[local] Docker Desktop 4.44.3 - Unauthenticated API Exposure
Docker Desktop 4.44.3 - Unauthenticated API Exposure
1天前Exploit Database
[webapps] FortiWeb Fabric Connector 7.6.x - SQL Injection to Remote Code Execution
FortiWeb Fabric Connector 7.6.x - SQL Injection to Remote Code Execution
1天前Exploit Database
[webapps] aiohttp 3.9.1 - directory traversal PoC
aiohttp 3.9.1 - directory traversal PoC
1天前Exploit Database
[remote] Ingress-NGINX Admission Controller v1.11.1 - FD Injection to RCE
Ingress-NGINX Admission Controller v1.11.1 - FD Injection to RCE
1天前Exploit Database
[webapps] OctoPrint 1.11.2 - File Upload
OctoPrint 1.11.2 - File Upload
1天前Exploit Database
[remote] Redis 8.0.2 - RCE
Redis 8.0.2 - RCE
1天前Exploit Database
[remote] windows 10/11 - NTLM Hash Disclosure Spoofing
windows 10/11 - NTLM Hash Disclosure Spoofing
1天前Exploit Database
[hardware] D-Link DIR-825 Rev.B 2.10 - Stack Buffer Overflow (DoS)
D-Link DIR-825 Rev.B 2.10 - Stack Buffer Overflow (DoS)
低3天前Exploit Database
[webapps] RPi-Jukebox-RFID 2.8.0 - Stored Cross-Site Scripting (XSS)
RPi-Jukebox-RFID 2.8.0 - Stored Cross-Site Scripting (XSS)
3天前Exploit Database
[webapps] Piranha CMS 12.0 - Stored XSS in Text Block
Piranha CMS 12.0 - Stored XSS in Text Block
3天前Exploit Database
[webapps] Siklu EtherHaul Series EH-8010 - Remote Command Execution
Siklu EtherHaul Series EH-8010 - Remote Command Execution
1月17日Exploit Database
[webapps] Siklu EtherHaul Series EH-8010 - Arbitrary File Upload
Siklu EtherHaul Series EH-8010 - Arbitrary File Upload
1月17日Exploit Database
[webapps] RPi-Jukebox-RFID 2.8.0 - Remote Command Execution
RPi-Jukebox-RFID 2.8.0 - Remote Command Execution
1月17日Exploit Database
[remote] Microsoft Windows 10.0.19045 - NTLMv2 Hash Disclosure
Microsoft Windows 10.0.19045 - NTLMv2 Hash Disclosure
8月18日Exploit Database
[webapps] Soosyze CMS 2.0 - Brute Force Login
Soosyze CMS 2.0 - Brute Force Login
8月18日Exploit Database
[webapps] Lantronix Provisioning Manager 7.10.3 - XML External Entity Injection (XXE)
Lantronix Provisioning Manager 7.10.3 - XML External Entity Injection (XXE)
8月18日Exploit Database
[local] GeoVision ASManager Windows Application 6.1.2.0 - Credentials Disclosure
GeoVision ASManager Windows Application 6.1.2.0 - Credentials Disclosure
8月26日Exploit Database
[remote] GeoVision ASManager Windows Application 6.1.2.0 - Remote Code Execution (RCE)
GeoVision ASManager Windows Application 6.1.2.0 - Remote Code Execution (RCE)
8月26日Exploit Database
[remote] HTMLDOC 1.9.13 - Stack Buffer Overflow
HTMLDOC 1.9.13 - Stack Buffer Overflow
低9月16日Exploit Database
[remote] HTTP/2 2.0 - Denial Of Service (DOS)
HTTP/2 2.0 - Denial Of Service (DOS)
9月16日Exploit Database
[local] Mbed TLS 3.6.4 - Use-After-Free
Mbed TLS 3.6.4 - Use-After-Free
9月16日Exploit Database
[webapps] Concrete CMS 9.4.3 - Stored XSS
Concrete CMS 9.4.3 - Stored XSS
9月16日Exploit Database
[webapps] XWiki Platform 15.10.10 - Metasploit Module for Remote Code Execution (RCE)
XWiki Platform 15.10.10 - Metasploit Module for Remote Code Execution (RCE)
9月16日Exploit Database
[webapps] ELEX WooCommerce WordPress Plugin 1.4.3 - SQL Injection
ELEX WooCommerce WordPress Plugin 1.4.3 - SQL Injection
9月16日Exploit Database
