|
2025-09-16
|
|
Ilevia EVE X1/X5 Server 4.7.18.0.eden - Reverse Rootshell
|
100 |
REMOTE
|
LiquidWorm
|
|
2025-09-16
|
|
ClipBucket 5.5.0 - Arbitrary File Upload
|
47 |
REMOTE
|
Mukundsinh Solanki (r00td3str0y3r)
|
|
2025-09-16
|
|
ClipBucket 5.5.2 Build #90 - Server-Side Request Forgery (SSRF)
|
31 |
REMOTE
|
Mukundsinh Solanki (r00td3str0y3r)
|
|
2025-09-16
|
|
HTTP/2 2.0 - Denial Of Service (DOS)
|
27 |
REMOTE
|
Madhusudhan Rajappa
|
|
2025-09-16
|
|
HTMLDOC 1.9.13 - Stack Buffer Overflow
|
24 |
REMOTE
|
wulfgarpro
|
|
2025-08-26
|
|
GeoVision ASManager Windows Application 6.1.2.0 - Remote Code Execution (RCE)
|
120 |
REMOTE
|
Giorgi Dograshvili
|
|
2025-08-26
|
|
Ivanti Endpoint Manager Mobile 12.5.0.0 - Authentication Bypass
|
48 |
REMOTE
|
İbrahimsql
|
|
2025-08-18
|
|
Tenda AC20 16.03.08.12 - Command Injection
|
105 |
REMOTE
|
Byte Reaper
|
|
2025-08-18
|
|
Microsoft Windows 10.0.19045 - NTLMv2 Hash Disclosure
|
56 |
REMOTE
|
Ruben Enkaoua
|
|
2025-08-18
|
|
PHPMyAdmin 3.0 - Bruteforce Login Bypass
|
89 |
REMOTE
|
Nikola Markovic
|
|
2025-08-11
|
|
Belkin F9K1009 F9K1010 2.00.04/2.00.09 - Hard Coded Credentials
|
61 |
REMOTE
|
Byte Reaper
|
|
2025-08-11
|
|
Microsoft SharePoint Server 2019 (16.0.10383.20020) - Remote Code Execution (RCE)
|
32 |
REMOTE
|
Agampreet Singh
|
|
2025-08-11
|
|
Tigo Energy Cloud Connect Advanced (CCA) 4.0.1 - Command Injection
|
25 |
REMOTE
|
Byte Reaper
|
|
2025-08-11
|
|
Citrix NetScaler ADC/Gateway 14.1 - Memory Disclosure
|
16 |
REMOTE
|
Yesith Alvarez
|
|
2025-08-11
|
|
Cisco ISE 3.0 - Authorization Bypass
|
23 |
REMOTE
|
İbrahimsql
|
|
2025-08-11
|
|
Cisco ISE 3.0 - Remote Code Execution (RCE)
|
34 |
REMOTE
|
İbrahimsql
|
|
2025-08-03
|
|
Swagger UI 1.0.3 - Cross-Site Scripting (XSS)
|
31 |
REMOTE
|
Byte Reaper
|
|
2025-08-03
|
|
Microsoft Edge (Chromium-based) 135.0.7049.114/.115 - Information Disclosure
|
19 |
REMOTE
|
nu11secur1ty
|
|
2025-07-22
|
|
Tenda FH451 1.0.0.9 Router - Stack-based Buffer Overflow
|
13 |
REMOTE
|
Byte Reaper
|
|
2025-07-22
|
|
Microsoft Edge Windows 10 Version 1511 - Cross Site Scripting (XSS)
|
11 |
REMOTE
|
nu11secur1ty
|
|
2025-07-16
|
|
NodeJS 24.x - Path Traversal
|
92 |
REMOTE
|
Abdualhadi khalifa
|
|
2025-07-16
|
|
MikroTik RouterOS 7.19.1 - Reflected XSS
|
52 |
REMOTE
|
Prak Sokchea
|
|
2025-07-16
|
|
Keras 2.15 - Remote Code Execution (RCE)
|
61 |
REMOTE
|
Mohammed Idrees Banyamer
|
|
2025-07-08
|
|
Microsoft Outlook - Remote Code Execution (RCE)
|
106 |
REMOTE
|
nu11secur1ty
|
|
2025-07-08
|
|
ScriptCase 9.12.006 (23) - Remote Command Execution (RCE)
|
83 |
REMOTE
|
Alexandre ZANNI
|
|
2025-07-08
|
|
Microsoft PowerPoint 2019 - Remote Code Execution (RCE)
|
43 |
REMOTE
|
Mohammed Idrees Banyamer
