المساعد الشخصي الرقمي

مشاهدة النسخة كاملة : قسم الثغرات

الصفحات : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 [62]
  1. [webapps] Litespeed Cache WordPress Plugin 6.3.0.1 - Privilege Escalation
  2. [webapps] Anchor CMS 0.12.7 - Stored Cross Site Scripting (XSS)
  3. [remote] PCMan FTP Server 2.0.7 - Buffer Overflow
  4. [remote] Windows File Explorer Windows 10 Pro x64 - TAR Extraction
  5. [webapps] Roundcube 1.6.10 - Remote Code Execution (RCE)
  6. [remote] Freefloat FTP Server 1.0 - Remote Buffer Overflow
  7. [remote] Ingress-NGINX 4.11.0 - Remote Code Execution (RCE)
  8. [local] Microsoft Excel LTSC 2024 - Remote Code Execution (RCE)
  9. [remote] FortiOS SSL-VPN 7.4.4 - Insufficient Session Expiration & Cookie Reuse
  10. [remote] Microsoft Excel 2024 Use after free - Remote Code Execution (RCE)
  11. [remote] freeSSHd 1.0.9 - Denial of Service (DoS)
  12. [webapps] Pterodactyl Panel 1.11.11 - Remote Code Execution (RCE)
  13. [remote] OneTrust SDK 6.33.0 - Denial Of Service (DoS)
  14. [remote] PX4 Military UAV Autopilot 1.12.3 - Denial of Service (DoS)
  15. [webapps] Social Warfare WordPress Plugin 3.5.2 - Remote Code Execution (RCE)
  16. [remote] McAfee Agent 5.7.6 - Insecure Storage of Sensitive Information
  17. [webapps] Sitecore 10.4 - Remote Code Execution (RCE)
  18. [webapps] Moodle 4.4.0 - Authenticated Remote Code Execution
  19. [remote] Microsoft SharePoint 2019 - NTLM Authentication
  20. [remote] gogs 0.13.0 - Remote Code Execution (RCE)
  21. [remote] Wing FTP Server 7.4.3 - Unauthenticated Remote Code Execution (RCE)
  22. [webapps] Discourse 3.2.x - Anonymous Cache Poisoning
  23. [webapps] Stacks Mobile App Builder 5.2.3 - Authentication Bypass via Account Takeove
  24. [remote] Microsoft Outlook - Remote Code Execution (RCE)
  25. [local] Microsoft Defender for Endpoint (MDE) - Elevation of Privilege
  26. [local] Sudo 1.9.17 Host Option - Elevation of Privilege
  27. [remote] ScriptCase 9.12.006 (23) - Remote Command Execution (RCE)
  28. [local] Sudo chroot 1.9.17 - Local Privilege Escalation
  29. [remote] Microsoft PowerPoint 2019 - Remote Code Execution (RCE)
  30. [remote] NodeJS 24.x - Path Traversal
  31. [webapps] WP Publications WordPress Plugin 1.2 - Stored XSS
  32. [webapps] White Star Software Protop 4.4.2-2024-11-27 - Local File Inclusion (LFI)
  33. [remote] MikroTik RouterOS 7.19.1 - Reflected XSS
  34. [webapps] SugarCRM 14.0.0 - SSRF/Code Injection
  35. [webapps] Langflow 1.2.x - Remote Code Execution (RCE)
  36. [hardware] TOTOLINK N300RB 8.54 - Command Execution
  37. [local] Microsoft Graphics Component Windows 11 Pro (Build 26100+) - Local Elevation
  38. [webapps] PivotX 3.0.0 RC3 - Remote Code Execution (RCE)
  39. [local] Microsoft Brokering File System Windows 11 Version 22H2 - Elevation of Privil
  40. [remote] Keras 2.15 - Remote Code Execution (RCE)
  41. [webapps] LiveHelperChat 4.61 - Stored Cross Site Scripting (XSS) via Personal Canned
  42. [webapps] LiveHelperChat 4.61 - Stored Cross Site Scripting (XSS) via Facebook Integr
  43. [webapps] LiveHelperChat 4.61 - Stored Cross Site Scripting (XSS) via Operator Surnam
  44. [webapps] LiveHelperChat 4.61 - Stored Cross Site Scripting (XSS) via Telegram Bot Us
  45. [webapps] Discourse 3.1.1 - Unauthenticated Chat Message Access
  46. [remote] Tenda FH451 1.0.0.9 Router - Stack-based Buffer Overflow
  47. [webapps] Joomla JS Jobs plugin 1.4.2 - SQL injection
