0day.today - наибольшая база данных эксплоитов в мире.
Некоторые вещи, о которых стоит знать:
Мы используем один основной домен 0day.today
Если Вы желаете приобрести эксплоит или заплатить за услуги - Вам необходимо приобрести Золото (Gold). Мы не хотим чтобы Вы использовали наш сайт как инструмент для взломов, поэтому любые действия, которые могут незаконно влиять на других пользователей или на сайты, к которым у Вас нет прав доступа будут запрещены и Ваш профиль со всей вложенной информацией будет уничтожен.
Администрация сайта использует официальные контакты. Опасайтесь обманщиков!
Мы используем один основной домен 0day.today
Если Вы желаете приобрести эксплоит или заплатить за услуги - Вам необходимо приобрести Золото (Gold). Мы не хотим чтобы Вы использовали наш сайт как инструмент для взломов, поэтому любые действия, которые могут незаконно влиять на других пользователей или на сайты, к которым у Вас нет прав доступа будут запрещены и Ваш профиль со всей вложенной информацией будет уничтожен.
Администрация сайта использует официальные контакты. Опасайтесь обманщиков!
We DO NOT use Telegram or any messengers / social networks!
Please, beware of scammers!
Please, beware of scammers!
- Прочитайте [ соглашение ]
- Прочитайте [ Отправить ] правила
- Посетите страницу [ faq ] page
- [ Зарегистрируйте ] профиль
- Получите [ Gold ]
- Если Вы хотите [ продать ]
- Если Вы хотите [ купить ]
- Если Вы потеряли [ Счет ]
- Любые вопросы [ [email protected] ]
- Страница авторизации
- Страница регистрации
- Страница восстановления
- Страница FAQ
- Страница контактов
- Правила публикации
- Страница с соглашением
Mail:
Facebook:
Twitter:
Telegram:
We DO NOT use Telegram or any messengers / social networks!
Вы можете связаться с нами по:
Mail:
Facebook:
Twitter:
Telegram:
We DO NOT use Telegram or any messengers / social networks!
Search results for exploits by request: PHP
[ remote exploits ]
Remote exploits and vulnerabilities category
A "remote exploit" works over a network and exploits the security vulnerability without any prior access to the vulnerable system.
-::DATE
-::DESCRIPTION
-::TYPE
-::HITS
-::RISK
-::GOLD
-::AUTHOR
ownCloud Phpinfo Reader Exploit
Комметариев:
0
2 794
Security Risk Medium
D
Download
C
CVE-2023-49103
Verified by
free
You can open this exploit for free
rrdw
Эксплоиты:
7
BusinessLevel:
10
PHP Library Remote Code Execution Vulnerability
Комметариев:
0
7 784
Security Risk Critical
D
Download
-
Verified by
free
You can open this exploit for free
Eldar Marcussen
Эксплоиты:
5
BusinessLevel:
5
PHP 8.1.0-dev Backdoor Remote Command Execution Exploit (2)
Комметариев:
0
9 467
Security Risk Critical
D
Download
-
Verified by
free
You can open this exploit for free
Mayank Deshmukh
Эксплоиты:
10
BusinessLevel:
2
PHP 8.1.0-dev Backdoor Remote Command Injection Exploit
Комметариев:
0
9 288
Security Risk Critical
D
Download
-
Verified by
free
You can open this exploit for free
Richard Jones
Эксплоиты:
35
BusinessLevel:
3
10 387
Security Risk Critical
D
Download
-
Verified by
free
You can open this exploit for free
Paul Dannewitz
Эксплоиты:
1
BusinessLevel:
2
9 018
Security Risk Critical
D
Download
C
CVE-2020-26124
Verified by
free
You can open this exploit for free
