php

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2021-01-11 WordPress Plugin Custom Global Variables 1.0.5 – ‘name’ Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Swapnil Subhash Bodekar
    2021-01-11 Cemetry Mapping and Information System 1.0 – Multiple Stored Cross-Site Scripting
  • webapps
    		•  Mesut Cetin
    2021-01-08 WordPress Plugin wpDiscuz 7.0.4 – Unauthenticated Arbitrary File Upload (Metasploit)
  • webapps
    		•  SunCSR Team
    2021-01-08 WordPress Plugin Autoptimize 2.7.6 – Authenticated Arbitrary File Upload (Metasploit)
  • webapps
    		•  SunCSR Team
    2021-01-08 Online Doctor Appointment System 1.0 – ‘Multiple’ Stored XSS
  • webapps
    		•  Mohamed habib Smidi
    2021-01-08 Life Insurance Management System 1.0 – Multiple Stored XSS
  • webapps
    		•  Arnav Tripathy
    2021-01-07 CRUD Operation 1.0 – Multiple Stored XSS
  • webapps
    		•  Arnav Tripathy
    2021-01-07 ECSIMAGING PACS 6.21.5 – SQL injection
  • webapps
    		•  shoxxdj
    2021-01-07 Curfew e-Pass Management System 1.0 – Stored XSS
  • webapps
    		•  Arnav Tripathy
    2021-01-07 Cockpit CMS 0.6.1 – Remote Code Execution
  • webapps
    		•  Rafael Resende
    2021-01-07 Employee Record System 1.0 – Unrestricted File Upload to Remote Code Execution
  • webapps
    		•  Saeed Bala Ahmed
    2021-01-07 ECSIMAGING PACS 6.21.5 – Remote code execution
  • webapps
    		•  shoxxdj
    2021-01-06 Resumes Management and Job Application Website 1.0 – RCE (Unauthenticated)
  • webapps
    		•  Arnav Tripathy
    2021-01-06 WordPress Plugin WP24 Domain Check 1.6.2 – ‘fieldnameDomain’ Stored Cross Site Scripting
  • webapps
    		•  Mehmet Kelepçe
    2021-01-06 Responsive E-Learning System 1.0 – Stored Cross Site Scripting
  • webapps
    		•  Kshitiz Raj
    2021-01-06 Responsive E-Learning System 1.0 – Unrestricted File Upload to RCE
  • webapps
    		•  Kshitiz Raj
    2021-01-06 WordPress Plugin litespeed cache 3.6 – ‘server_ip’ Cross-Site Scripting
  • webapps
    		•  Nhat Ha
    2021-01-06 Expense Tracker 1.0 – ‘Expense Name’ Stored Cross-Site Scripting
  • webapps
    		•  Shivam Verma
    2021-01-06 Advanced Webhost Billing System 3.7.0 – Cross-Site Request Forgery (CSRF)
  • webapps
    		•  Rahul Ramakant Singh
    2021-01-05 WordPress Plugin WP-Paginate 2.1.3 – ‘preset’ Stored XSS
  • webapps
    		•  Park Won Seok
    2021-01-05 WordPress Plugin Stripe Payments 2.0.39 – ‘AcceptStripePayments-settings[currency_code]’ Stored XSS
  • webapps
    		•  Park Won Seok
    2021-01-05 Resumes Management and Job Application Website 1.0 – Authentication Bypass
  • webapps
    		•  Kshitiz Raj
    2021-01-05 Klog Server 2.4.1 – Command Injection (Unauthenticated)
  • webapps
    		•  B3KC4T
    2021-01-05 Online Learning Management System 1.0 – RCE (Authenticated)
  • webapps
    		•  Bedri Sertkaya