|
2025-06-09
|
|
ProSSHD 1.2 20090726 - Denial of Service (DoS)
|
4 |
REMOTE
|
Fernando Mengali
|
|
2025-06-05
|
|
Apache Tomcat 10.1.39 - Denial of Service (DoS)
|
19 |
REMOTE
|
Abdualhadi khalifa
|
|
2025-06-05
|
|
ABB Cylon Aspect 3.08.04 DeploySource - Remote Code Execution (RCE)
|
8 |
REMOTE
|
LiquidWorm
|
|
2025-06-05
|
|
Microsoft Windows Server 2025 JScript Engine - Remote Code Execution (RCE)
|
10 |
REMOTE
|
Mohammed Idrees Banyamer
|
|
2025-06-05
|
|
Grandstream GSD3710 1.0.11.13 - Stack Overflow
|
5 |
REMOTE
|
Pepelux
|
|
2025-05-29
|
|
SolarWinds Serv-U 15.4.2 HF1 - Directory Traversal
|
15 |
REMOTE
|
İbrahimsql
|
|
2025-05-29
|
|
Windows File Explorer Windows 11 (23H2) - NTLM Hash Disclosure
|
4 |
REMOTE
|
Mohammed Idrees Banyamer
|
|
2025-05-29
|
|
Automic Agent 24.3.0 HF4 - Privilege Escalation
|
10 |
REMOTE
|
Flora Schäfer
|
|
2025-05-29
|
|
Fortra GoAnywhere MFT 7.4.1 - Authentication Bypass
|
5 |
REMOTE
|
İbrahimsql
|
|
2025-05-25
|
|
ABB Cylon Aspect 3.08.03 - Guest2Root Privilege Escalation
|
6 |
REMOTE
|
LiquidWorm
|
|
2025-05-25
|
|
Grandstream GSD3710 1.0.11.13 - Stack Buffer Overflow
|
8 |
REMOTE
|
Pepelux
|
|
2025-05-25
|
|
Windows 2024.15 - Unauthenticated Desktop Screenshot Capture
|
5 |
REMOTE
|
Chokri Hammedi
|
|
2025-05-21
|
|
Remote Keyboard Desktop 1.0.1 - Remote Code Execution (RCE)
|
6 |
REMOTE
|
Chokri Hammedi
|
|
2025-05-18
|
|
CrushFTP 11.3.1 - Authentication Bypass
|
7 |
REMOTE
|
İbrahimsql
|
|
2025-05-18
|
|
Invision Community 5.0.6 - Remote Code Execution (RCE)
|
7 |
REMOTE
|
Egidio Romano
|
|
2025-05-09
|
|
Apache ActiveMQ 6.1.6 - Denial of Service (DOS)
|
6 |
REMOTE
|
Abdualhadi khalifa
|
|
2025-04-22
|
|
Firefox ESR 115.11 - PDF.js Arbitrary JavaScript execution
|
5 |
REMOTE
|
Milad karimi
|
|
2025-04-22
|
|
code-projects Online Exam Mastering System 1.0 - Reflected Cross-Site Scripting (XSS)
|
5 |
REMOTE
|
Pruthu Raut
|
|
2025-04-22
|
|
WonderCMS 3.4.2 - Remote Code Execution (RCE)
|
5 |
REMOTE
|
Milad karimi
|
|
2025-04-22
|
|
OpenSSH server (sshd) 9.8p1 - Race Condition
|
6 |
REMOTE
|
Milad karimi
|
|
2025-04-18
|
|
Langflow 1.3.0 - Remote Code Execution (RCE)
|
6 |
REMOTE
|
VeryLazyTech
|
|
2025-04-17
|
|
TP-Link VN020 F3v(T) TT_V6.2.1021 - Denial Of Service (DOS)
|
2 |
REMOTE
|
Mohamed Maatallah
|
|
2025-04-17
|
|
TP-Link VN020 F3v(T) TT_V6.2.1021 - Buffer Overflow Memory Corruption
|
4 |
REMOTE
|
Mohamed Maatallah
|
|
2025-04-16
|
|
Dell EMC iDRAC7/iDRAC8 2.52.52.52 - Remote Code Execution (RCE)
|
5 |
REMOTE
|
Photubias
|
|
2025-04-16
|
|
Fortinet FortiOS_ FortiProxy_ and FortiSwitchManager 7.2.0 - Authentication bypass
|
2 |
REMOTE
|
ub3rsick
|
|
2025-04-16
|
|
WebMethods Integration Server 10.15.0.0000-0092 - Improper Access on Login Page
|
2 |
