![]() 7 new exploits Real Server 7/8/9 - Remote Root Exploit (Windows & Linux) Real Server 7/8/9 - Remote Root Exploit (Windows / Linux) Apache mod_gzip (with debug_mode) <= 1.2.26.1a - Remote Exploit Apache mod_gzip (with debug_mode) 1.2.26.1a - Remote Exploit BSD & Linux - umount Local Root Exploit BSD & Linux umount - Local Root Exploit BSD & Linux - lpr Command Local Root Exploit BSD & Linux lpr - Local Root Exploit Battlefield 1942 <= 1.6.19 + Vietnam 1.2 - Broadcast Client Crash Battlefield 1942 1.6.19 + Vietnam 1.2 - Broadcast Client Crash PHP 4.3.9 & phpBB 2.x - unserialize() Remote Exploit (compiled) PHP 4.3.9 + phpBB 2.x - unserialize() Remote Exploit (Compiled) Soldier of Fortune 2 <= 1.03 - 'cl_guid' Server Crash Soldier of Fortune 2 1.03 - 'cl_guid' Server Crash Download Center Lite (DCL) <= 1.5 - Remote File Inclusion Download Center Lite (DCL) 1.5 - Remote File Inclusion Linux Mandrake 10.2 - cdrdao Local Root Exploit (unfixed) cdrdao (Mandrake 10.2) - Local Root Exploit MyBulletinBoard (MyBB) <= 1.00 RC4 - SQL Injection Exploit MyBulletinBoard (MyBB) 1.00 RC4 - SQL Injection Exploit e107 <= 0.617 - XSS Remote Cookie Disclosure Exploit e107 0.617 - XSS Remote Cookie Disclosure Exploit MyBulletinBoard (MyBB) <= 1.00 RC4 SQL Injection Exploit MyBulletinBoard (MyBB) 1.00 RC4 SQL Injection Exploit F-Secure Internet Gatekeeper for Linux < 2.15.484 - Local Root Exploit F-Secure Internet Gatekeeper for Linux < 2.15.484 (and Gateway < 2.16) - Local Root Exploit MyBulletinBoard (MyBB) <= 1.03 - Multiple SQL Injection Exploit MyBulletinBoard (MyBB) 1.03 - Multiple SQL Injection Exploit MyBulletinBoard (MyBB) <= 1.03 - (misc.php COMMA) SQL Injection MyBulletinBoard (MyBB) 1.03 - (misc.php COMMA) SQL Injection MyBulletinBoard (MyBB) <= 1.04 - (misc.php COMMA) SQL Injection (2) MyBulletinBoard (MyBB) 1.04 - (misc.php COMMA) SQL Injection (2) Content-Builder (CMS) <= 0.7.2 - Multiple Include Vulnerabilities Content-Builder (CMS) 0.7.2 - Multiple Include Vulnerabilities MyBulletinBoard (MyBB) <= 1.1.3 - (usercp.php) Create Admin Exploit MyBulletinBoard (MyBB) 1.1.3 - (usercp.php) Create Admin Exploit DZCP (deV!L_z Clanportal) <= 1.34 - (id) SQL Injection Exploit DZCP (deV!L_z Clanportal) 1.34 - (id) SQL Injection Exploit Invision Power Board 2.1 <= 2.1.6 - SQL Injection Exploit Invision Power Board 2.1 <= 2.1.6 - SQL Injection Exploit (1) MyBulletinBoard (MyBB) <= 1.1.5 - (CLIENT-IP) SQL Injection Exploit MyBulletinBoard (MyBB) 1.1.5 - (CLIENT-IP) SQL Injection Exploit PHP Live! <= 3.2.1 - (help.php) Remote Inclusion PHP Live! 3.2.1 - (help.php) Remote Inclusion Les Visiteurs (Visitors) <= 2.0 - (config.inc.php) File Include Les Visiteurs (Visitors) 2.0 - (config.inc.php) File Include Electronic Engineering Tool (EE TOOL) <= 0.4.1 File Include Electronic Engineering Tool (EE TOOL) 0.4.1 File Include DZCP (deV!L_z Clanportal) <= 1.3.6 - Arbitrary File Upload DZCP (deV!L_z Clanportal) 1.3.6 - Arbitrary File Upload Tucows Client Code Suite (CSS) <= 1.2.1015 File Include Tucows Client Code Suite (CSS) 1.2.1015 File Include KDE 3.5 - (libkhtml) <= 4.2.0 / Unhandled HTML Parse Exception Exploit KDE 3.5 - (libkhtml) 4.2.0 / Unhandled HTML Parse Exception Exploit DZCP (deV!L_z Clanportal) <= 1.4.5 - Remote File Disclosure DZCP (deV!L_z Clanportal) 1.4.5 - Remote File Disclosure McAfee VirusScan for Mac (Virex) <= 7.7 - Local Root Exploit McAfee VirusScan for Mac (Virex) 7.7 - Local Root Exploit WEBO (Web Organizer) <= 1.0 - (baseDir) Remote File Inclusion WEBO (Web Organizer) 1.0 - (baseDir) Remote File Inclusion Net Portal Dynamic System (NPDS) <= 5.10 - Remote Code Execution Net Portal Dynamic System (NPDS) 5.10 - Remote Code Execution Katalog Plyt Audio (pl) <= 1.0 - SQL Injection Exploit Katalog Plyt Audio (pl) 1.0 - SQL Injection Exploit study planner (studiewijzer) <= 0.15 - Remote File Inclusion study planner (studiewijzer) 0.15 - Remote File Inclusion MyBulletinBoard (MyBB) <= 1.2.3 - Remote Code Execution Exploit MyBulletinBoard (MyBB) 1.2.3 - Remote Code Execution Exploit MyBulletinBoard (MyBB) <= 1.2.2 - (CLIENT-IP) SQL Injection Exploit MyBulletinBoard (MyBB) 1.2.2 - (CLIENT-IP) SQL Injection Exploit MyBulletinBoard (MyBB) <= 1.2.5 calendar.php Blind SQL Injection Exploit MyBulletinBoard (MyBB) 1.2.5 calendar.php Blind SQL Injection Exploit Net Portal Dynamic System (NPDS) <= 5.10 - Remote Code Execution (2) Net Portal Dynamic System (NPDS) 5.10 - Remote Code Execution (2) LAN Management System (LMS) <= 1.9.6 - Remote File Inclusion Exploit LAN Management System (LMS) 1.9.6 - Remote File Inclusion Exploit Ripe Website Manager (CMS) <= 0.8.9 - Remote File Inclusion Ripe Website Manager (CMS) 0.8.9 - Remote File Inclusion Simple PHP Blog (sphpblog) <= 0.5.1 - Multiple Vulnerabilities Simple PHP Blog (sphpblog) 0.5.1 - Multiple Vulnerabilities TaskFreak! <= 0.6.1 - SQL Injection TaskFreak! 0.6.1 - SQL Injection MyBulletinBoard (MyBB) <= 1.2.10 - Remote Code Execution Exploit mybulletinboard (mybb) <= 1.2.10 - Multiple Vulnerabilities MyBulletinBoard (MyBB) 1.2.10 - Remote Code Execution Exploit mybulletinboard (mybb) 1.2.10 - Multiple Vulnerabilities MyBulletinBoard (MyBB) <= 1.2.11 - private.php SQL Injection Exploit MyBulletinBoard (MyBB) 1.2.11 - private.php SQL Injection Exploit PHP Live! <= 3.2.2 - (questid) SQL Injection (1) PHP Live! 3.2.2 - (questid) SQL Injection (1) Web Group Communication Center (WGCC) <= 1.0.3 - SQL Injection Web Group Communication Center (WGCC) 1.0.3 - SQL Injection C6 Messenger ActiveX Remote Download & Execute Exploit C6 Messenger ActiveX - Remote Download & Execute Exploit eLineStudio Site Composer (ESC) <= 2.6 - Multiple Vulnerabilities eLineStudio Site Composer (ESC) 2.6 - Multiple Vulnerabilities Simple PHP Blog (SPHPBlog) <= 0.5.1 Code Execution Exploit Simple PHP Blog (SPHPBlog) 0.5.1 Code Execution Exploit MyBulletinBoard (MyBB) <= 1.2.11 - private.php SQL Injection Exploit (2) MyBulletinBoard (MyBB) 1.2.11 - private.php SQL Injection Exploit (2) DZCP (deV!L_z Clanportal) <= 1.4.9.6 - Blind SQL Injection Exploit DZCP (deV!L_z Clanportal) 1.4.9.6 - Blind SQL Injection Exploit Amaya Web Editor XML and HTML parser Vulnerabilities Amaya Web Editor - XML and HTML parser Vulnerabilities CMS WEBjump! Multiple SQL Injection CMS WEBjump! - Multiple SQL Injection RQms (Rash) <= 1.2.2 - Multiple SQL Injection RQms (Rash) 1.2.2 - Multiple SQL Injection Online Grades & Attendance 3.2.6 Credentials Changer SQL Exploit Online Grades & Attendance 3.2.6 - Credentials Changer SQL Exploit Apple Safari & Quicktime Denial