php

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2020-12-22 CSE Bookstore 1.0 – Multiple SQL Injection
  • webapps
    		•  Musyoka Ian
    2020-12-22 Pandora FMS 7.0 NG 750 – ‘Network Scan’ SQL Injection (Authenticated)
  • webapps
    		•  Matthew Aberegg
    2020-12-22 Victor CMS 1.0 – File Upload To RCE
  • webapps
    		•  Mosaaed
    2020-12-22 Faculty Evaluation System 1.0 – Stored XSS
  • webapps
    		•  Vijay Sachdeva
    2020-12-22 Artworks Gallery Management System 1.0 – ‘id’ SQL Injection
  • webapps
    		•  Vijay Sachdeva
    2020-12-22 WordPress Plugin W3 Total Cache – Unauthenticated Arbitrary File Read (Metasploit)
  • webapps
    		•  SunCSR Team
    2020-12-21 Online Marriage Registration System 1.0 – ‘searchdata’ SQL Injection
  • webapps
    		•  Raffaele Sabato
    2020-12-21 Point of Sale System 1.0 – Multiple Stored XSS
  • webapps
    		•  Saeed Bala Ahmed
    2020-12-21 Queue Management System 4.0.0 – “Add User” Stored XSS
  • webapps
    		•  Kislay Kumar
    2020-12-18 Xeroneit Library Management System 3.1 – “Add Book Category ” Stored XSS
  • webapps
    		•  Kislay Kumar
    2020-12-18 Smart Hospital 3.1 – “Add Patient” Stored XSS
  • webapps
    		•  Kislay Kumar
    2020-12-18 WordPress Plugin Duplicator 1.3.26 – Unauthenticated Arbitrary File Read (Metasploit)
  • webapps
    		•  SunCSR Team
    2020-12-18 Alumni Management System 1.0 – ‘id’ SQL Injection
  • webapps
    		•  Aakash Madaan
    2020-12-18 Alumni Management System 1.0 – “Course Form” Stored XSS
  • webapps
    		•  Aakash Madaan
    2020-12-18 Alumni Management System 1.0 – Unrestricted File Upload To RCE
  • webapps
    		•  Aakash Madaan
    2020-12-18 Point of Sale System 1.0 – Authentication Bypass
  • webapps
    		•  Saeed Bala Ahmed
    2020-12-17 Content Management System 1.0 – ’email’ SQL Injection
  • webapps
    		•  Zhaiyi
    2020-12-17 Content Management System 1.0 – ‘First Name’ Stored XSS
  • webapps
    		•  Zhaiyi
    2020-12-17 Dolibarr ERP-CRM 12.0.3 – Remote Code Execution (Authenticated)
  • webapps
    		•  Yilmaz Degirmenci
    2020-12-17 Victor CMS 1.0 – Multiple SQL Injection (Authenticated)
  • webapps
    		•  Furkan Göksel
    2020-12-17 PHPJabbers Appointment Scheduler 2.3 – Reflected XSS (Cross-Site Scripting)
  • webapps
    		•  Andrea Intilangelo
    2020-12-17 Employee Record System 1.0 – Multiple Stored XSS
  • webapps
    		•  Saeed Bala Ahmed
    2020-12-17 Interview Management System 1.0 – ‘id’ SQL Injection
  • webapps
    		•  Saeed Bala Ahmed
    2020-12-17 Interview Management System 1.0 – Stored XSS in Add New Question
  • webapps
    		•  Saeed Bala Ahmed