webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2020-07-08 BSA Radar 1.6.7234.24750 – Cross-Site Request Forgery (Change Password)
  • webapps
    		•  William Summerhill
    2020-07-08 SuperMicro IPMI 03.40 – Cross-Site Request Forgery (Add Admin)
  • webapps
    		•  Metin Yunus Kandemir
    2020-07-07 Exhibitor Web UI 1.7.1 – Remote Code Execution
  • webapps
    		•  Logan Sanderson
    2020-07-07 BSA Radar 1.6.7234.24750 – Authenticated Privilege Escalation
  • webapps
    		•  William Summerhill
    2020-07-07 Joomla! J2 JOBS 1.3.0 – ‘sortby’ Authenticated SQL Injection
  • webapps
    		•  Mehmet Kelepçe
    2020-07-07 Online Shopping Portal 3.1 – ’email’ SQL Injection
  • webapps
    		•  gh1mau
    2020-07-07 Sickbeard 0.1 – Remote Command Injection
  • webapps
    		•  bdrake
    2020-07-07 PHP 7.4 FFI – ‘disable_functions’ Bypass
  • webapps
    		•  hunter gregal
    2020-07-06 BIG-IP 15.0.0 < 15.1.0.3 / 14.1.0 < 14.1.2.5 / 13.1.0 < 13.1.3.3 / 12.1.0 < 12.1.5.1 / 11.6.1 < 11.6.5.1 - Traffic Management User Interface 'TMUI' Remote Code Execution
  • webapps
    		•  Critical Start
    2020-07-06 Nagios XI 5.6.12 – ‘export-rrd.php’ Remote Code Execution
  • webapps
    		•  Basim Alabdullah
    2020-07-06 RSA IG&L Aveksa 7.1.1 – Remote Code Execution
  • webapps
    		•  Jakub Palaczynski
    2020-07-06 RiteCMS 2.2.1 – Authenticated Remote Code Execution
  • webapps
    		•  Enes Özeser
    2020-07-06 File Management System 1.1 – Persistent Cross-Site Scripting
  • webapps
    		•  KeopssGroup0day,Inc
    2020-07-05 BIG-IP 15.0.0 < 15.1.0.3 / 14.1.0 < 14.1.2.5 / 13.1.0 < 13.1.3.3 / 12.1.0 < 12.1.5.1 / 11.6.1 < 11.6.5.1 - Traffic Management User Interface 'TMUI' Remote Code Execution (PoC)
  • webapps
    		•  Budi Khoirudin
    2020-07-02 OCS Inventory NG 2.7 – Remote Code Execution
  • webapps
    		•  Askar
    2020-07-02 ZenTao Pro 8.8.2 – Command Injection
  • webapps
    		•  Daniel Monzón
    2020-07-01 Online Shopping Portal 3.1 – Authentication Bypass
  • webapps
    		•  Ümit Yalçın
    2020-07-01 PHP-Fusion 9.03.60 – PHP Object Injection
  • webapps
    		•  coiffeur
    2020-07-01 e-learning Php Script 0.1.0 – ‘search’ SQL Injection
  • webapps
    		•  KeopssGroup0day,Inc
    2020-06-30 Reside Property Management 3.0 – ‘profile’ SQL Injection
  • webapps
    		•  Behzad Khalifeh
    2020-06-30 Victor CMS 1.0 – ‘user_firstname’ Persistent Cross-Site Scripting
  • webapps
    		•  Anushree Priyadarshini
    2020-06-26 OpenEMR 5.0.1 – ‘controller’ Remote Code Execution
  • webapps
    		•  Emre ÖVÜNÇ
    2020-06-25 FHEM 6.0 – Local File Inclusion
  • webapps
    		•  Emre ÖVÜNÇ
    2020-06-24 BSA Radar 1.6.7234.24750 – Persistent Cross-Site Scripting
  • webapps
    		•  William Summerhill