EXPLOIT DATABASE

󰠭 EXPLOITS

󰜏 GHDB

󰈤 PAPERS

󰘚 SHELLCODES

󰡦 SEARCH EDB

󰗚 SEARCHSPLOIT MANUAL

󰕒 SUBMISSIONS

󰑴 ONLINE TRAINING
 EXPLOIT DATABASE
Verified Has App 󰈲 Filters 󰈵 Reset All

󰠭 EXPLOITS
Show 120 Search:

󰜏 GHDB Date  Title Type Platform Author

Campcodes Online Matrimonial Website System v3.3 - Code Execution
2023-08-04 WebApps PHP Rajdip Dey Sarkar
via malicious SVG file upload
󰈤 PAPERS

2023-08-04 WordPress adivaha Travel Plugin 2.3 - SQL Injection WebApps PHP CraCkEr

󰘚 SHELLCODES 2023-08-04 Academy LMS 6.0 - Reflected XSS WebApps PHP CraCkEr

2023-08-04 PHPJabbers Rental Property Booking 2.0 - Reflected XSS WebApps PHP CraCkEr

2023-08-04 PHPJabbers Taxi Booking 2.0 - Reflected XSS WebApps PHP CraCkEr

󰡦 SEARCH EDB
2023-08-04 PHPJabbers Cleaning Business 1.0 - Reflected XSS WebApps PHP CraCkEr

2023-08-04 PHPJabbers Night Club Booking 1.0 - Reflected XSS WebApps PHP CraCkEr

󰗚 SEARCHSPLOIT MANUAL
2023-08-04 PHPJabbers Service Booking Script 1.0 - Reflected XSS WebApps PHP CraCkEr

2023-08-04 PHPJabbers Shuttle Booking Software 1.0 - Reflected XSS WebApps PHP CraCkEr
󰕒 SUBMISSIONS
2023-08-04 JLex GuestBook 1.6.4 - Reflected XSS WebApps PHP CraCkEr

Ahmet Ümit
2023-08-04 Ozeki SMS Gateway 10.3.208 - Arbitrary File Read (Unauthenticated) WebApps Multiple
BAYRAM

󰑴 ONLINE TRAINING
2023-08-04 Joomla JLex Review 6.0.1 - Reflected XSS WebApps PHP CraCkEr

2023-08-04 WordPress Plugin Ninja Forms 3.6.25 - Reflected XSS WebApps PHP Mehran Seifalinia

2023-08-04 Adiscon LogAnalyzer v.4.1.13 - Cross Site Scripting WebApps PHP Pedro

Riyan Firmansyah of
2023-08-04 ReyeeOS 1.204.1614 - MITM Remote Code Execution (RCE) Remote Hardware
Seclab

Ahmet Ümit
2023-07-31 General Device Manager 2.5.2.2 - Buffer Overflow (SEH) Local Windows
BAYRAM

2023-07-31 Joomla iProperty Real Estate 4.1.1 - Reflected XSS WebApps PHP CraCkEr

Uvdesk v1.1.3 - File Upload Remote Code Execution (RCE)

2023-07-31 WebApps PHP Daniel Barros
(Authenticated)

2023-07-31 Joomla Solidres 2.13.3 - Reflected XSS WebApps PHP CraCkEr

mRemoteNG v1.77.3.1784-NB - Cleartext Storage of Sensitive

2023-07-28 Local Windows Maximilian Barz
Information in Memory

Vartamtezidis
2023-07-28 copyparty 1.8.2 - Directory Traversal WebApps Python
Theodoros

Vartamtezidis
2023-07-28 copyparty v1.8.6 - Reflected Cross Site Scripting (XSS) WebApps Python
Theodoros

2023-07-28 GreenShot 1.2.10 - Insecure Deserialization Arbitrary Code Execution Local Windows p4r4bellum

2023-07-28 WordPress Plugin AN_Gradebook 5.0.1 - SQLi WebApps PHP Lukas Kinneberg

2023-07-28 Joomla VirtueMart Shopping Cart 4.0.12 - Reflected XSS WebApps PHP CraCkEr

2023-07-28 October CMS v3.4.4 - Stored Cross-Site Scripting (XSS) (Authenticated) WebApps PHP Okan Kurtulus

2023-07-28 Joomla HikaShop 4.7.4 - Reflected XSS WebApps PHP CraCkEr

2023-07-28 mooDating 1.2 - Reflected Cross-site scripting (XSS) WebApps PHP CraCkEr

