Loading
Exploit Database
Latest Exploits
Loading
| ID | Description | Type | Author | Date | |
|---|---|---|---|---|---|
| 47388 | College-Management-System 1.2 - Authentication Bypass | webapps | ake | 2019/09/14 | Detailed Page |
| 47387 | Ticket-Booking 1.4 - Authentication Bypass | webapps | ake | 2019/09/14 | Detailed Page |
| 47386 | LimeSurvey 3.17.13 - Cross-Site Scripting | webapps | SEC Consult | 2019/09/13 | Detailed Page |
| 47385 | phpMyAdmin 4.9.0.1 - Cross-Site Request Forgery | webapps | Manuel García Cárdenas | 2019/09/13 | Detailed Page |
| 47384 | Dolibarr ERP-CRM 10.0.1 - 'User-Agent' Cross-Site Scripting | webapps | Metin Yunus Kandemir | 2019/09/13 | Detailed Page |
| 47383 | Folder Lock 7.7.9 - Denial of Service | dos | chille | 2019/09/13 | Detailed Page |
| 47382 | Microsoft DirectWrite - Out-of-Bounds Read in sfac_GetSbitBitmap While Processing TTF Fonts | dos | Google Security Research | 2019/09/12 | Detailed Page |
| 47381 | Microsoft DirectWrite - Invalid Read in SplicePixel While Processing OTF Fonts | dos | Google Security Research | 2019/09/12 | Detailed Page |
| 47380 | eWON Flexy - Authentication Bypass | webapps | hotubia | 2019/09/11 | Detailed Page |
| 47379 | AVCON6 systems management platform - OGNL Remote Command Execution | webapps | Nassim Asrir | 2019/09/11 | Detailed Page |
| 47378 | Windows 10 - UAC Protection Bypass Via Windows Store (WSReset.exe) and Registry (Metasploit) | local | etasploi | 2019/09/10 | Detailed Page |
| 47377 | Windows 10 - UAC Protection Bypass Via Windows Store (WSReset.exe) (Metasploit) | local | etasploi | 2019/09/10 | Detailed Page |
| 47376 | October CMS - Upload Protection Bypass Code Execution (Metasploit) | remote | etasploi | 2019/09/10 | Detailed Page |
| 47375 | LibreNMS - Collectd Command Injection (Metasploit) | remote | etasploi | 2019/09/10 | Detailed Page |
| 47373 | WordPress Plugin Photo Gallery 1.5.34 - Cross-Site Scripting (2) | webapps | T | 2019/09/10 | Detailed Page |
| 47372 | WordPress Plugin Photo Gallery 1.5.34 - Cross-Site Scripting | webapps | T | 2019/09/10 | Detailed Page |
| 47371 | WordPress Plugin Photo Gallery 1.5.34 - SQL Injection | webapps | T | 2019/09/10 | Detailed Page |
| 47370 | Dolibarr ERP-CRM 10.0.1 - SQL Injection | webapps | Metin Yunus Kandemir | 2019/09/09 | Detailed Page |
| 47369 | WordPress Plugin Sell Downloads 1.0.86 - Cross-Site Scripting | webapps | Mr Winst0n | 2019/09/09 | Detailed Page |
| 47368 | Rifatron Intelligent Digital Security System - 'animate.cgi' Stream Disclosure | webapps | iquidWor | 2019/09/09 | Detailed Page |
| 47366 | Online Appointment - SQL Injection | webapps | mohammad zaheri | 2019/09/09 | Detailed Page |
| 47365 | Enigma NMS 65.0.0 - SQL Injection | webapps | ar | 2019/09/09 | Detailed Page |
| 47364 | Enigma NMS 65.0.0 - OS Command Injection | webapps | ar | 2019/09/09 | Detailed Page |
| 47363 | Enigma NMS 65.0.0 - Cross-Site Request Forgery | webapps | ar | 2019/09/09 | Detailed Page |
| 47362 | Dolibarr ERP-CRM 10.0.1 - 'elemid' SQL Injection | webapps | Metin Yunus Kandemir | 2019/09/09 | Detailed Page |
| 47361 | WordPress 5.2.3 - Cross-Site Host Modification | webapps | Todor Donev | 2019/09/09 | Detailed Page |
