| 2020-11-18 |
bigbluebutton 2.2.25 - arbitrary file disclosure and server-side request forgery
|
webapps exploit |
multiple vulnerability |
| 2020-11-18 |
wordpress plugin wpforms 1.6.3.1 - persistent cross site scripting (authenticated)
|
webapps exploit |
php vulnerability |
| 2020-11-17 |
apache struts 2.5.20 - double ognl evaluation
|
remote exploit |
multiple vulnerability |
| 2020-11-17 |
aerospike database 5.1.0.3 - os command execution
|
remote exploit |
multiple vulnerability |
| 2020-11-17 |
lcd_service 1.0.1.0 - 'lcd_service' unquote service path
|
local exploit |
windows vulnerability |
| 2020-11-17 |
ntlm relaying and llmnr poisoning - paper (turkish)
|
papers exploit |
windows vulnerability |
| 2020-11-17 |
froxlor froxlor server management panel 0.10.16 - persistent cross-site scripting
|
webapps exploit |
php vulnerability |
| 2020-11-17 |
microsoft internet explorer 11 - use-after-free
|
local exploit |
windows vulnerability |
| 2020-11-17 |
wordpress plugin buddypress 6.2.0 - persistent cross-site scripting
|
webapps exploit |
php vulnerability |
| 2020-11-17 |
sugarcrm 6.5.18 - persistent cross-site scripting
|
webapps exploit |
php vulnerability |
| 2020-11-17 |
online doctor appointment booking system php and mysql 1.0 - 'q' sql injection
|
webapps exploit |
php vulnerability |
| 2020-11-17 |
egavilanmedia user registration & login system with admin panel exploit - sqli auth bypass
|
webapps exploit |
php vulnerability |
| 2020-11-16 |
cisco 7937g - dos/privilege escalation
|
remote exploit |
hardware vulnerability |
| 2020-11-16 |
car rental management system 1.0 - 'car_id' sql injection
|
webapps exploit |
php vulnerability |
| 2020-11-16 |
car rental management system 1.0 - remote code execution (authenticated)
|
webapps exploit |
php vulnerability |
| 2020-11-16 |
pmb 5.6 - 'chemin' local file disclosure
|
webapps exploit |
php vulnerability |
| 2020-11-16 |
atheros coex service application 8.0.0.255 - 'zatheros bt&wlan coex agent' unquoted service path
|
local exploit |
windows vulnerability |
| 2020-11-16 |
user registration & login and user management system 2.1 - login bypass sql injection
|
webapps exploit |
php vulnerability |
| 2020-11-16 |
car rental management system 1.0 - 'id' sql injection (authenticated)
|
webapps exploit |
php vulnerability |
| 2020-11-16 |
logitech solar keyboard service - 'l4301_solar' unquoted service path
|
local exploit |
windows vulnerability |
| 2020-11-16 |
advanced system care service 13 - 'advancedsystemcareservice13' unquoted service path
|
local exploit |
windows vulnerability |
| 2020-11-16 |
water billing system 1.0 - 'id' sql injection (authenticated)
|
webapps exploit |
php vulnerability |
| 2020-11-16 |
kiteservice 1.2020.1113.1 - 'kiteservice.exe' unquoted service path
|
local exploit |
windows vulnerability |
| 2020-11-16 |
pandora fms 7.0 ng 749 - 'cg items' sql injection (authenticated)
|
webapps exploit |
php vulnerability |
| 2020-11-13 |
october cms build 465 - arbitrary file read exploit (authenticated)
|
webapps exploit |
php vulnerability |
| 2020-11-13 |
opencart theme journal 3.1.0 - sensitive data exposure
|
webapps exploit |
php vulnerability |
| 2020-11-13 |
idt pc audio 1.0.6425.0 - 'stacsv' unquoted service path
|
local exploit |
windows vulnerability |
| 2020-11-13 |
santivirus ic 10.0.21.61 - 'santivirusic' unquoted service path
|
local exploit |
windows vulnerability |
| 2020-11-13 |
digitalpersona 5.1.0.656 'dphostw' - unquoted service path
|
local exploit |
windows vulnerability |
| 2020-11-13 |
touchbase.io 1.10 - stored cross site scripting
|
webapps exploit |
multiple vulnerability |
| 2020-11-13 |
apache tomcat - ajp 'ghostcat' file read/inclusion (metasploit)
|
webapps exploit |
multiple vulnerability |
| 2020-11-13 |
citrix adc netscaler - local file inclusion (metasploit)
|
webapps exploit |
hardware vulnerability |
| 2020-11-13 |
bludit 3.9.2 - authentication bruteforce bypass (metasploit)
|
webapps exploit |
php vulnerability |
| 2020-11-13 |
asus tm-ac1900 - arbitrary command execution (metasploit)
|
webapps exploit |
hardware vulnerability |
| 2020-11-12 |
ssl pinning bypass - paper (turkish)
|
papers exploit |
multiple vulnerability |
| 2020-11-12 |
nidesoft 3gp video converter 2.6.18 - local stack buffer overflow
|
local exploit |
windows vulnerability |
| 2020-11-12 |
wordpress plugin good lms 2.1.4 - 'id' unauthenticated sql injection
|
webapps exploit |
php vulnerability |
| 2020-11-12 |
water billing system 1.0 - 'username' and 'password' parameters sql injection
|
webapps exploit |
php vulnerability |
| 2020-11-11 |
cmsuno 1.6.2 - 'user' remote code execution (authenticated)
|
webapps exploit |
php vulnerability |
| 2020-11-11 |
customer support system 1.0 - 'username' authentication bypass
|
webapps exploit |
php vulnerability |
| 2020-11-11 |
customer support system 1.0 - cross-site request forgery
|
webapps exploit |
php vulnerability |
| 2020-11-11 |
customer support system 1.0- 'description' stored xss in the admin panel
|
webapps exploit |
php vulnerability |
| 2020-11-10 |
anuko time tracker 1.19.23.5325 - csv/formula injection
|
webapps exploit |
php vulnerability |
| 2020-11-10 |
shoretel conferencing 19.46.1802.0 - reflected cross-site scripting
|
webapps exploit |
php vulnerability |
| 2020-11-10 |
car rental management system 1.0 - sql injection + arbitrary file upload
|
webapps exploit |
php vulnerability |
| 2020-11-09 |
joplin 1.2.6 - 'link' cross site scripting
|
webapps exploit |
multiple vulnerability |
| 2020-11-09 |
privacy drive v3.17.0 - 'pdsvc.exe' unquoted service path
|
local exploit |
windows vulnerability |
| 2020-11-09 |
diskboss v11.7.28 - multiple services unquoted service path
|
local exploit |
windows vulnerability |
| 2020-11-09 |
realtimes desktop service 18.1.4 - 'rpdsvc.exe' unquoted service path
|
local exploit |
windows vulnerability |
| 2020-11-09 |
deep instinct windows agent 1.2.24.0 - 'deepnetworkservice' unquoted service path
|
local exploit |
windows vulnerability |
Register
Easy integrations and simple setup help you start scanning in just some minutes