of Service Apple Safari & Quicktime - Denial of Service AudioPLUS 2.00.215 - (.lst & .m3u) Local Buffer Overflow (SEH) AudioPLUS 2.00.215 - (.lst / .m3u) Local Buffer Overflow (SEH) PHP Live! <= 3.2.2 - (questid) SQL Injection (2) PHP Live! 3.2.2 - (questid) SQL Injection (2) TwonkyMedia Server 4.4.17 & <= 5.0.65 - XSS TwonkyMedia Server 4.4.17 / 5.0.65 - XSS Adobe Shockwave 11.5.1.601 Player Multiple Code Execution Adobe Shockwave 11.5.1.601 Player - Multiple Code Execution NAS Uploader 1.0 & 1.5 - Remote File Upload NAS Uploader 1.0 / 1.5 - Remote File Upload PlayMeNow 7.3 & 7.4 - Buffer Overflow (Metasploit) PlayMeNow 7.3 / 7.4 - Buffer Overflow (Metasploit) Nuked KLan 1.7.7 & <= SP4 DoS Nuked KLan 1.7.7 & SP4 DoS Aqua Real 1.0 & 2.0 - Local Crash PoC Aqua Real 1.0 / 2.0 - Local Crash PoC FreePBX 2.5.x < 2.6.0 - Permanent Cross-Site Scripting (XSS) FreePBX 2.5.x < 2.6.0 - Permanent Cross-Site Scripting Ipswitch IMAIL 11.01 reversible encryption + weak ACL Ipswitch IMAIL 11.01 - reversible encryption + weak ACL justVisual 2.0 - (index.php) <= LFI justVisual 2.0 - (index.php) LFI Simple Machines Forum (SMF) <= 1.1.8 - (avatar) Remote PHP File Execute PoC Simple Machines Forum (SMF) 1.1.8 - (avatar) Remote PHP File Execute PoC SafeSHOP 1.5.6 - Cross-Site Scripting & Multiple Cross-Site Request Forgery SafeSHOP 1.5.6 - Cross-Site Scripting / Multiple Cross-Site Request Forgery McAfee Email Gateway (formerly IronMail) - Cross-Site Scripting (XSS) McAfee Email Gateway (formerly IronMail) - Cross-Site Scripting Local Glibc shared library (.so) <= 2.11.1 Exploit Local Glibc shared library (.so) 2.11.1 Exploit Safari 4.0.3 & 4.0.4 - Stack Exhaustion Safari 4.0.3 / 4.0.4 - Stack Exhaustion Apache Axis2 administration console - Cross-Site Scripting (XSS) (Authenticated) Apache Axis2 administration console - (Authenticated) Cross-Site Scripting CubeCart PHP (shipkey parameter) <= 4.3.x - SQL Injection CubeCart PHP (shipkey parameter) 4.3.x - SQL Injection Joomla Health & Fitness Stats Persistent XSS Joomla Health & Fitness Stats - Persistent XSS PunBB 1.3.4 & Pun_PM 1.2.6 - Remote Blind SQL Injection Exploit PunBB 1.3.4 / Pun_PM 1.2.6 - Remote Blind SQL Injection Exploit MyIT CRM - Multiple Cross-Site Scripting (XSS) MyIT CRM - Multiple Cross-Site Scripting Adobe Dreamweaver CS5 <= 11.0 build 4909 - DLL Hijacking Exploit (mfc90loc.dll) Adobe Dreamweaver CS5 11.0 build 4909 - DLL Hijacking Exploit (mfc90loc.dll) Avast! <= 5.0.594 - license files DLL Hijacking Exploit (mfc90loc.dll) Avast! 5.0.594 - (mfc90loc.dll) License Files DLL Hijacking Exploit BlogBird Platform Multiple XSS Vulnerabilities BlogBird Platform - Multiple XSS Vulnerabilities Joomla Component (btg_oglas) HTML & XSS Injection Joomla Component (btg_oglas) - HTML / XSS Injection Lotus CMS Fraise 3.0 - LFI & Remote Code Execution Exploit Lotus CMS Fraise 3.0 - LFI / Remote Code Execution Exploit Novell ZenWorks 10 & 11 - TFTPD Remote Code Execution Novell ZenWorks 10 / 11 - TFTPD Remote Code Execution CA BrightStor ARCserve for Laptops & Desktops LGServer Buffer Overflow (1) CA BrightStor ARCserve for Laptops & Desktops LGServer - Buffer Overflow (1) CA BrightStor ARCserve for Laptops & Desktops LGServer Buffer Overflow (2) CA BrightStor ARCserve for Laptops & Desktops