REMOTE
|
Rasime Ekici
|
|
2025-04-16
|
|
Hugging Face Transformers MobileViTV2 4.41.1 - Remote Code Execution (RCE)
|
5 |
REMOTE
|
The Kernel Panic
|
|
2025-04-15
|
|
Ivanti Connect Secure 22.7R2.5 - Remote Code Execution (RCE)
|
2 |
REMOTE
|
Abdualhadi khalifa
|
|
2025-04-15
|
|
Pymatgen 2024.1 - Remote Code Execution (RCE)
|
3 |
REMOTE
|
Mohammed Idrees Banyamer
|
|
2025-04-14
|
|
GestioIP 3.5.7 - Remote Command Execution (RCE)
|
3 |
REMOTE
|
Maximiliano Belino
|
|
2025-04-14
|
|
GestioIP 3.5.7 - Cross-Site Scripting (XSS)
|
2 |
REMOTE
|
Maximiliano Belino
|
|
2025-04-14
|
|
GestioIP 3.5.7 - Reflected Cross-Site Scripting (Reflected XSS)
|
2 |
REMOTE
|
Maximiliano Belino
|
|
2025-04-14
|
|
GestioIP 3.5.7 - Stored Cross-Site Scripting (Stored XSS)
|
2 |
REMOTE
|
Maximiliano Belino
|
|
2025-04-14
|
|
GestioIP 3.5.7 - Cross-Site Request Forgery (CSRF)
|
2 |
REMOTE
|
Maximiliano Belino
|
|
2025-04-10
|
|
K7 Ultimate Security K7RKScan.sys 17.0.2019 - Denial Of Service (DoS)
|
1 |
REMOTE
|
M. Akil Gündoğan
|
|
2025-04-08
|
|
Sony XAV-AX5500 1.13 - Firmware Update Validation Remote Code Execution (RCE)
|
2 |
REMOTE
|
lkushinada
|
|
2025-04-08
|
|
InfluxDB OSS 2.7.11 - Operator Token Privilege Escalation
|
1 |
REMOTE
|
Andrea Pasin
|
|
2025-04-05
|
|
Microchip TimeProvider 4100 Grandmaster (Data plot modules) 2.4.6 - SQL Injection
|
1 |
REMOTE
|
Armando Huesca Prida
|
|
2025-04-04
|
|
Angular-Base64-Upload Library 0.1.20 - Remote Code Execution (RCE)
|
2 |
REMOTE
|
Ravindu Wickramasinghe
|
|
2025-04-04
|
|
Microchip TimeProvider 4100 Grandmaster (Banner Config Modules) 2.4.6 - Stored Cross-Site Scripting
|
2 |
REMOTE
|
Armando Huesca Prida
|
|
2025-04-04
|
|
Microchip TimeProvider 4100 (Configuration modules) 2.4.6 - OS Command Injection
|
2 |
REMOTE
|
Armando Huesca Prida
|
|
2025-04-03
|
|
Microsoft Office 2019 MSO Build 1808 - NTLMv2 Hash Disclosure
|
2 |
REMOTE
|
Metin Yunus Kandemir
|
|
2025-04-03
|
|
Vite 6.2.2 - Arbitrary File Read
|
2 |
REMOTE
|
4m3rr0r
|
|
2025-04-02
|
|
SAP NetWeaver - 7.53 - HTTP Request Smuggling
|
2 |
REMOTE
|
C41Tx90
|
|
2025-03-22
|
|
Aztech DSL5005EN Router - 'sysAccess.asp' Admin Password Change (Unauthenticated)
|
2 |
REMOTE
|
Amir Hossein Jamshidi
|
|
2025-03-22
|
|
Microsoft Windows - NTLM Hash Leak Malicious Windows Theme
|
2 |
REMOTE
|
Abinesh kamal K U
|
|
2024-05-13
|
|
CrushFTP < 11.1.0 - Directory Traversal
|
2 |
REMOTE
|
Abdualhadi khalifa
|
|
2024-04-21
|
|
Palo Alto PAN-OS < v11.1.2-h3 - Command Injection and Arbitrary File Creation
|
2 |
REMOTE
|
Kr0ff
|
|
2024-04-12
|
|
MinIO < 2024-01-31T20-20-33Z - Privilege Escalation
|
2 |
REMOTE
|
Jenson Zhao
|
|
2024-04-08
|
|
Positron Broadcast Signal Processor TRA7005 v1.20 - Authentication Bypass
|
1 |
REMOTE
|
