The Exploit Database

Syndikovat obsah
The Exploit Database - Exploits, Shellcode, 0days, Remote Exploits, Local Exploits, Web Apps, Vulnerability Reports, Security Articles, Tutorials and more.
Aktualizace: 1 min 42 sek zpět

[webapps] XWiki Standard 14.10 - Remote Code Execution (RCE)

29 Březen, 2025 - 02:00
XWiki Standard 14.10 - Remote Code Execution (RCE)

[local] Solstice Pod 6.2 - API Session Key Extraction via API Endpoint

29 Březen, 2025 - 02:00
Solstice Pod 6.2 - API Session Key Extraction via API Endpoint

[webapps] Progress Telerik Report Server 2024 Q1 (10.0.24.305) - Authentication Bypass

28 Březen, 2025 - 02:00
Progress Telerik Report Server 2024 Q1 (10.0.24.305) - Authentication Bypass

[webapps] Rejetto HTTP File Server 2.3m - Remote Code Execution (RCE)

28 Březen, 2025 - 02:00
Rejetto HTTP File Server 2.3m - Remote Code Execution (RCE)

[webapps] Sonatype Nexus Repository 3.53.0-01 - Path Traversal

28 Březen, 2025 - 02:00
Sonatype Nexus Repository 3.53.0-01 - Path Traversal

[webapps] CodeCanyon RISE CRM 3.7.0 - SQL Injection

28 Březen, 2025 - 02:00
CodeCanyon RISE CRM 3.7.0 - SQL Injection

[webapps] Litespeed Cache 6.5.0.1 - Authentication Bypass

28 Březen, 2025 - 02:00
Litespeed Cache 6.5.0.1 - Authentication Bypass

[webapps] X2CRM 8.5 - Stored Cross-Site Scripting (XSS)

27 Březen, 2025 - 02:00
X2CRM 8.5 - Stored Cross-Site Scripting (XSS)

[webapps] KubeSphere 3.4.0 - Insecure Direct Object Reference (IDOR)

27 Březen, 2025 - 02:00
KubeSphere 3.4.0 - Insecure Direct Object Reference (IDOR)

[webapps] MoziloCMS 3.0 - Remote Code Execution (RCE)

27 Březen, 2025 - 02:00
MoziloCMS 3.0 - Remote Code Execution (RCE)

[local] NVIDIA Container Toolkit 1.16.1 - Time-of-check Time-of-Use (TOCTOU)

26 Březen, 2025 - 02:00
NVIDIA Container Toolkit 1.16.1 - Time-of-check Time-of-Use (TOCTOU)

[webapps] TeamPass 3.0.0.21 - SQL Injection

22 Březen, 2025 - 02:00
TeamPass 3.0.0.21 - SQL Injection

[remote] Aztech DSL5005EN Router - 'sysAccess.asp' Admin Password Change (Unauthenticated)

22 Březen, 2025 - 02:00
Aztech DSL5005EN Router - 'sysAccess.asp' Admin Password Change (Unauthenticated)

[remote] Microsoft Windows - NTLM Hash Leak Malicious Windows Theme

22 Březen, 2025 - 02:00
Microsoft Windows - NTLM Hash Leak Malicious Windows Theme

[webapps] Jasmin Ransomware - SQL Injection Login Bypass

21 Březen, 2025 - 02:00
Jasmin Ransomware - SQL Injection Login Bypass

[webapps] FluxBB 1.5.11 - Stored Cross-Site Scripting (XSS)

20 Březen, 2025 - 02:00
FluxBB 1.5.11 - Stored Cross-Site Scripting (XSS)

[webapps] JUX Real Estate 3.4.0 - SQL Injection

20 Březen, 2025 - 02:00
JUX Real Estate 3.4.0 - SQL Injection

[local] VeeVPN 1.6.1 - Unquoted Service Path

19 Březen, 2025 - 02:00
VeeVPN 1.6.1 - Unquoted Service Path

[webapps] Gitea 1.24.0 - HTML Injection

19 Březen, 2025 - 02:00
Gitea 1.24.0 - HTML Injection

[webapps] TranzAxis 3.2.41.10.26 - Stored Cross-Site Scripting (XSS) (Authenticated)

19 Březen, 2025 - 02:00
TranzAxis 3.2.41.10.26 - Stored Cross-Site Scripting (XSS) (Authenticated)