|
|
2025-07-02
|
|
Microsoft SharePoint 2019 - NTLM Authentication
|
50 |
REMOTE
|
nu11secur1ty
|
|
2025-07-02
|
|
gogs 0.13.0 - Remote Code Execution (RCE)
|
95 |
REMOTE
|
cybersploit
|
|
2025-07-02
|
|
Wing FTP Server 7.4.3 - Unauthenticated Remote Code Execution (RCE)
|
104 |
REMOTE
|
4m3rr0r
|
|
2025-06-26
|
|
McAfee Agent 5.7.6 - Insecure Storage of Sensitive Information
|
92 |
REMOTE
|
Keenan Scott
|
|
2025-06-26
|
|
Microsoft Excel 2024 Use after free - Remote Code Execution (RCE)
|
63 |
REMOTE
|
nu11secur1ty
|
|
2025-06-26
|
|
freeSSHd 1.0.9 - Denial of Service (DoS)
|
38 |
REMOTE
|
Fernando Mengali
|
|
2025-06-26
|
|
OneTrust SDK 6.33.0 - Denial Of Service (DoS)
|
29 |
REMOTE
|
Alameen Karim Merali
|
|
2025-06-26
|
|
PX4 Military UAV Autopilot 1.12.3 - Denial of Service (DoS)
|
30 |
REMOTE
|
Mohammed Idrees Banyamer
|
|
2025-06-20
|
|
Ingress-NGINX 4.11.0 - Remote Code Execution (RCE)
|
86 |
REMOTE
|
Likhith Appalaneni
|
|
2025-06-20
|
|
FortiOS SSL-VPN 7.4.4 - Insufficient Session Expiration & Cookie Reuse
|
48 |
REMOTE
|
Shahid Hakim
|
|
2025-06-15
|
|
WebDAV Windows 10 - Remote Code Execution (RCE)
|
51 |
REMOTE
|
Dev Bui Hieu
|
|
2025-06-15
|
|
AirKeyboard iOS App 1.0.5 - Remote Input Injection
|
27 |
REMOTE
|
Chokri Hammedi
|
|
2025-06-15
|
|
Windows 11 SMB Client - Privilege Escalation & Remote Code Execution (RCE)
|
46 |
REMOTE
|
Mohammed Idrees Banyamer
|
|
2025-06-15
|
|
PCMan FTP Server 2.0.7 - Buffer Overflow
|
26 |
REMOTE
|
Fernando Mengali
|
|
2025-06-13
|
|
Windows File Explorer Windows 10 Pro x64 - TAR Extraction
|
34 |
REMOTE
|
Daniel Miranda
|
|
2025-06-13
|
|
Freefloat FTP Server 1.0 - Remote Buffer Overflow
|
35 |
REMOTE
|
Fernando Mengali
|
|
2025-06-09
|
|
ProSSHD 1.2 20090726 - Denial of Service (DoS)
|
34 |
REMOTE
|
Fernando Mengali
|
|
2025-06-05
|
|
Apache Tomcat 10.1.39 - Denial of Service (DoS)
|
51 |
REMOTE
|
Abdualhadi khalifa
|
|
2025-06-05
|
|
ABB Cylon Aspect 3.08.04 DeploySource - Remote Code Execution (RCE)
|
34 |
REMOTE
|
LiquidWorm
|
|
2025-06-05
|
|
Microsoft Windows Server 2025 JScript Engine - Remote Code Execution (RCE)
|
24 |
REMOTE
|
Mohammed Idrees Banyamer
|
|
2025-06-05
|
|
Grandstream GSD3710 1.0.11.13 - Stack Overflow
|
22 |
REMOTE
|
Pepelux
|
|
2025-05-29
|
|
SolarWinds Serv-U 15.4.2 HF1 - Directory Traversal
|
37 |
REMOTE
|
İbrahimsql
|
|
2025-05-29
|
|
Windows File Explorer Windows 11 (23H2) - NTLM Hash Disclosure
|
23 |
REMOTE
|
Mohammed Idrees Banyamer
|
|
2025-05-29
|
|
Automic Agent 24.3.0 HF4 - Privilege Escalation
|
23 |
REMOTE
|
Flora Schäfer
|
|
2025-05-29
|
|
Fortra GoAnywhere MFT 7.4.1 - Authentication Bypass
|
21 |
REMOTE
|
İbrahimsql
|
|
2025-05-25
|
|
ABB Cylon Aspect 3.08.03 - Guest2Root Privilege Escalation
