webapps

日期	标题	类别	作者
2018-01-21	Oracle JDeveloper 11.1.x/12.x – Directory Traversal	webapps	hyp3rlinx
2018-01-18	GitStack 2.3.10 – Remote Code Execution	webapps	Kacper Szurek
2018-01-18	Primefaces 5.x – Remote Code Execution (Metasploit)	webapps	Bjoern Schuette
2018-01-17	D-Link DSL-2640R – DNS Change	webapps	Todor Donev
2018-01-17	Reservo Image Hosting Script 1.5 – Cross-Site Scripting	webapps	Dennis Veninga
2018-01-17	Zomato Clone Script – Arbitrary File Upload	webapps	Tauco
2018-01-17	SugarCRM 3.5.1 – Cross-Site Scripting	webapps	Guilherme Assmann
2018-01-17	Belkin N600DB Wireless Router – Multiple Vulnerabilities	webapps	Wadeek
2018-01-15	GitStack – Remote Code Execution	webapps	SecuriTeam
2018-01-15	DarkComet (C2 Server) – File Upload	webapps	Pseudo Laboratories
2018-01-15	D-Link DNS-325 ShareCenter < 1.05B03 - Multiple Vulnerabilities	webapps	GulfTech Security
2018-01-15	D-Link DNS-343 ShareCenter < 1.05 - Command Injection	webapps	GulfTech Security
2018-01-15	Flash Operator Panel 2.31.03 – Command Execution	webapps	Vulnerability-Lab
2018-01-15	ILIAS < 5.2.4 - Cross-Site Scripting	webapps	Florian Kunushevci
2018-01-15	Oracle PeopleSoft 8.5x – Remote Code Execution	webapps	Vahagn Vardanyan
2018-01-15	Adminer 4.3.1 – Server-Side Request Forgery	webapps	hyp3rlinx
2018-01-15	Oracle E-Business Suite 12.1.3/12.2.x – Open Redirect	webapps	Andrew Gill
2018-01-15	RISE 1.9 – ‘search’ SQL Injection	webapps	Ahmad Mahfouz
2018-01-15	PerfexCRM 1.9.7 – Arbitrary File Upload	webapps	Ahmad Mahfouz
2018-01-15	Domains & Hostings Manager PRO 3.0 – Authentication Bypass	webapps	Tauco
2018-01-15	ImgHosting 1.5 – Cross-Site Scripting	webapps	Dennis Veninga
2018-01-15	pfSense < 2.1.4 - 'status_rrd_graph_img.php' Command Injection	webapps	absolomb
2018-01-12	Taxi Booking Script 1.0 – Cross-site Scripting	webapps	Tauco
2018-01-12	Xnami 1.0 – Cross-Site Scripting	webapps	Dennis Veninga