php

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2022-03-30 WordPress Plugin Curtain 1.0.2 – Cross-site Request Forgery (CSRF)
  • webapps
    		•  Hassan Khan Yusufzai
    2022-03-30 Drupal avatar_uploader v7.x-1.0-beta8 – Cross Site Scripting (XSS)
  • webapps
    		•  Milad karimi
    2022-03-30 Atom CMS 2.0 – Remote Code Execution (RCE)
  • webapps
    		•  Ashish Koli
    2022-03-30 ImpressCMS 1.4.2 – Remote Code Execution (RCE)
  • webapps
    		•  Egidio Romano
    2022-03-23 WordPress Plugin amministrazione-aperta 3.7.3 – Local File Read – Unauthenticated
  • webapps
    		•  Hassan Khan Yusufzai
    2022-03-22 ICEHRM 31.0.0.0S – Cross-site Request Forgery (CSRF) to Account Takeover
  • webapps
    		•  Devansh Bordia
    2022-03-21 WordPress Plugin iQ Block Country 1.2.13 – Arbitrary File Deletion via Zip Slip (Authenticated)
  • webapps
    		•  Ceylan BOZOĞULLARINDAN
    2022-03-16 Tiny File Manager 2.4.6 – Remote Code Execution (RCE)
  • webapps
    		•  FEBIN MON SAJI
    2022-03-16 Pluck CMS 4.7.16 – Remote Code Execution (RCE) (Authenticated)
  • webapps
    		•  Ashish Koli
    2022-03-16 Moodle 3.11.5 – SQLi (Authenticated)
  • webapps
    		•  Chris Anastasio
    2022-03-10 Zabbix 5.0.17 – Remote Code Execution (RCE) (Authenticated)
  • webapps
    		•  Hussien Misbah
    2022-03-07 Attendance and Payroll System v1.0 – SQLi Authentication Bypass
  • webapps
    		•  pr0z
    2022-03-07 Attendance and Payroll System v1.0 – Remote Code Execution (RCE)
  • webapps
    		•  pr0z
    2022-03-07 part-db 0.5.11 – Remote Code Execution (RCE)
  • webapps
    		•  Chetanya Sharma
    2022-03-02 Xerte 3.9 – Remote Code Execution (RCE) (Authenticated)
  • webapps
    		•  Rik Lutz
    2022-03-02 Xerte 3.10.3 – Directory Traversal (Authenticated)
  • webapps
    		•  Rik Lutz
    2022-02-23 Microweber CMS 1.2.10 – Local File Inclusion (Authenticated) (Metasploit)
  • webapps
    		•  Talha Karakumru
    2022-02-23 WebHMI 4.1 – Stored Cross Site Scripting (XSS) (Authenticated)
  • webapps
    		•  Antonio Cuomo
    2022-02-23 WebHMI 4.1.1 – Remote Code Execution (RCE) (Authenticated)
  • webapps
    		•  Antonio Cuomo
    2022-02-23 Student Record System 1.0 – ‘cid’ SQLi (Authenticated)
  • webapps
    		•  Mohd. Anees
    2022-02-23 Air Cargo Management System v1.0 – SQLi
  • webapps
    		•  nu11secur1ty
    2022-02-23 Simple Real Estate Portal System 1.0 – ‘id’ SQLi
  • webapps
    		•  Mosaaed
    2022-02-21 WordPress Plugin Perfect Survey – 1.5.1 – SQLi (Unauthenticated)
  • webapps
    		•  Ron Jost
    2022-02-21 FileCloud 21.2 – Cross-Site Request Forgery (CSRF)
  • webapps
    		•  Masashi Fujiwara