LiquidWorm
|
|
2024-04-02
|
|
GL-iNet MT6000 4.5.5 - Arbitrary File Download
|
2 |
REMOTE
|
Bandar Alharbi
|
|
2024-03-28
|
|
WinRAR version 6.22 - Remote Code Execution via ZIP archive
|
2 |
REMOTE
|
E1 Coders
|
|
2024-03-28
|
|
Siklu MultiHaul TG series < 2.0.0 - unauthenticated credential disclosure
|
3 |
REMOTE
|
semaja2
|
|
2024-03-28
|
|
Asterisk AMI - Partial File Content & Path Disclosure (Authenticated)
|
0 |
REMOTE
|
Sean Pesce
|
|
2024-03-25
|
|
LBT-T300-mini1 - Remote Buffer Overflow
|
1 |
REMOTE
|
Amirhossein Bahramizadeh
|
|
2024-03-22
|
|
minaliC 2.0.0 - Denied of Service
|
1 |
REMOTE
|
Fernando Mengali
|
|
2024-03-20
|
|
HNAS SMU 14.8.7825 - Information Disclosure
|
1 |
REMOTE
|
Arslan Masood
|
|
2024-03-18
|
|
TELSAT marKoni FM Transmitter 1.9.5 - Insecure Access Control Change Password
|
1 |
REMOTE
|
LiquidWorm
|
|
2024-03-18
|
|
TELSAT marKoni FM Transmitter 1.9.5 - Backdoor Account Information Disclosure
|
1 |
REMOTE
|
LiquidWorm
|
|
2024-03-18
|
|
TELSAT marKoni FM Transmitter 1.9.5 - Root Command Injection
|
1 |
REMOTE
|
LiquidWorm
|
|
2024-03-14
|
|
GitLab CE/EE < 16.7.2 - Password Reset
|
2 |
REMOTE
|
0xB455
|
|
2024-03-14
|
|
Ruijie Switch PSG-5124 26293 - Remote Code Execution (RCE)
|
3 |
REMOTE
|
ByteHunter
|
|
2024-03-14
|
|
Viessmann Vitogate 300 2.1.3.0 - Remote Code Execution (RCE)
|
3 |
REMOTE
|
ByteHunter
|
|
2024-03-14
|
|
SolarView Compact 6.00 - Command Injection
|
1 |
REMOTE
|
ByteHunter
|
|
2024-03-14
|
|
Honeywell PM43 < P10.19.050004 - Remote Code Execution (RCE)
|
3 |
REMOTE
|
ByteHunter
|
|
2024-03-14
|
|
JetBrains TeamCity 2023.05.3 - Remote Code Execution (RCE)
|
2 |
REMOTE
|
ByteHunter
|
|
2024-03-12
|
|
VMware Cloud Director 10.5 - Bypass identity verification
|
2 |
REMOTE
|
Abdualhadi khalifa
|
|
2024-03-03
|
|
R Radio Network FM Transmitter 1.07 system.cgi - Password Disclosure
|
1 |
REMOTE
|
LiquidWorm
|
|
2024-03-03
|
|
GL.iNet AR300M v3.216 Remote Code Execution - CVE-2023-46456 Exploit
|
2 |
REMOTE
|
cyberaz0r
|
|
2024-03-03
|
|
TitanNit Web Control 2.01 / Atemio 7600 - Root Remote Code Execution
|
0 |
REMOTE
|
LiquidWorm
|
|
2024-03-03
|
|
GL.iNet AR300M v4.3.7 Remote Code Execution - CVE-2023-46454 Exploit
|
2 |
REMOTE
|
cyberaz0r
|
|
2024-03-03
|
|
GL.iNet AR300M v4.3.7 Arbitrary File Read - CVE-2023-46455 Exploit
|
1 |
REMOTE
|
cyberaz0r
|
|
2024-03-03
|
|
Maxima Max Pro Power - BLE Traffic Replay (Unauthenticated)
|
2 |
REMOTE
|
Alok kumar
|
|
2024-03-03
|
|
TPC-110W - Missing Authentication for Critical Function
|
2 |
REMOTE
|
Amirhossein Bahramizadeh
|
|
2024-03-03
|
|
Enrollment System v1.0 - SQL Injection
|
2 |
REMOTE
|
Gnanaraj Mauviel
|
|
2024-03-03
|
|
AC Repair and Services System v1.0 - Multiple SQL Injection
|
2 |
REMOTE
|