| 47358 | FusionPBX 4.4.8 - Remote Code Execution | remote | ska | 2019/09/06 | Detailed Page |
| 47356 | Inventory Webapp - 'itemquery' SQL injection | webapps | mohammad zaheri | 2019/09/06 | Detailed Page |
| 47354 | Pulse Secure 8.1R15.1/8.2/8.3/9.0 SSL VPN - Remote Code Execution | remote | Justin Wagner | 2019/09/06 | Detailed Page |
| 47353 | AwindInc SNMP Service - Command Injection (Metasploit) | remote | etasploi | 2019/09/05 | Detailed Page |
| 47351 | DASAN Zhone ZNID GPON 2426A EU - Multiple Cross-Site Scripting | webapps | Adam Ziaja | 2019/09/04 | Detailed Page |
| 47350 | WordPress Plugin Download Manager 2.9.93 - Cross-Site Scripting | webapps | gThuraMoeMyin | 2019/09/04 | Detailed Page |
| 47349 | FileThingie 2.5.7 - Arbitrary File Upload | webapps | ake | 2019/09/03 | Detailed Page |
| 47348 | Cisco RV110W/RV130(W)/RV215W Routers Management Interface - Remote Command Execution (Metasploit) | remote | etasploi | 2019/09/03 | Detailed Page |
| 47347 | Cisco Data Center Network Manager - Unauthenticated Remote Code Execution (Metasploit) | remote | etasploi | 2019/09/03 | Detailed Page |
| 47346 | Cisco UCS Director - default scpuser password (Metasploit) | remote | etasploi | 2019/09/03 | Detailed Page |
| 47345 | ptrace - Sudo Token Privilege Escalation (Metasploit) | local | etasploi | 2019/09/03 | Detailed Page |
| 47344 | ktsuss 1.4 - suid Privilege Escalation (Metasploit) | local | etasploi | 2019/09/03 | Detailed Page |
| 47343 | Craft CMS 2.7.9/3.2.5 - Information Disclosure | webapps | Mohammed Abdul Raheem | 2019/09/02 | Detailed Page |
| 47341 | Kaseya VSA agent 9.5 - Privilege Escalation | local | 2019/09/02 | Detailed Page | |
| 47340 | Alkacon OpenCMS 10.5.x - Local File inclusion | webapps | ets | 2019/09/02 | Detailed Page |
| 47339 | Alkacon OpenCMS 10.5.x - Cross-Site Scripting (2) | webapps | ets | 2019/09/02 | Detailed Page |
| 47338 | Alkacon OpenCMS 10.5.x - Cross-Site Scripting | webapps | ets | 2019/09/02 | Detailed Page |
| 47337 | IntelBras TELEFONE IP TIP200/200 LITE 60.61.75.15 - Arbitrary File Read | remote | Todor Donev | 2019/09/02 | Detailed Page |
| 47335 | Wordpress Plugin Event Tickets 4.10.7.1 - CSV Injection | webapps | T | 2019/09/02 | Detailed Page |
| 47334 | ChaosPro 3.1 - SEH Buffer Overflow | local | Jonathan Crosby | 2019/09/02 | Detailed Page |
| 47333 | ChaosPro 2.1 - SEH Buffer Overflow | local | Jonathan Crosby | 2019/09/02 | Detailed Page |
| 47332 | ChaosPro 2.0 - SEH Buffer Overflow | local | Jonathan Crosby | 2019/09/02 | Detailed Page |
| 47331 | Opencart 3.x - Cross-Site Scripting | webapps | Nipun Somani | 2019/09/02 | Detailed Page |
| 47329 | Cisco Email Security Appliance (IronPort) C160 - 'Host' Header Injection | remote | Todor Donev | 2019/09/02 | Detailed Page |
| 47328 | VX Search Enterprise 10.4.16 - 'User-Agent' Denial of Service | dos | James Chamberlain | 2019/08/30 | Detailed Page |
| 47327 | WordPress Plugin WooCommerce Product Feed 2.2.18 - Cross-Site Scripting | webapps | Damian Ebelties | 2019/08/30 | Detailed Page |
| 47326 | YouPHPTube 7.4 - Remote Code Execution | webapps | Damian Ebelties | 2019/08/30 | Detailed Page |