Anastasios Stasinopoulos
Эксплоиты:
1
BusinessLevel:
2
10 660
Security Risk Critical
D
Download
C
CVE-2020-15920
Verified by
free
You can open this exploit for free
metasploit
Эксплоиты:
1625
BusinessLevel:
92
openSIS 7.4 Unauthenticated PHP Code Execution Exploit
Комметариев:
0
10 269
Security Risk Critical
D
Download
C
CVE-2020-13381
CVE-2020-13382
CVE-2020-13383
CVE-2020-13382
CVE-2020-13383
Verified by
free
You can open this exploit for free
metasploit
Эксплоиты:
1625
BusinessLevel:
92
10 996
Security Risk Critical
D
Download
-
Verified by
free
You can open this exploit for free
metasploit
Эксплоиты:
1625
BusinessLevel:
92
ThinkPHP 5.0.23 Remote Code Execution Exploit
Комметариев:
0
12 733
Security Risk Critical
D
Download
C
CVE-2018-20062
CVE-2019-9082
CVE-2019-9082
Verified by
free
You can open this exploit for free
metasploit
Эксплоиты:
1625
BusinessLevel:
92
PHPStudy - Backdoor Remote Code execution Exploit
Комметариев:
0
11 496
Security Risk Critical
D
Download
-
Verified by
free
You can open this exploit for free
metasploit
Эксплоиты:
1625
BusinessLevel:
92
PHP-FPM 7.x Remote Code Execution Exploit
Комметариев:
0
11 370
Security Risk Critical
D
Download
C
CVE-2019-11043
Verified by
free
You can open this exploit for free
metasploit
Эксплоиты:
1625
BusinessLevel:
92
12 554
Security Risk Critical
D
Download
C
CVE-2019-11409
Verified by
free
You can open this exploit for free
metasploit
Эксплоиты:
1625
BusinessLevel:
92
FusionPBX Command (exec.php) Command Execution Exploit
Комметариев:
0
12 268
Security Risk Critical
D
Download
-
Verified by
free
You can open this exploit for free
metasploit
Эксплоиты:
1625
BusinessLevel:
92
11 685
Security Risk Critical
D
Download
C
CVE-2017-16894
CVE-2018-15133
CVE-2018-15133
Verified by
free
You can open this exploit for free
metasploit
Эксплоиты:
1625
BusinessLevel:
92
10 238
Security Risk Critical
D
Download
C
CVE-2018-15708
CVE-2018-15710
CVE-2018-15710
Verified by
free
You can open this exploit for free
metasploit
Эксплоиты:
1625
BusinessLevel:
92
Shopware - createInstanceFromNamedArguments PHP Object Instantiation Remote Code Execute Exploit
Комметариев:
0
8 509
Security Risk Critical
D
Download
C
CVE-2017-18357
Verified by
free
You can open this exploit for free
metasploit
Эксплоиты:
1625
BusinessLevel:
92
8 225
Security Risk High
D
Download
C
CVE-2017-18357
Verified by
free
You can open this exploit for free
metasploit
Эксплоиты:
1625
BusinessLevel:
92
PHP 7.2 - imagecolormatch() Out of Band Heap Write Exploit
Комметариев:
0
7 466
Security Risk Critical
D
Download
C
CVE-2019-6977
Verified by
free
You can open this exploit for free
cfreal
Эксплоиты:
2
BusinessLevel:
3
6 790
Security Risk Critical
D
Download
C
CVE-2018-14933
Verified by
free
You can open this exploit for free
metasploit
Эксплоиты:
1625
BusinessLevel:
92
[ local exploits ]
Local exploits and vulnerabilities category
A "local exploit" requires prior access to the vulnerable system and usually increases the privileges of the person running the exploit past those granted by the system administrator. Exploits against client applications also exist, usually consisting of modified servers that send an exploit if accessed with client application.