Gnanaraj Mauviel
|
|
2024-03-03
|
|
Simple Student Attendance System v1.0 - 'classid' Time Based Blind & Union Based SQL Injection
|
1 |
REMOTE
|
Gnanaraj Mauviel
|
|
2024-03-03
|
|
Simple Student Attendance System v1.0 - Time Based Blind SQL Injection
|
2 |
REMOTE
|
Gnanaraj Mauviel
|
|
2024-03-03
|
|
Real Estate Management System v1.0 - Remote Code Execution via File Upload
|
2 |
REMOTE
|
Diyar Saadi
|
|
2024-03-03
|
|
Petrol Pump Management Software v1.0 - Remote Code Execution via File Upload
|
2 |
REMOTE
|
Shubham Pandey
|
|
2024-03-03
|
|
Petrol Pump Management Software v.1.0 - SQL Injection
|
2 |
REMOTE
|
Shubham Pandey
|
|
2024-03-03
|
|
Petrol Pump Management Software v.1.0 - Stored Cross Site Scripting via SVG file
|
1 |
REMOTE
|
Shubham Pandey
|
|
2024-03-03
|
|
Petrol Pump Management Software v1.0 - 'Address' Stored Cross Site Scripting
|
2 |
REMOTE
|
Shubham Pandey
|
|
2024-02-27
|
|
TEM Opera Plus FM Family Transmitter 35.45 - XSRF
|
2 |
REMOTE
|
LiquidWorm
|
|
2024-02-27
|
|
TEM Opera Plus FM Family Transmitter 35.45 - Remote Code Execution
|
3 |
REMOTE
|
LiquidWorm
|
|
2024-02-27
|
|
Executables Created with perl2exe < V30.10C - Arbitrary Code Execution
|
2 |
REMOTE
|
decrazyo
|
|
2024-02-26
|
|
IBM i Access Client Solutions v1.1.2 - 1.1.4_ v1.1.4.3 - 1.1.9.4 - Remote Credential Theft
|
2 |
REMOTE
|
hyp3rlinx
|
|
2024-02-26
|
|
Wyrestorm Apollo VX20 < 1.3.58 - Incorrect Access Control 'Credentials Disclosure'
|
2 |
REMOTE
|
hyp3rlinx
|
|
2024-02-26
|
|
Wyrestorm Apollo VX20 < 1.3.58 - Account Enumeration
|
1 |
REMOTE
|
hyp3rlinx
|
|
2024-02-26
|
|
FAQ Management System v1.0 - 'faq' SQL Injection
|
2 |
REMOTE
|
SoSPiro
|
|
2024-02-26
|
|
Flashcard Quiz App v1.0 - 'card' SQL Injection
|
2 |
REMOTE
|
SoSPiro
|
|
2024-02-26
|
|
Simple Inventory Management System v1.0 - 'email' SQL Injection
|
2 |
REMOTE
|
SoSPiro
|
|
2024-02-09
|
|
Zyxel zysh - Format string
|
3 |
REMOTE
|
Marco Ivaldi
|
|
2024-02-05
|
|
Milesight Routers UR5X_ UR32L_ UR32_ UR35_ UR41 - Credential Leakage Through Unprotected System Logs
|
2 |
REMOTE
|
Bipin Jitiya
|
|
2024-02-02
|
|
PCMan FTP Server 2.0 - 'pwd' Remote Buffer Overflow
|
2 |
REMOTE
|
Waqas Ahmed Faroouqi
|
|
2024-02-02
|
|
WebCatalog 48.4 - Arbitrary Protocol Execution
|
1 |
REMOTE
|
ItsSixtyN3in
|
|
2024-01-31
|
|
RoyalTSX 6.0.1 - RTSZ File Handling Heap Memory Corruption PoC
|
2 |
REMOTE
|
LiquidWorm
|
|
2024-01-31
|
|
Proxmox VE - TOTP Brute Force
|
2 |
REMOTE
|
Cory Cline_ Gabe Rust
|
|
2024-01-29
|
|
Ricoh Printer - Directory and File Exposure
|
2 |
REMOTE
|
Thomas Heverin
|
|
2024-01-29
|
|
Blood Bank & Donor Management System using v2.2 - Stored XSS
|
2 |
REMOTE
|
SoSPiro
|
|
2024-01-29
|
|
Equipment Rental Script-1.0 - SQLi
|
2 |
REMOTE
|
nu11secur1ty
