php

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2013-11-10 WordPress Theme Highlight Premium – Cross-Site Request Forgery / Arbitrary File Upload
  • webapps
    		•  DevilScreaM
    2013-11-08 Horde Groupware Web Mail Edition 5.1.2 – Cross-Site Request Forgery (2)
  • webapps
    		•  Marcela Benetrix
    2013-11-08 Project’Or RIA 3.4.0 – ‘objectDetail.php?objectId’ SQL Injection
  • webapps
    		•  Vicente Aguilera Diaz
    2013-11-08 appRain 3.0.2 – Blind SQL Injection
  • webapps
    		•  High-Tech Bridge SA
    2013-11-08 Flatpress 1.0 – Remote Code Execution
  • webapps
    		•  Wireghoul
    2013-11-08 Vanilla Forums 2.0 < 2.0.18.5 - 'class.utilitycontroller.php' PHP Object Injection
  • webapps
    		•  EgiX
    2013-11-07 WordPress Theme Kernel – Arbitrary File Upload
  • webapps
    		•  link_satisi
    2013-11-07 Microweber 0.905 – Error-Based SQL Injection
  • webapps
    		•  Zy0d0x
    2013-11-01 WordPress Theme This Way – ‘upload_settings_image.php’ Arbitrary File Upload
  • webapps
    		•  Bet0
    2013-11-01 pdirl PHP Directory Listing 1.0.4 – Cross-Site Scripting
  • webapps
    		•  Vulnerability-Lab
    2013-11-01 WordPress Theme Think Responsive 1.0 – Arbitrary File Upload
  • webapps
    		•  Byakuya Kouta
    2013-11-01 ImpressPages CMS 3.6 – ‘manage()’ Remote Code Execution
  • webapps
    		•  LiquidWorm
    2013-11-01 WordPress Theme Switchblade 1.3 – Arbitrary File Upload
  • webapps
    		•  Byakuya Kouta
    2013-11-01 ImpressPages CMS 3.6 – Arbitrary File Deletion
  • webapps
    		•  LiquidWorm
    2013-10-31 vTiger CRM 5.3.0 5.4.0 – (Authenticated) Remote Code Execution (Metasploit)
  • remote
    		•  Metasploit
    2013-10-31 Apache + PHP < 5.3.12 / < 5.4.2 - Remote Code Execution + Scanner
  • remote
    		•  noptrix
    2013-10-31 Opsview pre 4.4.1 – Blind SQL Injection
  • webapps
    		•  J. Oquendo
    2013-10-31 ProcessMaker Open Source – (Authenticated) PHP Code Execution (Metasploit)
  • remote
    		•  Metasploit
    2013-10-31 ISPConfig – (Authenticated) Arbitrary PHP Code Execution (Metasploit)
  • remote
    		•  Metasploit
    2013-10-31 NAS4Free – Remote Code Execution (Metasploit)
  • remote
    		•  Metasploit
    2013-10-31 ImpressPages CMS 3.6 – Multiple Cross-Site Scripting / SQL Injection Vulnerabilities
  • webapps
    		•  LiquidWorm
    2013-10-29 Apache + PHP < 5.3.12 / < 5.4.2 - cgi-bin Remote Code Execution
  • remote
    		•  kingcope
    2013-10-29 GTX CMS 2013 Optima – SQL Injection
  • webapps
    		•  Vulnerability-Lab
    2013-10-29 Olat CMS 7.8.0.1 – Persistent Cross-Site Scripting
  • webapps
    		•  Vulnerability-Lab