|
26 |
REMOTE
|
LiquidWorm
|
|
2025-05-25
|
|
Grandstream GSD3710 1.0.11.13 - Stack Buffer Overflow
|
26 |
REMOTE
|
Pepelux
|
|
2025-05-25
|
|
Windows 2024.15 - Unauthenticated Desktop Screenshot Capture
|
20 |
REMOTE
|
Chokri Hammedi
|
|
2025-05-21
|
|
Remote Keyboard Desktop 1.0.1 - Remote Code Execution (RCE)
|
44 |
REMOTE
|
Chokri Hammedi
|
|
2025-05-18
|
|
CrushFTP 11.3.1 - Authentication Bypass
|
42 |
REMOTE
|
İbrahimsql
|
|
2025-05-18
|
|
Invision Community 5.0.6 - Remote Code Execution (RCE)
|
23 |
REMOTE
|
Egidio Romano
|
|
2025-05-09
|
|
Apache ActiveMQ 6.1.6 - Denial of Service (DOS)
|
16 |
REMOTE
|
Abdualhadi khalifa
|
|
2025-04-22
|
|
Firefox ESR 115.11 - PDF.js Arbitrary JavaScript execution
|
14 |
REMOTE
|
Milad karimi
|
|
2025-04-22
|
|
code-projects Online Exam Mastering System 1.0 - Reflected Cross-Site Scripting (XSS)
|
24 |
REMOTE
|
Pruthu Raut
|
|
2025-04-22
|
|
WonderCMS 3.4.2 - Remote Code Execution (RCE)
|
29 |
REMOTE
|
Milad karimi
|
|
2025-04-22
|
|
OpenSSH server (sshd) 9.8p1 - Race Condition
|
18 |
REMOTE
|
Milad karimi
|
|
2025-04-18
|
|
Langflow 1.3.0 - Remote Code Execution (RCE)
|
12 |
REMOTE
|
VeryLazyTech
|
|
2025-04-17
|
|
TP-Link VN020 F3v(T) TT_V6.2.1021 - Denial Of Service (DOS)
|
10 |
REMOTE
|
Mohamed Maatallah
|
|
2025-04-17
|
|
TP-Link VN020 F3v(T) TT_V6.2.1021 - Buffer Overflow Memory Corruption
|
12 |
REMOTE
|
Mohamed Maatallah
|
|
2025-04-16
|
|
Dell EMC iDRAC7/iDRAC8 2.52.52.52 - Remote Code Execution (RCE)
|
26 |
REMOTE
|
Photubias
|
|
2025-04-16
|
|
Fortinet FortiOS_ FortiProxy_ and FortiSwitchManager 7.2.0 - Authentication bypass
|
15 |
REMOTE
|
ub3rsick
|
|
2025-04-16
|
|
WebMethods Integration Server 10.15.0.0000-0092 - Improper Access on Login Page
|
13 |
REMOTE
|
Rasime Ekici
|
|
2025-04-16
|
|
Hugging Face Transformers MobileViTV2 4.41.1 - Remote Code Execution (RCE)
|
21 |
REMOTE
|
The Kernel Panic
|
|
2025-04-15
|
|
Ivanti Connect Secure 22.7R2.5 - Remote Code Execution (RCE)
|
20 |
REMOTE
|
Abdualhadi khalifa
|
|
2025-04-15
|
|
Pymatgen 2024.1 - Remote Code Execution (RCE)
|
21 |
REMOTE
|
Mohammed Idrees Banyamer
|
|
2025-04-14
|
|
GestioIP 3.5.7 - Remote Command Execution (RCE)
|
25 |
REMOTE
|
Maximiliano Belino
|
|
2025-04-14
|
|
GestioIP 3.5.7 - Cross-Site Scripting (XSS)
|
9 |
REMOTE
|
Maximiliano Belino
|
|
2025-04-14
|
|
GestioIP 3.5.7 - Reflected Cross-Site Scripting (Reflected XSS)
|
9 |
REMOTE
|
Maximiliano Belino
|
|
2025-04-14
|
|
GestioIP 3.5.7 - Stored Cross-Site Scripting (Stored XSS)
|
8 |
REMOTE
|
Maximiliano Belino
|
|
2025-04-14
|
|
GestioIP 3.5.7 - Cross-Site Request Forgery (CSRF)
|
10 |
REMOTE
|
Maximiliano Belino
|
|
2025-04-10
|
|
K7 Ultimate Security K7RKScan.sys 17.0.2019 - Denial Of Service (DoS)
