ExpressVPN VPN Router 1.0 Exploit, Router Login Panel's Integer Overflow
WEBAPPS Author: Jai Kumar Sharma | 2021/04/13 |
Blitar Tourism 1.0 Exploit, Authentication Bypass SQLi
WEBAPPS Author: igeri9 | 2021/04/13 |
Simple Student Information System 1.0 Exploit, SQL Injection (Authentication Bypass)
WEBAPPS Author: aluhI | 2021/04/13 |
vsftpd 2.3.4 Exploit, Backdoor Command Execution
REMOTE Author: erculesR | 2021/04/12 |
PrestaShop 1.7.6.7 Exploit, 'location' Blind Sql Injection
WEBAPPS Author: Vanshal Gaur | 2021/04/09 |
Linux Kernel 5.4 Exploit, 'BleedingTooth' Bluetooth Zero-Click Remote Code Execution
REMOTE Author: Google Security Research | 2021/04/08 |
Composr 10.0.36 Exploit, Remote Code Execution
WEBAPPS Author: Orion Hridoy | 2021/04/08 |
DMA Radius Manager 4.4.0 Exploit, Cross-Site Request Forgery (CSRF)
WEBAPPS Author: Issac Briones | 2021/04/08 |
CMSimple 5.2 Exploit, 'External' Stored XSS
WEBAPPS Author: Quadron Research Lab | 2021/04/08 |
Dell OpenManage Server Administrator 9.4.0.0 Exploit, Arbitrary File Read
WEBAPPS Author: Rhino Security Labs | 2021/04/07 |
Composr CMS 10.0.36 Exploit, Cross Site Scripting
WEBAPPS Author: Orion Hridoy | 2021/04/07 |
Atlassian Jira Service Desk 4.9.1 Exploit, Unrestricted File Upload to XSS
WEBAPPS Author: aptain_hoo | 2021/04/07 |
Mini Mouse 9.3.0 Exploit, Local File inclusion / Path Traversal
WEBAPPS Author: os | 2021/04/06 |
Google Chrome 81.0.4044 V8 Exploit, Remote Code Execution
REMOTE Author: Tobias Marcotto | 2021/04/06 |
Google Chrome 86.0.4240 V8 Exploit, Remote Code Execution
REMOTE Author: Tobias Marcotto | 2021/04/06 |
Mini Mouse 9.2.0 Exploit, Path Traversal
WEBAPPS Author: os | 2021/04/05 |
Mini Mouse 9.2.0 Exploit, Remote Code Execution
WEBAPPS Author: os | 2021/04/05 |
OpenEMR 4.1.0 Exploit, 'u' SQL Injection
WEBAPPS Author: Michael Ikua | 2021/04/05 |
Basic Shopping Cart 1.0 Exploit, Authentication Bypass
WEBAPPS Author: Viren Saroha | 2021/04/05 |
Simple Food Website 1.0 Exploit, Authentication Bypass
WEBAPPS Author: Viren Saroha | 2021/04/05 |
Rockstar Service Exploit, Insecure File Permissions
LOCAL Author: George Tsimpidas | 2021/04/05 |
F5 BIG-IP 16.0.x Exploit, iControl REST Remote Code Execution (Unauthenticated)
WEBAPPS Author: l1e | 2021/04/02 |
ZBL EPON ONU Broadband Router 1.0 Exploit, Remote Privilege Escalation
WEBAPPS Author: iquidWor | 2021/04/02 |
phpPgAdmin 7.13.0 Exploit, COPY FROM PROGRAM Command Execution (Authenticated)
WEBAPPS Author: Valerio Severini | 2021/04/01 |
ScadaBR 1.0 Exploit, Arbitrary File Upload (Authenticated) (2)
WEBAPPS Author: Fellipe Oliveira | 2021/04/01 |
ScadaBR 1.0 Exploit, Arbitrary File Upload (Authenticated) (1)
WEBAPPS Author: Fellipe Oliveira | 2021/04/01 |
Latrix 0.6.0 Exploit, 'txtaccesscode' SQL Injection
