php

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2021-12-20 WBCE CMS 1.5.1 – Admin Password Reset
  • webapps
    		•  citril
    2021-12-16 Croogo 3.0.2 – Unrestricted File Upload
  • webapps
    		•  Enes Özeser
    2021-12-16 Arunna 1.0.0 – ‘Multiple’ Cross-Site Request Forgery (CSRF)
  • webapps
    		•  =(L_L)=
    2021-12-16 Croogo 3.0.2 – ‘Multiple’ Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Enes Özeser
    2021-12-14 Online Thesis Archiving System 1.0 – SQLi Authentication Bypass
  • webapps
    		•  Yehia Elghaly
    2021-12-14 meterN v1.2.3 – Remote Code Execution (RCE) (Authenticated)
  • webapps
    		•  LiquidWorm
    2021-12-14 Booked Scheduler 2.7.5 – Remote Command Execution (RCE) (Authenticated)
  • webapps
    		•  0sunday
    2021-12-14 WordPress Plugin Typebot 1.4.3 – Stored Cross Site Scripting (XSS) (Authenticated)
  • webapps
    		•  Mansi Singh
    2021-12-13 WebHMI 4.0 – Remote Code Execution (RCE) (Authenticated)
  • webapps
    		•  Jeremiasz Pluta
    2021-12-10 Free School Management Software 1.0 – Remote Code Execution (RCE)
  • webapps
    		•  fuzzyap1
    2021-12-10 Free School Management Software 1.0 – ‘multiple’ Stored Cross-Site Scripting (XSS)
  • webapps
    		•  fuzzyap1
    2021-12-10 OpenCATS 0.9.4 – Remote Code Execution (RCE)
  • webapps
    		•  Nicholas Ferreira
    2021-12-09 WordPress Plugin Catch Themes Demo Import 1.6.1 – Remote Code Execution (RCE) (Authenticated)
  • webapps
    		•  Ron Jost
    2021-12-09 Student Management System 1.0 – SQLi Authentication Bypass
  • webapps
    		•  Enes Özeser
    2021-12-09 TestLink 1.19 – Arbitrary File Download (Unauthenticated)
  • webapps
    		•  Gonzalo Villegas
    2021-12-09 LimeSurvey 5.2.4 – Remote Code Execution (RCE) (Authenticated)
  • webapps
    		•  Y1LD1R1M
    2021-12-09 Chikitsa Patient Management System 2.0.2 – ‘backup’ Remote Code Execution (RCE) (Authenticated)
  • webapps
    		•  0z09e
    2021-12-09 Chikitsa Patient Management System 2.0.2 – ‘plugin’ Remote Code Execution (RCE) (Authenticated)
  • webapps
    		•  0z09e
    2021-12-09 Employees Daily Task Management System 1.0 – ‘multiple’ Cross Site Scripting (XSS)
  • webapps
    		•  able403
    2021-12-09 Employees Daily Task Management System 1.0 – ‘username’ SQLi Authentication Bypass
  • webapps
    		•  able403
    2021-12-06 Croogo 3.0.2 – Remote Code Execution (Authenticated)
  • webapps
    		•  Deha Berkin Bir
    2021-12-03 WordPress Plugin DZS Zoomsounds 6.45 – Arbitrary File Read (Unauthenticated)
  • webapps
    		•  Uriel Yochpaz
    2021-12-03 WordPress Plugin Slider by Soliloquy 2.6.2 – ‘title’ Stored Cross Site Scripting (XSS) (Authenticated)
  • webapps
    		•  Abdurrahman Erkan
    2021-12-03 WordPress Plugin All-in-One Video Gallery plugin 2.4.9 – Local File Inclusion (LFI)
  • webapps
    		•  Mohamed Magdy Abumusilm