|
10 |
REMOTE
|
M. Akil Gündoğan
|
|
2025-04-08
|
|
Sony XAV-AX5500 1.13 - Firmware Update Validation Remote Code Execution (RCE)
|
11 |
REMOTE
|
lkushinada
|
|
2025-04-08
|
|
InfluxDB OSS 2.7.11 - Operator Token Privilege Escalation
|
7 |
REMOTE
|
Andrea Pasin
|
|
2025-04-05
|
|
Microchip TimeProvider 4100 Grandmaster (Data plot modules) 2.4.6 - SQL Injection
|
11 |
REMOTE
|
Armando Huesca Prida
|
|
2025-04-04
|
|
Angular-Base64-Upload Library 0.1.20 - Remote Code Execution (RCE)
|
11 |
REMOTE
|
Ravindu Wickramasinghe
|
|
2025-04-04
|
|
Microchip TimeProvider 4100 Grandmaster (Banner Config Modules) 2.4.6 - Stored Cross-Site Scripting
|
8 |
REMOTE
|
Armando Huesca Prida
|
|
2025-04-04
|
|
Microchip TimeProvider 4100 (Configuration modules) 2.4.6 - OS Command Injection
|
6 |
REMOTE
|
Armando Huesca Prida
|
|
2025-04-03
|
|
Microsoft Office 2019 MSO Build 1808 - NTLMv2 Hash Disclosure
|
9 |
REMOTE
|
Metin Yunus Kandemir
|
|
2025-04-03
|
|
Vite 6.2.2 - Arbitrary File Read
|
15 |
REMOTE
|
4m3rr0r
|
|
2025-04-02
|
|
SAP NetWeaver - 7.53 - HTTP Request Smuggling
|
13 |
REMOTE
|
C41Tx90
|
|
2025-03-22
|
|
Aztech DSL5005EN Router - 'sysAccess.asp' Admin Password Change (Unauthenticated)
|
17 |
REMOTE
|
Amir Hossein Jamshidi
|
|
2025-03-22
|
|
Microsoft Windows - NTLM Hash Leak Malicious Windows Theme
|
7 |
REMOTE
|
Abinesh kamal K U
|
|
2024-05-13
|
|
CrushFTP < 11.1.0 - Directory Traversal
|
18 |
REMOTE
|
Abdualhadi khalifa
|
|
2024-04-21
|
|
Palo Alto PAN-OS < v11.1.2-h3 - Command Injection and Arbitrary File Creation
|
15 |
REMOTE
|
Kr0ff
|
|
2024-04-12
|
|
MinIO < 2024-01-31T20-20-33Z - Privilege Escalation
|
11 |
REMOTE
|
Jenson Zhao
|
|
2024-04-08
|
|
Positron Broadcast Signal Processor TRA7005 v1.20 - Authentication Bypass
|
9 |
REMOTE
|
LiquidWorm
|
|
2024-04-02
|
|
GL-iNet MT6000 4.5.5 - Arbitrary File Download
|
12 |
REMOTE
|
Bandar Alharbi
|
|
2024-03-28
|
|
WinRAR version 6.22 - Remote Code Execution via ZIP archive
|
15 |
REMOTE
|
E1 Coders
|
|
2024-03-28
|
|
Siklu MultiHaul TG series < 2.0.0 - unauthenticated credential disclosure
|
24 |
REMOTE
|
semaja2
|
|
2024-03-28
|
|
Asterisk AMI - Partial File Content & Path Disclosure (Authenticated)
|
10 |
REMOTE
|
Sean Pesce
|
|
2024-03-25
|
|
LBT-T300-mini1 - Remote Buffer Overflow
|
10 |
REMOTE
|
Amirhossein Bahramizadeh
|
|
2024-03-22
|
|
minaliC 2.0.0 - Denied of Service
|
12 |
REMOTE
|
Fernando Mengali
|
|
2024-03-20
|
|
HNAS SMU 14.8.7825 - Information Disclosure
|
11 |
REMOTE
|
Arslan Masood
|
|
2024-03-18
|
|
TELSAT marKoni FM Transmitter 1.9.5 - Insecure Access Control Change Password
|
7 |
REMOTE
|
LiquidWorm
|
|
2024-03-18
|
|
TELSAT marKoni FM Transmitter 1.9.5 - Backdoor Account Information Disclosure
