multiple

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2025-04-14 GestioIP 3.5.7 – Cross-Site Scripting (XSS)
  • remote
    		•  Maximiliano Belino
    2025-04-14 GestioIP 3.5.7 – Stored Cross-Site Scripting (Stored XSS)
  • remote
    		•  Maximiliano Belino
    2025-04-14 GestioIP 3.5.7 – Cross-Site Request Forgery (CSRF)
  • remote
    		•  Maximiliano Belino
    2025-04-14 SilverStripe 5.3.8 – Stored Cross Site Scripting (XSS) (Authenticated)
  • webapps
    		•  James Nicoll
    2025-04-14 OpenPanel Copy and View functions in the File Manager 0.3.4 – Directory Traversal
  • webapps
    		•  Korn Chaisuwan, Charanin Thongudom, Pongtorn Angsuchotmetee
    2025-04-14 OpenPanel 0.3.4 – OS Command Injection
  • webapps
    		•  Korn Chaisuwan, Charanin Thongudom, Pongtorn Angsuchotmetee
    2025-04-14 OpenPanel 0.3.4 – Incorrect Access Control
  • webapps
    		•  Korn Chaisuwan, Charanin Thongudom, Pongtorn Angsuchotmetee
    2025-04-14 GestioIP 3.5.7 – Reflected Cross-Site Scripting (Reflected XSS)
  • remote
    		•  Maximiliano Belino
    2025-04-14 OpenPanel 0.3.4 – Directory Traversal
  • webapps
    		•  Korn Chaisuwan, Charanin Thongudom, Pongtorn Angsuchotmetee
    2025-04-14 Pimcore 11.4.2 – Stored cross site scripting
  • webapps
    		•  maeitsec
    2025-04-14 Pimcore customer-data-framework 4.2.0 – SQL injection
  • webapps
    		•  maeitsec
    2025-04-14 Xinet Elegant 6 Asset Lib Web UI 6.1.655 – SQL Injection
  • webapps
    		•  hyp3rlinx
    2025-04-14 ZTE ZXHN H168N 3.1 – Remote Code Execution (RCE) via authentication bypass
  • hardware
    		•  tasos meletlidis
    2025-04-11 ABB Cylon FLXeon 9.3.4 – Remote Code Execution (RCE)
  • hardware
    		•  LiquidWorm
    2025-04-11 MagnusSolution magnusbilling 7.3.0 – Command Injection
  • webapps
    		•  CodeSecLab
    2025-04-11 Netman 204 – Remote command without authentication
  • hardware
    		•  Parsa Rezaie Khiabanloo
    2025-04-11 ABB Cylon Aspect 3.08.02 – PHP Session Fixation
  • hardware
    		•  LiquidWorm
    2025-04-11 CMU CERT/CC VINCE 2.0.6 – Stored XSS
  • webapps
    		•  LiquidWorm
    2025-04-11 WebFileSys 2.31.0 – Directory Path Traversal
  • webapps
    		•  Korn Chaisuwan, Charanin Thongudom, Pongtorn Angsuchotmetee
    2025-04-11 ABB Cylon FLXeon 9.3.4 – WebSocket Command Spawning
  • hardware
    		•  LiquidWorm
    2025-04-11 ABB Cylon FLXeon 9.3.4 – Cross-Site Request Forgery
  • hardware
    		•  LiquidWorm
    2025-04-11 qBittorrent 5.0.1 – MITM RCE
  • local
    		•  Jordan Sharp
    2025-04-11 ABB Cylon FLXeon 9.3.4 – Default Credentials
  • hardware
    		•  LiquidWorm
    2025-04-11 GeoVision GV-ASManager 6.1.0.0 – Broken Access Control
  • webapps
    		•  Giorgi Dograshvili