-::DATE
-::DESCRIPTION
-::TYPE
-::HITS
-::RISK
-::GOLD
-::AUTHOR
PHP filter_var Bypass Patch Vulnerability
Комметариев:
0
8 136
Security Risk High
D
Download
-
Verified by
free
You can open this exploit for free
Jordy Zomer
Эксплоиты:
1
BusinessLevel:
1
8 651
Security Risk High
D
Download
-
Verified by
free
You can open this exploit for free
mm0r1
Эксплоиты:
3
BusinessLevel:
2
4 235
Security Risk High
D
Download
-
Verified by
free
You can open this exploit for free
Anton Lopanitsyn
Эксплоиты:
1
BusinessLevel:
3
PHP 7.1.8 - Heap-Based Buffer Overflow Vulnerability
Комметариев:
0
5 336
Security Risk Medium
D
Download
C
CVE-2017-16642
Verified by
free
You can open this exploit for free
Wei Lei
Эксплоиты:
2
BusinessLevel:
3
PHPMailer 5.2.21 Local File Disclosure Exploit
Комметариев:
0
4 599
Security Risk High
D
Download
C
CVE-2017-5223
Verified by
free
You can open this exploit for free
Yongxiang Li
Эксплоиты:
1
BusinessLevel:
3
4 736
Security Risk Medium
D
Download
-
Verified by
free
You can open this exploit for free
anonymous
Эксплоиты:
25
BusinessLevel:
8
EasyPHP Devserver 16.1.1 - Insecure File Permissions Privilege Escalation Vulnerability
Комметариев:
0
4 993
Security Risk High
D
Download
-
Verified by
free
You can open this exploit for free
Ashiyane
Эксплоиты:
56
BusinessLevel:
10
PHP 5.0.0 - 'tidy_parse_file()' Buffer Overflow
Комметариев:
0
4 434
Security Risk High
D
Download
-
Verified by
free
You can open this exploit for free
Yakir Wizman
Эксплоиты:
78
BusinessLevel:
12
4 655
Security Risk High
D
Download
-
Verified by
free
You can open this exploit for free
hugh
Эксплоиты:
1
BusinessLevel:
4
4 698
Security Risk High
D
Download
-
Verified by
free
You can open this exploit for free
emmanuel
Эксплоиты:
1
BusinessLevel:
4
PHP 5.3.4 com_event_sink 0-Day
Комметариев:
0
8 142
Security Risk Critical
D
Download
-
Verified by
free
You can open this exploit for free
FB1H2S
Эксплоиты:
12
BusinessLevel:
8
PHP 5.3.8 open_basedi() Bypasser
Комметариев:
0
7 298
Security Risk Unsored
D
Download
-
Not verified yet
free
You can open this exploit for free
CrosS
Эксплоиты:
6
BusinessLevel:
7
PHP 5.3.6 Buffer Overflow PoC (ROP) CVE-2011-1938
Комметариев:
0
6 644
Security Risk Unsored
D
Download
-
Not verified yet
free
You can open this exploit for free
Jonathan Salwan
Эксплоиты:
63
BusinessLevel:
11
PHP <= 5.3.5 socket_connect() Buffer Overflow Vulnerability
Комметариев:
0
6 901
Security Risk Unsored
D
Download
-
Not verified yet
free
You can open this exploit for free
Marek Kroemeke
Эксплоиты:
3
BusinessLevel:
7
6 200
Security Risk Unsored
D
Download
-
Not verified yet
free
You can open this exploit for free
KedAns-Dz
Эксплоиты:
292
BusinessLevel:
24
5 613
Security Risk Unsored
D
Download
-
Not verified yet
free
You can open this exploit for free
Matteo Memelli
Эксплоиты:
16
BusinessLevel:
9
PHP 5.2.12/5.3.1 symlink() open_basedir bypass
Комметариев:
0
unsorted
7 604
Security Risk Unsored
D
Download
-
Not verified yet
free
You can open this exploit for free
Maksymilian
Эксплоиты:
15
BusinessLevel:
8
PHP 5.3.0 pdflib Arbitrary File Write
Комметариев:
0
unsorted
4 839
Security Risk Unsored
D
Download
-
Not verified yet
free
You can open this exploit for free
Sina Yazdanmehr
Эксплоиты:
2
BusinessLevel:
7
PHP <= 5.2.9 Local Safemod Bypass Exploit (win32)
Комметариев:
0
unsorted
5 944
Security Risk Unsored
D
Download
-
Not verified yet
free
You can open this exploit for free
Abysssec
Эксплоиты:
66
BusinessLevel:
11
unsorted
5 056
Security Risk Unsored
D
Download
-
Not verified yet
free
You can open this exploit for free
Zigma
Эксплоиты:
6
BusinessLevel:
8
[ web applications ]
Webapplication (webapps) exploits and vulnerabilities category
This category is full with vulnerabilities, which was found in web projects and web applications.