2023-07-28 Perch v3.2 - Persistent Cross Site Scripting (XSS) WebApps PHP Dinesh Mohanty

2023-07-28 Availability Booking Calendar v1.0 - Multiple Cross-site scripting (XSS) WebApps PHP Andrey Stoykov

2023-07-28 Zomplog 3.9 - Cross-site scripting (XSS) WebApps PHP Mirabbas Ağalarov

2023-07-28 zomplog 3.9 - Remote Code Execution (RCE) WebApps PHP Mirabbas Ağalarov

Keeper Security desktop 16.10.2 & Browser Extension 16.5.4 -

2023-07-28 Local Multiple H4rk3nz0
Password Dumping

2023-07-28 RosarioSIS 10.8.4 - CSV Injection WebApps PHP Ranjeet Jaiswal

2023-07-21 Perch v3.2 - Stored XSS WebApps PHP Mirabbas Ağalarov

2023-07-21 Perch v3.2 - Remote Code Execution (RCE) WebApps PHP Mirabbas Ağalarov

RedTeam Pentesting
2023-07-20 RWS WorldServer 11.7.3 - Session Token Enumeration WebApps Multiple
GmbH

2023-07-20 PaulPrinting CMS - Multiple Cross Site Web Vulnerabilities WebApps PHP Vulnerability-Lab

2023-07-20 Aures Booking & POS Terminal - Local Privilege Escalation WebApps PHP Vulnerability-Lab

2023-07-20 Webile v1.0.1 - Multiple Cross Site Scripting WebApps PHP Vulnerability-Lab

2023-07-20 Dooblou WiFi File Explorer 1.13.3 - Multiple Vulnerabilities WebApps PHP Vulnerability-Lab
 2023-07-20 PaulPrinting CMS - (Search Delivery) Cross Site Scripting WebApps PHP Vulnerability-Lab
EXPLOIT DATABASE
2023-07-20 Active Super Shop CMS v2.5 - HTML Injection Vulnerabilities WebApps PHP Vulnerability-Lab

2023-07-20 Boom CMS v8.0.7 - Cross Site Scripting WebApps PHP Vulnerability-Lab

2023-07-20 RaidenFTPD 2.4.4005 - Buffer Overflow (SEH) Local Windows Andre Nogueira
󰠭 EXPLOITS

2023-07-20 Wifi Soft Unibox Administration 3.0 & 3.1 - SQL Injection WebApps PHP Ansh Jain

Microsoft Office 365 Version 18.2305.1222.0 - Elevation of Privilege +

󰜏 GHDB
2023-07-20
RCE.
Remote Multiple nu11secur1ty

2023-07-20 pfSense v2.7.0 - OS Command Injection WebApps PHP Emir Polat

󰈤 PAPERS

Hikvision Hybrid SAN Ds-a71024 Firmware - Multiple Remote Code

2023-07-19 Remote Hardware Thurein Soe
Execution

󰘚 SHELLCODES
2023-07-19 TP-Link TL-WR740N - Authenticated Directory Transversal WebApps Hardware Anish Feroz

2023-07-19 Blackcat Cms v1.4 - Remote Code Execution (RCE) WebApps PHP Mirabbas Ağalarov

2023-07-19 Blackcat Cms v1.4 - Stored XSS WebApps PHP Mirabbas Ağalarov
󰡦 SEARCH EDB

2023-07-19 ABB FlowX v4.00 - Exposure of Sensitive Information WebApps Hardware Paul Smith

2023-07-19 Statamic 4.7.0 - File-Inclusion WebApps PHP nu11secur1ty

󰗚 SEARCHSPLOIT MANUAL

2023-07-19 CmsMadeSimple v2.2.17 - Stored Cross-Site Scripting (XSS) WebApps PHP Mirabbas Ağalarov

2023-07-19 CmsMadeSimple v2.2.17 - Remote Code Execution (RCE) WebApps PHP Mirabbas Ağalarov
󰕒 SUBMISSIONS

CmsMadeSimple v2.2.17 - session hijacking via Server-Side Template

2023-07-19 WebApps PHP Mirabbas Ağalarov
Injection (SSTI)

Online Piggery Management System v1.0 - unauthenticated file upload

󰑴 ONLINE TRAINING 2023-07-19
vulnerability
WebApps PHP 1337kid

2023-07-19 Backdrop Cms v1.25.1 - Stored Cross-Site Scripting (XSS) WebApps PHP Mirabbas Ağalarov

