php

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2016-12-25 PHPMailer < 5.2.18 - Remote Code Execution
  • webapps
    		•  Dawid Golunski
    2016-12-23 Freepbx < 2.11.1.5 - Remote Code Execution
  • webapps
    		•  inj3ctor3
    2016-12-19 WordPress Plugin 404 Redirection Manager 1.0 – SQL Injection
  • webapps
    		•  Ahmed Sherif
    2016-12-16 WordPress Plugin WP Support Plus Responsive Ticket System 7.1.3 – SQL Injection
  • webapps
    		•  Lenon Leite
    2016-12-16 WordPress Plugin Quiz And Survey Master 4.5.4/4.7.8 – Cross-Site Request Forgery
  • webapps
    		•  dxw
    2016-12-16 WHMCompleteSolution (WHMCS) Addon VMPanel 2.7.4 – SQL Injection
  • webapps
    		•  ZwX
    2016-12-16 WordPress Plugin WP Private Messages 1.0.1 – SQL Injection (1)
  • webapps
    		•  Lenon Leite
    2016-12-13 Joomla! Component DT Register – ‘cat’ SQL Injection
  • webapps
    		•  Elar Lang
    2016-12-12 Sophos Web Appliance 4.2.1.3 – block/unblock Remote Command Injection (Metasploit)
  • webapps
    		•  xort
    2016-12-12 WordPress Plugin Multisite Post Duplicator 0.9.5.1 – Cross-Site Request Forgery
  • webapps
    		•  dxw
    2016-12-09 Roundcube 1.2.2 – Remote Code Execution
  • webapps
    		•  Robin Peraglie
    2016-12-06 Edge SkateShop – Authentication bypass
  • webapps
    		•  Delilah
    2016-12-06 AbanteCart 1.2.7 – Cross-Site Scripting
  • webapps
    		•  Kacper Szurek
    2016-12-05 WordPress Plugin Single Personal Message 1.0.3 – SQL Injection
  • webapps
    		•  Lenon Leite
    2016-12-03 Smart Guard Network Manager 6.3.2 – SQL Injection
  • webapps
    		•  Rahul Raz
    2016-11-30 WordPress Plugin WP Vault 0.8.6.6 – Local File Inclusion
  • webapps
    		•  Lenon Leite
    2016-11-24 osTicket 1.9.14 – ‘X-Forwarded-For’ Cross-Site Scripting
  • webapps
    		•  Joaquin Ramirez Martinez
    2016-11-22 EasyPHP Devserver 16.1.1 – Cross-Site Request Forgery / Remote Command Execution
  • webapps
    		•  hyp3rlinx
    2016-11-21 FUDforum 3.0.6 – Cross-Site Scripting / Cross-Site Request Forgery
  • webapps
    		•  Curesec Research Team
    2016-11-21 LEPTON 2.2.2 – Remote Code Execution
  • webapps
    		•  Curesec Research Team
    2016-11-21 LEPTON 2.2.2 – SQL Injection
  • webapps
    		•  Curesec Research Team
    2016-11-21 WordPress Plugin Instagram Feed 1.4.6.2 – Cross-Site Request Forgery
  • webapps
    		•  Sipke Mellema
    2016-11-21 WordPress Plugin Olimometer 2.56 – SQL Injection
  • webapps
    		•  TAD GROUP
    2016-11-21 FUDforum 3.0.6 – Local File Inclusion
  • webapps
    		•  Curesec Research Team