php

日期	标题	类别	作者
2016-06-21	Yona CMS – Cross-Site Request Forgery	webapps	s0nk3y
2016-06-21	IonizeCMS 1.0.8 – Cross-Site Request Forgery (Add Admin)	webapps	s0nk3y
2016-06-20	Symphony CMS 2.6.7 – Session Fixation	webapps	hyp3rlinx
2016-06-20	Airia – Arbitrary File Upload	webapps	HaHwul
2016-06-20	Airia – Cross-Site Request Forgery (Add Content)	webapps	HaHwul
2016-06-20	WordPress Plugin Premium SEO Pack 1.9.1.3 – wp_options Overwrite	webapps	wp0Day.com
2016-06-20	Joomla! Component com_bt_media 1.0 – SQL Injection	webapps	Persian Hack Team
2016-06-20	sNews CMS 1.7.1 – Multiple Vulnerabilities	webapps	hyp3rlinx
2016-06-20	WordPress Plugin Ultimate Product Catalog 3.8.1 – Privilege Escalation	webapps	i0akiN SEC-LABORATORY
2016-06-17	phpATM 1.32 – Multiple Vulnerabilities	webapps	Paolo Massenio
2016-06-17	phpATM 1.32 (Windows) – Arbitrary File Upload / Remote Command Execution	webapps	Paolo Massenio
2016-06-17	Vicidial 2.11 – Scripts Persistent Cross-Site Scripting	webapps	David Silveiro
2016-06-17	WordPress Plugin Gravity Forms 1.8.19 – Arbitrary File Upload	webapps	Abk Khan
2016-06-16	Roxy Fileman 1.4.4 – Arbitrary File Upload	webapps	Tyrell Sassen
2016-06-16	Tiki Wiki CMS Calendar 6.15/9.11 LTS/12.5 LTS/14.2 – Remote Code Execution	webapps	Dany Ouellet
2016-06-16	SlimCMS 0.1 – Cross-Site Request Forgery (Change Admin Password)	webapps	Avinash Thapa
2016-06-15	PHPLive 4.4.8 < 4.5.4 - Password Recovery SQL Injection	webapps	Tiago Carvalho
2016-06-15	jbFileManager – Directory Traversal	webapps	HaHwul
2016-06-15	BookingWizz Booking System < 5.5 - Multiple Vulnerabilities	webapps	Mehmet Ince
2016-06-15	Joomla! Component com_enmasse 5.1 < 6.4 - SQL Injection	webapps	Hamed Izadi
2016-06-15	Dokeos 2.2.1 – Blind SQL Injection	webapps	Mormoroth
2016-06-15	w2wiki – Multiple Cross-Site Scripting Vulnerabilities	webapps	HaHwul
2016-06-15	Ultrabenosaurus ChatBoard – Cross-Site Request Forgery (Send Message)	webapps	HaHwul
2016-06-15	Ultrabenosaurus ChatBoard – Persistent Cross-Site Scripting	webapps	HaHwul