Platform
Type

Results

Here are the 50 latest exploits added

windows dos

2017-04-17 - Microsoft Windows - Uncredentialed SMB RCE (MS17-010) (Metasploit)

windows dos

2017-04-16 - WinSCP 5.9.4 - 'LIST' Denial of Service (Metasploit)

php webapps

2017-04-16 - Mantis Bug Tracker 1.3.0/2.3.0 - Password Reset

linux local

2017-04-15 - Linux Kernel 4.8.0 UDEV < 232 - Privilege Escalation

php webapps

2017-04-14 - Concrete5 8.1.0 - 'Host' Header Injection

windows local

2017-04-14 - VirusChaser 8.0 - Buffer Overflow (SEH)

windows dos

2017-04-13 - Microsoft Windows Kernel - 'win32k.sys' Multiple Issues 'NtGdiGetDIBitsInternal' System Call

windows dos

2017-04-13 - Microsoft Windows Kernel - 'win32kfull!SfnINLPUAHDRAWMENUITEM' Stack Memory Disclosure

osx local

2017-04-13 - GNS3 Mac OS-X 1.5.2 - 'ubridge' Privilege Escalation

windows local

2017-04-13 - Adobe Creative Cloud Desktop Application < 4.0.0.185 - Privilege Escalation

lin_x86-64 shellcode

2017-04-13 - Linux/x86-64 - execve(_/bin/sh_) Shellcode (31 bytes)

multiple webapps

2017-04-13 - agorum core Pro 7.8.1.4-251 - Cross-Site Request Forgery

multiple webapps

2017-04-13 - agorum core Pro 7.8.1.4-251 - Persistent Cross-Site Scripting

php webapps

2017-04-13 - Alienvault OSSIM/USM 5.3.4/5.3.5 - Remote Command Execution (Metasploit)

solaris local

2017-04-12 - Solaris 7 < 11 (x86 / SPARC) - 'EXTREMEPARR' dtappgather Privilege Escalation

hardware remote

2017-04-12 - Cisco Catalyst 2960 IOS 12.2(55)SE11 - 'ROCEM' Remote Code Execution

hardware remote

2017-04-12 - Cisco Catalyst 2960 IOS 12.2(55)SE1 - 'ROCEM' Remote Code Execution

multiple dos

2017-04-11 - Apple WebKit - 'JSC::B3::Procedure::resetReachability' Use-After-Free

multiple dos

2017-04-11 - Apple WebKit - 'Document::adoptNode' Use-After-Free

multiple dos

2017-04-11 - Apple WebKit - 'JSC::SymbolTableEntry::isWatchable' Heap Buffer Overflow

macos local

2017-04-11 - Proxifier for Mac 2.18 - Multiple Vulnerabilities

macos local

2017-04-11 - Proxifier for Mac 2.17 / 2.18 - Privesc Escalation

multiple local

2017-04-11 - Xen - Broken Check in 'memory_exchange()' Permits PV Guest Breakout

php webapps

2017-04-11 - MyClassifiedScript 5.1 - SQL Injection

php webapps

2017-04-11 - Social Directory Script 2.0 - SQL Injection

php webapps

2017-04-11 - FAQ Script 3.1.3 - 'category_id' Parameter SQL Injection

php webapps

2017-04-11 - WordPress Plugin Spider Event Calendar 1.5.51 - Blind SQL Injection

php webapps

2017-04-11 - MyBB < 1.8.11 - 'email' MyCode Cross-Site Scripting

php webapps

2017-04-11 - MyBB smilie Module < 1.8.11 - 'pathfolder' Directory Traversal

hardware webapps

2017-04-11 - Brother MFC-J6520DW - Authentication Bypass / Password Change

php webapps

2017-04-11 - Horde Groupware Webmail 3 / 4 / 5 - Multiple Remote Code Execution

multiple webapps

2017-04-11 - Apple WebKit / Safari 10.0.3 (12602.4.8) - Synchronous Page Load Universal Cross-Site Scripting

multiple webapps

2017-04-11 - Apple WebKit / Safari 10.0.3 (12602.4.8) - Universal Cross-Site Scripting via a Focus Event and a Link Element

windows dos

2017-04-10 - Moxa MXview 2.8 - Denial of Service

windows remote

2017-04-10 - Moxa MXview 2.8 - Private Key Disclosure

windows remote

2017-04-10 - Moxa MX AOPC-Server 1.5 - XML External Entity Injection

linux remote

2017-04-10 - Quest Privilege Manager 6.0.0 - Arbitrary File Write

php webapps

2017-04-08 - Jobscript4Web 4.5 - Authentication Bypass

hardware webapps

2017-04-07 - Intellinet NFC-30IR Camera - Multiple Vulnerabilities

php webapps

2017-04-07 - Invoice Template - 'hash' Parameter SQL Injection

php webapps

2017-04-07 - Document Management Template - 'hash' Parameter SQL Injection

php webapps

2017-04-07 - Shopping Cart Template - 'item' Parameter SQL Injection

php webapps

2017-04-07 - Calendar Template 2.0 - 'editid1' Parameter SQL Injection

php webapps

2017-04-07 - Forum Template 1.0 - SQL Injection

php webapps

2017-04-07 - Quiz Template 1.0 - 'testid' Parameter SQL Injection

php webapps

2017-04-07 - Survey Template 1.1 - 'masterkey1' Parameter SQL Injection

php webapps

2017-04-07 - My Gaming Ladder Combo System 7.5 - SQL Injection

php webapps

2017-04-07 - Ladder System 6.0 - 'faqid' Parameter SQL Injection

hardware webapps

2017-04-07 - D-Link DWR-116 / DWR-116A1 - Arbitrary File Download

php webapps

2017-04-07 - WordPress Plugin Firewall 2 1.3 - Cross-Site Request Forgery / Cross-Site Scripting