php

日期	标题	类别	作者
2016-11-20	ScriptCase 8.1.053 – Multiple Vulnerabilities	webapps	hyp3rlinx
2016-11-18	EditMe CMS – Cross-Site Request Forgery (Add Admin)	webapps	Vulnerability-Lab
2016-11-17	WordPress Plugin Sirv 1.3.1 – SQL Injection	webapps	Lenon Leite
2016-11-17	WordPress Plugin Answer My Question 1.3 – SQL Injection	webapps	Lenon Leite
2016-11-16	CS-Cart 4.3.10 – XML External Entity Injection	webapps	0x4148
2016-11-14	Boonex Dolphin 7.3.2 – Authentication Bypass / Remote Code Execution	webapps	0x4148
2016-11-13	ATutor 2.2.2 – Cross-Site Request Forgery (Add New Course)	webapps	Saravana Kumar
2016-11-13	Schoolhos CMS 2.29 – Remote Code Execution / SQL Injection	webapps	0x4148
2016-11-12	WordPress Plugin Product Catalog 8 1.2.0 – SQL Injection	webapps	Lenon Leite
2016-11-12	WordPress Plugin BBS e-Franchise 1.1.1 – SQL Injection	webapps	Lenon Leite
2016-11-11	InvoicePlane 1.4.8 – Password Reset	webapps	feedersec
2016-11-10	4Images 1.7.13 – SQL Injection	webapps	0x4148
2016-11-10	MyBB 1.8.6 – Cross-Site Scripting	webapps	Curesec Research Team
2016-11-09	e107 CMS 2.1.2 – Privilege Escalation	webapps	Kacper Szurek
2016-11-08	WordPress Plugin WassUp Real Time Analytics 1.9 – Persistent Cross-Site Scripting	webapps	Burak Kelebek
2016-11-08	WordPress Plugin 404 to 301 2.2.8 – Persistent Cross-Site Scripting	webapps	Alyssa Milburn
2016-11-07	Sophos Web Appliance 4.2.1.3 – Remote Code Execution	webapps	KoreLogic
2016-11-07	Piwik 2.16.0 – ‘layout’ PHP Object Injection	webapps	Egidio Romano
2016-11-07	NodCMS – PHP Code Execution	webapps	Ashiyane Digital Security Team
2016-11-07	Schoolhos CMS 2.29 – ‘kelas’ SQL Injection	webapps	Vulnerability-Lab
2016-11-06	SweetRice 1.5.1 – Backup Disclosure	webapps	Ashiyane Digital Security Team
2016-11-06	SweetRice 1.5.1 – Arbitrary File Upload	webapps	Ashiyane Digital Security Team
2016-11-03	sNews 1.7.1 – Arbitrary File Upload	webapps	Amir.ght
2016-11-03	sNews 1.7.1 – Cross-Site Request Forgery	webapps	Amir.ght