0day.today - Biggest Exploit Database in the World.

Select your language:

Things you should know about 0day.today:

We use one main domain: http://0day.today
Most of the materials is completely FREE
If you want to purchase the exploit / get V.I.P. access or pay for any other service,
you need to buy or earn GOLD

We accept currencies: [contact admin to find more]

We don't want you to use our site as a tool for hacking purposes, so any kind of action that could affect illegaly other users or websites that you don't have right to access will be banned and your account including your data will be destroyed.

Administration of this site uses the official contacts. Beware of impostors!

We DO NOT use Telegram or any messengers / social networks!
Please, beware of scammers!

I am registered user of 0day.today. I don't want to see this screen in future.

What to do first?

Read the [ agreement ]
Read the [ Submit ] rules
Visit the [ faq ] page
[ Register ] profile
Get [ GOLD ]
If you want to [ sell ]
If you want to [ buy ]
If you lost [ Account ]
Any questions [ admin@0day.today ]

Main links

You can contact us by

Mail:

mr.inj3ct0r@gmail.com

Facebook:

Inj3ct0rs

Twitter:

Inj3ct0r

Telegram:

We DO NOT use Telegram or any messengers / social networks!

[ authorization ] [ registration ] [ restore account ]

You can contact us by:

Mail:

mr.inj3ct0r@gmail.com

Facebook:

Inj3ct0rs

Twitter:

Inj3ct0r

Telegram:

We DO NOT use Telegram or any messengers / social networks!

Search:
	Search content Search author

	Search in description

Category:		Platform:

Price from:		Price to:

Author login:		CVE:

Search results for exploits by request: QNAP

[ remote exploits ]

Remote exploits and vulnerabilities category

A "remote exploit" works over a network and exploits the security vulnerability without any prior access to the vulnerable system.

-::DATE

-::DESCRIPTION

-::TYPE

-::HITS

-::RISK

-::GOLD

-::AUTHOR

22-02-2024

QNAP QTS / QuTS Hero Unauthenticated Remote Code Execution Exploit

Comments:

multiple

2 710

Security Risk Critical

Related releases

Download

CVE-2023-47218

Verified by 0day Admin

free

You can open this exploit for free

metasploit

Exploits:

1655

BusinessLevel:

08-04-2019

QNAP Netatalk < 3.1.12 - Authentication Bypass Exploit

Comments:

multiple

6 898

Security Risk High

Related releases

Download

CVE-2018-1160

Verified by 0day Admin

free

You can open this exploit for free

muts

Exploits:

BusinessLevel:

07-03-2019

QNAP TS-431 QTS < 4.2.2 - Remote Command Execution Exploit

Comments:

hardware

6 967

Security Risk Critical

Related releases

Download

Verified by 0day Admin

free

You can open this exploit for free

AkkuS

Exploits:

BusinessLevel:

17-07-2018

QNAP QCenter change_passwd Command Execution Exploit

Comments:

linux

4 991

Security Risk High

Related releases

Download

CVE-2018-0706
CVE-2018-0707

Verified by 0day Admin

free

You can open this exploit for free

metasploit

Exploits:

1655

BusinessLevel:

29-08-2017

QNAP Transcode Server Command Execution Exploit

Comments:

hardware

4 301

Security Risk Critical

Related releases

Download

Verified by 0day Admin

free

You can open this exploit for free

metasploit

Exploits:

1655

BusinessLevel:

27-03-2015

QNAP admin shell via Bash Environment Variable Code Injection Exploit

Comments:

hardware

4 752

Security Risk Critical

Related releases

Download

CVE-2014-6271

Verified by 0day Admin

free

You can open this exploit for free

Patrick Pellegrino

Exploits:

BusinessLevel:

27-03-2015

QNAP Web Server Remote Code Execution via Bash Environment Variable Code Injection Exploit

Comments:

hardware

4 410

Security Risk Critical

Related releases

Download

CVE-2014-6271

Verified by 0day Admin

free

You can open this exploit for free

Patrick Pellegrino

Exploits:

BusinessLevel:

[ local exploits ]

Local exploits and vulnerabilities category

A "local exploit" requires prior access to the vulnerable system and usually increases the privileges of the person running the exploit past those granted by the system administrator. Exploits against client applications also exist, usually consisting of modified servers that send an exploit if accessed with client application.

