Platform php - 体验盒子 - 不再关注网络安全

日期	标题	类别	作者
2023-06-19	The Shop v2.5 – SQL Injection	webapps	Ahmet Ümit BAYRAM
2023-06-15	Online Art gallery project 1.0 – Arbitrary File Upload (Unauthenticated)	webapps	Ramil Mustafayev
2023-06-14	Textpattern CMS v4.8.8 – Stored Cross-Site Scripting (XSS) (Authenticated)	webapps	tmrswrr
2023-06-14	Online Thesis Archiving System v1.0 – Multiple-SQLi	webapps	nu11secur1ty
2023-06-14	Xoops CMS 2.5.10 – Stored Cross-Site Scripting (XSS) (Authenticated)	webapps	tmrswrr
2023-06-14	Monstra 3.0.4 – Stored Cross-Site Scripting (XSS)	webapps	tmrswrr
2023-06-14	projectSend r1605 – Stored XSS	webapps	Mirabbas Ağalarov
2023-06-14	projectSend r1605 – CSV injection	webapps	Mirabbas Ağalarov
2023-06-13	Sales Tracker Management System v1.0 – Multiple Vulnerabilities	webapps	AFFAN AHMED
2023-06-13	Teachers Record Management System 1.0 – File Upload Type Validation	webapps	AFFAN AHMED
2023-06-13	Online Examination System Project 1.0 – Cross-site request forgery (CSRF)	webapps	Ramil Mustafayev
2023-06-09	WordPress Theme Workreap 2.2.2 – Unauthenticated Upload Leading to Remote Code Execution	webapps	Mohammad Hossein Khanaki
2023-06-06	Tree Page View Plugin 1.6.7 – Cross Site Scripting (XSS)	webapps	LEE SE HYOUNG
2023-06-04	File Manager Advanced Shortcode 2.3.2 – Unauthenticated Remote Code Execution (RCE)	webapps	Mateus Machado Tesser
2023-06-04	MotoCMS Version 3.4.3 – SQL Injection	webapps	tmrswrr
2023-06-04	Barebones CMS v2.0.2 – Stored Cross-Site Scripting (XSS) (Authenticated)	webapps	tmrswrr
2023-06-04	Enrollment System Project v1.0 – SQL Injection Authentication Bypass (SQLI)	webapps	VIVEK CHOUDHARY
2023-06-04	Total CMS 1.7.4 – Remote Code Execution (RCE)	webapps	tmrswrr
2023-05-31	Faculty Evaluation System 1.0 – Unauthenticated File Upload	webapps	URGAN
2023-05-31	Online Security Guards Hiring System 1.0 – Reflected XSS	webapps	AFFAN AHMED
2023-05-31	unilogies/bumsys v1.0.3 beta – Unrestricted File Upload	webapps	AFFAN AHMED
2023-05-31	SCRMS 2023-05-27 1.0 – Multiple SQL Injection	webapps	nu11secur1ty
2023-05-31	Rukovoditel 3.3.1 – CSV injection	webapps	Mirabbas Ağalarov
2023-05-25	Ulicms 2023.1 – create admin user via mass assignment	webapps	Mirabbas Ağalarov