|
12 |
REMOTE
|
LiquidWorm
|
|
2024-03-18
|
|
TELSAT marKoni FM Transmitter 1.9.5 - Root Command Injection
|
9 |
REMOTE
|
LiquidWorm
|
|
2024-03-14
|
|
GitLab CE/EE < 16.7.2 - Password Reset
|
11 |
REMOTE
|
0xB455
|
|
2024-03-14
|
|
Ruijie Switch PSG-5124 26293 - Remote Code Execution (RCE)
|
13 |
REMOTE
|
ByteHunter
|
|
2024-03-14
|
|
Viessmann Vitogate 300 2.1.3.0 - Remote Code Execution (RCE)
|
14 |
REMOTE
|
ByteHunter
|
|
2024-03-14
|
|
SolarView Compact 6.00 - Command Injection
|
7 |
REMOTE
|
ByteHunter
|
|
2024-03-14
|
|
Honeywell PM43 < P10.19.050004 - Remote Code Execution (RCE)
|
13 |
REMOTE
|
ByteHunter
|
|
2024-03-14
|
|
JetBrains TeamCity 2023.05.3 - Remote Code Execution (RCE)
|
11 |
REMOTE
|
ByteHunter
|
|
2024-03-12
|
|
VMware Cloud Director 10.5 - Bypass identity verification
|
9 |
REMOTE
|
Abdualhadi khalifa
|
|
2024-03-03
|
|
R Radio Network FM Transmitter 1.07 system.cgi - Password Disclosure
|
13 |
REMOTE
|
LiquidWorm
|
|
2024-03-03
|
|
GL.iNet AR300M v3.216 Remote Code Execution - CVE-2023-46456 Exploit
|
7 |
REMOTE
|
cyberaz0r
|
|
2024-03-03
|
|
TitanNit Web Control 2.01 / Atemio 7600 - Root Remote Code Execution
|
7 |
REMOTE
|
LiquidWorm
|
|
2024-03-03
|
|
GL.iNet AR300M v4.3.7 Remote Code Execution - CVE-2023-46454 Exploit
|
10 |
REMOTE
|
cyberaz0r
|
|
2024-03-03
|
|
GL.iNet AR300M v4.3.7 Arbitrary File Read - CVE-2023-46455 Exploit
|
7 |
REMOTE
|
cyberaz0r
|
|
2024-03-03
|
|
Maxima Max Pro Power - BLE Traffic Replay (Unauthenticated)
|
9 |
REMOTE
|
Alok kumar
|
|
2024-03-03
|
|
TPC-110W - Missing Authentication for Critical Function
|
7 |
REMOTE
|
Amirhossein Bahramizadeh
|
|
2024-03-03
|
|
Enrollment System v1.0 - SQL Injection
|
12 |
REMOTE
|
Gnanaraj Mauviel
|
|
2024-03-03
|
|
AC Repair and Services System v1.0 - Multiple SQL Injection
|
10 |
REMOTE
|
Gnanaraj Mauviel
|
|
2024-03-03
|
|
Simple Student Attendance System v1.0 - 'classid' Time Based Blind & Union Based SQL Injection
|
8 |
REMOTE
|
Gnanaraj Mauviel
|
|
2024-03-03
|
|
Simple Student Attendance System v1.0 - Time Based Blind SQL Injection
|
12 |
REMOTE
|
Gnanaraj Mauviel
|
|
2024-03-03
|
|
Real Estate Management System v1.0 - Remote Code Execution via File Upload
|
11 |
REMOTE
|
Diyar Saadi
|
|
2024-03-03
|
|
Petrol Pump Management Software v1.0 - Remote Code Execution via File Upload
|
9 |
REMOTE
|
Shubham Pandey
|
|
2024-03-03
|
|
Petrol Pump Management Software v.1.0 - SQL Injection
|
9 |
REMOTE
|
Shubham Pandey
|
|
2024-03-03
|
|
Petrol Pump Management Software v.1.0 - Stored Cross Site Scripting via SVG file
|
9 |
REMOTE
|
Shubham Pandey
|
|
2024-03-03
|
|
Petrol Pump Management Software v1.0 - 'Address' Stored Cross Site Scripting
|
7 |
REMOTE
|
Shubham Pandey
|