  48. [remote] Microsoft Edge Windows 10 Version 1511 - Cross Site Scripting (XSS)
  49. [webapps] Simple File List WordPress Plugin 4.2.2 - File Upload to RCE
  50. [webapps] Pie Register WordPress Plugin 3.7.1.4 - Authentication Bypass to RCE
  51. [webapps] LiveHelperChat 4.61 - Stored Cross Site Scripting (XSS) via Department Assi
  52. [webapps] LiveHelperChat 4.61 - Stored Cross Site Scripting (XSS) via the Chat Transf
  53. [local] Microsoft Virtual Hard Disk (VHDX) 11 - Remote Code Execution (RCE)
  54. [webapps] Ultimate Member WordPress Plugin 2.6.6 - Privilege Escalation
  55. [remote] Swagger UI 1.0.3 - Cross-Site Scripting (XSS)
  56. [webapps] LPAR2RRD 8.04 - Remote Code Execution (RCE)
  57. [webapps] Copyparty 1.18.6 - Reflected Cross-Site Scripting (XSS)
  58. [remote] Microsoft Edge (Chromium-based) 135.0.7049.114/.115 - Information Disclosure
  59. [webapps] Gandia Integra Total 4.4.2236.1 - SQL Injection
  60. [webapps] Adobe ColdFusion 2023.6 - Remote File Read
  61. [local] Linux PAM Environment - Variable Injection Local Privilege Escalation
  62. [webapps] Mezzanine CMS 6.1.0 - Stored Cross Site Scripting (XSS)
  63. [webapps] XWiki 14 - SQL Injection via getdeleteddocuments.vm
  64. [webapps] Invision Community 4.7.20 - (calendar/view.php) SQL Injection
  65. [dos] Xlight FTP 1.1 - Denial Of Service (DOS)
  66. [webapps] JetBrains TeamCity 2023.11.4 - Authentication Bypass
  67. [webapps] ServiceNow Multiple Versions - Input Validation & Template Injection
  68. [webapps] Ghost CMS 5.59.1 - Arbitrary File Read
  69. [webapps] Ghost CMS 5.42.1 - Path Traversal
  70. [remote] Belkin F9K1009 F9K1010 2.00.04/2.00.09 - Hard Coded Credentials
  71. [webapps] VMware vSphere Client 8.0.3.0 - Reflected Cross-Site Scripting (XSS)
  72. [remote] Microsoft SharePoint Server 2019 (16.0.10383.20020) - Remote Code Execution
  73. [remote] Tigo Energy Cloud Connect Advanced (CCA) 4.0.1 - Command Injection
  74. [webapps] Microsoft Edge Renderer Process (Mojo IPC) 134.0.6998.177 - Sandbox Escape
  75. [webapps] Grav CMS 1.7.48 - Remote Code Execution (RCE)
  76. [remote] Citrix NetScaler ADC/Gateway 14.1 - Memory Disclosure
  77. [webapps] atjiu pybbs 6.0.0 - Cross Site Scripting (XSS)
  78. [local] Microsoft Windows - Storage QoS Filter Driver Checker
  79. [webapps] projectworlds Online Admission System 1.0 - SQL Injection
  80. [remote] Cisco ISE 3.0 - Authorization Bypass
  81. [remote] Cisco ISE 3.0 - Remote Code Execution (RCE)
  82. [remote] Tenda AC20 16.03.08.12 - Command Injection
  83. [webapps] Lantronix Provisioning Manager 7.10.3 - XML External Entity Injection (XXE)
  84. [webapps] Soosyze CMS 2.0 - Brute Force Login
  85. [remote] Microsoft Windows 10.0.19045 - NTLMv2 Hash Disclosure
  86. [remote] PHPMyAdmin 3.0 - Bruteforce Login Bypass
  87. [webapps] RiteCMS 3.0.0 - Reflected Cross Site Scripting (XSS)
  88. [webapps] BigAnt Office Messenger 5.6.06 - SQL Injection
  89. [remote] GeoVision ASManager Windows Application 6.1.2.0 - Remote Code Execution (RCE
  90. [local] GeoVision ASManager Windows Application 6.1.2.0 - Credentials Disclosure
  91. [webapps] StoryChief Wordpress Plugin 1.0.42 - Arbitrary File Upload
  92. [remote] Ivanti Endpoint Manager Mobile 12.5.0.0 - Authentication Bypass
  93. [webapps] Lingdang CRM 8.6.4.7 - SQL Injection
  94. [webapps] Birth Chart Compatibility WordPress Plugin 2.0 - Full Path Disclosure