WEBAPPS Author: ptstick | 2021/04/01 |
CourseMS 2.1 Exploit, 'name' Stored XSS
WEBAPPS Author: ptstick | 2021/03/31 |
DD-WRT 45723 Exploit, UPNP Buffer Overflow (PoC)
DOS Author: nesde | 2021/03/31 |
Zabbix 3.4.7 Exploit, Stored XSS
WEBAPPS Author: Radmil Gazizov | 2021/03/31 |
Openlitespeed 1.7.9 Exploit, 'Notes' Stored Cross-Site Scripting
WEBAPPS Author: mO | 2021/03/30 |
GetSimple CMS 3.3.16 Exploit, Reflected XSS to RCE
WEBAPPS Author: ok | 2021/03/30 |
SyncBreeze 10.1.16 Exploit, XML Parsing Stack-based Buffer Overflow
WEBAPPS Author: Filipe Oliveira | 2021/03/29 |
Novel Boutique House-plus 3.5.1 Exploit, Arbitrary File Download
WEBAPPS Author: uyiqian | 2021/03/29 |
Budget Management System 1.0 Exploit, 'Budget title' Stored XSS
WEBAPPS Author: Jitendra Kumar Tripathi | 2021/03/29 |
Equipment Inventory System 1.0 Exploit, 'multiple' Stored XSS
WEBAPPS Author: Jitendra Kumar Tripathi | 2021/03/29 |
Concrete5 8.5.4 Exploit, 'name' Stored XSS
WEBAPPS Author: Quadron Research Lab | 2021/03/29 |
TP-Link Devices Exploit, 'setDefaultHostname' Stored Cross-site Scripting (Unauthenticated)
WEBAPPS Author: Smriti Gaba | 2021/03/29 |
vsftpd 3.0.3 Exploit, Remote Denial of Service
REMOTE Author: ynmap | 2021/03/29 |
WordPress Plugin WP Super Cache 1.7.1 Exploit, Remote Code Execution (Authenticated)
WEBAPPS Author: 0z | 2021/03/29 |
Moodle 3.10.3 Exploit, 'label' Persistent Cross Site Scripting
WEBAPPS Author: incent66 | 2021/03/26 |
Regis Inventory And Monitoring System 1.0 Exploit, 'Item List' Stored XSS
WEBAPPS Author: George Tsimpidas | 2021/03/26 |
GetSimple CMS Custom JS Plugin 0.1 Exploit, CSRF to Persistent XSS
WEBAPPS Author: Abhishek Joshi | 2021/03/26 |
Dolibarr ERP/CRM 11.0.4 Exploit, File Upload Restrictions Bypass (Authenticated RCE)
WEBAPPS Author: Andrea Gonzalez | 2021/03/25 |
Genexis Platinum-4410 P4410-V2-1.31A Exploit, 'start_addr' Persistent Cross-Site Scripting
WEBAPPS Author: Jithin KS | 2021/03/25 |
Linksys EA7500 2.0.8.194281 Exploit, Cross-Site Scripting
WEBAPPS Author: iningOmert | 2021/03/25 |
Ovidentia 6 Exploit, 'id' SQL injection (Authenticated)
WEBAPPS Author: Felipe Prates Donato | 2021/03/25 |
Ext2Fsd v0.68 Exploit, 'Ext2Srv' Unquoted Service Path
LOCAL Author: Mohammed Alshehri | 2021/03/24 |
Codiad 2.8.4 Exploit, Remote Code Execution (Authenticated)
WEBAPPS Author: angYihan | 2021/03/23 |
Elodea Event Collector 4.9.3 Exploit, 'ElodeaEventCollectorService' Unquoted Service Path
LOCAL Author: Alan Mondragon | 2021/03/23 |
ActivIdentity 8.2 Exploit, 'ac.sharedstore' Unquoted Service Path
LOCAL Author: amAlucar | 2021/03/23 |
ELAN Touchpad 15.2.13.1_X64_WHQL Exploit, 'ETDService' Unquoted Service Path
LOCAL Author: amAlucar | 2021/03/23 |
Hi-Rez Studios 5.1.6.3 Exploit, 'HiPatchService' Unquoted Service Path