-::DATE

-::DESCRIPTION

-::TYPE

-::HITS

-::RISK

-::GOLD

-::AUTHOR

15-03-2021

QNAP QVR Client 5.0.0.13230 - (QVRService) Unquoted Service Path Vulnerability

Comments:

windows

8 470

Security Risk Medium

Related releases

Download

Verified by 0day Admin

free

You can open this exploit for free

Luis Martínez

Exploits:

BusinessLevel:

06-11-2019

QNAP NetBak Replicator 4.5.6.0607 - (QVssService) Unquoted Service Path Vulnerability

Comments:

windows

5 208

Security Risk Medium

Related releases

Download

Verified by 0day Admin

free

You can open this exploit for free

Ivan Marmolejo

Exploits:

BusinessLevel:

[ web applications ]

Webapplication (webapps) exploits and vulnerabilities category

This category is full with vulnerabilities, which was found in web projects and web applications.

-::DATE

-::DESCRIPTION

-::TYPE

-::HITS

-::RISK

-::GOLD

-::AUTHOR

28-05-2021

QNAP MusicStation / MalwareRemover File Upload / Command Injection Vulnerabilities

Comments:

php

1 666

Security Risk High

Related releases

Download

CVE-2020-36197
CVE-2020-36198

Verified by 0day Admin

free

You can open this exploit for free

polict

Exploits:

BusinessLevel:

29-05-2020

QNAP QTS and Photo Station 6.0.3 - Remote Command Execution Exploit

Comments:

php

2 522

Security Risk Critical

Related releases

Download

Verified by 0day Admin

free

You can open this exploit for free

Th3GundY

Exploits:

BusinessLevel:

08-09-2018

QNAP Photo Station 5.7.0 - Cross-Site Scripting Vulnerability

Comments:

php

3 556

Security Risk Low

Related releases

Download

CVE-2018-0715

Verified by 0day Admin

free

You can open this exploit for free

Sameer Goyal

Exploits:

BusinessLevel:

12-07-2018

QNAP Qcenter Virtual Appliance 1.6.x Information Disclosure / Command Injection Vulnerabilities

Comments:

hardware

4 628

Security Risk Critical

Related releases

Download

CVE-2018-0706
CVE-2018-0707
CVE-2018-0708
CVE-2018-0709
CVE-2018-0710

Verified by 0day Admin

free

You can open this exploit for free

Core Security

Exploits:

BusinessLevel:

10-05-2017

QNAP PhotoStation 5.2.4 / MusicStation 4.8.4 - Authentication Bypass Vulnerability

Comments:

php

5 009

Security Risk High

Related releases

Download

Verified by 0day Admin

free

You can open this exploit for free

Kacper Szurek

Exploits:

BusinessLevel:

07-04-2017

QNAP TVS-663 QTS < 4.2.4 build 20170313 - Command Injection Vulnerability

Comments:

hardware

4 165

Security Risk High

Related releases

Download

CVE-2017-6359
CVE-2017-6360
CVE-2017-6361

Verified by 0day Admin

free

You can open this exploit for free

Harry Sintonen

Exploits:

BusinessLevel:

24-03-2017

QNAP QTS Privilege Escalation / Information Disclosure Vulnerabilities

Comments:

hardware

4 045

Security Risk Medium

Related releases

Download

CVE-2017-5227

Verified by 0day Admin

free

You can open this exploit for free

Pasquale Florillo

Exploits:

BusinessLevel:

18-02-2017

QNAP QTS 4.2.x multiple Vulnerabilities

Comments:

hardware

6 130

Security Risk Medium

Related releases

Download

Verified by 0day Admin

free

You can open this exploit for free

Harry Sintonen

Exploits:

BusinessLevel:

05-09-2012

QNAP Turbo NAS 3.7.3 File Disclosure

Comments:

hardware

6 379

Security Risk Medium

Related releases

Download

Not verified yet

free

You can open this exploit for free

Andrea Fabrizi

Exploits:

BusinessLevel:

[ dos / poc ]

DOS exploits and vulnerabilities category

PoC DoS (denial of service exploit) it exploits remote steps to check the resistance on the affected server or software denial of service vulnerability. The purpose of these attacks is to check the server or the software for resistance.

PoC (Proof Of Concept exploit) An attack against a computer or network that is performed only to prove that it can be done. It generally does not cause any harm, but shows how a hacker can take advantage of a vulnerability in the software or possibly the hardware.

-::DATE

-::DESCRIPTION

-::TYPE

-::HITS

-::RISK

-::GOLD

-::AUTHOR

20-04-2019