webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2019-08-02 Sar2HTML 3.2.1 – Remote Command Execution
  • webapps
    		•  Cemal Cihad ÇİFTÇİ
    2019-08-02 1CRM On-Premise Software 8.5.7 – Persistent Cross-Site Scripting
  • webapps
    		•  Kusol Watchara-Apanukorn
    2019-08-01 Cisco Catalyst 3850 Series Device Manager – Cross-Site Request Forgery
  • webapps
    		•  Alperen Soydan
    2019-08-01 WebIncorp ERP – SQL injection
  • webapps
    		•  n1x_
    2019-08-01 Ultimate Loan Manager 2.0 – Cross-Site Scripting
  • webapps
    		•  Metin Yunus Kandemir
    2019-07-31 Oracle Hyperion Planning 11.1.2.3 – XML External Entity
  • webapps
    		•  Lucas Dinucci
    2019-07-30 Amcrest Cameras 2.520.AC00.18.R – Unauthenticated Audio Streaming
  • webapps
    		•  Jacob Baines
    2019-07-29 GigToDo 1.3 – Cross-Site Scripting
  • webapps
    		•  m0ze
    2019-07-29 WordPress Theme Real Estate 2.8.9 – Cross-Site Scripting
  • webapps
    		•  m0ze
    2019-07-29 WordPress Plugin Simple Membership 3.8.4 – Cross-Site Request Forgery
  • webapps
    		•  rubyman
    2019-07-26 Ahsay Backup 7.x – 8.1.1.50 – XML External Entity Injection
  • webapps
    		•  Wietse Boonstra
    2019-07-26 Ahsay Backup 7.x – 8.1.1.50 – Authenticated Arbitrary File Upload / Remote Code Execution (Metasploit)
  • webapps
    		•  Wietse Boonstra
    2019-07-26 Ahsay Backup 8.1.1.50 – Insecure File Upload and Code Execution (Authenticated)
  • webapps
    		•  Wietse Boonstra
    2019-07-26 Moodle Filepicker 3.5.2 – Server Side Request Forgery
  • webapps
    		•  Fabian Mosch, Nick Theisinger
    2019-07-25 MyBB < 1.8.21 - Remote Code Execution
  • webapps
    		•  Giovanni Chhatta
    2019-07-25 Ovidentia 8.4.3 – SQL Injection
  • webapps
    		•  UserX
    2019-07-25 Ovidentia 8.4.3 – Cross-Site Scripting
  • webapps
    		•  n3k00n3
    2019-07-24 WordPress Plugin Hybrid Composer 1.4.6 – Improper Access Restrictions
  • webapps
    		•  yasin
    2019-07-24 Cisco Wireless Controller 3.6.10E – Cross-Site Request Forgery
  • webapps
    		•  Mehmet Onder
    2019-07-24 NoviSmart CMS – SQL injection
  • webapps
    		•  n1x_
    2019-07-22 Axway SecureTransport 5 – Unauthenticated XML Injection
  • webapps
    		•  Dominik Penner
    2019-07-19 REDCap < 9.1.2 - Cross-Site Scripting
  • webapps
    		•  Alexandre ZANNI
    2019-07-19 Web Ofisi Firma 13 – ‘oz’ SQL Injection
  • webapps
    		•  Ahmet Ümit BAYRAM
    2019-07-19 Web Ofisi Rent a Car 3 – ‘klima’ SQL Injection
  • webapps
    		•  Ahmet Ümit BAYRAM