php

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2018-09-14 WordPress Plugin Survey & Poll 1.5.7.3 – ‘sss_params’ SQL Injection
  • webapps
    		•  Ceylan BOZOĞULLARINDAN
    2018-09-12 MyBB 1.8.17 – Cross-Site Scripting
  • webapps
    		•  0xB9
    2018-09-12 IBM Identity Governance and Intelligence 5.2.3.2 / 5.2.4 – SQL Injection
  • webapps
    		•  Mohamed Sayed
    2018-09-11 Bayanno Hospital Management System 4.0 – Cross-Site Scripting
  • webapps
    		•  Gokhan Sagoglu
    2018-09-07 Softneta MedDream PACS Server Premium 6.7.1.1 – Directory Traversal
  • webapps
    		•  Carlos Avila
    2018-09-07 MedDream PACS Server Premium 6.7.1.1 – ’email’ SQL Injection
  • webapps
    		•  Carlos Avila
    2018-09-06 Jorani Leave Management 0.6.5 – (Authenticated) ‘startdate’ SQL Injection
  • webapps
    		•  Javier Olmedo
    2018-09-06 Jorani Leave Management 0.6.5 – Cross-Site Scripting
  • webapps
    		•  Javier Olmedo
    2018-09-04 mooSocial Store Plugin 2.6 – SQL Injection
  • webapps
    		•  Andrea Bocchetti
    2018-09-04 Simple POS 4.0.24 – ‘columns[0][search][value]’ SQL Injection
  • webapps
    		•  Renos Nikolaou
    2018-09-04 PHP File Browser Script 1 – Directory Traversal
  • webapps
    		•  AkkuS
    2018-09-04 Logicspice FAQ Script 2.9.7 – Remote Code Execution
  • webapps
    		•  AkkuS
    2018-09-03 Online Quiz Maker 1.0 – ‘catid’ SQL Injection
  • webapps
    		•  AkkuS
    2018-09-03 Admidio 3.3.5 – Cross-Site Request Forgery (Change Permissions)
  • webapps
    		•  Nawaf Alkeraithe
    2018-08-31 DamiCMS 6.0.0 – Cross-Site Request Forgery (Change Admin Password)
  • webapps
    		•  Autism_JH
    2018-08-30 WordPress Plugin Quizlord 2.0 – Cross-Site Scripting
  • webapps
    		•  Renos Nikolaou
    2018-08-30 WordPress Plugin Jibu Pro 1.7 – Cross-Site Scripting
  • webapps
    		•  Renos Nikolaou
    2018-08-29 phpMyAdmin 4.7.x – Cross-Site Request Forgery
  • webapps
    		•  VulnSpy
    2018-08-27 WordPress Plugin Plainview Activity Monitor 20161228 – (Authenticated) Command Injection
  • webapps
    		•  Lydéric Lefebvre
    2018-08-27 Responsive FileManager < 9.13.4 - Directory Traversal
  • webapps
    		•  Simon Uvarov
    2018-08-27 LiteCart 2.1.2 – Arbitrary File Upload
  • webapps
    		•  Haboob Team
    2018-08-27 Gleez CMS 1.2.0 – Cross-Site Request Forgery (Add Admin)
  • webapps
    		•  GunEggWang
    2018-08-26 WordPress Plugin Gift Voucher 1.0.5 – (Authenticated) ‘template_id’ SQL Injection
  • webapps
    		•  Renos Nikolaou
    2018-08-25 UltimatePOS 2.5 – Remote Code Execution
  • webapps
    		•  Renos Nikolaou