LGServer - Buffer Overflow (2) CA BrightStor ARCserve for Laptops & Desktops LGServer Buffer Overflow (3) CA BrightStor ARCserve for Laptops & Desktops LGServer - Buffer Overflow (3) CA BrightStor ARCserve for Laptops & Desktops LGServer Multiple Commands Buffer Overflow CA BrightStor ARCserve for Laptops & Desktops LGServer - Multiple Commands Buffer Overflow SmarterMail 7.3 & 7.4 - Multiple Vulnerabilities SmarterMail 7.3 / 7.4 - Multiple Vulnerabilities OpenSLP 1.2.1 & < 1647 trunk - Denial of Service Exploit OpenSLP 1.2.1 / < 1647 trunk - Denial of Service Exploit ScadaTEC ModbusTagServer & ScadaPhone (.zip) Buffer Overflow Exploit (0Day) ScadaTEC ModbusTagServer & ScadaPhone - (.zip) Buffer Overflow Exploit (0Day) MARINET CMS (room.php) <= Blind SQL MARINET CMS (room.php) Blind SQL phpMyAdmin 3.3.x & 3.4.x - Local File Inclusion via XXE Injection (Metasploit) phpMyAdmin 3.3.x / 3.4.x - Local File Inclusion via XXE Injection (Metasploit) ContaoCMS (aka TYPOlight) <= 2.11 - CSRF (Delete Admin & Delete Article) ContaoCMS (aka TYPOlight) 2.11 - CSRF (Delete Admin / Delete Article) Ricoh DC Software DL-10 FTP Server (SR10.exe) <= 1.1.0.6 - Remote Buffer Overflow Ricoh DC Software DL-10 FTP Server (SR10.exe) 1.1.0.6 - Remote Buffer Overflow Simple PHP Agenda 2.2.8 - CSRF (Add Admin & Add Event) Simple PHP Agenda 2.2.8 - CSRF (Add Admin / Add Event) SumatraPDF 2.0.1 - (.chm) & (.mobi) Memory Corruption SumatraPDF 2.0.1 - (.chm / .mobi) Memory Corruption Dolibarr ERP & CRM 3 Post-Auth OS Command Injection Dolibarr ERP & CRM OS Command Injection Dolibarr ERP & CRM 3 - Post-Auth OS Command Injection Dolibarr ERP & CRM - OS Command Injection Microsoft Data Access Components (MDAC) <= 2.1_Microsoft IIS 3.0/4.0_Microsoft Index Server 2.0_Microsoft Site Server Commerce Edition 3.0 i386 MDAC RDS (1) Microsoft Data Access Components (MDAC) <= 2.1_Microsoft IIS 3.0/4.0_Microsoft Index Server 2.0_Microsoft Site Server Commerce Edition 3.0 i386 MDAC RDS (2) Microsoft Data Access Components (MDAC) 2.1_Microsoft IIS 3.0/4.0_Microsoft Index Server 2.0_Microsoft Site Server Commerce Edition 3.0 i386 MDAC RDS (1) Microsoft Data Access Components (MDAC) 2.1_Microsoft IIS 3.0/4.0_Microsoft Index Server 2.0_Microsoft Site Server Commerce Edition 3.0 i386 MDAC RDS (2) sflog! <= 1.00 - Multiple Vulnerabilities sflog! 1.00 - Multiple Vulnerabilities Inter7 vpopmail (vchkpw) <= 3.4.11 - Buffer Overflow Inter7 vpopmail (vchkpw) 3.4.11 - Buffer Overflow White Label CMS 1.5 - CSRF & Persistent XSS White Label CMS 1.5 - CSRF / Persistent XSS AIX 3.x/4.x & Windows 95/98/2000/NT 4 & SunOS 5 gethostbyname() - Buffer Overflow AIX 3.x/4.x / Windows 95/98/2000/NT 4 / SunOS 5 gethostbyname() - Buffer Overflow gdb (GNU debugger) <= 7.5.1NULL Pointer Dereference gdb (GNU debugger) 7.5.1NULL Pointer Dereference Adam Webb NukeJokes 1.7/2.0 Module Multiple Parameter XSS Adam Webb NukeJokes 1.7/2.0 - Module Multiple Parameter XSS Polycom HDX Telnet Authorization Bypass (Metasploit) Polycom HDX - Telnet Authorization Bypass (Metasploit) Joomla! <= 3.0.2 - (highlight.php) PHP Object Injection Joomla! 3.0.2 - (highlight.php) PHP Object Injection Joomla! <= 3.0.3 (remember.php) - PHP Object Injection Joomla! 3.0.3 (remember.php) - PHP Object Injection Active Auction House Default.ASP Multiple SQL Injection Active Auction House - Default.ASP Multiple SQL Injection Aenovo Multiple Unspecified Cross-Site Scripting Vulnerabilities Aenovo - Multiple Unspecified Cross-Site Scripting Vulnerabilities Alisveristr E-commerce Login Multiple SQL Injection Alisveristr E-commerce Login - Multiple SQL Injection Cline Communications Multiple SQL Injection Cline Communications - Multiple SQL Injection Andy Mack 35mm Slide Gallery 6.0 popup.php Multiple Parameter XSS Andy Mack 35mm Slide Gallery 6.0 - popup.php Multiple Parameter XSS Apple Safari 6.0.1 for iOS 6.0 and OS X 10.7/8 - Heap Buffer Overflow Apple Safari 6.0.1 for iOS 6.0 / OS X 10.7/8 - Heap Buffer Overflow AIOCP 1.3.x cp_forum_view.php Multiple Parameter XSS AIOCP 1.3.x - cp_forum_view.php Multiple Parameter XSS AIOCP 1.3.x cp_news.php Multiple Parameter SQL Injection AIOCP 1.3.x - cp_news.php Multiple Parameter SQL Injection AIOCP 1.3.x cp_newsletter.php Multiple Parameter SQL Injection AIOCP 1.3.x cp_links.php Multiple Parameter SQL Injection AIOCP 1.3.x - cp_newsletter.php Multiple Parameter SQL Injection AIOCP 1.3.x - cp_links.php Multiple Parameter SQL Injection AIOCP 1.3.x cp_show_ec_products.php Multiple Parameter SQL Injection AIOCP 1.3.x - cp_show_ec_products.php Multiple Parameter SQL Injection 20/20 Applications Data Shed 1.0 listings.asp Multiple Parameter SQL Injection 20/20 Applications Data Shed 1.0 - listings.asp Multiple Parameter SQL Injection ClickContact Default.ASP Multiple SQL Injection ClickContact - Default.ASP Multiple SQL Injection Onpub CMS 1.4 & 1.5 - Multiple SQL Injection Onpub CMS 1.4 / 1.5 - Multiple SQL Injection Apache + PHP < 5.3.12 & < 5.4.2 - cgi-bin Remote Code Execution Exploit Apache + PHP < 5.3.12 / < 5.4.2 - cgi-bin Remote Code Execution Exploit Apache + PHP < 5.3.12 & < 5.4.2 - Remote Code Execution (Multithreaded Scanner) Apache + PHP < 5.3.12 / < 5.4.2 - Remote Code Execution (Multithreaded Scanner) ClientExec 3.0 Index.php Multiple Cross-Site Scripting Vulnerabilities ClientExec 3.0 - Index.php Multiple Cross-Site Scripting Vulnerabilities AbleDesign MyCalendar 2.20.3 Index.php Multiple Cross-Site Scripting Vulnerabilities AbleDesign MyCalendar 2.20.3 - Index.php Multiple Cross-Site Scripting Vulnerabilities AlstraSoft Affiliate Network Pro 8.0 merchants/index.php Multiple Parameter XSS AlstraSoft Affiliate Network Pro 8.0 - merchants/index.php Multiple Parameter XSS File(1) <= 4.13 Command File_PrintF Integer Underflow File(1) 4.13 Command File_PrintF Integer Underflow ACDSee 9.0 Photo Manager Multiple BMP Denial of Service Vulnerabilities ACDSee 9.0 Photo Manager - Multiple BMP Denial of Service Vulnerabilities Ahhp Portal Page.php Multiple Remote File Inclusion Ahhp Portal - Page.php Multiple Remote File Inclusion Apple QuickTime 7.1.5 Information Disclosure and Multiple Code Execution Vulnerabilities Apple QuickTime 7.1.5 - Information Disclosure / Multiple Code Execution Vulnerabilities OpenBase 10.0.x - (Buffer Overflow & Remote Command Execution) Multiple Vulnerabilities OpenBase 10.0.x - Buffer Overflow / Remote Command Execution AIDA Web Frame.HTML Multiple Unauthorized Access Vulnerabilities AIDA Web - Frame.HTML Multiple Unauthorized Access Vulnerabilities Absolute News Manager .NET 5.1 xlaabsolutenm.aspx Multiple Parameter SQL Injection Absolute News Manager .NET 5.1 - xlaabsolutenm.aspx Multiple Parameter SQL Injection Adobe Acrobat and Reader 8.1.1 - Multiple Arbitrary Code Execution and Security Vulnerabilities Adobe Acrobat and Reader 8.1.1 - Multiple Arbitrary Code Execution / Security Vulnerabilities Apple iPhone and iPod Touch < 2.0 - Multiple Remote Vulnerabilities Apple iPhone / Apple iPod Touch < 2.0 - Multiple Remote Vulnerabilities HPSystem Management Homepage (SMH) <= 2.1.12 - 'message.php' Cross-Site Scripting HPSystem Management Homepage (SMH) 2.1.12 - 'message.php' Cross-Site Scripting Apple iPhone 1.1.4/2.0 and iPod 1.1.4/2.0 touch Safari WebKit 'alert()' Function Remote Denial of Service Apple iPhone 1.1.4/2.0 and iPod 1.1.4/2.0 touch Safari WebKit - 'alert()' Function Remote Denial of Service 3Com Wireless 8760 Dual-Radio 11a/b/g PoE Multiple Security Vulnerabilities 3Com Wireless 8760 Dual-Radio 11a/b/g PoE - Multiple Security Vulnerabilities AlmondSoft Multiple Classifieds Products index.php replid Parameter SQL Injection AlmondSoft Multiple Classifieds Products index.php Multiple Parameter XSS AlmondSoft Multiple Classifieds Products - index.php replid Parameter SQL Injection AlmondSoft Multiple Classifieds Products - index.php Multiple Parameter XSS Linux Kernel 2.6.x (2.6.0 <= 2.6.31) - 'pipe.c' Local Privilege Escalation (1) Linux Kernel 2.6.0 <= 2.6.31 - 'pipe.c' Local Privilege Escalation (1) CMS Source Multiple Input Validation Vulnerabilities CMS Source - Multiple Input Validation Vulnerabilities 123 Flash Chat = Multiple Security Vulnerabilities 123 Flash Chat - Multiple Security Vulnerabilities Pimcore 3.0 & 2.3.0 CMS - SQL Injection Pimcore 3.0 / 2.3.0 CMS - SQL Injection Apple Mac OS X 10.6.5 And iOS 4.3.3 Mail Denial of Service Apple Mac OS X 10.6.5 / iOS 4.3.3 Mail - Denial of Service CmyDocument Multiple Cross-Site Scripting Vulnerabilities CmyDocument - Multiple Cross-Site Scripting Vulnerabilities OTRS < 3.1.x & < 3.2.x & < 3.3.x - Stored Cross-Site Scripting (XSS) OTRS < 3.1.x / < 3.2.x / < 3.3.x - Stored Cross-Site Scripting OYO File Manager 1.1 (iOS & Android) - Multiple Vulnerabilities OYO File Manager 1.1 (iOS / Android) - Multiple Vulnerabilities Airdroid iOS_ Android & Win 3.1.3 - Persistent Airdroid iOS / Android / Win 3.1.3 - Persistent SMF (Simple Machine Forum) <= 2.0.10 - Remote Memory Exfiltration Exploit SMF (Simple Machine Forum) 2.0.10 - Remote Memory Exfiltration Exploit Air Drive Plus Multiple Input Vallidation Vulnerabilities Air Drive Plus - Multiple Input Vallidation Vulnerabilities Collabtive Multiple Security Vulnerabilities Collabtive - Multiple Security Vulnerabilities Open Upload 0.4.2 - (Add Admin) CSRF Wireshark 1.12.0 to 1.12.12 - NDS Dissector Denial of Service Wireshark 2.0.0 to 2.0.4 - MMSE_ WAP_ WBXML_ and WSP Dissectors Denial of Service Wireshark 2.0.0 to 2.0.4 - CORBA IDL Dissectors Denial of Service Wireshark 2.0.0 to 2.0.4_ 1.12.0 to 1.12.12 - PacketBB Dissector Denial of Service Wireshark 2.0.0 to 2.0.4_ 1.12.0 to 1.12.12 - WSP Dissector Denial of Service Wireshark 2.0.0 to 2.0.4_ 1.12.0 to 1.12.12 - RLC Dissector Denial of Service |
||
---|---|---|
platforms | ||
files.csv | ||
README.md | ||
searchsploit |
The Exploit-Database Git Repository
This is the official repository of The Exploit Database, a project sponsored by Offensive Security.
The Exploit Database is an archive of public exploits and corresponding vulnerable software, developed for use by penetration testers and vulnerability researchers. Its aim is to serve as the most comprehensive collection of exploits gathered through direct submissions, mailing lists, and other public sources, and present them in a freely-available and easy-to-navigate database. The Exploit Database is a repository for exploits and proof-of-concepts rather than advisories, making it a valuable resource for those who need actionable data right away.
This repository is updated daily with the most recently added submissions. Any additional resources can be found in our binary sploits repository.
Included with this repository is the searchsploit utility, which will allow you to search through the exploits using one or more terms.
root@kali:~# searchsploit -h
Usage: searchsploit [options] term1 [term2] ... [termN]
Example:
searchsploit afd windows local
searchsploit -t oracle windows
=========
Options
=========
-c, --case Perform a case-sensitive search (Default is inSEnsITiVe).
-e, --exact Perform an EXACT match on exploit title (Default is AND) [Implies "-t"].
-h, --help Show this help screen.
-o, --overflow Exploit title's are allowed to overflow their columns.
-p, --path Show the full path to an exploit (Copies path to clipboard if possible).
-t, --title Search just the exploit title (Default is title AND the file's path).
-u, --update Update exploit database from git.
-w, --www Show URLs to Exploit-DB.com rather than local path.
--colour Disable colour highlighting.
--id Display EDB-ID value rather than local path.
=======
Notes
=======
* Use any number of search terms.
* Search terms are not case sensitive, and order is irrelevant.
* Use '-c' if you wish to reduce results by case-sensitive searching.
* And/Or '-e' if you wish to filter results by using an exact match.
* Use '-t' to exclude the file's path to filter the search results.
* Remove false positives (especially when searching numbers/major versions).
* When updating from git or displaying help, search terms will be ignored.
root@kali:~# searchsploit afd windows local
--------------------------------------------------------------------------------- ----------------------------------
Exploit Title | Path
| (/usr/share/exploitdb/platforms)
--------------------------------------------------------------------------------- ----------------------------------
Microsoft Windows 2003/XP - AFD.sys Privilege Escalation Exploit (K-plugin) | ./windows/local/6757.txt
Microsoft Windows XP - AFD.sys Local Kernel DoS Exploit | ./windows/dos/17133.c
Microsoft Windows XP/2003 Afd.sys - Local Privilege Escalation Exploit (MS11-080)| ./windows/local/18176.py
Microsoft Windows - AfdJoinLeaf Privilege Escalation (MS11-080) | ./windows/local/21844.rb
Microsoft Windows - AFD.SYS Dangling Pointer Privilege Escalation (MS14-040) | ./win32/local/39446.py
Microsoft Windows 7 x64 - AFD.SYS Privilege Escalation (MS14-040) | ./win64/local/39525.py
--------------------------------------------------------------------------------- ----------------------------------
root@kali:~#