| 47325 | DomainMod 4.13 - Cross-Site Scripting | webapps | Damian Ebelties | 2019/08/30 | Detailed Page |
| 47324 | Sentrifugo 3.2 - Persistent Cross-Site Scripting | webapps | reosot | 2019/08/30 | Detailed Page |
| 47323 | Sentrifugo 3.2 - File Upload Restriction Bypass | webapps | reosot | 2019/08/30 | Detailed Page |
| 47322 | Asus Precision TouchPad 11.0.0.25 - Denial of Service | dos | Athanasios Tserpelis | 2019/08/30 | Detailed Page |
| 47321 | Canon PRINT 2.5.5 - Information Disclosure | local | x48pira | 2019/08/30 | Detailed Page |
| 47319 | Easy MP3 Downloader 4.7.8.8 - 'Unlock Code' Denial of Service | dos | Mohan Ravichandran_ Snazzy Sanoj | 2019/08/30 | Detailed Page |
| 47318 | SQL Server Password Changer 1.90 - Denial of Service | dos | Velayutham Selvaraj_ Praveen Thiyagarayam | 2019/08/30 | Detailed Page |
| 47316 | Webkit JSC: JIT - Uninitialized Variable Access in ArgumentsEliminationPhase::transform | dos | Google Security Research | 2019/08/29 | Detailed Page |
| 47315 | PilusCart 1.4.1 - Local File Disclosure | webapps | Damian Ebelties | 2019/08/29 | Detailed Page |
| 47314 | Jobberbase 2.0 - 'subscribe' SQL Injection | webapps | Damian Ebelties | 2019/08/29 | Detailed Page |
| 47311 | Jobberbase 2.0 CMS - 'jobs-in' SQL Injection | webapps | Naren Jangra | 2019/08/28 | Detailed Page |
| 47310 | SQLiteManager 1.2.0 / 1.2.4 - Blind SQL Injection | webapps | Rafael Pedrero | 2019/08/28 | Detailed Page |
| 47309 | Outlook Password Recovery 2.10 - Denial of Service | dos | Velayutham Selvaraj_ Praveen Thiyagarayam | 2019/08/28 | Detailed Page |
| 47308 | Tableau - XML External Entity | webapps | Jarad Kopf | 2019/08/27 | Detailed Page |
| 47307 | Exim 4.87 / 4.91 - Local Privilege Escalation (Metasploit) | local | etasploi | 2019/08/26 | Detailed Page |
| 47306 | Windows 10 - SET_REPARSE_POINT_EX Mount Point Security Feature Bypass | local | Google Security Research | 2019/08/26 | Detailed Page |
| 47305 | openITCOCKPIT 3.6.1-2 - Cross-Site Request Forgery | webapps | Julian Rittweger | 2019/08/26 | Detailed Page |
| 47304 | WordPress Plugin UserPro 4.9.32 - Cross-Site Scripting | webapps | Damian Ebelties | 2019/08/26 | Detailed Page |
| 47303 | WordPress Plugin Import Export WordPress Users 1.3.1 - CSV Injection | webapps | Javier Olmedo | 2019/08/26 | Detailed Page |
| 47302 | LSoft ListServ < 16.5-2018a - Cross-Site Scripting | webapps | T | 2019/08/26 | Detailed Page |
| 47301 | Nimble Streamer 3.0.2-2 < 3.5.4-9 - Directory Traversal | webapps | aYaSeVe | 2019/08/23 | Detailed Page |
| 47313 | Cisco UCS Director_ Cisco Integrated Management Controller Supervisor and Cisco UCS Director Express for Big Data - Multiple Vulnerabilities | remote | Pedro Ribeiro | 2019/08/21 | Detailed Page |
| 47298 | LibreOffice < 6.2.6 Macro - Python Code Execution (Metasploit) | remote | oadLo | 2019/08/21 | Detailed Page |
| 47297 | Pulse Secure 8.1R15.1/8.2/8.3/9.0 SSL VPN - Arbitrary File Disclosure (Metasploit) | webapps | Alyssa Herrera | 2019/08/21 | Detailed Page |
| 47320 | QEMU - Denial of Service | remote | ishnudevt | 2019/08/20 | Detailed Page |