-::DATE
-::DESCRIPTION
-::TYPE
-::HITS
-::RISK
-::GOLD
-::AUTHOR
801
Security Risk Critical
D
Download
C
CVE-2024-24725
Verified by
free
You can open this exploit for free
h00die-gr3y
Эксплоиты:
5
BusinessLevel:
1
534
Security Risk High
D
Download
-
Verified by
free
You can open this exploit for free
Gian Paris
Эксплоиты:
1
BusinessLevel:
0
Artica Proxy Unauthenticated PHP Deserialization Exploit
Комметариев:
0
1 366
Security Risk Critical
D
Download
C
CVE-2024-2054
Verified by
free
You can open this exploit for free
metasploit
Эксплоиты:
1625
BusinessLevel:
92
1 351
Security Risk High
D
Download
-
Verified by
free
You can open this exploit for free
Hakkı TOKLU
Эксплоиты:
1
BusinessLevel:
0
1 956
Security Risk High
D
Download
C
CVE-2024-2054
Verified by
free
You can open this exploit for free
Jim Becher
Эксплоиты:
20
BusinessLevel:
3
phpFox < 4.8.13 - (redirect) PHP Object Injection Exploit
Комметариев:
0
961
Security Risk High
D
Download
-
Verified by
free
You can open this exploit for free
Egidio Romano
Эксплоиты:
14
BusinessLevel:
5
1 488
Security Risk Critical
D
Download
C
CVE-2023-49084
CVE-2023-49085
CVE-2023-49085
Verified by
free
You can open this exploit for free
metasploit
Эксплоиты:
1625
BusinessLevel:
92
XenForo 2.2.13 ArchiveImport.php Zip Slip Vulnerability
Комметариев:
0
1 428
Security Risk High
D
Download
-
Verified by
free
You can open this exploit for free
EgiX
Эксплоиты:
128
BusinessLevel:
15
Vinchin Backup And Recovery 7.2 SystemHandler.class.php Command Injection Vulnerability
Комметариев:
0
1 474
Security Risk High
D
Download
C
CVE-2024-22903
Verified by
free
You can open this exploit for free
Valentin Lobstein
Эксплоиты:
7
BusinessLevel:
2
ISPConfig 3.2.11 PHP Code Injection Exploit
Комметариев:
0
2 303
Security Risk Critical
D
Download
C
CVE-2023-46818
Verified by
free
You can open this exploit for free
EgiX
Эксплоиты:
128
BusinessLevel:
15
2 132
Security Risk Medium
D
Download
C
CVE-2023-48207
Verified by
free
You can open this exploit for free
Rahad Chowdhury
Эксплоиты:
12
BusinessLevel:
2
2 121
Security Risk Medium
D
Download
C
CVE-2023-48208
Verified by
free
You can open this exploit for free
Orpon
Эксплоиты:
1
BusinessLevel:
0
2 331
Security Risk High
D
Download
-
Verified by
free
You can open this exploit for free
nu11secur1ty
Эксплоиты:
215
BusinessLevel:
13
phpFox 4.8.13 PHP Object Injection Exploit
Комметариев:
0
2 761
Security Risk High
D
Download
C
CVE-2023-46817
Verified by
free
You can open this exploit for free
EgiX
Эксплоиты:
128
BusinessLevel:
15
WordPress Essential Blocks 4.2.0 / Essential Blocks Pro 1.1.0 PHP Object Injection Vulnerability
Комметариев:
0
2 858
Security Risk High
D
Download
C
CVE-2023-4386
CVE-2023-4402
CVE-2023-4402
Verified by
free
You can open this exploit for free
Marco Wotschka
Эксплоиты:
6
BusinessLevel:
1
PHP Shopping Cart 4.2 SQL Injection Vulnerability
Комметариев:
0
2 976
Security Risk High
D
Download
-
Verified by
free
You can open this exploit for free
nu11secur1ty
Эксплоиты:
215
BusinessLevel:
13
SugarCRM 12.2.0 PHP Object Injection Vulnerability
Комметариев:
0
2 780
Security Risk High
D
Download
C
CVE-2023-35810
Verified by
free
You can open this exploit for free
EgiX
Эксплоиты:
128
BusinessLevel:
15
2 884
Security Risk Medium
D
Download
-
Verified by
free
You can open this exploit for free
Kerimcan Ozturk
Эксплоиты:
1
BusinessLevel:
0
PHPJabbers Vacation Rental Script 4.0 - CSRF Vulnerability
Комметариев:
0
2 952
Security Risk Low
D
Download
-
Verified by
free
You can open this exploit for free
Hasan Ali YILDIR
Эксплоиты:
1
BusinessLevel:
0
2 758
Security Risk Medium
D
Download
C
CVE-2023-4117
Verified by
free
You can open this exploit for free
CraCkEr
Эксплоиты:
92
BusinessLevel:
13
[ dos / poc ]
DOS exploits and vulnerabilities category
PoC DoS (denial of service exploit) it exploits remote steps to check the resistance on the affected server or software denial of service vulnerability. The purpose of these attacks is to check the server or the software for resistance.
