (Authenticated)
WEBAPPS Author: James Nicoll | 2025/04/14 |
OpenPanel Copy and View functions in the File Manager 0.3.4 Exploit, Directory Traversal
WEBAPPS Author: Korn Chaisuwan_ Charanin Thongudom_ Pongtorn Angsuchotmetee | 2025/04/14 |
OpenPanel 0.3.4 Exploit, OS Command Injection
WEBAPPS Author: Korn Chaisuwan_ Charanin Thongudom_ Pongtorn Angsuchotmetee | 2025/04/14 |
OpenPanel 0.3.4 Exploit, Incorrect Access Control
WEBAPPS Author: Korn Chaisuwan_ Charanin Thongudom_ Pongtorn Angsuchotmetee | 2025/04/14 |
OpenPanel 0.3.4 Exploit, Directory Traversal
WEBAPPS Author: Korn Chaisuwan_ Charanin Thongudom_ Pongtorn Angsuchotmetee | 2025/04/14 |
Pimcore 11.4.2 Exploit, Stored cross site scripting
WEBAPPS Author: aeitse | 2025/04/14 |
Pimcore customer-data-framework 4.2.0 Exploit, SQL injection
WEBAPPS Author: aeitse | 2025/04/14 |
Xinet Elegant 6 Asset Lib Web UI 6.1.655 Exploit, SQL Injection
WEBAPPS Author: yp3rlin | 2025/04/14 |
ZTE ZXHN H168N 3.1 Exploit, Remote Code Execution (RCE) via authentication bypass
HARDWARE Author: tasos meletlidis | 2025/04/14 |
qBittorrent 5.0.1 Exploit, MITM RCE
LOCAL Author: Jordan Sharp | 2025/04/11 |
GeoVision GV-ASManager 6.1.0.0 Exploit, Broken Access Control
WEBAPPS Author: Giorgi Dograshvili | 2025/04/11 |
ABB Cylon FLXeon 9.3.4 Exploit, Remote Code Execution (Authenticated)
HARDWARE Author: iquidWor | 2025/04/11 |
GeoVision GV-ASManager 6.1.1.0 Exploit, CSRF
WEBAPPS Author: Giorgi Dograshvili | 2025/04/11 |
ABB Cylon FLXeon 9.3.4 Exploit, Remote Code Execution (RCE)
HARDWARE Author: iquidWor | 2025/04/11 |
WebFileSys 2.31.0 Exploit, Directory Path Traversal
WEBAPPS Author: Korn Chaisuwan_ Charanin Thongudom_ Pongtorn Angsuchotmetee | 2025/04/11 |
ABB Cylon FLXeon 9.3.4 Exploit, WebSocket Command Spawning
HARDWARE Author: iquidWor | 2025/04/11 |
Netman 204 Exploit, Remote command without authentication
HARDWARE Author: Parsa Rezaie Khiabanloo | 2025/04/11 |
ABB Cylon Aspect 3.08.02 Exploit, PHP Session Fixation
HARDWARE Author: iquidWor | 2025/04/11 |
CMU CERT/CC VINCE 2.0.6 Exploit, Stored XSS
WEBAPPS Author: iquidWor | 2025/04/11 |
ABB Cylon FLXeon 9.3.4 Exploit, Cross-Site Request Forgery
HARDWARE Author: iquidWor | 2025/04/11 |
ABB Cylon FLXeon 9.3.4 Exploit, Default Credentials
HARDWARE Author: iquidWor | 2025/04/11 |
ABB Cylon FLXeon 9.3.4 Exploit, System Logs Information Disclosure
HARDWARE Author: iquidWor | 2025/04/11 |
Nagios Log Server 2024R1.3.1 Exploit, API Key Exposure
WEBAPPS Author: Seth Kraft | 2025/04/11 |
phpIPAM 1.6 Exploit, Reflected Cross Site Scripting (XSS)
WEBAPPS Author: odeSecLa | 2025/04/11 |
MiniCMS 1.1 Exploit, Cross Site Scripting (XSS)
WEBAPPS Author: odeSecLa | 2025/04/11 |
