php

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2019-02-18 qdPM 9.1 – ‘search[keywords]’ Cross-Site Scripting
  • webapps
    		•  Mehmet EMIROGLU
    2019-02-18 qdPM 9.1 – ‘type’ Cross-Site Scripting
  • webapps
    		•  Mehmet EMIROGLU
    2019-02-18 WordPress Plugin WooCommerce – GloBee (cryptocurrency) Payment Gateway 1.1.1 – Payment Bypass / Unauthorized Order Status Spoofing
  • webapps
    		•  GeekHack
    2019-02-18 Webiness Inventory 2.3 – ‘ProductModel’ Arbitrary File Upload
  • webapps
    		•  Mehmet EMIROGLU
    2019-02-15 UniSharp Laravel File Manager 2.0.0-alpha7 – Arbitrary File Upload
  • webapps
    		•  Mohammad Danish
    2019-02-15 qdPM 9.1 – ‘search_by_extrafields[]’ SQL Injection
  • webapps
    		•  Mehmet EMIROGLU
    2019-02-15 MyBB Trash Bin Plugin 1.1.3 – Cross-Site Scripting / Cross-Site Request Forgery
  • webapps
    		•  0xB9
    2019-02-14 LayerBB 1.1.2 – Cross-Site Request Forgery (Add Admin)
  • webapps
    		•  0xB9
    2019-02-14 WordPress Plugin Booking Calendar 8.4.3 – (Authenticated) SQL Injection
  • webapps
    		•  B0UG
    2019-02-14 DomainMOD 4.11.01 – ‘assets/edit/host.php?whid=5’ Cross-Site Scripting
  • webapps
    		•  Mohammed Abdul Kareem
    2019-02-14 DomainMOD 4.11.01 – ‘assets/add/dns.php’ Cross-Site Scripting
  • webapps
    		•  Mohammed Abdul Kareem
    2019-02-14 DomainMOD 4.11.01 – ‘category.php CatagoryName, StakeHolder’ Cross-Site Scripting
  • webapps
    		•  Mohammed Abdul Raheem
    2019-02-14 DomainMOD 4.11.01 – ‘ssl-accounts.php username’ Cross-Site Scripting
  • webapps
    		•  Mohammed Abdul Raheem
    2019-02-14 DomainMOD 4.11.01 – ‘ssl-provider-name’ Cross-Site Scripting
  • webapps
    		•  Mohammed Abdul Raheem
    2019-02-13 PilusCart 1.4.1 – ‘send’ SQL Injection
  • webapps
    		•  Mehmet EMIROGLU
    2019-02-13 Rukovoditel Project Management CRM 2.4.1 – Cross-Site Scripting
  • webapps
    		•  Mehmet EMIROGLU
    2019-02-12 LayerBB 1.1.2 – Cross-Site Scripting
  • webapps
    		•  0xB9
    2019-02-12 OPNsense < 19.1.1 - Cross-Site Scripting
  • webapps
    		•  Ozer Goker
    2019-02-11 Webiness Inventory 2.3 – ’email’ SQL Injection
  • webapps
    		•  Mehmet EMIROGLU
    2019-02-11 VA MAX 8.3.4 – (Authenticated) Remote Code Execution
  • webapps
    		•  Cody Sixteen
    2019-02-11 MyBB Bans List 1.0 – Cross-Site Scripting
  • webapps
    		•  0xB9
    2019-02-11 NUUO NVRmini – upgrade_handle.php Remote Command Execution (Metasploit)
  • remote
    		•  Metasploit
    2019-02-06 osCommerce 2.3.4.1 – ‘reviews_id’ SQL Injection
  • webapps
    		•  Mehmet EMIROGLU
    2019-02-06 osCommerce 2.3.4.1 – ‘products_id’ SQL Injection
  • webapps
    		•  Mehmet EMIROGLU