php

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2023-04-06 flatnux 2021-03.25 – Remote Code Execution (Authenticated)
  • webapps
    		•  Ömer Hasan Durmuş
    2023-04-06 POLR URL 2.3.0 – Shortener Admin Takeover
  • webapps
    		•  p4kl0nc4t
    2023-04-06 Simple Food Ordering System v1.0 – Cross-Site Scripting (XSS)
  • webapps
    		•  Muhammad Navaid Zafar Ansari
    2023-04-06 LDAP Tool Box Self Service Password v1.5.2 – Account takeover
  • webapps
    		•  Tahar BENNACEF
    2023-04-06 Music Gallery Site v1.0 – SQL Injection on page Master.php
  • webapps
    		•  Muhammad Navaid Zafar Ansari
    2023-04-06 Intern Record System v1.0 – SQL Injection (Unauthenticated)
  • webapps
    		•  Hamdi Sevben
    2023-04-06 Music Gallery Site v1.0 – SQL Injection on page view_music_details.php
  • webapps
    		•  Muhammad Navaid Zafar Ansari
    2023-04-06 Simple Task Managing System v1.0 – SQL Injection (Unauthenticated)
  • webapps
    		•  Hamdi Sevben
    2023-04-06 Music Gallery Site v1.0 – Broken Access Control
  • webapps
    		•  Muhammad Navaid Zafar Ansari
    2023-04-06 Art Gallery Management System Project in PHP v 1.0 – SQL injection
  • webapps
    		•  Yogesh Verma
    2023-04-06 Music Gallery Site v1.0 – SQL Injection on music_list.php
  • webapps
    		•  Muhammad Navaid Zafar Ansari
    2023-04-06 atrocore 1.5.25 User interaction – Unauthenticated File upload – RCE
  • webapps
    		•  nu11secur1ty
    2023-04-06 Employee Task Management System v1.0 – SQL Injection on edit-task.php
  • webapps
    		•  Muhammad Navaid Zafar Ansari
    2023-04-06 Dompdf 1.2.1 – Remote Code Execution (RCE)
  • webapps
    		•  Ravindu Wickramasinghe
    2023-04-06 Employee Task Management System v1.0 – SQL Injection on (task-details.php?task_id=?)
  • webapps
    		•  Muhammad Navaid Zafar Ansari
    2023-04-06 Employee Task Management System v1.0 – Broken Authentication
  • webapps
    		•  Muhammad Navaid Zafar Ansari
    2023-04-06 Auto Dealer Management System v1.0 – SQL Injection on manage_user.php
  • webapps
    		•  Muhammad Navaid Zafar Ansari
    2023-04-05 itech TrainSmart r1044 – SQL injection
  • webapps
    		•  Adrian Bondocea
    2023-04-05 Responsive FileManager 9.9.5 – Remote Code Execution (RCE)
  • webapps
    		•  Galoget Latorre
    2023-04-05 Control Web Panel 7 (CWP7) v0.9.8.1147 – Remote Code Execution (RCE)
  • webapps
    		•  Mayank Deshmukh
    2023-04-05 Online Eyewear Shop 1.0 – SQL Injection (Unauthenticated)
  • webapps
    		•  Muhammad Navaid Zafar Ansari
    2023-04-05 bgERP v22.31 (Orlovets) – Cookie Session vulnerability & Cross-Site Scripting (XSS)
  • webapps
    		•  nu11secur1ty
    2023-04-05 Bus Pass Management System 1.0 – Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Matteo Conti
    2023-04-05 Calendar Event Multi View 1.4.07 – Unauthenticated Arbitrary Event Creation to Cross-Site Scripting (XSS)
  • webapps
    		•  Mostafa Farzaneh