php

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2021-12-03 WordPress Plugin DZS Zoomsounds 6.45 – Arbitrary File Read (Unauthenticated)
  • webapps
    		•  Uriel Yochpaz
    2021-12-03 WordPress Plugin Slider by Soliloquy 2.6.2 – ‘title’ Stored Cross Site Scripting (XSS) (Authenticated)
  • webapps
    		•  Abdurrahman Erkan
    2021-12-03 WordPress Plugin All-in-One Video Gallery plugin 2.4.9 – Local File Inclusion (LFI)
  • webapps
    		•  Mohamed Magdy Abumusilm
    2021-12-03 Online Magazine Management System 1.0 – SQLi Authentication Bypass
  • webapps
    		•  Mohamed habib Smidi
    2021-12-01 Online Enrollment Management System in PHP and PayPal 1.0 – ‘U_NAME’ Stored Cross-Site Scripting
  • webapps
    		•  Tushar Jadhav
    2021-11-30 Laundry Booking Management System 1.0 – Remote Code Execution (RCE)
  • webapps
    		•  Pablo Santiago
    2021-11-29 opencart 3.0.3.8 – Sessjion Injection
  • webapps
    		•  Hubert Wojciechowski
    2021-11-24 CMSimple 5.4 – Local file inclusion (LFI) to Remote code execution (RCE) (Authenticated)
  • webapps
    		•  S1lv3r
    2021-11-23 Bus Pass Management System 1.0 – ‘Search’ SQL injection
  • webapps
    		•  Abhijeet Singh
    2021-11-23 WordPress Plugin WP Guppy 1.1 – WP-JSON API Sensitive Information Disclosure
  • webapps
    		•  Keyvan Hardani
    2021-11-22 Aimeos Laravel ecommerce platform 2021.10 LTS – ‘sort’ SQL injection
  • webapps
    		•  Ilker Burak ADIYAMAN
    2021-11-17 WordPress Plugin Smart Product Review 1.0.4 – Arbitrary File Upload
  • webapps
    		•  Keyvan Hardani
    2021-11-17 SuiteCRM 7.11.18 – Remote Code Execution (RCE) (Authenticated) (Metasploit)
  • webapps
    		•  M. Cory Billington
    2021-11-17 Quick.CMS 6.7 – Cross Site Request Forgery (CSRF) to Cross Site Scripting (XSS) (Authenticated)
  • webapps
    		•  Rahad Chowdhury
    2021-11-17 Bludit 3.13.1 – ‘username’ Cross Site Scripting (XSS)
  • webapps
    		•  Vasu
    2021-11-16 Online Learning System 2.0 – Remote Code Execution (RCE)
  • webapps
    		•  djebbaranon
    2021-11-15 PHP Laravel 8.70.1 – Cross Site Scripting (XSS) to Cross Site Request Forgery (CSRF)
  • webapps
    		•  Hosein Vita
    2021-11-15 WordPress Plugin Contact Form to Email 1.3.24 – Stored Cross Site Scripting (XSS) (Authenticated)
  • webapps
    		•  Mohammed Aadhil Ashfaq
    2021-11-15 Fuel CMS 1.4.13 – ‘col’ Blind SQL Injection (Authenticated)
  • webapps
    		•  Rahad Chowdhury
    2021-11-15 Simple Subscription Website 1.0 – SQLi Authentication Bypass
  • webapps
    		•  Daniel Haro
    2021-11-15 WordPress Plugin WPSchoolPress 2.1.16 – ‘Multiple’ Cross Site Scripting (XSS)
  • webapps
    		•  Davide Taraschi
    2021-11-12 WordPress Plugin AccessPress Social Icons 1.8.2 – ‘icon title’ Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Murat DEMİRCİ
    2021-11-12 WordPress Plugin WP Symposium Pro 2021.10 – ‘wps_admin_forum_add_name’ Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Murat DEMİRCİ
    2021-11-10 Employee and Visitor Gate Pass Logging System 1.0 – ‘name’ Stored Cross-Site Scripting (XSS)
  • webapps
    		•  İlhami Selamet