php

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2014-01-07 Dredge School Administration System – ‘/DSM/Backup/processbackup.php’ Database Backup Information Disclosure
  • webapps
    		•  AtT4CKxT3rR0r1ST
    2014-01-07 Command School Student Management System – ‘/sw/admin_school_years.php?id’ SQL Injection
  • webapps
    		•  AtT4CKxT3rR0r1ST
    2014-01-07 Dredge School Administration System – ‘/DSM/loader.php’ Cross-Site Request Forgery (Admin Account Manipulation)
  • webapps
    		•  AtT4CKxT3rR0r1ST
    2014-01-07 Command School Student Management System – ‘/sw/admin_terms.php?id’ SQL Injection
  • webapps
    		•  AtT4CKxT3rR0r1ST
    2014-01-07 Dredge School Administration System – ‘/DSM/loader.php’ Account Information Disclosure
  • webapps
    		•  AtT4CKxT3rR0r1ST
    2014-01-07 Command School Student Management System – ‘/sw/admin_grades.php?id’ SQL Injection
  • webapps
    		•  AtT4CKxT3rR0r1ST
    2014-01-07 Dredge School Administration System – ‘/DSM/loader.php?Id’ SQL Injection
  • webapps
    		•  AtT4CKxT3rR0r1ST
    2014-01-07 Joomla! Component com_aclsfgpl – ‘index.php’ Arbitrary File Upload
  • webapps
    		•  TUNISIAN CYBER
    2014-01-07 Command School Student Management System – ‘/sw/add_topic.php’ Cross-Site Request Forgery (Topic Creation)
  • webapps
    		•  AtT4CKxT3rR0r1ST
    2014-01-07 Cubic CMS – Multiple Vulnerabilities
  • webapps
    		•  Eugenio Delfa
    2014-01-07 Command School Student Management System – ‘/sw/Admin_change_Password.php’ Cross-Site Request Forgery (Admin Password Manipulation)
  • webapps
    		•  AtT4CKxT3rR0r1ST
    2014-01-07 vTiger CRM 5.4.0 SOAP – AddEmailAttachment Arbitrary File Upload (Metasploit)
  • remote
    		•  Metasploit
    2014-01-04 Taboada Macronews 1.0 – SQL Injection
  • webapps
    		•  Jefrey
    2013-12-30 WordPress Plugin Advanced Dewplayer – ‘download-file.php’ Script Directory Traversal
  • webapps
    		•  Henri Salo
    2013-12-26 JForum ‘adminUsers’ Module – Cross-Site Request Forgery
  • webapps
    		•  arno
    2013-12-25 AFCommerce – ‘controlheader.php’ Remote File Inclusion
  • webapps
    		•  NoGe
    2013-12-25 AFCommerce – ‘adminpassword.php’ Remote File Inclusion
  • webapps
    		•  NoGe
    2013-12-25 AFCommerce – ‘adblock.php’ Remote File Inclusion
  • webapps
    		•  NoGe
    2013-12-24 xBoard 5.0/5.5/6.0 – ‘view.php’ Local File Inclusion
  • webapps
    		•  TUNISIAN CYBER
    2013-12-24 PHP MBB CMS 004 – Multiple Vulnerabilities
  • webapps
    		•  cr4wl3r
    2013-12-23 WordPress Theme Persuasion 2.x – Arbitrary File Download / File Deletion
  • webapps
    		•  Interference Security
    2013-12-18 Jenkins 1.523 – Persistent HTML Code
  • webapps
    		•  Christian Catalano
    2013-12-18 Leed – ‘id’ SQL Injection
  • webapps
    		•  Alexandre Herzog
    2013-12-18 SonarQube Jenkins Plugin – Plain Text Password
  • webapps
    		•  Christian Catalano