php

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2015-05-08 WordPress Plugin Ultimate Profile Builder 2.3.3 – Cross-Site Request Forgery
  • webapps
    		•  Kaustubh G. Padwad
    2015-05-07 WordPress Plugin Freshmail 1.5.8 – ‘shortcode.php’ SQL Injection
  • webapps
    		•  Felipe Molina
    2015-05-06 elFinder 2 – Remote Command Execution (via File Creation)
  • webapps
    		•  TUNISIAN CYBER
    2015-05-05 Invision Power Board (IP.Board) < 2.0.3 - Multiple Vulnerabilities
  • webapps
    		•  GulfTech Security
    2015-05-04 WordPress Plugin Ultimate Product Catalogue 3.1.2 – Multiple Persistent Cross-Site Scripting / Cross-Site Request Forgery / Arbitrary File Upload Vulnerabilities
  • webapps
    		•  Felipe Molina
    2015-04-29 OS Solution OSProperty 2.8.0 – SQL Injection
  • webapps
    		•  Brandon Perry
    2015-04-29 WordPress Plugin TheCartPress 1.3.9 – Multiple Vulnerabilities
  • webapps
    		•  High-Tech Bridge SA
    2015-04-27 WordPress Core 4.2 – Persistent Cross-Site Scripting
  • webapps
    		•  klikki
    2015-04-27 OTRS < 3.1.x / < 3.2.x / < 3.3.x - Persistent Cross-Site Scripting
  • webapps
    		•  Adam Ziaja
    2015-04-23 WordPress Plugin Ultimate Product Catalogue – SQL Injection (2)
  • webapps
    		•  Felipe Molina
    2015-04-23 WordPress Plugin Ultimate Product Catalogue – SQL Injection (1)
  • webapps
    		•  Felipe Molina
    2015-04-23 WebUI 1.5b6 – Remote Code Execution
  • webapps
    		•  TUNISIAN CYBER
    2015-04-22 Wolf CMS 0.8.2 – Arbitrary File Upload
  • webapps
    		•  CWH Underground
    2015-04-22 Open-Letters – Remote PHP Code Injection
  • webapps
    		•  TUNISIAN CYBER
    2015-04-21 WordPress Plugin Work The Flow – Arbitrary File Upload (Metasploit)
  • remote
    		•  Metasploit
    2015-04-21 WordPress Plugin Creative Contact Form – Arbitrary File Upload (Metasploit)
  • remote
    		•  Metasploit
    2015-04-21 WordPress Plugin N-Media Website Contact Form – Arbitrary File Upload (Metasploit)
  • remote
    		•  Metasploit
    2015-04-21 WordPress Plugin Reflex Gallery – Arbitrary File Upload (Metasploit)
  • remote
    		•  Metasploit
    2015-04-21 GoAutoDial CE 3.3-1406088000 – Authentication Bypass / Arbitrary File Upload / Command Injection
  • webapps
    		•  Chris McCurley
    2015-04-21 WordPress Plugin Community Events 1.3.5 – SQL Injection
  • webapps
    		•  Hannes Trunde
    2015-04-21 MediaSuite CMS – Artibary File Disclosure
  • webapps
    		•  KnocKout inj3ct0r
    2015-04-21 WordPress Plugin Tune Library 1.5.4 – SQL Injection
  • webapps
    		•  Hannes Trunde
    2015-04-21 WordPress Plugin MiwoFTP 1.0.5 – Arbitrary File Download (2)
  • webapps
    		•  dadou dz
    2015-04-21 WordPress Plugin NEX-Forms < 3.0 - SQL Injection
  • webapps
    		•  Claudio Viviani