php

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2016-08-10 vBulletin 5.2.2 – Server-Side Request Forgery
  • webapps
    		•  Dawid Golunski
    2016-08-10 Nagios Network Analyzer 2.2.1 – Multiple Cross-Site Request Forgery Vulnerabilities
  • webapps
    		•  hyp3rlinx
    2016-08-08 WordPress Plugin Add From Server < 3.3.2 - Cross-Site Request Forgery (Arbitrary File Upload)
  • webapps
    		•  Edwin Molenaar
    2016-08-08 PHPCollab CMS 2.5 – ’emailusers.php’ SQL Injection
  • webapps
    		•  Vulnerability-Lab
    2016-08-06 NUUO NVRmini 2 3.0.8 – ‘strong_user.php’ Backdoor Remote Shell Access
  • webapps
    		•  LiquidWorm
    2016-08-06 NUUO NVRmini 2 3.0.8 – Arbitrary File Deletion
  • webapps
    		•  LiquidWorm
    2016-08-06 NUUO NVRmini 2 3.0.8 – Multiple OS Command Injections
  • webapps
    		•  LiquidWorm
    2016-08-06 NUUO NVRmini 2 3.0.8 – Local File Disclosure
  • webapps
    		•  LiquidWorm
    2016-08-06 NUUO NVRmini 2 3.0.8 – Cross-Site Request Forgery (Add Admin)
  • webapps
    		•  LiquidWorm
    2016-08-06 NUUO NVRmini 2 3.0.8 – Remote Code Execution
  • webapps
    		•  LiquidWorm
    2016-08-05 WordPress Plugin Count Per Day 3.5.4 – Persistent Cross-Site Scripting
  • webapps
    		•  Julien Rentrop
    2016-08-05 PHP Power Browse 1.2 – Directory Traversal
  • webapps
    		•  Manuel Mancera
    2016-08-05 Subrion CMS 4.0.5 – SQL Injection
  • webapps
    		•  Vulnerability-Lab
    2016-08-02 Open Upload 0.4.2 – Cross-Site Request Forgery (Add Admin)
  • webapps
    		•  Vinesh Redkar
    2016-08-01 WordPress Plugin ALO EasyMail NewsLetter 2.9.2 – Cross-Site Request Forgery (Add/Import Arbitrary Subscribers)
  • webapps
    		•  Yorick Koster
    2016-08-01 WordPress Plugin WP Live Chat Support 6.2.03 – Persistent Cross-Site Scripting
  • webapps
    		•  Dennis Kerdijk & Erwin Kievith
    2016-08-01 WordPress Plugin Booking Calendar 6.2 – SQL Injection
  • webapps
    		•  Edwin Molenaar
    2016-07-29 phpMyAdmin 4.6.2 – (Authenticated) Remote Code Execution
  • webapps
    		•  @iamsecurity
    2016-07-29 WordPress Plugin Ultimate Product Catalog 3.9.8 – do_shortcode via ajax Blind SQL Injection
  • webapps
    		•  i0akiN SEC-LABORATORY
    2016-07-26 PHP File Vault 0.9 – Directory Traversal
  • webapps
    		•  N_A
    2016-07-25 PHP 5.5.37/5.6.23/7.0.8 – ‘bzread()’ Out-of-Bounds Write
  • dos
    		•  Hans Jerry Illikainen
    2016-07-25 PHP gettext 1.0.12 – ‘gettext.php’ Code Execution
  • webapps
    		•  kmkz
    2016-07-25 GRR Système de Gestion et de Réservations de Ressources 3.0.0-RC1 – Arbitrary File Upload
  • webapps
    		•  kmkz
    2016-07-25 CodoForum 3.2.1 – SQL Injection
  • webapps
    		•  Yakir Wizman