Platform php - 体验盒子 - 不再关注网络安全

日期	标题	类别	作者
2013-05-24	Matterdaddy Market – Multiple Vulnerabilities	webapps	KedAns-Dz
2013-05-23	Weyal CMS – Multiple SQL Injections	webapps	XroGuE
2013-05-21	Kimai 0.9.2.1306-3 – SQL Injection	webapps	drone
2013-05-21	WordPress Plugin ProPlayer 4.7.9.1 – SQL Injection	webapps	Ashiyane Digital Security Team
2013-05-17	Exponent CMS 2.2.0 Beta 3 – Multiple Vulnerabilities	webapps	High-Tech Bridge SA
2013-05-17	PHP-Charts 1.0 – Code Execution	webapps	fizzle stick
2013-05-17	Drupal Module CKEditor < 4.1WYSIWYG (Drupal 6.x/7.x) - Persistent Cross-Site Scripting	webapps	r0ng
2013-05-16	WordPress Plugin WP Cleanfix – Cross-Site Request Forgery	webapps	Enigma Ideas
2013-05-16	WordPress Plugin Mail On Update – Cross-Site Request Forgery	webapps	Henri Salo
2013-05-15	Jojo CMS – ‘x-forwarded-for’ HTTP header SQL Injection	webapps	High-Tech Bridge SA
2013-05-15	Jojo CMS – ‘search’ Cross-Site Scripting	webapps	High-Tech Bridge SA
2013-05-15	WordPress Plugin wp-FileManager – ‘path’ Arbitrary File Download	webapps	ByEge
2013-05-14	WordPress Plugin wp-FileManager – Arbitrary File Download	webapps	ByEge
2013-05-14	Open Flash Chart – ‘get-data’ Cross-Site Scripting	webapps	Deepankar Arora
2013-05-14	Gallery Server Pro – Arbitrary File Upload	webapps	Drew Calcott
2013-05-14	UMI CMS 2.9 – Cross-Site Request Forgery	webapps	High-Tech Bridge SA
2013-05-14	Alienvault Open Source SIEM (OSSIM) 4.1.2 – Multiple SQL Injections	webapps	RunRunLevel
2013-05-14	WHMCS 4.x – ‘invoicefunctions.php?id’ SQL Injection	webapps	Ahmed Aboul-Ela
2013-05-14	Invision Power Board 1.x?/2.x/3.x – Admin Takeover	webapps	John JEAN
2013-05-13	Joomla! Component com_s5clanroster – ‘id’ SQL Injection	webapps	AtT4CKxT3rR0r1ST
2013-05-13	Ajax Availability Calendar 3.x – Multiple Vulnerabilities	webapps	AtT4CKxT3rR0r1ST
2013-05-13	Getsimple CMS 3.2.1 – Arbitrary File Upload	webapps	Ahmed Elhady Mohamed
2013-05-11	WordPress Plugin Securimage-WP – ‘siwp_test.php’ Cross-Site Scripting	webapps	Gjoko Krstic
2013-05-10	Securimage – ‘example_form.php’ Cross-Site Scripting	webapps	Gjoko Krstic