webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2018-11-13 Surreal ToDo 0.6.1.2 – SQL Injection
  • webapps
    		•  Ihsan Sencan
    2018-11-13 Webiness Inventory 2.3 – ‘order’ SQL Injection
  • webapps
    		•  Ihsan Sencan
    2018-11-13 CentOS Web Panel 0.9.8.740 – Cross-Site Request Forgery / Cross-Site Scripting
  • webapps
    		•  InfinitumIT
    2018-11-13 Webiness Inventory 2.3 – Arbitrary File Upload / Cross-Site Request Forgery (Add Admin)
  • webapps
    		•  Ihsan Sencan
    2018-11-13 Maitra Mail Tracking System 1.7.2 – SQL Injection / Database File Download
  • webapps
    		•  Ihsan Sencan
    2018-11-13 Alive Parish 2.0.4 – SQL Injection / Arbitrary File Upload
  • webapps
    		•  Ihsan Sencan
    2018-11-13 ClipperCMS 1.3.3 – Cross-Site Request Forgery (File Upload)
  • webapps
    		•  Ameer Pornillos
    2018-11-13 Silurus Classifieds Script 2.0 – ‘wcategory’ SQL Injection
  • webapps
    		•  Ihsan Sencan
    2018-11-13 Gumbo CMS 0.99 – SQL Injection
  • webapps
    		•  Ihsan Sencan
    2018-11-13 ABC ERP 0.6.4 – Cross-Site Request Forgery (Update Admin)
  • webapps
    		•  Ihsan Sencan
    2018-11-13 Easyndexer 1.0 – Arbitrary File Download
  • webapps
    		•  Ihsan Sencan
    2018-11-13 Tina4 Stack 1.0.3 – Cross-Site Request Forgery (Update Admin)
  • webapps
    		•  Ihsan Sencan
    2018-11-13 Tina4 Stack 1.0.3 – SQL Injection / Database File Download
  • webapps
    		•  Ihsan Sencan
    2018-11-13 Data Center Audit 2.6.2 – Cross-Site Request Forgery (Update Admin)
  • webapps
    		•  Ihsan Sencan
    2018-11-12 WordPress Plugin Media File Manager 1.4.2 – Directory Traversal / Cross-Site Scripting
  • webapps
    		•  Pasquale Turi
    2018-11-12 TufinOS 2.17 Build 1193 – XML External Entity Injection
  • webapps
    		•  Konstantinos Alexiou
    2018-11-12 Data Center Audit 2.6.2 – ‘username’ SQL Injection
  • webapps
    		•  Ihsan Sencan
    2018-11-12 Nominas 0.27 – ‘username’ SQL Injection
  • webapps
    		•  Ihsan Sencan
    2018-11-12 D-LINK Central WifiManager CWM-100 – Server-Side Request Forgery
  • webapps
    		•  hyp3rlinx
    2018-11-12 ServerZilla 1.0 – ’email’ SQL Injection
  • webapps
    		•  Ihsan Sencan
    2018-11-12 GPS Tracking System 2.12 – ‘username’ SQL Injection
  • webapps
    		•  Ihsan Sencan
    2018-11-12 Easyndexer 1.0 – Cross-Site Request Forgery (Add Admin)
  • webapps
    		•  Ihsan Sencan
    2018-11-12 Facturation System 1.0 – ‘modid’ SQL Injection
  • webapps
    		•  Ihsan Sencan
    2018-11-12 The Don 1.0.1 – ‘login’ SQL Injection
  • webapps
    		•  Ihsan Sencan