LOCAL Author: Ekrem Can Kök | 2021/03/23 |
Hotel And Lodge Management System 1.0 Exploit, 'Customer Details' Stored XSS
WEBAPPS Author: Jitendra Kumar Tripathi | 2021/03/23 |
MyBB 1.8.25 Exploit, Poll Vote Count SQL Injection
WEBAPPS Author: ivertP | 2021/03/23 |
OSAS Traverse Extension 11 Exploit, 'travextensionhostsvc' Unquoted Service Path
LOCAL Author: Johnny Tech | 2021/03/22 |
ProFTPD 1.3.7a Exploit, Remote Denial of Service
DOS Author: ynmap | 2021/03/22 |
MyBB 1.8.25 Exploit, Chained Remote Command Execution
WEBAPPS Author: ivertP | 2021/03/22 |
KZTech/JatonTec/Neotel JT3500V 4G LTE CPE 2.0.1 Exploit, Weak Default WiFi Password Algorithm
REMOTE Author: iquidWor | 2021/03/22 |
MacPaw Encrypto 1.0.1 Exploit, 'Encrypto Service' Unquoted Service Path
LOCAL Author: Ismael Nava | 2021/03/22 |
WordPress Plugin Delightful Downloads Jquery File Tree 1.6.6 Exploit, Path Traversal
WEBAPPS Author: Nicholas Ferreira | 2021/03/22 |
Winpakpro 4.8 Exploit, 'WPCommandFileService' Unquoted Service Path
LOCAL Author: Alan Mondragon | 2021/03/22 |
Winpakpro 4.8 Exploit, 'ScheduleService' Unquoted Service Path
LOCAL Author: Alan Mondragon | 2021/03/22 |
Winpakpro 4.8 Exploit, 'GuardTourService' Unquoted Service Path
LOCAL Author: Alan Mondragon | 2021/03/22 |
SAPSetup Automatic Workstation Update Service 750 Exploit, 'NWSAPAutoWorkstationUpdateSvc' Unquoted Service Path
LOCAL Author: Alan Mondragon | 2021/03/22 |
Online News Portal 1.0 Exploit, 'Multiple' Stored Cross-Site Scripting
WEBAPPS Author: Richard Jones | 2021/03/19 |
Online News Portal 1.0 Exploit, 'name' SQL Injection
WEBAPPS Author: Richard Jones | 2021/03/19 |
KZTech/JatonTec/Neotel JT3500V 4G LTE CPE 2.0.1 Exploit, Config Download (Unauthenticated)
WEBAPPS Author: iquidWor | 2021/03/19 |
KZTech/JatonTec/Neotel JT3500V 4G LTE CPE 2.0.1 Exploit, Device Reboot (Unauthenticated)
DOS Author: iquidWor | 2021/03/19 |
KZTech/JatonTec/Neotel JT3500V 4G LTE CPE 2.0.1 Exploit, Factory Reset (Unauthenticated)
WEBAPPS Author: iquidWor | 2021/03/19 |
KZTech/JatonTec/Neotel JT3500V 4G LTE CPE 2.0.1 Exploit, Remote Code Execution
WEBAPPS Author: iquidWor | 2021/03/19 |
KZTech/JatonTec/Neotel JT3500V 4G LTE CPE 2.0.1 Exploit, Hard coded Credentials Shell Access
REMOTE Author: iquidWor | 2021/03/19 |
KZTech/JatonTec/Neotel JT3500V 4G LTE CPE 2.0.1 Exploit, Authentication Bypass
WEBAPPS Author: iquidWor | 2021/03/19 |
KZTech/JatonTec/Neotel JT3500V 4G LTE CPE 2.0.1 Exploit, Command Injection (Authenticated)
WEBAPPS Author: iquidWor | 2021/03/19 |
SOYAL 701 Client 9.0.1 Exploit, Insecure Permissions
LOCAL Author: iquidWor | 2021/03/19 |
SOYAL 701 Server 9.0.1 Exploit, Insecure Permissions
LOCAL Author: iquidWor | 2021/03/19 |
