Exploits Database

The Exploit Database – Exploits, Shellcode, 0days, Remote Exploits, Local Exploits, Web Apps, Vulnerability Reports, Security Articles, Tutorials and more.

SpamTitan 7.07 – Remote Code Execution (Authenticated)
Mantis Bug Tracker 2.3.0 – Remote Code Execution (Unauthenticated)
Microsoft SQL Server Reporting Services 2016 – Remote Code Execution
Piwigo 2.10.1 – Cross Site Scripting
Windows TCPIP Finger Command – C2 Channel and Bypassing Security Software
ThinkAdmin 6 – Arbitrarily File Read
Tailor MS 1.0 – Reflected Cross-Site Scripting
RAD SecFlow-1v SF_0290_2.3.01.26 – Persistent Cross-Site Scripting
Rapid7 Nexpose Installer 6.6.39 – ‘nexposeengine’ Unquoted Service Path
RAD SecFlow-1v SF_0290_2.3.01.26 – Cross-Site Request Forgery (Reboot)
Pearson Vue VTS 2.3.1911 Installer – ‘VUEApplicationWrapper’ Unquoted Service Path
Joomla! paGO Commerce 2.5.9.0 – SQL Injection (Authenticated)
Internet Explorer 11 – Use-After-Free
Tea LaTex 1.0 – Remote Code Execution (Unauthenticated)
VTENEXT 19 CE – Remote Code Execution
Gnome Fonts Viewer 3.34.0 – Heap Corruption
Tiandy IPC and NVR 9.12.7 – Credential Disclosure
CuteNews 2.1.2 – Remote Code Execution
ZTE Router F602W – Captcha Bypass
Input Director 1.4.3 – ‘Input Director’ Unquoted Service Path
Audio Playback Recorder 3.2.2 – Local Buffer Overflow (SEH)
Tailor Management System – ‘id’ SQL Injection
Scopia XT Desktop 8.3.915.4 – Cross-Site Request Forgery (change admin password)
ShareMouse 5.0.43 – ‘ShareMouse Service’ Unquoted Service Path
ManageEngine Applications Manager 14700 – Remote Code Execution (Authenticated)
Cabot 0.11.12 – Persistent Cross-Site Scripting
grocy 2.7.1 – Persistent Cross-Site Scripting
Nord VPN-6.31.13.0 – ‘nordvpn-service’ Unquoted Service Path
BarracudaDrive v6.5 – Insecure Folder Permissions
Savsoft Quiz Enterprise Version 5.5 – Persistent Cross-Site Scripting
BloodX CMS 1.0 – Authentication Bypass
Daily Tracker System 1.0 – Authentication Bypass
SiteMagic CMS 4.4.2 – Arbitrary File Upload (Authenticated)
Stock Management System 1.0 – Cross-Site Request Forgery (Change Username)
Mara CMS 7.5 – Remote Code Execution (Authenticated)
moziloCMS 2.0 – Persistent Cross-Site Scripting (Authenticated)
BlazeDVD 7.0 Professional – ‘.plf’ Local Buffer Overflow (SEH,ASLR,DEP)
Fuel CMS 1.4.8 – ‘fuel_replace_id’ SQL Injection (Authenticated)
CMS Made Simple 2.2.14 – Arbitrary File Upload (Authenticated)
Online Book Store 1.0 – ‘id’ SQL Injection
Mara CMS 7.5 – Reflective Cross-Site Scripting
Online Shopping Alphaware 1.0 – ‘id’ SQL Injection
Nagios Log Server 2.1.6 – Persistent Cross-Site Scripting
SymphonyCMS 3.0.0 – Persistent Cross-Site Scripting
Eibiz i-Media Server Digital Signage 3.8.0 – Privilege Escalation
Mida eFramework 2.9.0 – Remote Code Execution
ASX to MP3 converter 3.1.3.7.2010.11.05 – ‘.wax’ Local Buffer Overflow (DEP,ASLR Bypass) (PoC)
WordPress Plugin Autoptimize 2.7.6 – Arbitrary File Upload (Authenticated)
Ericom Access Server x64 9.2.0 – Server-Side Request Forgery
Eibiz i-Media Server Digital Signage 3.8.0 – Directory Traversal