2023-07-19 Vaidya-Mitra 1.0 - Multiple SQLi WebApps PHP nu11secur1ty

Joomla! com_booking component 2.4.9 - Information Leak (Account

2023-07-19 WebApps PHP qw3rTyTy
enumeration)

2023-07-19 phpfm v1.7.9 - Authentication type juggling WebApps PHP thoughtfault

2023-07-19 PimpMyLog v1.7.14 - Improper access control WebApps PHP thoughtfault

2023-07-15 Pluck v4.7.18 - Remote Code Execution (RCE) WebApps PHP Mirabbas Ağalarov

2023-07-15 WinterCMS < 1.2.3 - Persistent Cross-Site Scripting WebApps PHP abhishek morla

2023-07-15 Admidio v4.2.10 - Remote Code Execution (RCE) WebApps PHP Mirabbas Ağalarov

2023-07-15 Cisco UCS-IMC Supervisor 2.2.0.0 - Authentication Bypass WebApps Hardware Fatih Sencer

2023-07-15 ProjeQtOr Project Management System v10.4.1 - Multiple XSS WebApps PHP Mirabbas Ağalarov

Hubert
2023-07-15 News Portal v4.0 - SQL Injection (Unauthorized) WebApps PHP
Wojciechowski

2023-07-15 Icinga Web 2.10 - Authenticated Remote Code Execution WebApps PHP Dante Corona

2023-07-15 XAMPP 8.2.4 - Unquoted Path Local Windows Andrey Stoykov

2023-07-11 Game Jackal Server v5 - Unquoted Service Path "GJServiceV5" Local Windows Idan Malihi

AVG Anti Spyware 7.5 - Unquoted Service Path "AVG Anti-Spyware

2023-07-11 Local Windows Idan Malihi
Guard"

2023-07-11 Ateme TITAN File 3.9 - SSRF File Enumeration WebApps Hardware LiquidWorm

2023-07-11 BuildaGate5library v5 - Reflected Cross-Site Scripting (XSS) WebApps PHP Idan Malihi

Frappe Framework (ERPNext) 13.4.0 - Remote Code Execution

2023-07-11 WebApps Python Sander Ferdinand
(Authenticated)

MiniTool Partition Wizard ShadowMaker v.12.7 - Unquoted Service Path

2023-07-11 Local Windows Idan Malihi
"MTSchedulerService"

MiniTool Partition Wizard ShadowMaker v.12.7 - Unquoted Service Path

2023-07-11 Local Windows Idan Malihi
"MTAgentService"

2023-07-11 Spring Cloud 3.2.2 - Remote Command Execution (RCE) WebApps Java GatoGamer1155

2023-07-11 Netlify CMS 2.10.192 - Stored Cross-Site Scripting (XSS) WebApps Java tmrswrr

2023-07-07 Windows 10 v21H1 - HTTP Protocol Stack Remote Code Execution Remote Windows nu11secur1ty

Microsoft Outlook Microsoft 365 MSO (Version 2306 Build

2023-07-07 Remote Multiple nu11secur1ty
16.0.16529.20100) 32-bit - Remote Code Execution

2023-07-07 Faculty Evaluation System v1.0 - SQL Injection WebApps PHP Andrey Stoykov

2023-07-06 Piwigo v13.7.0 - Stored Cross-Site Scripting (XSS) (Authenticated) WebApps PHP Okan Kurtulus

2023-07-06 Microsoft Edge 114.0.1823.67 (64-bit) - Information Disclosure Local Multiple nu11secur1ty

Amirhossein
2023-07-06 Lost and Found Information System v1.0 - SQL Injection WebApps PHP
Bahramizadeh

2023-07-06 Gila CMS 1.10.9 - Remote Code Execution (RCE) (Authenticated) WebApps PHP Omer Shaik
 2023-07-04 Beauty Salon Management System v1.0 - SQLi WebApps PHP Fatih Nacar
EXPLOIT DATABASE
2023-07-04 Car Rental Script 1.8 - Stored Cross-site scripting (XSS) WebApps PHP CraCkEr

2023-07-03 WBCE CMS 1.6.1 - Open Redirect & CSRF WebApps PHP Mirabbas Ağalarov

2023-07-03 PodcastGenerator 3.2.9 - Blind SSRF via XML Injection WebApps PHP Mirabbas Ağalarov
󰠭 EXPLOITS

2023-07-03 Alkacon OpenCMS 15.0 - Multiple Cross-Site Scripting (XSS) WebApps Java tmrswrr

