Listing of latest Exploits

This is live excerpt from our database.

Date Name Status
2024-02-27PhpFox < 4.8.13 redirect PHP Object Injection ExploitPublished
2024-02-27Perl2exe 30.10C Arbitrary Code ExecutionPublished
2024-02-27Automatic-Systems SOC FL9600 FastLine Hardcoded CredentialsPublished
2024-02-25BACKDOOR.WIN32.ARMAGEDDON.R / Hardcoded Cleartext CredentialsPublished
2024-02-25Stealth Media Ltd - Blind Sql InjectionPublished
2024-02-25Agencia NUBA - Blind Sql InjectionPublished
2024-02-25ConnectWise ScreenConnect 23.9.7 Unauthenticated Remote Code ExecutionPublished
2024-02-25Axiomatic - Sql InjectionPublished
2024-02-25ITFlow.org CSRF system settings changePublished
2024-02-25Backdoor.Win32.AutoSpy.10 / Unauthenticated Remote Command ExecutionPublished
2024-02-22OpenOLAT 18.1.5 Cross Site Scripting / Privilege EscalationPublished
2024-02-22ITFlow Cross Site Request ForgeryPublished
2024-02-22QNAP QTS / QuTS Hero Unauthenticated Remote Code ExecutionPublished
2024-02-22FreeIPA 4.10.1 Denial Of Service / Information DisclosurePublished
2024-02-22SitePad 1.8.2 Cross Site ScriptingPublished
2024-02-22GoAhead Web Server 2.5 goform/formTest Multiple HTML Injection VulnerabilitiesPublished
2024-02-22Fuelflow-1.0 Copyright--2024-Project-Develop-by-Mayuri-K SQLiPublished
2024-02-20SPA-CART CMS - Stored XSSPublished
2024-02-20WonderCMS 4.3.2 Cross Site Scripting / Remote Code ExecutionPublished
2024-02-20InstantCMS 2.16.1 Cross Site ScriptingPublished
2024-02-20Ticico - Blind SQL InjectionPublished
2024-02-20Savsoft Quiz v6.0 Enterprise - Persistent Cross-Site ScriptingPublished
2024-02-20Kafka UI 0.7.1 Command InjectionPublished
2024-02-20Employee Management System v.1.0 - SQL InjectionPublished
2024-02-18Wyrestorm Apollo VX20 / Account EnumerationPublished
2024-02-18Wyrestorm Apollo VX20 / Incorrect Access Control - DoS / CVE-2024-25736Published
2024-02-18Wyrestorm Apollo VX20 Incorrect Access Control / Credentials Disclosure / CVE-2024-25735Published
2024-02-18Microsoft Windows Defender / Trojan.Win32/Powessere.G Detection Mitigation Bypass Part 2.Published
2024-02-18DS Wireless Communication Remote Code ExecutionPublished
2024-02-18Metabase 0.46.6 Remote Code ExecutionPublished
2024-02-18Statamic CMS Cross Site ScriptingPublished
2024-02-18Soinit Technology Solutions CMS & SQL VulnerabilityPublished
2024-02-15ManageEngine ADManager Plus Recovery Password DisclosurePublished
2024-02-15321 Video Converter Local Seh ExploitPublished
2024-02-15Adapt CMS 3.0.3 Cross Site Scripting / Shell UploadPublished
2024-02-15Google Android Passkey Deletion / ConfusionPublished
2024-02-15Wordpress simple urls Plugin < 115 XSSPublished
2024-02-15TP-Link TL-WR740N UnAuthenticated Directory TransversalPublished




Copyright © 2024 Exploitalert v1 BETA.
About us & Partners This information is provided for TESTING and LEGAL RESEARCH purposes only.
All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use and Privacy Policy