php

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2018-01-08 WordPress Plugin LearnDash 2.5.3 – Arbitrary File Upload
  • webapps
    		•  NinTechNet
    2018-01-05 gps-server.net GPS Tracking Software < 3.1 - Multiple Vulnerabilities
  • webapps
    		•  Noman Riffat
    2018-01-03 WordPress Plugin Smart Google Code Inserter < 3.5 - Authentication Bypass / SQL Injection
  • webapps
    		•  Benjamin Lim
    2017-12-31 PHP Melody 2.7.1 – ‘playlist’ SQL Injection
  • webapps
    		•  Ahmad Mahfouz
    2017-12-27 Easy!Appointments 1.2.1 – Cross-Site Scripting
  • webapps
    		•  LiquidWorm
    2017-12-27 Xerox DC260 EFI Fiery Controller Webtools 2.0 – Arbitrary File Disclosure
  • webapps
    		•  LiquidWorm
    2017-12-26 SilverStripe CMS 3.6.2 – CSV Excel Macro Injection
  • webapps
    		•  Ishaq Mohammed
    2017-12-26 Sendroid < 6.5.0 - SQL Injection
  • webapps
    		•  Onwuka Gideon
    2017-12-26 Biometric Shift Employee Management System 3.0 – Local File Disclosure
  • webapps
    		•  Ihsan Sencan
    2017-12-26 Joomla! Component JEXTN FAQ Pro 4.0.0 – ‘id’ SQL Injection
  • webapps
    		•  Ihsan Sencan
    2017-12-19 Tuleap 9.6 – Second-Order PHP Object Injection (Metasploit)
  • remote
    		•  Metasploit
    2017-12-19 Joomla! Component NextGen Editor 2.1.0 – ‘plname’ SQL Injection
  • webapps
    		•  Ihsan Sencan
    2017-12-18 Joomla! Component My Projects 2.0 – SQL Injection
  • webapps
    		•  Ihsan Sencan
    2017-12-18 Joomla! Component User Bench 1.0 – ‘userid’ SQL Injection
  • webapps
    		•  Ihsan Sencan
    2017-12-18 Western Digital MyCloud – ‘multi_uploadify’ File Upload (Metasploit)
  • remote
    		•  Metasploit
    2017-12-18 Joomla! Component Guru Pro – ‘promocode’ SQL Injection
  • webapps
    		•  Ihsan Sencan
    2017-12-18 Joomla! Component JB Visa 1.0 – ‘visatype’ SQL Injection
  • webapps
    		•  Ihsan Sencan
    2017-12-18 Cells Blog 3.5 – ‘bgid’ / ‘fmid’ / ‘fnid’ SQL Injection
  • webapps
    		•  Ihsan Sencan
    2017-12-18 Monstra CMS 3.0.4 – (Authenticated) Arbitrary File Upload / Remote Code Execution
  • webapps
    		•  Ishaq Mohammed
    2017-12-18 Ciuis CRM 1.0.7 – SQL Injection
  • webapps
    		•  Zahid Abbasi
    2017-12-15 Movie Guide 2.0 – SQL Injection
  • webapps
    		•  Ihsan Sencan
    2017-12-14 Piwigo 2.9.1 – ‘cat_true’ / ‘cat_false’ SQL Injection
  • webapps
    		•  Akityo
    2017-12-14 Bus Booking Script 1.0 – ‘txtname’ SQL Injection
  • webapps
    		•  Ihsan Sencan
    2017-12-14 Paid To Read Script 2.0.5 – ‘uid’ / ‘fnum’ / ‘fn’ SQL Injection
  • webapps
    		•  Ihsan Sencan