  95. [remote] windows 10/11 - NTLM Hash Disclosure Spoofing
  96. [remote] Redis 8.0.2 - RCE
  97. [webapps] OctoPrint 1.11.2 - File Upload
  98. [remote] Ingress-NGINX Admission Controller v1.11.1 - FD Injection to RCE
  99. [webapps] aiohttp 3.9.1 - directory traversal PoC
  100. [webapps] FortiWeb Fabric Connector 7.6.x - SQL Injection to Remote Code Execution
  101. [local] Docker Desktop 4.44.3 - Unauthenticated API Exposure
  102. [webapps] Piranha CMS 12.0 - Stored XSS in Text Block
  103. [webapps] RPi-Jukebox-RFID 2.8.0 - Stored Cross-Site Scripting (XSS)
  104. [hardware] D-Link DIR-825 Rev.B 2.10 - Stack Buffer Overflow (DoS)
  105. [webapps] RPi-Jukebox-RFID 2.8.0 - Remote Command Execution
  106. [webapps] Siklu EtherHaul Series EH-8010 - Arbitrary File Upload
  107. [webapps] Siklu EtherHaul Series EH-8010 - Remote Command Execution
  108. [webapps] WordPress Quiz Maker 6.7.0.56 - SQL Injection
  109. [webapps] Chained Quiz 1.3.5 - Unauthenticated Insecure Direct Object Reference via
  110. [webapps] FreeBSD rtsold 15.x - Remote Code Execution via DNSSL
  111. [webapps] Summar Employee Portal 3.98.0 - Authenticated SQL Injection
  112. [webapps] esm-dev 136 - Path Traversal
  113. [webapps] Pluck 4.7.7-dev2 - PHP Code Execution
  114. [webapps] phpMyFAQ 2.9.8 - Cross-Site Request Forgery(CSRF)
  115. [webapps] phpMyFAQ 2.9.8 - Cross-Site Request Forgery (CSRF)
  116. [webapps] MaNGOSWebV4 4.0.6 - Reflected XSS
  117. [webapps] Django 5.1.13 - SQL Injection
  118. [webapps] phpMyFaq 2.9.8 - Cross Site Request Forgery (CSRF)
  119. [webapps] MobileDetect 2.8.31 - Cross-Site Scripting (XSS)
  120. [webapps] phpIPAM 1.4 - SQL-Injection
  121. [webapps] OpenRepeater 2.1 - OS Command Injection
  122. [webapps] phpMyAdmin 5.0.0 - SQL Injection
  123. [webapps] RosarioSIS 6.7.2 - Cross Site Scripting (XSS)
  124. [webapps] RosarioSIS 6.7.2 - Cross-Site Scripting (XSS)
  125. [webapps] PluckCMS 4.7.10 - Unrestricted File Upload
  126. [webapps] openSIS Community Edition 8.0 - SQL Injection
  127. [webapps] YOURLS 1.8.2 - Cross-Site Request Forgery (CSRF)
  128. [webapps] phpMyFAQ 3.1.7 - Reflected Cross-Site Scripting (XSS)
  129. [webapps] phpIPAM 1.5.1 - SQL Injection
  130. [webapps] Piwigo 13.6.0 - SQL Injection
  131. [webapps] phpIPAM 1.6 - Reflected-Cross-Site Scripting (XSS)
  132. [webapps] phpIPAM 1.6 - Reflected Cross-Site Scripting (XSS)
  133. [webapps] Flowise 3.0.4 - Remote Code Execution (RCE)
  134. [webapps] Casdoor 2.95.0 - Cross-Site Request Forgery (CSRF)
  135. [remote] Ilevia EVE X1/X5 Server 4.7.18.0.eden - Reverse Rootshell
  136. [local] Microsoft Windows Server 2025 Hyper-V NT Kernel Integration VSP - Elevation o
  137. [remote] ClipBucket 5.5.0 - Arbitrary File Upload
  138. [remote] ClipBucket 5.5.2 Build #90 - Server-Side Request Forgery (SSRF)
  139. [webapps] Tourism Management System 2.0 - Arbitrary Shell Upload
  140. [webapps] Casdoor 2.55.0 - Cross-Site Request Forgery (CSRF)
  141. [webapps] dotCMS 25.07.02-1 - Authenticated Blind SQL Injection
  142. [webapps] ELEX WooCommerce WordPress Plugin 1.4.3 - SQL Injection
  143. [webapps] XWiki Platform 15.10.10 - Metasploit Module for Remote Code Execution (RCE)
  144. [webapps] Concrete CMS 9.4.3 - Stored XSS
  145. [webapps] motionEye 0.43.1b4 - RCE
  146. [remote] Windows 10.0.17763.7009 - spoofing vulnerability
  147. [local] glibc 2.38 - Buffer Overflow