php

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2014-09-08 WordPress Plugin Ninja Forms 2.7.7 – Authentication Bypass
  • webapps
    		•  Voxel@Night
    2014-09-08 WordPress Theme Antioch – ‘download.php’ Arbitrary File Download
  • webapps
    		•  Ashiyane Digital Security Team
    2014-09-08 WordPress Theme Epic – ‘download.php’ Arbitrary File Download
  • webapps
    		•  Ashiyane Digital Security Team
    2014-09-08 WordPress Theme Authentic – ‘download.php’ Arbitrary File Download
  • webapps
    		•  Ashiyane Digital Security Team
    2014-09-08 WordPress Theme Urban City – ‘download.php’ Arbitrary File Download
  • webapps
    		•  Ashiyane Digital Security Team
    2014-09-08 Mpay24 PrestaShop Payment Module 1.5 – Multiple Vulnerabilities
  • webapps
    		•  Wireghoul
    2014-09-08 Atmail Webmail 7.2 – Multiple Vulnerabilities
  • webapps
    		•  smash
    2014-09-07 WordPress Plugin Spider Facebook – ‘facebook.php’ SQL Injection
  • webapps
    		•  Claudio Viviani
    2014-09-07 PhpOnlineChat 3.0 – Cross-Site Scripting
  • webapps
    		•  N0 Feel
    2014-09-07 WordPress Plugin Like Dislike Counter 1.2.3 – SQL Injection
  • webapps
    		•  Att4ck3r.ir
    2014-09-07 LoadedCommerce7 – Systemic Query Factory
  • webapps
    		•  Breaking.Technology
    2014-09-07 Invision Power Board (IP.Board) 3.x – Cross-Site Request Forgery / Token Hjiacking
  • webapps
    		•  Piotr S.
    2014-09-05 WordPress Plugin Premium Gallery Manager – Configuration Access
  • webapps
    		•  Hannaichi
    2014-09-05 MyBB User Social Networks Plugin 1.2 – Persistent Cross-Site Scripting
  • webapps
    		•  Fikri Fadzil
    2014-09-03 vBulletin 4.0.x < 4.1.2 - 'search.php?cat' SQL Injection
  • webapps
    		•  D35m0nd142
    2014-09-02 WordPress Plugin Huge-IT Image Gallery 1.0.1 – (Authenticated) SQL Injection
  • webapps
    		•  Claudio Viviani
    2014-09-01 WordPress Plugin Slideshow Gallery 1.4.6 – Arbitrary File Upload
  • webapps
    		•  Jesus Ramirez Pichardo
    2014-09-01 Mulitple WordPress Themes – ‘admin-ajax.php?img’ Arbitrary File Download
  • webapps
    		•  Hugo Santiago
    2014-08-28 XRms – Blind SQL Injection / Command Execution
  • webapps
    		•  Benjamin Harris
    2014-08-28 PhpWiki – Remote Command Execution
  • webapps
    		•  Benjamin Harris
    2014-08-28 ActualAnalyzer Lite 2.81 – Command Execution
  • webapps
    		•  Benjamin Harris
    2014-08-28 Plogger 1.0-RC1 – (Authenticated) Arbitrary File Upload
  • webapps
    		•  b0z
    2014-08-28 WordPress Plugin ShortCode 0.2.3 – Local File Inclusion
  • webapps
    		•  Mehdi Karout & Christian Galeone
    2014-08-27 WordPress Plugin WooCommerce Store Exporter 1.7.5 – Multiple Cross-Site Scripting Vulnerabilities
  • webapps
    		•  Mike Manzotti