[webapps] dotCMS 25.07.02-1 - Authenticated Blind SQL Injection
dotCMS 25.07.02-1 - Authenticated Blind SQL Injection
9月16日Exploit Database
[webapps] Casdoor 2.55.0 - Cross-Site Request Forgery (CSRF)
Casdoor 2.55.0 - Cross-Site Request Forgery (CSRF)
9月16日Exploit Database
[webapps] Tourism Management System 2.0 - Arbitrary Shell Upload
Tourism Management System 2.0 - Arbitrary Shell Upload
9月16日Exploit Database
[remote] ClipBucket 5.5.2 Build #90 - Server-Side Request Forgery (SSRF)
ClipBucket 5.5.2 Build #90 - Server-Side Request Forgery (SSRF)
9月16日Exploit Database
[remote] ClipBucket 5.5.0 - Arbitrary File Upload
ClipBucket 5.5.0 - Arbitrary File Upload
9月16日Exploit Database
[local] Microsoft Windows Server 2025 Hyper-V NT Kernel Integration VSP - Elevation of Privilege
Microsoft Windows Server 2025 Hyper-V NT Kernel Integration VSP - Elevation of Privilege
9月16日Exploit Database
[remote] Ilevia EVE X1/X5 Server 4.7.18.0.eden - Reverse Rootshell
Ilevia EVE X1/X5 Server 4.7.18.0.eden - Reverse Rootshell
9月16日Exploit Database
[webapps] Casdoor 2.95.0 - Cross-Site Request Forgery (CSRF)
Casdoor 2.95.0 - Cross-Site Request Forgery (CSRF)
10月29日Exploit Database
[webapps] Flowise 3.0.4 - Remote Code Execution (RCE)
Flowise 3.0.4 - Remote Code Execution (RCE)
低10月31日Exploit Database
[webapps] phpIPAM 1.6 - Reflected Cross-Site Scripting (XSS)
phpIPAM 1.6 - Reflected Cross-Site Scripting (XSS)
12月2日Exploit Database
[webapps] phpIPAM 1.6 - Reflected-Cross-Site Scripting (XSS)
phpIPAM 1.6 - Reflected-Cross-Site Scripting (XSS)
12月2日Exploit Database
[webapps] Piwigo 13.6.0 - SQL Injection
Piwigo 13.6.0 - SQL Injection
12月2日Exploit Database
[webapps] phpIPAM 1.5.1 - SQL Injection
phpIPAM 1.5.1 - SQL Injection
12月2日Exploit Database
[webapps] phpMyFAQ 3.1.7 - Reflected Cross-Site Scripting (XSS)
phpMyFAQ 3.1.7 - Reflected Cross-Site Scripting (XSS)
12月2日Exploit Database
[webapps] YOURLS 1.8.2 - Cross-Site Request Forgery (CSRF)
YOURLS 1.8.2 - Cross-Site Request Forgery (CSRF)
12月2日Exploit Database
[webapps] openSIS Community Edition 8.0 - SQL Injection
openSIS Community Edition 8.0 - SQL Injection
12月3日Exploit Database
[webapps] PluckCMS 4.7.10 - Unrestricted File Upload
PluckCMS 4.7.10 - Unrestricted File Upload
12月3日Exploit Database
[webapps] RosarioSIS 6.7.2 - Cross-Site Scripting (XSS)
RosarioSIS 6.7.2 - Cross-Site Scripting (XSS)
12月3日Exploit Database
[webapps] RosarioSIS 6.7.2 - Cross Site Scripting (XSS)
RosarioSIS 6.7.2 - Cross Site Scripting (XSS)
12月3日Exploit Database
[webapps] phpMyAdmin 5.0.0 - SQL Injection
phpMyAdmin 5.0.0 - SQL Injection
12月3日Exploit Database
[webapps] OpenRepeater 2.1 - OS Command Injection
OpenRepeater 2.1 - OS Command Injection
12月3日Exploit Database
[webapps] phpIPAM 1.4 - SQL-Injection
phpIPAM 1.4 - SQL-Injection
12月3日Exploit Database
[webapps] MobileDetect 2.8.31 - Cross-Site Scripting (XSS)
MobileDetect 2.8.31 - Cross-Site Scripting (XSS)
12月3日Exploit Database
[webapps] phpMyFaq 2.9.8 - Cross Site Request Forgery (CSRF)
phpMyFaq 2.9.8 - Cross Site Request Forgery (CSRF)
12月3日Exploit Database
[webapps] Django 5.1.13 - SQL Injection
Django 5.1.13 - SQL Injection
12月3日Exploit Database
[webapps] MaNGOSWebV4 4.0.6 - Reflected XSS
MaNGOSWebV4 4.0.6 - Reflected XSS
12月3日Exploit Database