Platform php - 体验盒子 - 不再关注网络安全

日期	标题	类别	作者
2021-05-28	Trixbox 2.8.0.4 – ‘lang’ Remote Code Execution (Unauthenticated)	webapps	Ron Jost
2021-05-28	WordPress Plugin LifterLMS 4.21.0 – Stored Cross-Site Scripting (XSS)	webapps	Captain_hook
2021-05-28	PHPFusion 9.03.50 – Remote Code Execution	webapps	g0ldm45k
2021-05-26	Pluck CMS 4.7.13 – File Upload Remote Code Execution (Authenticated)	webapps	Ron Jost
2021-05-25	WordPress Plugin Cookie Law Bar 1.2.1 – ‘clb_bar_msg’ Stored Cross-Site Scripting (XSS)	webapps	Mesut Cetin
2021-05-25	Gadget Works Online Ordering System 1.0 – ‘Category’ Persistent Cross-Site Scripting (XSS)	webapps	Vinay H C
2021-05-24	WordPress Plugin ReDi Restaurant Reservation 21.0307 – ‘Comment’ Stored Cross-Site Scripting (XSS)	webapps	Bastijn Ouwendijk
2021-05-21	WordPress Plugin WP Statistics 13.0.7 – Time-Based Blind SQL Injection (Unauthenticated)	webapps	Mansoor R
2021-05-19	COVID19 Testing Management System 1.0 – SQL Injection (Auth Bypass)	webapps	Rohit Burke
2021-05-19	WordPress Plugin Stop Spammers 2021.8 – ‘log’ Reflected Cross-site Scripting (XSS)	webapps	Hosein Vita
2021-05-19	COVID19 Testing Management System 1.0 – ‘Admin name’ Cross-Site Scripting (XSS)	webapps	Rohit Burke
2021-05-18	EgavilanMedia PHPCRUD 1.0 – ‘First Name’ SQL Injection	webapps	Dimitrios Mitakos
2021-05-17	Printable Staff ID Card Creator System 1.0 – ’email’ SQL Injection	webapps	bwnz
2021-05-17	Subrion CMS 4.2.1 – Arbitrary File Upload	webapps	Fellipe Oliveira
2021-05-17	Advanced Guestbook 2.4.4 – ‘Smilies’ Persistent Cross-Site Scripting (XSS)	webapps	Abdulkadir AYDOGAN
2021-05-17	Billing Management System 2.0 – Union based SQL injection (Authenticated)	webapps	Mohammad Koochaki
2021-05-17	Simple Chatbot Application 1.0 – ‘Category’ Stored Cross site Scripting	webapps	Vani K G
2021-05-17	Dental Clinic Appointment Reservation System 1.0 – Cross Site Request Forgery (Add Admin)	webapps	Reza Afsahi
2021-05-17	Dental Clinic Appointment Reservation System 1.0 – ‘Firstname’ Persistent Cross Site Scripting (Authenticated)	webapps	Reza Afsahi
2021-05-17	Customer Relationship Management (CRM) System 1.0 – ‘Category’ Persistent Cross site Scripting	webapps	Vani K G
2021-05-14	Chamilo LMS 1.11.14 – Remote Code Execution (Authenticated)	webapps	M. Cory Billington
2021-05-14	Podcast Generator 3.1 – ‘Long Description’ Persistent Cross-Site Scripting (XSS)	webapps	Ayşenur KARAASLAN
2021-05-14	Student Management System 1.0 – ‘message’ Persistent Cross-Site Scripting (Authenticated)	webapps	mohsen khashei
2021-05-13	Dental Clinic Appointment Reservation System 1.0 – ‘date’ UNION based SQL Injection (Authenticated)	webapps	Mesut Cetin