php

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2020-12-09 Task Management System 1.0 – ‘First Name and Last Name’ Stored XSS
  • webapps
    		•  Saeed Bala Ahmed
    2020-12-08 Employee Performance Evaluation System 1.0 – ‘Task and Description’ Persistent Cross Site Scripting
  • webapps
    		•  Ritesh Gohil
    2020-12-08 Online Bus Ticket Reservation 1.0 – SQL Injection
  • webapps
    		•  Sakshi Sharma
    2020-12-07 vBulletin 5.6.3 – ‘group’ Cross Site Scripting
  • webapps
    		•  Vincent666
    2020-12-07 Savsoft Quiz 5 – ‘Skype ID’ Stored XSS
  • webapps
    		•  Dipak Panchal
    2020-12-07 Cyber Cafe Management System Project (CCMS) 1.0 – Persistent Cross-Site Scripting
  • webapps
    		•  Pruthvi Nekkanti
    2020-12-04 Zabbix 5.0.0 – Stored XSS via URL Widget Iframe
  • webapps
    		•  Shwetabh Vishnoi
    2020-12-04 CMS Made Simple 2.2.15 – Stored Cross-Site Scripting via SVG File Upload (Authenticated)
  • webapps
    		•  Eshan Singh
    2020-12-04 Laravel Nova 3.7.0 – ‘range’ DoS
  • webapps
    		•  iqzer0
    2020-12-04 Forma LMS 2.3 – ‘First & Last Name’ Stored Cross-Site Scripting
  • webapps
    		•  Hemant Patidar
    2020-12-04 Savsoft Quiz 5 – ‘field_title’ Stored Cross-Site Scripting
  • webapps
    		•  Dhruv Patel
    2020-12-04 MiniCMS 1.10 – ‘content box’ Stored XSS
  • webapps
    		•  yudp
    2020-12-04 Composr CMS 10.0.34 – ‘banners’ Persistent Cross Site Scripting
  • webapps
    		•  Parshwa Bhavsar
    2020-12-03 Online Matrimonial Project 1.0 – Authenticated Remote Code Execution
  • webapps
    		•  Valerio Alessandroni
    2020-12-03 Coastercms 5.8.18 – Stored XSS
  • webapps
    		•  Hardik Solanki
    2020-12-03 User Registration & Login and User Management System 2.1 – Cross Site Request Forgery
  • webapps
    		•  Dipak Panchal
    2020-12-02 Pharmacy Store Management System 1.0 – ‘id’ SQL Injection
  • webapps
    		•  Aydın Baran Ertemir
    2020-12-02 WordPress Plugin Wp-FileManager 6.8 – RCE
  • webapps
    		•  Mansoor R
    2020-12-02 Car Rental Management System 1.0 – SQL Injection / Local File include
  • webapps
    		•  Mosaaed
    2020-12-02 Simple College Website 1.0 – ‘page’ Local File Inclusion
  • webapps
    		•  Mosaaed
    2020-12-02 Anuko Time Tracker 1.19.23.5311 – Password Reset leading to Account Takeover
  • webapps
    		•  Mufaddal Masalawala
    2020-12-02 Anuko Time Tracker 1.19.23.5311 – No rate Limit on Password Reset functionality
  • webapps
    		•  Mufaddal Masalawala
    2020-12-02 WonderCMS 3.1.3 – ‘Menu’ Persistent Cross-Site Scripting
  • webapps
    		•  Hemant Patidar
    2020-12-02 WonderCMS 3.1.3 – Authenticated Remote Code Execution
  • webapps
    		•  zetc0de