webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2018-03-26 Laravel Log Viewer < 0.13.0 - Local File Download
  • webapps
    		•  Haboob Team
    2018-03-23 WordPress Plugin Site Editor 1.1.1 – Local File Inclusion
  • webapps
    		•  Nicolas Buzy-Debat
    2018-03-23 MyBB Plugin Last User’s Threads in Profile Plugin 1.2 – Persistent Cross-Site Scripting
  • webapps
    		•  0xB9
    2018-03-23 TL-WR720N 150Mbps Wireless N Router – Cross-Site Request Forgery
  • webapps
    		•  Mans van Someren
    2018-03-23 Hikvision IP Camera versions 5.2.0 – 5.3.9 (Builds 140721 < 170109) - Access Control Bypass
  • webapps
    		•  Matamorphosis
    2018-03-20 Cisco node-jos < 0.11.0 - Re-sign Tokens
  • webapps
    		•  zioBlack
    2018-03-20 Coship RT3052 Wireless Router – Persistent Cross-Site Scripting
  • webapps
    		•  Sayan Chatterjee
    2018-03-20 Vehicle Sales Management System – Multiple Vulnerabilities
  • webapps
    		•  Sing
    2018-03-20 Intelbras Telefone IP TIP200 LITE – Local File Disclosure
  • webapps
    		•  anhax0r
    2018-03-16 Contec Smart Home 4.15 – Unauthorized Password Reset
  • webapps
    		•  Z3ro0ne
    2018-03-15 Spring Data REST < 2.6.9 (Ingalls SR9) / 3.0.1 (Kay SR1) - PATCH Request Remote Code Execution
  • webapps
    		•  Antonio Francesco Sardella
    2018-03-15 WordPress Plugin Duplicator 1.2.32 – Cross-Site Scripting
  • webapps
    		•  Stefan Broeder
    2018-03-13 Tuleap 9.17.99.189 – Blind SQL Injection
  • webapps
    		•  Cristiano Maruti
    2018-03-13 SecurEnvoy SecurMail 9.1.501 – Multiple Vulnerabilities
  • webapps
    		•  SEC Consult
    2018-03-12 ACL Analytics 11.X – 13.0.0.579 – Arbitrary Code Execution
  • webapps
    		•  Clutchisback1
    2018-03-12 Advantech WebAccess < 8.3 - Directory Traversal / Remote Code Execution
  • webapps
    		•  Chris Lyne
    2018-03-12 TextPattern 4.6.2 – ‘qty’ SQL Injection
  • webapps
    		•  Manuel García Cárdenas
    2018-03-12 Prisma Industriale Checkweigher PrismaWEB 1.21 – Hard-Coded Credentials
  • webapps
    		•  LiquidWorm
    2018-03-12 ManageEngine Applications Manager 13.5 – Remote Code Execution (Metasploit)
  • webapps
    		•  Mehmet Ince
    2018-03-09 Bacula-Web < 8.0.0-rc2 - SQL Injection
  • webapps
    		•  Gustavo Sorondo
    2018-03-07 antMan 0.9.0c – Authentication Bypass
  • webapps
    		•  Joshua Bowser
    2018-03-07 Redaxo CMS Addon MyEvents 2.2.1 – SQL Injection
  • webapps
    		•  h0n1gsp3cht
    2018-03-06 Bravo Tejari Web Portal – Cross-Site Request Forgery
  • webapps
    		•  Arvind V
    2018-03-05 ClipBucket < 4.0.0 - Release 4902 - Command Injection / File Upload / SQL Injection
  • webapps
    		•  SEC Consult