PoC (Proof Of Concept exploit) An attack against a computer or network that is performed only to prove that it can be done. It generally does not cause any harm, but shows how a hacker can take advantage of a vulnerability in the software or possibly the hardware.
-::DATE
-::DESCRIPTION
-::TYPE
-::HITS
-::RISK
-::GOLD
-::AUTHOR
PHPRunner 10.1 - Denial of Service Exploit
Комметариев:
0
11 407
Security Risk Medium
D
Download
-
Verified by
free
You can open this exploit for free
Victor Mondragón
Эксплоиты:
50
BusinessLevel:
5
phpBB 3.2.5 Denial Of Service Vulnerability
Комметариев:
0
11 749
Security Risk Medium
D
Download
C
CVE-2019-9826
Verified by
free
You can open this exploit for free
Colin Snover
Эксплоиты:
1
BusinessLevel:
3
3 998
Security Risk High
D
Download
C
CVE-2018-7584
Verified by
free
You can open this exploit for free
Wei Lei
Эксплоиты:
2
BusinessLevel:
3
WordPress Core - load-scripts.php Denial of Service Exploit
Комметариев:
0
6 207
Security Risk High
D
Download
C
CVE-2018-6389
Verified by
free
You can open this exploit for free
Barak Tawily
Эксплоиты:
2
BusinessLevel:
5
4 187
Security Risk Medium
D
Download
-
Verified by
free
You can open this exploit for free
Stefan Esser
Эксплоиты:
31
BusinessLevel:
11
EasyCom AS400 PHP API Buffer Overflow Exploit
Комметариев:
0
12 855
Security Risk Medium
D
Download
C
CVE-2017-5358
Verified by
free
You can open this exploit for free
hyp3rlinx
Эксплоиты:
253
BusinessLevel:
17
EasyCom For PHP 4.0.0 - Buffer Overflow (PoC) Exploit
Комметариев:
0
11 367
Security Risk Medium
D
Download
C
CVE-2017-5358
Verified by
free
You can open this exploit for free
hyp3rlinx
Эксплоиты:
253
BusinessLevel:
17
EasyCom For PHP 4.0.0 - Denial of Service Exploit
Комметариев:
0
11 245
Security Risk Medium
D
Download
C
CVE-2017-5359
Verified by
free
You can open this exploit for free
hyp3rlinx
Эксплоиты:
253
BusinessLevel:
17
PHP 7.1.0 / 5.6.29 missing null byte checks for paths in ZipArchive::extractTo Vulnerability
Комметариев:
0
5 215
Security Risk Low
D
Download
-
Verified by
free
You can open this exploit for free
Maksymilian
Эксплоиты:
15
BusinessLevel:
8
PHP 7.1.0 / 5.6.29 missing null byte checks for paths in curl_file_create() Vulnerability
Комметариев:
0
5 048
Security Risk Low
D
Download
-
Verified by
free
You can open this exploit for free
Maksymilian
Эксплоиты:
15
BusinessLevel:
8
PHP 7.1.0 / 5.6.29 missing null byte checks for paths in exif_imagetype Vulnerability
Комметариев:
0
5 030
Security Risk Low
D
Download
-
Verified by
free
You can open this exploit for free
Maksymilian
Эксплоиты:
15
BusinessLevel:
8
PHP 7.0.13 Use After Free unserialize() PoC Exploit
Комметариев:
0
4 940
Security Risk Medium
D
Download
C
CVE-2016-9936
Verified by
free
You can open this exploit for free
taoguangchen
Эксплоиты:
2
BusinessLevel:
4
PHP 5.0.0 - 'snmpwalkoid()' Local Denial of Service
Комметариев:
0
3 809
Security Risk Medium
D
Download
-
Verified by
free
You can open this exploit for free
Yakir Wizman
Эксплоиты:
78
BusinessLevel:
12
PHP 5.0.0 - 'fbird_[p]connect()' Local Denial of Service
Комметариев:
0
3 902
Security Risk Medium
D
Download
-
Verified by
free
You can open this exploit for free
Yakir Wizman
Эксплоиты:
78
BusinessLevel:
12
PHP 5.0.0 - 'snmpwalk()' Local Denial of Service
Комметариев:
0
3 675
Security Risk Medium
D
Download
-
Verified by
free
You can open this exploit for free
Yakir Wizman
Эксплоиты:
78
BusinessLevel:
12
PHP 5.0.0 - 'snmprealwalk()' Local Denial of Service
Комметариев:
