bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits
History
Offensive Security be24992411 DB: 2022-05-12 
42 changes to exploits/shellcodes

UDisk Monitor Z5 Phone - 'MonServiceUDisk.exe' Unquoted Service Path
TCQ - ITeCProteccioAppServer.exe - Unquoted Service Path
Wondershare Dr.Fone 11.4.10 - Insecure File Permissions
ExifTool 12.23 - Arbitrary Code Execution
Wondershare Dr.Fone 12.0.7 - Privilege Escalation (ElevationService)
Wondershare Dr.Fone 12.0.7 - Privilege Escalation (InstallAssistService)
Prime95 Version 30.7 build 9 - Remote Code Execution (RCE)
Akka HTTP 10.1.14 - Denial of Service
USR IOT 4G LTE Industrial Cellular VPN Router 1.0.36 - Remote Root Backdoor
Bookeen Notea - Directory Traversal
SAP BusinessObjects Intelligence 4.3 - XML External Entity (XXE)
ManageEngine ADSelfService Plus Build 6118 - NTLMv2 Hash Exposure
DLINK DIR850 - Insecure Access Control
DLINK DIR850 - Open Redirect
Apache CouchDB 3.2.1 - Remote Code Execution (RCE)
Tenda HG6 v3.3.0 - Remote Command Injection
Google Chrome 78.0.3904.70 - Remote Code Execution
PyScript - Read Remote Python Source Code
DLINK DAP-1620 A1 v1.01 - Directory Traversal
Ruijie Reyee Mesh Router - Remote Code Execution (RCE) (Authenticated)
ImpressCMS v1.4.4 - Unrestricted File Upload
Microfinance Management System 1.0 - 'customer_number' SQLi
WebTareas 2.4 - Blind SQLi (Authenticated)
WordPress Plugin Advanced Uploader 4.2 - Arbitrary File Upload (Authenticated)
Magento eCommerce CE v2.3.5-p2 - Blind SQLi
Bitrix24 - Remote Code Execution (RCE) (Authenticated)
CSZ CMS 1.3.0 - 'Multiple' Blind SQLi
Cyclos 4.14.7 - DOM Based Cross-Site Scripting (XSS)
Cyclos 4.14.7 - 'groupId' DOM Based Cross-Site Scripting (XSS)
e107 CMS v3.2.1 - Multiple Vulnerabilities
Anuko Time Tracker - SQLi (Authenticated)
TLR-2005KSH - Arbitrary File Upload
Explore CMS 1.0 - SQL Injection
Navigate CMS 2.9.4 - Server-Side Request Forgery (SSRF) (Authenticated)
PHProjekt PhpSimplyGest v1.3. - Stored Cross-Site Scripting (XSS)
Beehive Forum - Account Takeover
MyBB 1.8.29 - MyBB 1.8.29 - Remote Code Execution (RCE) (Authenticated)
WordPress Plugin Blue Admin 21.06.01 - Cross-Site Request Forgery (CSRF)
Joomla Plugin SexyPolling 2.1.7 - SQLi
WordPress Plugin stafflist 3.1.2 - SQLi (Authenticated)
2022-05-12 05:01:39 +00:00
..
aix
alpha/webapps
android DB: 2022-05-12 2022-05-12 05:01:39 +00:00
arm
ashx/webapps
asp
aspx/webapps
atheos/local
beos
bsd
bsd_x86/remote
cfm
cgi
freebsd
freebsd_x86/dos
freebsd_x86-64
hardware DB: 2022-05-12 2022-05-12 05:01:39 +00:00
hp-ux
immunix/local
ios
irix
java DB: 2022-03-08 2022-03-08 05:01:37 +00:00
json/webapps
jsp
linux DB: 2022-05-12 2022-05-12 05:01:39 +00:00
linux_mips/remote
linux_sparc/remote
linux_x86
linux_x86-64
lua/webapps
macos DB: 2022-02-03 2022-02-03 05:01:57 +00:00
minix/dos
multiple DB: 2022-05-12 2022-05-12 05:01:39 +00:00
netbsd_x86
netware
nodejs/webapps DB: 2022-02-09 2022-02-09 05:02:00 +00:00
novell
openbsd
osx
osx_ppc/remote
palm_os
perl/webapps
php DB: 2022-05-12 2022-05-12 05:01:39 +00:00
plan9/local
python DB: 2022-05-12 2022-05-12 05:01:39 +00:00
qnx
ruby DB: 2022-05-12 2022-05-12 05:01:39 +00:00
sco
solaris
solaris_sparc/remote
solaris_x86/local
tru64
ultrix
unix
unixware
vxworks/dos
watchos
windows DB: 2022-05-12 2022-05-12 05:01:39 +00:00
windows_x86
windows_x86-64
xml