Webseite:Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical HackersInhalt
ExploitDatabase-ExploitsforPenetrationTesters,Researchers,andEthicalHackerswindow.ga=window.ga||function(){(ga.q=ga.q||[]).push(arguments)};ga.l=+newDate;ga('create','UA--4',{'cookieDomain':''});ga('send','peview');.rbtn{border:2pxsolidwhite;border-radius:20px;color:black;padding:8px;cursor:pointer;}.rsuccess{border-color:white;color:white;}.rsuccess:hover{background-color:white;color:#;}.rprimary{border-color:#ca4f0c;color:#ca4f0c;}.rprimary:hover{background-color:#ca4f0c;color:white;} ExploitDatabaseExploitsGHDBPapersShellcodesSearchEDBSearchSploitManualSubmissionsOnlineTrainingStatsAboutUsAboutExploit-DBExploit-DBHistoryFAQSearchType CleardoslocalremotewebappsPlatformClearAIXAlphaAndroidARMASHXASPASPXAtheOSBeOSBSDBSDi_x86BSD_PPCBSD_x86CFMCGIeZineFreeBSDFreeBSD_x86FreeBSD_x86-64GeneratorGoHardwareHP-UXImmunixiOSIRIXJaJSONJSPLinuxLinux_CRISv32Linux_MIPSLinux_PPCLinux_SPARCLinux_x86Linux_x86-64LuamacOSMazineMINIXMultipleNetBSD_x86NetwareNodeJSNovellOpenBSDOpenBSD_x86OSXOSX_PPCPalm_OSPerlPHPPlan9PythonPython2Python3QNXRubySCOSCO_x86SolarisSolaris_MIPSSolaris_SPARCSolaris_x86SuperH_SH4System_zTru64TypeScriptULTRIXUnixUnixWareVxWorkswatchOExploit Database - Exploits for Penetration Testers, Researchers, and Ethical HackersSWindowsWindows_x86Windows_x86-64XMLAuthorClearPortClear1421222325424953666970798081102105110111113119123135139143161162164383389402406411443444445446502504513514515532548554555617623631655689783787808873888901998100010401089109911001114112011941235147115211533158115891604161717231743176118121858186119001947200020222049210021032121212521812242231523752380238124012480252526402810281229472954299030003030305030523128312931813200321733063333337833893460346535003535363236903790381438174000400240704081410541114322434344344444450145554592466147504848500050605061508050815093515151805247525052725308543254665554555556005655566658005803581458585900598460666070608060826101611261296379650265036660666770017002707070717080710071447210727272907426744375107547764977707777777877877879790280008001800280048008802080228023802880308080808180828088809081818300840084438445847385008585861988008812883988808888900090019002908090909091910091249200925192569443944797849788985598769900998799939999TClearAuthenticationBypass/CredentialsBypass(AB/CB)BufferOverflowBugReportClientSideCodeInjectionCommandInjectionConsoleCross-SiteRequestForgery(CSRF)Cross-SiteScripting(XSS)DenialofService(DoS)DeserializationFileInclusion(LFI/RFI)HeapOverflowIntegerOverflowLocalMalwareMetasploitFramework(MSF)NULLPointerDereferenceObjectInjectionOutOfBoundsPwn2OwnRaceConditionRemoteServer-SideRequestForgery(SSRF)SQLInjection(SQLi)TrersalTypeConfusionUseAfterFree(UAF)WordPressCoreWordPressPluginXMLExternalEntity(XXE)AdvancedVerifiedHasAppFiltersResetAllFiltersResetAllDateDAVTitleTypePlatformAuthorThissiterequiresJaScriptDatabasesLinksSitesSolutionsExploitsSearchExploit-DBOffSecCoursesandCertificationsGoogleHackingSubmitEntryKaliLinuxLearnSubscriptionsPapersSearchSploitManualVulnHubOffSecCyberRangeShellcodesExploitStatisticsProvingGroundsPenetrationTestingServicesDatabasesExploitsGoogleHackingPapersShellcodesLinksSearchExploit-DBSubmitEntrySearchSploitManualExploitStatisticsSitesOffSecKaliLinuxVulnHubSolutionsCoursesandCertificationsLearnSubscriptionsOffSecCyberRangeProvingGroundsPenetrationTestingServicesExploitDatabasebyOffSecTermsPrivacyAboutUsFAQCookies©OffSecServicesLimited2024.Allrightsreserved.AboutTheExploitDatabase×TheExploitDatabaseismaintainedbyOffSec,aninformationsecuritytrainingcompanythatprovidesvariousInformationSecurityCertificationsaswellashighendpenetrationtestingservices.TheExploitDatabaseisanon-profitprojectthatisprovidedasapublicservicebyOffSec.TheExploitDatabaseisaCVEcompliantarchiveofpublicexploitsandcorrespondingvulnerablesoftware,developedforusebypenetrationtestersandvulnerabilityresearchers.Ouraimistoservethemostcomprehensivecollectionofexploitsgatheredthroughdirectsubmissions,mailinglists,aswellasotherpublicsources,andpresenttheminafreely-ailableandeasy-to-nigatedatabase.TheExploitDatabaseisarepositoryforexploitsandproof-of-conceptsratherthanadvisories,makingitavaluableresourceforthosewhoneedactionabledatarightaway.TheGoogleHackingDatabase(GHDB)isacategorizedindexofInternetsearchenginequeriesdesignedtouncoverinteresting,andusuallysensitive,informationmadepubliclyailableontheInternet.Inmostcases,thisinformationwasnevermeanttobemadepublicbutduetoanynumberoffactorsthisinformationwaslinkedinawebdocumentthatwascrawledbyasearchenginethatsubsequentlyfollowedthatlinkandindexedthesensitiveinformation.Theprocessknownas“GoogleHacking”waspopularizedin2000byJohnnyLong,aprofessionalhacker,whobegancatalogingthesequeriesinadatabaseknownastheGoogleHackingDatabase.Hisinitialeffortswereamplifiedbycountlesshoursofcommunitymembereffort,documentedinthebookGoogleHackingForPenetrationTestersandpopularisedbyabarreofmediaattentionandJohnny’stalksonthesubjectsuchasthisearlytalkrecordedatDEFCON13.Johnnycoinedtheterm“Googledork”toreferto“afoolishorineptpersonasrevealedbyGoogle“.Thiswasmeanttodrawattentiontothefactthatthiswasnota“Googleproblem”butrathertheresultofanoftenunintentionalmisconfigurationonthepartofauseroraprograminstalledbytheuser.Overtime,theterm“dork”becameshorthandforasearchquerythatlocatedsensitiveinfExploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackersormationand“dorks”wereincludedwithmaywebapplicationvulnerabilityreleasestoshowexamplesofvulnerablewebsites.Afternearlyadecadeofhardworkbythecommunity,JohnnyturnedtheGHDBovertoOffSecinNovember2010,anditisnowmaintainedasanextensionoftheExploitDatabase.Today,theGHDBincludessearchesforotheronlinesearchenginessuchasBing,andotheronlinerepositorieslikeGitHub,producingdifferent,yetequallyvaluableresults.CloseOffSecResources×DatabasesLinksSitesSolutionsExploitsSearchExploit-DBOffSecCoursesandCertificationsGoogleHackingSubmitEntryKaliLinuxLearnSubscriptionsPapersSearchSploitManualVulnHubOffSecCyberRangeProvingGroundsShellcodesExploitStatisticsProvingGroundsPenetrationTestingServicesCloseSearchTheExploitDatabase×TitleCVETypedoslocalremoteshellcodepaperswebappsPlatformAIXASPBSDBSD_PPCBSD_x86BSDi_x86CGIFreeBSDFreeBSD_x86FreeBSD_x86-64GeneratorHardwareHP-UXIRIXJSPLinuxLinux_MIPSLinux_PPCLinux_SPARCLinux_x86Linux_x86-64MINIXMultipleNetBSD_x86NovellOpenBSDOpenBSD_x86OSX_PPCOSXPHPPlan9QNXSCOSCO_x86SolarisSolaris_SPARCSolaris_x86Tru64ULTRIXUnixUnixWareWindows_x86Windows_x86-64WindowsARMCFMNetwareSuperH_SH4JaBeOSImmunixPalm_OSAtheOSiOSAndroidXMLPerlPythonSystem_zJSONASHXRubyASPXmacOSLinux_CRISv32eZineMazineNodeJSAlphaSolaris_MIPSLuawatchOSVxWorksPython2Python3TypeScriptGoAuthorContentPort1421222325424953666970798081102105110111113119123135139143161162164383389402406411443444445446502504513514515532548554555617623631655689783787808873888901998100010401089109911001114112011941235147115211533158115891604161717231743176118121858186119001947200020222049210021032121