php

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2014-11-19 Snowfox CMS 1.0 – Cross-Site Request Forgery (Add Admin)
  • webapps
    		•  LiquidWorm
    2014-11-18 Mantis Bug Tracker 1.2.0a3 < 1.2.17 XmlImportExport Plugin - PHP Code Injection (Metasploit) (2)
  • remote
    		•  Metasploit
    2014-11-17 WebsiteBaker 2.8.3 – Multiple Vulnerabilities
  • webapps
    		•  Manuel García Cárdenas
    2014-11-17 PHPFox – Persistent Cross-Site Scripting
  • webapps
    		•  spyk2r
    2014-11-17 Maarch LetterBox 2.8 – (Authentication Bypass) Insecure Cookies
  • webapps
    		•  ZoRLu Bugrahan
    2014-11-17 MyBB Forums 1.8.2 – Persistent Cross-Site Scripting
  • webapps
    		•  Avinash Thapa
    2014-11-17 Zoph 0.9.1 – Multiple Vulnerabilities
  • webapps
    		•  Manuel García Cárdenas
    2014-11-15 Joomla! Component com_hdflvplayer < 2.1.0.1 - Arbitrary File Download
  • webapps
    		•  Claudio Viviani
    2014-11-13 MyBB 1.8.x – Multiple Vulnerabilities
  • webapps
    		•  smash
    2014-11-13 Digi Online Examination System 2.0 – Unrestricted Arbitrary File Upload
  • webapps
    		•  Halil Dalabasmaz
    2014-11-13 Piwigo 2.6.0 – ‘picture.php?rate’ SQL Injection
  • webapps
    		•  Manuel García Cárdenas
    2014-11-12 WordPress Plugin SupportEzzy Ticket System 1.2.5 – Persistent Cross-Site Scripting
  • webapps
    		•  Halil Dalabasmaz
    2014-11-11 WordPress Plugin Photo Gallery 1.2.5 – Unrestricted Arbitrary File Upload
  • webapps
    		•  Kacper Szurek
    2014-11-10 WordPress Plugin / Joomla! Component XCloner – Multiple Vulnerabilities
  • webapps
    		•  Larry W. Cashdollar
    2014-11-10 PHP-Fusion 7.02.07 – SQL Injection
  • webapps
    		•  XLabs Security
    2014-11-10 WordPress Plugin Another WordPress Classifieds Plugin – SQL Injection
  • webapps
    		•  dill
    2014-11-10 phpSound Music Sharing Platform 1.0.5 – Multiple Cross-Site Scripting Vulnerabilities
  • webapps
    		•  Halil Dalabasmaz
    2014-11-10 Serenity Client Management Portal 1.0.1 – Multiple Vulnerabilities
  • webapps
    		•  Halil Dalabasmaz
    2014-11-10 vldPersonals 2.7 – Multiple Vulnerabilities
  • webapps
    		•  Mr T
    2014-11-06 X7 Chat 2.0.5 – ‘message.php’ PHP Code Execution (Metasploit)
  • remote
    		•  Metasploit
    2014-11-05 Mouse Media Script 1.6 – Persistent Cross-Site Scripting
  • webapps
    		•  Halil Dalabasmaz
    2014-11-05 MODx CMS 2.2.14 – Cross-Site Request Forgery Bypass / Reflected Cross-Site Scripting / Persistent Cross-Site Scripting
  • webapps
    		•  Narendra Bhati
    2014-11-03 Drupal 7.0 < 7.31 - 'Drupalgeddon' SQL Injection (Admin Session)
  • webapps
    		•  Stefan Horst
    2014-11-03 Drupal 7.0 < 7.31 - 'Drupalgeddon' SQL Injection (Remote Code Execution)
  • webapps
    		•  Stefan Horst