0
3 672
Security Risk Medium
D
Download
-
Verified by
free
You can open this exploit for free
Yakir Wizman
Эксплоиты:
78
BusinessLevel:
12
PHP 5.0.0 - 'snmpset()' Local Denial of Service
Комметариев:
0
3 654
Security Risk Medium
D
Download
-
Verified by
free
You can open this exploit for free
Yakir Wizman
Эксплоиты:
78
BusinessLevel:
12
PHP 7.0 - 'AppendIterator::append' Local Denial of Service
Комметариев:
0
3 655
Security Risk Medium
D
Download
-
Verified by
free
You can open this exploit for free
Yakir Wizman
Эксплоиты:
78
BusinessLevel:
12
3 571
Security Risk Medium
D
Download
-
Verified by
free
You can open this exploit for free
Yakir Wizman
Эксплоиты:
78
BusinessLevel:
12
PHP 5.0.0 - 'imap_mail()' Local Denial of Service
Комметариев:
0
3 731
Security Risk Medium
D
Download
-
Verified by
free
You can open this exploit for free
Yakir Wizman
Эксплоиты:
78
BusinessLevel:
12
[ shellcode ]
Shellcode category
In computer security, a shellcode is a small piece of code used as the payload in the exploitation of a software vulnerability. It is called "shellcode" because it typically starts a command shell from which the attacker can control the compromised machine, but any piece of code that performs a similar task can be called shellcode. Because the function of a payload is not limited to merely spawning a shell, some have suggested that the name shellcode is insufficient. Shellcode is commonly written in machine code.
Classification:
There are several methods of classifying exploits. The most common is by how the exploit contacts the vulnerable software. A remote exploit works over a network and exploits the security vulnerability without any prior access to the vulnerable system. A local exploit requires prior access to the vulnerable system and usually increases the privileges of the person running the exploit past those granted by the system administrator. Exploits against client applications also exist, usually consisting of modified servers that send an exploit if accessed with a client application. Exploits against client applications may also require some interaction with the user and thus may be used in combination with the social engineering method. Another classification is by the action against the vulnerable system; unauthorized data access, arbitrary code execution, and denial of service are examples. Many exploits are designed to provide superuser-level access to a computer system. However, it is also possible to use several exploits, first to gain low-level access, then to escalate privileges repeatedly until one reaches root. Normally a single exploit can only take advantage of a specific software vulnerability. Often, when an exploit is published, the vulnerability is fixed through a patch and the exploit becomes obsolete until newer versions of the software become available Shellcodes any types.
-::DATE
-::DESCRIPTION
-::TYPE
-::HITS
-::RISK
-::GOLD
-::AUTHOR
linux/x86 Search (*.php) and Inject PHP_BACKD00R
Комметариев:
0
13 656
Security Risk Unsored
D
Download
-
Not verified yet
free
You can open this exploit for free
KedAns-Dz
Эксплоиты:
292
BusinessLevel:
24
13 376
Security Risk Unsored
D
Download
-
Not verified yet
free
You can open this exploit for free
rigan
Эксплоиты:
8
BusinessLevel:
7
linux/x86 writes a php connectback shell to the fs 508 bytes
Комметариев:
0
5 740
Security Risk Unsored
D
Download
-
Not verified yet
free
You can open this exploit for free
GS2008
Эксплоиты:
1
BusinessLevel:
8