2023-07-03 Prestashop 8.0.4 - Cross-Site Scripting (XSS) WebApps PHP Mirabbas Ağalarov
󰜏 GHDB

2023-07-03 Vacation Rental 1.8 - Stored Cross-Site Scripting (XSS) WebApps PHP CraCkEr

󰈤 PAPERS
2023-07-03 TP-Link TL-WR940N V4 - Buffer OverFlow DoS Hardware
Amirhossein
Bahramizadeh

2023-07-03 WP AutoComplete 1.0.4 - Unauthenticated SQLi WebApps PHP matitanium

󰘚 SHELLCODES

2023-07-03 GZ Forum Script 1.8 - Stored Cross-Site Scripting (XSS) WebApps PHP CraCkEr

2023-07-03 Time Slot Booking Calendar 1.8 - Stored Cross-Site Scripting (XSS) WebApps PHP CraCkEr

󰡦 SEARCH EDB 2023-07-03 spip v4.1.10 - Spoofing Admin account WebApps PHP nu11secur1ty

2023-07-03 D-Link DAP-1325 - Broken Access Control WebApps Hardware ieduardogoncalves

󰗚 SEARCHSPLOIT MANUAL
2023-07-03
Microsoft 365 MSO (Version 2305 Build 16.0.16501.20074) 32-bit -
Remote Multiple nu11secur1ty
Remote Code Execution (RCE)

2023-07-03 WebsiteBaker v2.13.3 - Directory Traversal WebApps PHP Mirabbas Ağalarov

󰕒 SUBMISSIONS

2023-07-03 WebsiteBaker v2.13.3 - Stored XSS WebApps PHP Mirabbas Ağalarov

Microsoft 365 MSO (Version 2305 Build 16.0.16501.20074) 64-bit -

2023-07-03 Remote Multiple nu11secur1ty
Remote Code Execution (RCE)
󰑴 ONLINE TRAINING

2023-07-03 POS Codekop v2.0 - Authenticated Remote Code Execution (RCE) WebApps PHP yuyudhn

2023-07-03 FuguHub 8.1 - Remote Code Execution WebApps Multiple redfire359

Amirhossein
2023-07-03 Sales of Cashier Goods v1.0 - Cross Site Scripting (XSS) WebApps PHP
Bahramizadeh

2023-07-03 Rukovoditel 3.4.1 - Multiple Stored XSS WebApps PHP Mirabbas Ağalarov

2023-06-26 Xenforo Version 2.2.13 - Authenticated Stored XSS WebApps PHP Furkan Karaarslan

Amirhossein
2023-06-26 Azure Apache Ambari 2302250400 - Spoofing Remote Multiple
Bahramizadeh

PrestaShop Winbiz Payment module - Improper Limitation of a Amirhossein

2023-06-26 WebApps PHP
Pathname to a Restricted Directory Bahramizadeh

Amirhossein
2023-06-26 Windows 11 22h2 - Kernel Privilege Elevation Local Windows
Bahramizadeh

Amirhossein
2023-06-26 Microsoft SharePoint Enterprise Server 2016 - Spoofing WebApps Multiple
Bahramizadeh

2023-06-23 MCL-Net 4.3.5.8788 - Information Disclosure WebApps Hardware Victor A. Morales

2023-06-23 Bludit < 3.13.1 Backup Plugin - Arbitrary File Download (Authenticated) WebApps PHP Antonio Cuomo

NCH Express Invoice - Clear Text Password Storage and Account

2023-06-23 Local Windows Tejas Pingulkar
Takeover

Smart Office Web 20.28 - Remote Information Disclosure

2023-06-22 WebApps ASPX Tejas Pingulkar
(Unauthenticated)

Microsoft OneNote (Version 2305 Build 16.0.16501.20074) 64-bit -

2023-06-22 Remote Multiple nu11secur1ty
Spoofing

2023-06-21 HiSecOS 04.0.01 - Privilege Escalation WebApps Hardware dreizehnutters

2023-06-20 SPIP v4.2.0 - Remote Code Execution (Unauthenticated) WebApps PHP nuts7

Showing 121 to 240 of 45,819 entries FIRST PREVIOUS 1 2 3 4 5 … 382 NEXT LAST

Databases

Links

Sites

Solutions

© OffSec Services Limited 2024. All rights

󰕄 󰈌 󰮠 󰑫 EXPLOIT DATABASE BY OFFSEC TERMS PRIVACY ABOUT US FAQ COOKIES reserved.