php

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2021-01-22 Library System 1.0 – Authentication Bypass
  • webapps
    		•  Himanshu Shukla
    2021-01-21 Apartment Visitors Management System 1.0 – ’email’ SQL Injection
  • webapps
    		•  CANKAT ÇAKMAK
    2021-01-21 Online Documents Sharing Platform 1.0 – ‘user’ SQL Injection
  • webapps
    		•  CANKAT ÇAKMAK
    2021-01-21 WordPress Plugin Simple Job Board 2.9.3 – Authenticated File Read (Metasploit)
  • webapps
    		•  SunCSR Team
    2021-01-21 Nagios XI 5.7.5 – Multiple Persistent Cross-Site Scripting
  • webapps
    		•  Matthew Aberegg
    2021-01-20 Voting System 1.0 – File Upload RCE (Authenticated Remote Code Execution)
  • webapps
    		•  Richard Jones
    2021-01-19 osTicket 1.14.2 – SSRF
  • webapps
    		•  Talat Mehmood
    2021-01-18 Life Insurance Management System 1.0 – File Upload RCE (Authenticated)
  • webapps
    		•  Aitor Herrero
    2021-01-18 Life Insurance Management System 1.0 – ‘client_id’ SQL Injection
  • webapps
    		•  Aitor Herrero
    2021-01-15 E-Learning System 1.0 – Authentication Bypass
  • webapps
    		•  Himanshu Shukla
    2021-01-15 Alumni Management System 1.0 – “Last Name field in Registration page” Stored XSS
  • webapps
    		•  Siva Rajendran
    2021-01-15 Online Hotel Reservation System 1.0 – ‘person’ time-based SQL Injection
  • webapps
    		•  Mesut Cetin
    2021-01-15 Online Hotel Reservation System 1.0 – Cross-site request forgery (CSRF)
  • webapps
    		•  Mesut Cetin
    2021-01-15 Online Hotel Reservation System 1.0 – ‘id’ Time-based SQL Injection
  • webapps
    		•  Mesut Cetin
    2021-01-15 Online Hotel Reservation System 1.0 – ‘description’ Stored Cross-site Scripting
  • webapps
    		•  Mesut Cetin
    2021-01-15 WordPress Plugin Easy Contact Form 1.1.7 – ‘Name’ Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Rahul Ramakant Singh
    2021-01-15 PHP-Fusion CMS 9.03.90 – Cross-Site Request Forgery (Delete admin shoutbox message)
  • webapps
    		•  Mohamed Oosman
    2021-01-14 Nagios XI 5.7.X – Remote Code Execution RCE (Authenticated)
  • webapps
    		•  Haboob Team
    2021-01-14 Online Movie Streaming 1.0 – Admin Authentication Bypass
  • webapps
    		•  Richard Jones
    2021-01-14 Laravel 8.4.2 debug mode – Remote code execution
  • webapps
    		•  SunCSR Team
    2021-01-14 Online Shopping Cart System 1.0 – ‘id’ SQL Injection
  • webapps
    		•  Aydın Baran Ertemir
    2021-01-13 Online Hotel Reservation System 1.0 – Admin Authentication Bypass
  • webapps
    		•  Richard Jones
    2021-01-12 Cemetry Mapping and Information System 1.0 – Multiple SQL Injections
  • webapps
    		•  Mesut Cetin
    2021-01-12 Gila CMS 2.0.0 – Remote Code Execution (Unauthenticated)
  • webapps
    		•  Enesdex