Listing of latest Exploits

This is live excerpt from our database.

Date Name Status Solution
2024-02-25BACKDOOR.WIN32.ARMAGEDDON.R / Hardcoded Cleartext CredentialsPublishedFix it
2024-02-25Stealth Media Ltd - Blind Sql InjectionPublishedFix it
2024-02-25Agencia NUBA - Blind Sql InjectionPublishedFix it
2024-02-25ConnectWise ScreenConnect 23.9.7 Unauthenticated Remote Code ExecutionPublishedFix it
2024-02-25Axiomatic - Sql InjectionPublishedFix it
2024-02-25ITFlow.org CSRF system settings changePublishedFix it
2024-02-25Backdoor.Win32.AutoSpy.10 / Unauthenticated Remote Command ExecutionPublishedFix it
2024-02-22OpenOLAT 18.1.5 Cross Site Scripting / Privilege EscalationPublishedFix it
2024-02-22ITFlow Cross Site Request ForgeryPublishedFix it
2024-02-22QNAP QTS / QuTS Hero Unauthenticated Remote Code ExecutionPublishedFix it
2024-02-22FreeIPA 4.10.1 Denial Of Service / Information DisclosurePublishedFix it
2024-02-22SitePad 1.8.2 Cross Site ScriptingPublishedFix it
2024-02-22GoAhead Web Server 2.5 goform/formTest Multiple HTML Injection VulnerabilitiesPublishedFix it
2024-02-22Fuelflow-1.0 Copyright--2024-Project-Develop-by-Mayuri-K SQLiPublishedFix it
2024-02-20SPA-CART CMS - Stored XSSPublishedFix it
2024-02-20WonderCMS 4.3.2 Cross Site Scripting / Remote Code ExecutionPublishedFix it
2024-02-20InstantCMS 2.16.1 Cross Site ScriptingPublishedFix it
2024-02-20Ticico - Blind SQL InjectionPublishedFix it
2024-02-20Savsoft Quiz v6.0 Enterprise - Persistent Cross-Site ScriptingPublishedFix it
2024-02-20Kafka UI 0.7.1 Command InjectionPublishedFix it
2024-02-20Employee Management System v.1.0 - SQL InjectionPublishedFix it
2024-02-18Wyrestorm Apollo VX20 / Account EnumerationPublishedFix it
2024-02-18Wyrestorm Apollo VX20 / Incorrect Access Control - DoS / CVE-2024-25736PublishedFix it
2024-02-18Wyrestorm Apollo VX20 Incorrect Access Control / Credentials Disclosure / CVE-2024-25735PublishedFix it
2024-02-18Microsoft Windows Defender / Trojan.Win32/Powessere.G Detection Mitigation Bypass Part 2.PublishedFix it
2024-02-18DS Wireless Communication Remote Code ExecutionPublishedFix it
2024-02-18Metabase 0.46.6 Remote Code ExecutionPublishedFix it
2024-02-18Statamic CMS Cross Site ScriptingPublishedFix it
2024-02-18Soinit Technology Solutions CMS & SQL VulnerabilityPublishedFix it
2024-02-15ManageEngine ADManager Plus Recovery Password DisclosurePublishedFix it
2024-02-15321 Video Converter Local Seh ExploitPublishedFix it
2024-02-15Adapt CMS 3.0.3 Cross Site Scripting / Shell UploadPublishedFix it
2024-02-15Google Android Passkey Deletion / ConfusionPublishedFix it
2024-02-15Wordpress simple urls Plugin < 115 XSSPublishedFix it
2024-02-15TP-Link TL-WR740N UnAuthenticated Directory TransversalPublishedFix it
2024-02-15DS Wireless Communication Code ExecutionPublishedFix it
2024-02-11ICT Sky SQL InjectionPublishedFix it
2024-02-10IBM i Access Client Solutions / Remote Credential TheftPublishedFix it




Copyright © 2024 Exploitalert v1 BETA.
About us & Partners This information is provided for TESTING and LEGAL RESEARCH purposes only.
All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use and Privacy Policy