multiple

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2020-12-04 Chromium 83 – Full CSP Bypass
  • local
    		•  Gal Weizman
    2020-12-04 Testa Online Test Management System 3.4.7 – ‘q’ SQL Injection
  • webapps
    		•  Ultra Security Team
    2020-12-04 Phpscript-sgh 0.1.0 – Time Based Blind SQL Injection
  • webapps
    		•  KeopssGroup0day,Inc
    2020-12-04 WordPress Plugin Canto 1.3.0 – Blind SSRF (Unauthenticated)
  • webapps
    		•  Pankaj Verma
    2020-12-03 mojoPortal forums 2.7.0.0 – ‘Title’ Persistent Cross-Site Scripting
  • webapps
    		•  Sagar Banwa
    2020-12-03 EgavilanMedia Address Book 1.0 Exploit – SQLi Auth Bypass
  • webapps
    		•  Mayur Parmar
    2020-12-03 Invision Community 4.5.4 – ‘Field Name’ Stored Cross-Site Scripting
  • webapps
    		•  Hemant Patidar
    2020-12-02 Student Result Management System 1.0 – Authentication Bypass SQL Injection
  • webapps
    		•  Ritesh Gohil
    2020-12-02 EgavilanMedia User Registration & Login System with Admin Panel 1.0 – CSRF
  • webapps
    		•  Hardik Solanki
    2020-12-02 ChurchCRM 4.2.1 – Persistent Cross Site Scripting (XSS)
  • webapps
    		•  Mufaddal Masalawala
    2020-12-02 Under Construction Page with CPanel 1.0 – SQL injection
  • webapps
    		•  Mayur Parmar
    2020-12-02 ChurchCRM 4.2.0 – CSV/Formula Injection
  • webapps
    		•  Mufaddal Masalawala
    2020-12-02 ILIAS Learning Management System 4.3 – SSRF
  • webapps
    		•  Dot
    2020-12-02 WebDamn User Registration & Login System with User Panel – SQLi Auth Bypass
  • webapps
    		•  Aakash Madaan
    2020-12-02 Expense Management System – ‘description’ Stored Cross Site Scripting
  • webapps
    		•  Nikhil Kumar
    2020-12-02 Ksix Zigbee Devices – Playback Protection Bypass (PoC)
  • remote
    		•  Alejandro Vazquez Vazquez
    2020-12-02 DotCMS 20.11 – Stored Cross-Site Scripting
  • webapps
    		•  Hardik Solanki
    2020-12-02 Artworks Gallery 1.0 – Arbitrary File Upload RCE (Authenticated) via Edit Profile
  • webapps
    		•  Shahrukh Iqbal Mirza
    2020-12-02 Artworks Gallery 1.0 – Arbitrary File Upload RCE (Authenticated) via Add Artwork
  • webapps
    		•  Shahrukh Iqbal Mirza
    2020-12-02 Employee Record Management System 1.1 – Login Bypass SQL Injection
  • webapps
    		•  Anurag Kumar
    2020-12-02 Local Service Search Engine Management System 1.0 – SQLi Authentication Bypass
  • webapps
    		•  Aditya Wakhlu
    2020-12-02 Online News Portal System 1.0 – ‘Title’ Stored Cross Site Scripting
  • webapps
    		•  Parshwa Bhavsar
    2020-12-02 Bakeshop Online Ordering System 1.0 – ‘Owner’ Persistent Cross-site scripting
  • webapps
    		•  Parshwa Bhavsar
    2020-12-02 NewsLister – Authenticated Persistent Cross-Site Scripting
  • webapps
    		•  Emre Aslan