|
|
2023-10-09
|
|
Atcom 2.7.x.x - Authenticated Command Injection
|
2 |
REMOTE
|
Mohammed Adel
|
|
2023-10-09
|
|
Tinycontrol LAN Controller v3 (LK3) 1.58a - Remote Admin Password Change
|
2 |
REMOTE
|
LiquidWorm
|
|
2023-10-09
|
|
Tinycontrol LAN Controller v3 (LK3) 1.58a - Remote Credentials Extraction
|
2 |
REMOTE
|
LiquidWorm
|
|
2023-10-09
|
|
Ruijie Reyee Mesh Router - MITM Remote Code Execution (RCE)
|
2 |
REMOTE
|
Riyan Firmansyah of Seclab
|
|
2023-09-08
|
|
Techview LA-5570 Wireless Gateway Home Automation Controller - Multiple Vulnerabilities
|
2 |
REMOTE
|
The Security Team [exploitsecurity.io]
|
|
2023-09-08
|
|
GOM Player 2.3.90.5360 - Remote Code Execution (RCE)
|
1 |
REMOTE
|
M. Akil Gündoğan
|
|
2023-09-04
|
|
Ivanti Avalanche
|
1 |
REMOTE
|
Robel Campbell
|
|
2023-08-21
|
|
EuroTel ETL3100 - Transmitter Unauthenticated Config/Log Download
|
2 |
REMOTE
|
LiquidWorm
|
|
2023-08-21
|
|
EuroTel ETL3100 - Transmitter Authorization Bypass (IDOR)
|
2 |
REMOTE
|
LiquidWorm
|
|
2023-08-21
|
|
EuroTel ETL3100 - Transmitter Default Credentials
|
2 |
REMOTE
|
LiquidWorm
|
|
2023-08-21
|
|
TSPlus 16.0.0.0 - Remote Work Insecure Credential storage
|
2 |
REMOTE
|
shinnai
|
|
2023-08-21
|
|
TSplus 16.0.0.0 - Remote Work Insecure Files and Folders
|
2 |
REMOTE
|
shinnai
|
|
2023-08-21
|
|
TSplus 16.0.2.14 - Remote Access Insecure Files and Folders Permissions
|
2 |
REMOTE
|
shinnai
|
|
2023-08-10
|
|
TP-Link Archer AX21 - Unauthenticated Command Injection
|
2 |
REMOTE
|
Voyag3r
|
|
2023-08-04
|
|
Shelly PRO 4PM v0.11.0 - Authentication Bypass
|
1 |
REMOTE
|
The Security Team [exploitsecurity.io]
|
|
2023-08-04
|
|
ReyeeOS 1.204.1614 - MITM Remote Code Execution (RCE)
|
2 |
REMOTE
|
Riyan Firmansyah of Seclab
|
|
2023-07-20
|
|
Microsoft Office 365 Version 18.2305.1222.0 - Elevation of Privilege + RCE.
|
2 |
REMOTE
|
nu11secur1ty
|
|
2023-07-19
|
|
Hikvision Hybrid SAN Ds-a71024 Firmware - Multiple Remote Code Execution
|
2 |
REMOTE
|
Thurein Soe
|
|
2023-07-07
|
|
Windows 10 v21H1 - HTTP Protocol Stack Remote Code Execution
|
2 |
REMOTE
|
nu11secur1ty
|
|
2023-07-07
|
|
Microsoft Outlook Microsoft 365 MSO (Version 2306 Build 16.0.16529.20100) 32-bit - Remote Code Execu
|
2 |
REMOTE
|
nu11secur1ty
|
|
2023-07-03
|
|
Microsoft 365 MSO (Version 2305 Build 16.0.16501.20074) 32-bit - Remote Code Execution (RCE)
|
1 |
REMOTE
|
nu11secur1ty
|
|
2023-07-03
|
|
Microsoft 365 MSO (Version 2305 Build 16.0.16501.20074) 64-bit - Remote Code Execution (RCE)
|
1 |
REMOTE
|
nu11secur1ty
|
|
2023-06-26
|
|
Azure Apache Ambari 2302250400 - Spoofing
|
2 |
REMOTE
|
Amirhossein Bahramizadeh
|
|
2023-06-22
|
|
Microsoft OneNote (Version 2305 Build 16.0.16501.20074) 64-bit - Spoofing
|
2 |
REMOTE
|
nu11secur1ty
|