212521812242231523752380238124012480252526402810281229472954299030003030305030523128312931813200321733063333337833893460346535003535363236903790381438174000400240704081410541114322434344344444450145554592466147504848500050605061508050815093515151805247525052725308543254665554555556005655566658005803581458585900598460666070608060826101611261296379650265036660666770017002707070717080710071447210727272907426744375107547764977707777777877877879790280008001800280048008802080228023802880308080808180828088809081818300840084438445847385008585861988008812883988808888900090019002908090909091910091249200925192569443944797849788985598769900998799939999TWordPressCoreMetasploitFramework(MSF)WordPressPluginSQLInjection(SQLi)Cross-SiteScripting(XSS)FileInclusion(LFI/RFI)Cross-SiteRequestForgery(CSRF)DenialofService(DoS)CodeInjectionCommandInjectionAuthenticationBypass/CredentialsBypass(AB/CB)ClientSideUseAfterFree(UAF)OutOfBoundsRemoteLocalXMLExternalEntity(XXE)IntegerOverflowServer-SideRequestForgery(SSRF)RaceConditionNULLPointerDereferenceMalwareBufferOverflowHeapOverflowTypeConfusionObjectInjectionBugReportConsolePwn2OwnTrersalDeserializationVerifiedHasAppNoMetasploitSearch.dataTables_filterinput{font-size:16px;}window.addEventListener('popstate',()=>{location.reload();},false);$(function(){$('[data-toggle="tooltip"]').tooltip()})functiongetParameterByName(name,url){if(!url)url=window.location.href;name=name.replace(/[\[\]]/g,"\\$&");varregex=newRegExp("[?&]"+name+"(=([^]*)|&|#|$)"),results=regex.exec(url);if(!results)returnnull;if(!results[2])return'';returndecodeURIComponent(results[2].replace(/\+/g,""));}functionremoveURLParameter(url,parameter){//prefertousel.searchifyouhealocation/linkobjectvarurlparts=url.split('?');if(urlparts.length>=2){varprefix=encodeURIComponent(parameter)+'=';varpars=urlparts[1].splitExploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers(/[&;]/g);//reverseiterationasmaybedestructivefor(vari=pars.length;i-->0;){//idiomforstring.startsWithif(pars[i].lastIndexOf(prefix,0)!==-1){pars.splice(i,1);}}url=urlparts[0]+(pars.length>0?'?'+pars.join('&'):"");window.history.pushState('',,url);returnurl;}else{window.history.pushState('',,url);returnurl;}}functionshowFilters(){varx=document.getElementById("exploitFiltersCard");if(x.style.display==="none"){x.style.display="block";}else{x.style.display="none";}}functionupdateQueryString(key,value,url){if(!url)url=window.location.href;varre=newRegExp("([?&])"+key+"=.*?(&|#|$)(.*)","gi"),hash;if(re.test(url)){if(typeofvalue!=='undefined'&&value!==null)returnurl.replace(re,'$1'+key+"="+value+'$2$3');else{hash=url.split('#');url=hash[0].replace(re,'$1$3').replace(/(&|\?)$/,'');if(typeofhash[1]!=='undefined'&&hash[1]!==null)url+='#'+hash[1];window.history.pushState('',,url);returnurl;}}else{if(typeofvalue!=='undefined'&&value!==null){varseparator=url.indexOf('?')!==-1?'&':'?';hash=url.split('#');url=hash[0]+separator+key+'='+value;if(typeofhash[1]!=='undefined'&&hash[1]!==null)url+='#'+hash[1];window.history.pushState('',,url);returnurl;}elsewindow.history.pushState('',,url);returnurl;}}$('#search').submit(function(){$(this).find(":input").filter(function(){return!this.value;}).attr("disabled","disabled");returntrue;//ensureformstillsubmits});//Un-disableformfieldswhenpeloads,incasetheyclickbackaftersubmission$('#search').find(":input").prop("disabled",false);//Iftheajaxcallfails,throwtheerrortotheconsoleinsteadof//poppingupanalerttotheuser$.fn.dataTable.ext.errMode='throw';