php

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2022-01-07 Online Veterinary Appointment System 1.0 – ‘Multiple’ SQL Injection
  • webapps
    		•  twseptian
    2022-01-05 Nettmp NNT 5.1 – SQLi Authentication Bypass
  • webapps
    		•  Momen Eldawakhly
    2022-01-05 SAFARI Montage 8.5 – Reflected Cross Site Scripting (XSS)
  • webapps
    		•  Momen Eldawakhly
    2022-01-05 Library System in PHP 1.0 – ‘publisher name’ Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Akash Patil
    2022-01-05 WordPress Plugin The True Ranker 2.2.2 – Arbitrary File Read (Unauthenticated)
  • webapps
    		•  Liad Levy
    2022-01-05 Online Admission System 1.0 – Remote Code Execution (RCE) (Unauthenticated)
  • webapps
    		•  Jeremiasz Pluta
    2022-01-05 Movie Rating System 1.0 – SQLi to RCE (Unauthenticated)
  • webapps
    		•  Tagoletta
    2022-01-05 Movie Rating System 1.0 – Broken Access Control (Admin Account Creation) (Unauthenticated)
  • webapps
    		•  Tagoletta
    2022-01-05 WordPress Plugin WP Visitor Statistics 4.7 – SQL Injection
  • webapps
    		•  Ron Jost
    2022-01-05 WordPress Plugin AAWP 3.16 – ‘tab’ Reflected Cross Site Scripting (XSS) (Authenticated)
  • webapps
    		•  Andrea Bocchetti
    2022-01-05 WordPress Plugin Contact Form Entries 1.1.6 – Cross Site Scripting (XSS) (Unauthenticated)
  • webapps
    		•  Gaetano Perrone
    2022-01-05 Projeqtor v9.3.1 – Stored Cross Site Scripting (XSS)
  • webapps
    		•  Oscar Gil Gutierrez
    2022-01-05 RiteCMS 3.1.0 – Remote Code Execution (RCE) (Authenticated)
  • webapps
    		•  faisalfs10x
    2022-01-05 openSIS Student Information System 8.0 – ‘multiple’ SQL Injection
  • webapps
    		•  securityforeveryone.com
    2022-01-05 RiteCMS 3.1.0 – Arbitrary File Deletion (Authenticated)
  • webapps
    		•  faisalfs10x
    2022-01-05 Terramaster TOS 4.2.15 – Remote Code Execution (RCE) (Unauthenticated)
  • webapps
    		•  n0tme
    2022-01-05 RiteCMS 3.1.0 – Arbitrary File Overwrite (Authenticated)
  • webapps
    		•  faisalfs10x
    2022-01-05 Virtual Airlines Manager 2.6.2 – ‘multiple’ SQL Injection
  • webapps
    		•  Milad karimi
    2022-01-05 CMSimple 5.4 – Cross Site Scripting (XSS)
  • webapps
    		•  heinjame
    2022-01-05 Hospitals Patient Records Management System 1.0 – Account TakeOver
  • webapps
    		•  twseptian
    2022-01-05 Hospitals Patient Records Management System 1.0 – ‘id’ SQL Injection (Authenticated)
  • webapps
    		•  twseptian
    2022-01-05 Hostel Management System 2.1 – Cross Site Scripting (XSS)
  • webapps
    		•  Chinmay Divekar
    2021-12-20 Exponent CMS 2.6 – Multiple Vulnerabilities
  • webapps
    		•  heinjame
    2021-12-20 phpKF CMS 3.00 Beta y6 – Remote Code Execution (RCE) (Unauthenticated)
  • webapps
    		•  Halit AKAYDIN