| 47295 | WordPress Add Mime Types Plugin 2.2.1 - Cross-Site Request Forgery | webapps | Princy Edward | 2019/08/20 | Detailed Page |
| 47294 | YouPHPTube 7.2 - 'userCreate.json.php' SQL Injection | webapps | Fabian Mosch | 2019/08/19 | Detailed Page |
| 47293 | Webmin 1.920 - Remote Code Execution | webapps | Fernando A. Lagos B | 2019/08/19 | Detailed Page |
| 47289 | Neo Billing 3.5 - Persistent Cross-Site Scripting | webapps | 1x | 2019/08/19 | Detailed Page |
| 47288 | FortiOS 5.6.3 - 5.6.7 / FortiOS 6.0.0 - 6.0.4 - Credentials Disclosure | webapps | Carlos E. Vieira | 2019/08/19 | Detailed Page |
| 47287 | FortiOS 5.6.3 - 5.6.7 / FortiOS 6.0.0 - 6.0.4 - Credentials Disclosure (Metasploit) | webapps | Carlos E. Vieira | 2019/08/19 | Detailed Page |
| 47286 | Kimai 2 - Persistent Cross-Site Scripting | webapps | samaala | 2019/08/19 | Detailed Page |
| 47285 | RAR Password Recovery 1.80 - 'User Name and Registration Code' Denial of Service | dos | chille | 2019/08/19 | Detailed Page |
| 47284 | Web Wiz Forums 12.01 - 'PF' SQL Injection | webapps | 1x | 2019/08/16 | Detailed Page |
| 47283 | Integria IMS 5.0.86 - Arbitrary File Upload | webapps | reg.Pries | 2019/08/16 | Detailed Page |
| 47282 | GetGo Download Manager 6.2.2.3300 - Denial of Service | dos | Malav Vyas | 2019/08/16 | Detailed Page |
| 47281 | Joomla! component com_jsjobs 1.2.6 - Arbitrary File Deletion | webapps | w3rTyT | 2019/08/16 | Detailed Page |
| 47280 | EyesOfNetwork 5.1 - Authenticated Remote Command Execution | webapps | Nassim Asrir | 2019/08/16 | Detailed Page |
| 47279 | Adobe Acrobat Reader DC for Windows - Double Free due to Malformed JP2 Stream | dos | Google Security Research | 2019/08/15 | Detailed Page |
| 47278 | Adobe Acrobat Reader DC for Windows - free() of Uninitialized Pointer due to Malformed JBIG2Globals Stream | dos | Google Security Research | 2019/08/15 | Detailed Page |
| 47277 | Adobe Acrobat Reader DC for Windows - Heap-Based Buffer Overflow due to Malformed JP2 Stream | dos | Google Security Research | 2019/08/15 | Detailed Page |
| 47276 | Adobe Acrobat Reader DC for Windows - Heap-Based Memory Corruption due to Malformed TTF Font | dos | Google Security Research | 2019/08/15 | Detailed Page |
| 47275 | Adobe Acrobat Reader DC for Windows - Heap-Based Buffer Overflow in CoolType.dll | dos | Google Security Research | 2019/08/15 | Detailed Page |
| 47274 | Adobe Acrobat Reader DC for Windows - Heap-Based Buffer Overflow due to Malformed Font Stream | dos | Google Security Research | 2019/08/15 | Detailed Page |
| 47273 | Adobe Acrobat Reader DC for Windows - Static Buffer Overflow due to Malformed Font Stream | dos | Google Security Research | 2019/08/15 | Detailed Page |
| 47272 | Adobe Acrobat Reader DC for Windows - Heap-Based Buffer Overflow While Processing Malformed PDF | dos | Google Security Research | 2019/08/15 | Detailed Page |
| 47271 | Adobe Acrobat Reader DC for Windows - Use-After-Free due to Malformed JP2 Stream | dos | Google Security Research | 2019/08/15 | Detailed Page |
Credits and Partners
All rights reserved nPulse.net 2009 - 2019
Powered by: MVCP / ASPF / PHP 7.2 / NGINX / FreeBSD
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |