bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/platforms/java/webapps
History
Offensive Security 91b12c469e DB: 2016-11-29 
16 new exploits

rdesktop 1.5.0 - iso_recv_msg() Integer Underflow (PoC)
rdesktop 1.5.0 - process_redirect_pdu() BSS Overflow (PoC)
rdesktop 1.5.0 - 'iso_recv_msg()' Integer Underflow (PoC)
rdesktop 1.5.0 - 'process_redirect_pdu()' BSS Overflow (PoC)
NTP 4.2.8p3 - Denial of Service
Microsoft Internet Explorer 8 MSHTML - 'SRun­Pointer::Span­Qualifier/Run­Type' Out-Of-Bounds Read (MS15-009)
Microsoft Internet Explorer 11 MSHTML - 'CGenerated­Content::Has­Generated­SVGMarker' Type Confusion
Microsoft Internet Explorer 10 MSHTML - 'CEdit­Adorner::Detach' Use-After-Free (MS13-047)
Microsoft Internet Explorer 8 / 9 / 10 / 11 MSHTML - 'DOMImplementation' Type Confusion (MS16-009)

Linux Kernel 2.6.x (Slackware 9.1 / Debian 3.0) - chown() Group Ownership Alteration Privilege Escalation
Linux Kernel 2.6.x < 2.6.7-rc3 (Slackware 9.1 / Debian 3.0) - 'sys_chown()' Group Ownership Alteration Privilege Escalation

Linux Kernel 2.4 / 2.6 (x86_64) - System Call Emulation Privilege Escalation
Linux Kernel 2.4 / 2.6 (x86-64) - System Call Emulation Privilege Escalation
Linux Kernel < 2.6.36-rc4-git2 (x86_64) - 'ia32syscall' Emulation Privilege Escalation
Linux Kernel 2.6.27 < 2.6.36 (RedHat x86_64) - 'compat' Privilege Escalation
Linux Kernel < 2.6.36-rc4-git2 (x86-64) - 'ia32syscall' Emulation Privilege Escalation
Linux Kernel 2.6.27 < 2.6.36 (RedHat x86-64) - 'compat' Privilege Escalation

Linux Kernel < 3.3.x < 3.7.x (Arch Linux x86_64) - 'sock_diag_handlers[]' Privilege Escalation (1)
Linux Kernel < 3.3.x < 3.7.x (Arch Linux x86-64) - 'sock_diag_handlers[]' Privilege Escalation (1)

Linux Kernel < 3.8.9 (x86_64) - 'perf_swevent_init' Privilege Escalation (2)
Linux Kernel < 3.8.9 (x86-64) - 'perf_swevent_init' Privilege Escalation (2)
Linux Kernel 2.6.22 < 3.9 - 'Dirty COW' Race Condition Privilege Escalation (Write Access)
Linux Kernel 2.6.22 < 3.9 (x86/x64) - 'Dirty COW' Race Condition Privilege Escalation (SUID)
Linux Kernel 2.6.22 < 3.9 - 'Dirty COW' '/proc/self/mem' Race Condition Privilege Escalation (Write Access)
Linux Kernel 2.6.22 < 3.9 (x86/x64) - 'Dirty COW' '/proc/self/mem' Race Condition Privilege Escalation

Linux Kernel 2.6.22 < 3.9 - 'Dirty COW' 'PTRACE_POKEDATA' Race Condition Privilege Escalation (Write Access)

Linux Kernel 2.6.22 < 3.9 - 'Dirty COW' 'PTRACE_POKEDATA' Race Condition Privilege Escalation

TFTP Server 1.4 - Buffer Overflow Remote Exploit (2)
TFTP Server 1.4 - Remote Buffer Overflow (2)

TFTP Server 1.4 (Windows) - ST WRQ Buffer Overflow (Metasploit)
TFTP Server 1.4 - ST WRQ Buffer Overflow (Metasploit)

Android - 'BadKernel' Remote Code Execution
VX Search Enterprise 9.1.12 - Buffer Overflow
Sync Breeze Enterprise 9.1.16 - Buffer Overflow
Disk Sorter Enterprise 9.1.12 - Buffer Overflow
Dup Scout Enterprise 9.1.14 - Buffer Overflow
Disk Savvy Enterprise 9.1.14 - Buffer Overflow
Disk Pulse Enterprise 9.1.16 - Buffer Overflow

Linux/x86 - Egg-hunter Shellcode (25 bytes)
Linux/x86 - Egg-hunter Shellcode (31 bytes)

RunCMS 1.2 - (class.forumposts.php) Arbitrary Remote File Inclusion
RunCMS 1.2 - 'class.forumposts.php' Arbitrary Remote File Inclusion

CMS Faethon 1.3.2 - (mainpath) Remote File Inclusion
CMS Faethon 1.3.2 - 'mainpath' Parameter Remote File Inclusion

CMS Faethon 2.0 - (mainpath) Remote File Inclusion
CMS Faethon 2.0 - 'mainpath' Parameter Remote File Inclusion

SazCart 1.5 - (cart.php) Remote File Inclusion
SazCart 1.5 - 'cart.php' Remote File Inclusion

Cyberfolio 2.0 RC1 - (av) Remote File Inclusion
Cyberfolio 2.0 RC1 - 'av' Parameter Remote File Inclusion

FipsCMS 4.5 - (index.asp) SQL Injection
FipsCMS 4.5 - 'index.asp' SQL Injection

AJ Classifieds 1.0 - (postingdetails.php) SQL Injection
AJ Classifieds 1.0 - 'postingdetails.php' SQL Injection

RunCMS 1.5.2 - (debug_show.php) SQL Injection
RunCMS 1.5.2 - 'debug_show.php' SQL Injection

OneCMS 2.4 - (userreviews.php abc) SQL Injection
OneCMS 2.4 - 'abc' Parameter SQL Injection

RunCMS 1.6 - disclaimer.php Remote File Overwrite
RunCMS 1.6 - 'disclaimer.php' Remote File Overwrite
PHPEasyData 1.5.4 - 'cat_id' SQL Injection
FipsCMS - 'print.asp lg' SQL Injection
Galleristic 1.0 - (index.php cat) SQL Injection
gameCMS Lite 1.0 - (index.php systemId) SQL Injection
PHPEasyData 1.5.4 - 'cat_id' Parameter SQL Injection
FipsCMS 2.1 - 'print.asp' SQL Injection
Galleristic 1.0 - 'cat' Parameter SQL Injection
GameCMS Lite 1.0 - 'systemId' Parameter SQL Injection

CMS Faethon 2.2 Ultimate - (Remote File Inclusion / Cross-Site Scripting) Multiple Remote Vulnerabilities
CMS Faethon 2.2 Ultimate - Remote File Inclusion / Cross-Site Scripting
MusicBox 2.3.7 - (artistId) SQL Injection
RunCMS 1.6.1 - (msg_image) SQL Injection
MusicBox 2.3.7 - 'artistId' Parameter SQL Injection
RunCMS 1.6.1 - 'msg_image' Parameter SQL Injection

vShare YouTube Clone 2.6 - (tid) SQL Injection
vShare YouTube Clone 2.6 - 'tid' Parameter SQL Injection
Cyberfolio 7.12 - (rep) Remote File Inclusion
miniBloggie 1.0 - (del.php) Arbitrary Delete Post
Cyberfolio 7.12 - 'rep' Parameter Remote File Inclusion
miniBloggie 1.0 - 'del.php' Arbitrary Delete Post

SazCart 1.5.1 - (prodid) SQL Injection
SazCart 1.5.1 - 'prodid' Parameter SQL Injection

Phoenix View CMS Pre Alpha2 - (SQL Injection / Local File Inclusion / Cross-Site Scripting) Multiple Vulnerabilities
Phoenix View CMS Pre Alpha2 - SQL Injection / Local File Inclusion / Cross-Site Scripting

Ktools Photostore 3.5.1 - (gallery.php gid) SQL Injection
Ktools Photostore 3.5.1 - 'gid' Parameter SQL Injection

Joomla! Component com_datsogallery 1.6 - Blind SQL Injection
Joomla! Component Datsogallery 1.6 - Blind SQL Injection
Vortex CMS - 'index.php pageid' Blind SQL Injection
AJ Article 1.0 - (featured_article.php) SQL Injection
AJ Auction 6.2.1 - (classifide_ad.php) SQL Injection
Vortex CMS - 'pageid' Parameter Blind SQL Injection
AJ Article 1.0 - 'featured_article.php' SQL Injection
AJ Auction 6.2.1 - 'classifide_ad.php' SQL Injection

clanlite 2.x - (SQL Injection / Cross-Site Scripting) Multiple Vulnerabilities
ClanLite 2.x - SQL Injection / Cross-Site Scripting

OneCMS 2.5 - (install_mod.php) Local File Inclusion
OneCMS 2.5 - 'install_mod.php' Local File Inclusion
AJ Auction Web 2.0 - (cate_id) SQL Injection
AJ Auction 1.0 - 'id' SQL Injection
AJ Auction Web 2.0 - 'cate_id' Parameter SQL Injection
AJ Auction 1.0 - 'id' Parameter SQL Injection

FipsCMS Light 2.1 - (r) SQL Injection
FipsCMS Light 2.1 - 'r' Parameter SQL Injection

AJ Auction Pro Platinum Skin - 'detail.php item_id' SQL Injection
AJ Auction Pro Platinum Skin - 'item_id' Parameter SQL Injection

AJ Auction Pro Platinum - (seller_id) SQL Injection
AJ Auction Pro Platinum - 'seller_id' Parameter SQL Injection

miniBloggie 1.0 - (del.php) Blind SQL Injection
miniBloggie 1.0 - 'del.php' Blind SQL Injection

AJ Article - 'featured_article.php mode' SQL Injection

AJ ARTICLE - (Authentication Bypass) SQL Injection
AJ Article 1.0 - Authentication Bypass

Cyberfolio 7.12.2 - (css.php theme) Local File Inclusion
Cyberfolio 7.12.2 - 'theme' Parameter Local File Inclusion

AJ ARTICLE - Remote Authentication Bypass
AJ Article 1.0 - Remote Authentication Bypass

MusicBox 2.3.8 - (viewalbums.php artistId) SQL Injection
MusicBox 2.3.8 - 'viewalbums.php' SQL Injection

AJ Auction Pro OOPD 2.3 - 'id' SQL Injection
AJ Auction Pro OOPD 2.3 - 'id' Parameter SQL Injection

BigACE CMS 2.5 - 'Username' SQL Injection
BigACE 2.5 - SQL Injection

ZeusCart 2.3 - 'maincatid' SQL Injection
ZeusCart 2.3 - 'maincatid' Parameter SQL Injection

BigACE CMS 2.6 - (cmd) Local File Inclusion
BigACE 2.6 - 'cmd' Parameter Local File Inclusion

RunCMS 1.6.3 - (double ext) Remote Shell Injection
RunCMS 1.6.3 - Remote Shell Injection

AJ Auction Pro OOPD 2.x - (store.php id) SQL Injection
AJ Auction Pro OOPD 2.x - 'id' Parameter SQL Injection
RunCMS 2m1 - store() SQL Injection
RunCMS 2ma - post.php SQL Injection
RunCMS 2m1 - 'store()' SQL Injection
RunCMS 2ma - 'post.php' SQL Injection

AJ Article - Persistent Cross-Site Scripting
AJ Article 3.0 - Cross-Site Scripting

admidio 2.3.5 - Multiple Vulnerabilities
Admidio 2.3.5 - Multiple Vulnerabilities

RunCMS 1.1/1.2 Newbb_plus and Messages Modules - Multiple SQL Injections
RunCMS 1.1/1.2 Module Newbb_plus/Messages - SQL Injection

MusicBox 2.3 - Type Parameter SQL Injection
MusicBox 2.3 - 'type' Parameter SQL Injection

RunCMS 1.x - Bigshow.php Cross-Site Scripting
RunCMS 1.x - 'Bigshow.php' Cross-Site Scripting

RunCMS 1.2/1.3 - PMLite.php SQL Injection
RunCMS 1.2/1.3 - 'PMLite.php' SQL Injection

RunCMS 1.x - Ratefile.php Cross-Site Scripting
RunCMS 1.x - 'Ratefile.php' Cross-Site Scripting

BigACE CMS 2.7.8 - Cross-Site Request Forgery (Add Admin)
BigACE 2.7.8 - Cross-Site Request Forgery (Add Admin)
MusicBox 2.3 - 'index.php' Multiple Parameter SQL Injection
MusicBox 2.3 - 'index.php' Multiple Parameter Cross-Site Scripting
MusicBox 2.3 - cart.php Multiple Parameter Cross-Site Scripting
MusicBox 2.3 - 'index.php' SQL Injection
MusicBox 2.3 - 'index.php' Cross-Site Scripting
MusicBox 2.3 - 'cart.php' Cross-Site Scripting

MusicBox 2.3.4 - Page Parameter SQL Injection
MusicBox 2.3.4 - 'page' Parameter SQL Injection

MyWebland miniBloggie 1.0 - Fname Remote File Inclusion
miniBloggie 1.0 - 'Fname' Remote File Inclusion
BigACE 1.8.2 - item_main.php GLOBALS Parameter Remote File Inclusion
BigACE 1.8.2 - upload_form.php GLOBALS Parameter Remote File Inclusion
BigACE 1.8.2 - download.cmd.php GLOBALS Parameter Remote File Inclusion
BigACE 1.8.2 - admin.cmd.php GLOBALS Parameter Remote File Inclusion
BigACE 1.8.2 - 'item_main.php' Remote File Inclusion
BigACE 1.8.2 - 'upload_form.php' Remote File Inclusion
BigACE 1.8.2 - 'download.cmd.php' Remote File Inclusion
BigACE 1.8.2 - 'admin.cmd.php' Remote File Inclusion

ClanLite - Config-PHP.php Remote File Inclusion
ClanLite - 'conf-php.php' Remote File Inclusion

FipsCMS 2.1 - PID Parameter SQL Injection
FipsCMS 2.1 - 'pid' Parameter SQL Injection
RunCMS 1.6.1 - votepolls.php bbPath[path] Parameter Remote File Inclusion
RunCMS 1.6.1 - config.php bbPath[root_theme] Parameter Remote File Inclusion
RunCMS 1.6.1 - 'bbPath[path]' Parameter Remote File Inclusion
RunCMS 1.6.1 - 'bbPath[root_theme]' Parameter Remote File Inclusion

FipsCMS 2.1 - 'forum/neu.asp' SQL Injection
FipsCMS 2.1 - 'neu.asp' SQL Injection
OneCMS 2.6.1 - admin/admin.php cat Parameter Cross-Site Scripting
OneCMS 2.6.1 - search.php search Parameter SQL Injection
OneCMS 2.6.1 - admin/admin.php Short1 Parameter Cross-Site Scripting
OneCMS 2.6.1 - 'cat' Parameter Cross-Site Scripting
OneCMS 2.6.1 - 'search' Parameter SQL Injection
OneCMS 2.6.1 - 'short1' Parameter Cross-Site Scripting

RunCMS 'partners' Module - 'id' Parameter SQL Injection
RunCMS Module Partners - 'id' Parameter SQL Injection

Zeuscart v.4 - Multiple Vulnerabilities
Zeuscart 4.0 - Multiple Vulnerabilities

BigACE Web CMS 2.7.5 - '/public/index.php' LANGUAGE Parameter Directory Traversal
BigACE 2.7.5 - 'LANGUAGE' Parameter Directory Traversal
Tenda/Dlink/Tplink TD-W8961ND - 'DHCP' Cross-Site Scripting
Red Hat JBoss EAP - Deserialization of Untrusted Data
2016-11-29 05:01:20 +00:00
..
18881.txt Updated 2013-12-03 19:44:07 +00:00
20668.py Updated 2013-12-03 19:44:07 +00:00
20925.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
21543.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
21562.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
21879.txt Updated 2013-12-03 19:44:07 +00:00
21946.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
22752.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
23268.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
24190.txt Updated 2013-12-03 19:44:07 +00:00
24791.txt Updated 2013-12-03 19:44:07 +00:00
25702.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
26001.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
26987.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
27888.txt Updated 2013-12-03 19:44:07 +00:00
28116.txt Updated 2013-12-03 19:44:07 +00:00
29918.txt Updated 2013-12-03 22:42:55 +00:00
30271.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
30272.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
30273.txt Updated 12_17_2013 2013-12-17 17:05:06 +00:00
30274.txt Updated 12_17_2013 2013-12-17 17:05:06 +00:00
30275.txt Updated 12_17_2013 2013-12-17 17:05:06 +00:00
30514.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
30674.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
31073.html DB: 2016-09-03 2016-09-03 13:13:25 +00:00
31189.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
31438.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
31621.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
31641.txt Updated 02_15_2014 2014-02-15 04:27:44 +00:00
31816.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
32448.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
32459.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
32574.txt Updated 03_30_2014 2014-03-30 04:31:18 +00:00
32818.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
32821.html DB: 2016-09-03 2016-09-03 13:13:25 +00:00
32858.txt Updated 04_18_2014 2014-04-18 04:35:42 +00:00
32862.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
32863.txt Updated 04_18_2014 2014-04-18 04:35:42 +00:00
32864.txt Updated 04_18_2014 2014-04-18 04:35:42 +00:00
32897.txt Updated 04_18_2014 2014-04-18 04:35:42 +00:00
32909.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
32927.txt Updated 04_20_2014 2014-04-20 04:34:26 +00:00
32940.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
33048.txt Updated 04_28_2014 2014-04-28 04:36:23 +00:00
33181.txt Updated 05_06_2014 2014-05-06 04:36:08 +00:00
33254.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
33286.txt Updated 05_11_2014 2014-05-11 04:36:48 +00:00
33687.txt Updated 06_10_2014 2014-06-10 04:38:25 +00:00
33939.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
34108.txt Updated 07_20_2014 2014-07-20 04:38:35 +00:00
34290.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
34293.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
34345.txt Updated 08_17_2014 2014-08-17 04:41:15 +00:00
35683.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
35781.txt Update: 2015-01-17 2015-01-17 08:35:34 +00:00
36292.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
36299.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
36423.txt DB: 2015-03-19 2015-03-19 09:39:10 +00:00
36436.txt DB: 2015-03-20 2015-03-20 08:36:08 +00:00
36440.txt DB: 2015-03-20 2015-03-20 08:36:08 +00:00
36548.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
36553.java DB: 2015-03-31 2015-03-31 08:35:36 +00:00
36666.txt DB: 2015-04-09 2015-04-09 08:36:09 +00:00
36667.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
36684.txt DB: 2015-04-11 2015-04-11 08:36:20 +00:00
36828.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
36939.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
36971.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
37006.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
37009.xml DB: 2015-05-15 2015-05-15 05:02:32 +00:00
37029.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
37030.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
37031.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
37032.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
37033.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
37110.py DB: 2015-05-27 2015-05-27 05:02:00 +00:00
37372.html DB: 2015-06-26 2015-06-26 05:02:53 +00:00
37416.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
37555.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
37557.txt DB: 2015-07-11 2015-07-11 05:03:28 +00:00
37589.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
37999.txt DB: 2015-08-29 2015-08-29 05:01:51 +00:00
38130.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
38358.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
38461.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
38462.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
38551.py DB: 2015-10-29 2015-10-29 05:02:34 +00:00
38664.py DB: 2015-11-11 2015-11-11 05:02:52 +00:00
38739.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
39193.txt DB: 2016-01-08 2016-01-08 05:03:43 +00:00
39241.py DB: 2016-02-13 2016-02-13 05:03:17 +00:00
39334.txt DB: 2016-09-03 2016-09-03 13:13:25 +00:00
39391.txt DB: 2016-02-02 2016-02-02 05:02:47 +00:00
39418.txt DB: 2016-02-15 2016-02-15 05:04:08 +00:00
39481.txt DB: 2016-02-23 2016-02-23 05:02:07 +00:00
39715.rb DB: 2016-04-22 2016-04-22 05:03:45 +00:00
39837.txt DB: 2016-05-18 2016-05-18 05:02:15 +00:00
39886.txt DB: 2016-06-07 2016-06-07 05:07:41 +00:00
39995.txt DB: 2016-06-22 2016-06-22 05:06:31 +00:00
39996.txt DB: 2016-06-22 2016-06-22 05:06:31 +00:00
40161.txt DB: 2016-07-26 2016-07-26 05:04:05 +00:00
40231.txt DB: 2016-08-12 2016-08-12 05:09:55 +00:00
40286.txt DB: 2016-08-23 2016-08-23 05:06:48 +00:00
40437.txt DB: 2016-09-29 2016-09-29 05:01:16 +00:00
40569.txt DB: 2016-10-19 2016-10-19 05:01:18 +00:00
40794.txt DB: 2016-11-22 2016-11-22 05:01:18 +00:00
40817.txt DB: 2016-11-23 2016-11-23 05:01:19 +00:00
40842.txt DB: 2016-11-29 2016-11-29 05:01:20 +00:00