SOYAL Biometric Access Control System 5.0 Exploit, 'Change Admin Password' CSRF
WEBAPPS Author: iquidWor | 2021/03/19 |
SOYAL Biometric Access Control System 5.0 Exploit, Master Code Disclosure
WEBAPPS Author: iquidWor | 2021/03/19 |
VestaCP 0.9.8 Exploit, 'v_sftp_licence' Command Injection
WEBAPPS Author: numan türle | 2021/03/19 |
Eclipse Mosquitto MQTT broker 2.0.9 Exploit, 'mosquitto' Unquoted Service Path
LOCAL Author: Riadh Bouchahoua | 2021/03/19 |
Profiling System for Human Resource Management 1.0 Exploit, Remote Code Execution (Unauthenticated)
WEBAPPS Author: Christian Vierschilling | 2021/03/19 |
BRAdmin Professional 3.75 Exploit, 'BRA_Scheduler' Unquoted Service Path
LOCAL Author: Metin Yunus Kandemir | 2021/03/19 |
Boonex Dolphin 7.4.2 Exploit, 'width' Stored XSS
WEBAPPS Author: Piyush Patil | 2021/03/19 |
LiveZilla Server 8.0.1.0 Exploit, 'Accept-Language' Reflected XSS
WEBAPPS Author: Clément Cruchet | 2021/03/19 |
Plone CMS 5.2.3 Exploit, 'Title' Stored XSS
WEBAPPS Author: Piyush Patil | 2021/03/19 |
Hestia Control Panel 1.3.2 Exploit, Arbitrary File Write
WEBAPPS Author: numan türle | 2021/03/18 |
SEO Panel 4.8.0 Exploit, 'order_col' Blind SQL Injection
WEBAPPS Author: Piyush Patil | 2021/03/18 |
rConfig 3.9.6 Exploit, Arbitrary File Upload to Remote Code Execution (Authenticated)
WEBAPPS Author: Murat ŞEKER | 2021/03/18 |
VestaCP 0.9.8 Exploit, 'v_interface' Add IP Stored XSS
WEBAPPS Author: numan türle | 2021/03/18 |
VFS for Git 1.0.21014.1 Exploit, 'GVFS.Service' Unquoted Service Path
LOCAL Author: Mohammed Alshehri | 2021/03/18 |
FastStone Image Viewer 7.5 Exploit, .cur BITMAPINFOHEADER 'BitCount' Stack Based Buffer Overflow (ASLR & DEP Bypass)
LOCAL Author: Paolo Stagno | 2021/03/17 |
VestaCP 0.9.8 Exploit, File Upload CSRF
WEBAPPS Author: Fady Mohammed Osman | 2021/03/17 |
WoWonder Social Network Platform 3.1 Exploit, 'event_id' SQL Injection
WEBAPPS Author: ecurityforeveryone.co | 2021/03/17 |
GeoGebra 3D Calculator 5.0.511.0 Exploit, Denial of Service (PoC)
LOCAL Author: Brian Rodriguez | 2021/03/16 |
GeoGebra CAS Calculator 6.0.631.0 Exploit, Denial of Service (PoC)
LOCAL Author: Brian Rodriguez | 2021/03/16 |
GeoGebra Classic 5.0.631.0-d Exploit, Denial of Service (PoC)
LOCAL Author: Brian Rodriguez | 2021/03/16 |
GeoGebra Graphing Calculator 6.0.631.0 Exploit, Denial Of Service (PoC)
LOCAL Author: Brian Rodriguez | 2021/03/16 |
Alphaware E-Commerce System 1.0 Exploit, Unauthenicated Remote Code Execution (File Upload + SQL injection)
WEBAPPS Author: Christian Vierschilling | 2021/03/16 |
SonLogger 4.2.3.3 Exploit, Unauthenticated Arbitrary File Upload (Metasploit)
WEBAPPS Author: Berkan Er | 2021/03/15 |
Sonlogger 4.2.3.3 Exploit, SuperAdmin Account Creation / Information Disclosure
WEBAPPS Author: Berkan Er | 2021/03/15 |
