webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2018-12-03 Apache Superset < 0.23 - Remote Code Execution
  • webapps
    		•  David May
    2018-12-03 PHP Server Monitor 3.3.1 – Cross-Site Request Forgery
  • webapps
    		•  Javier Olmedo
    2018-12-03 Joomla! Component JE Photo Gallery 1.1 – ‘categoryid’ SQL Injection
  • webapps
    		•  Ihsan Sencan
    2018-12-03 PaloAlto Networks Expedition Migration Tool 1.0.106 – Information Disclosure
  • webapps
    		•  ParagonSec
    2018-12-03 Rockwell Automation Allen-Bradley PowerMonitor 1000 – Cross-Site Scripting
  • webapps
    		•  Luca.Chiou
    2018-12-03 Fleetco Fleet Maintenance Management 1.2 – Remote Code Execution
  • webapps
    		•  AkkuS
    2018-11-30 PhpSpreadsheet < 1.5.0 - XML External Entity (XXE)
  • webapps
    		•  Alex Leahu
    2018-11-30 Synaccess netBooter NP-02x/NP-08x 6.8 – Authentication Bypass
  • webapps
    		•  LiquidWorm
    2018-11-30 Schneider Electric PLC – Session Calculation Authentication Bypass
  • webapps
    		•  Photubias
    2018-11-26 Ticketly 1.0 – ‘kind_id’ SQL Injection
  • webapps
    		•  Javier Olmedo
    2018-11-26 WordPress Plugin Easy Testimonials 3.2 – Cross-Site Scripting
  • webapps
    		•  En_dust
    2018-11-26 Ricoh myPrint 2.9.2.4 – Hard-Coded Credentials
  • webapps
    		•  Hodorsec
    2018-11-26 Zyxel VMG1312-B10D 5.13AAXA.8 – Directory Traversal
  • webapps
    		•  numan türle
    2018-11-26 No-Cms 1.0 – ‘order_by’ SQL Injection
  • webapps
    		•  Loading Kura Kura
    2018-11-21 WebOfisi E-Ticaret V4 – ‘urun’ SQL Injection
  • webapps
    		•  AkkuS
    2018-11-21 WordPress Theme CherryFramework 3.1.4 – Backup File Download
  • webapps
    		•  b1p0l4r
    2018-11-21 Ticketly 1.0 – ‘name’ SQL Injection
  • webapps
    		•  Javier Olmedo
    2018-11-21 Synaccess netBooter NP-0801DU 7.4 – Cross-Site Request Forgery (Add Admin)
  • webapps
    		•  LiquidWorm
    2018-11-20 Ticketly 1.0 – Cross-Site Request Forgery (Add Admin)
  • webapps
    		•  Javier Olmedo
    2018-11-16 DomainMOD 4.11.01 – ‘raid’ Cross-Site Scripting
  • webapps
    		•  Dawood Ansar
    2018-11-16 Helpdezk 1.1.1 – Arbitrary File Upload
  • webapps
    		•  Ihsan Sencan
    2018-11-16 Warranty Tracking System 11.06.3 – ‘txtCustomerCode’ SQL Injection
  • webapps
    		•  Ihsan Sencan
    2018-11-15 EverSync 0.5 – Arbitrary File Download
  • webapps
    		•  Ihsan Sencan
    2018-11-15 Galaxy Forces MMORPG 0.5.8 – ‘type’ SQL Injection
  • webapps
    		•  Ihsan Sencan