webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2018-01-10 D-Link Routers 110/412/615/815 < 1.03 - 'service.cgi' Arbitrary Code Execution
  • webapps
    		•  Cr0n1c
    2018-01-10 SAP NetWeaver J2EE Engine 7.40 – SQL Injection
  • webapps
    		•  Vahagn Vardanyan
    2018-01-10 Joomla! Component Easydiscuss < 4.0.21 - Cross-Site Scripting
  • webapps
    		•  Mattia Furlani
    2018-01-10 WordPress Plugin WordPress Download Manager 2.9.60 – Cross-Site Request Forgery
  • webapps
    		•  Panagiotis Vagenas
    2018-01-10 WordPress Plugin Admin Menu Tree Page View 2.6.9 – Cross-Site Request Forgery / Privilege Escalation
  • webapps
    		•  Panagiotis Vagenas
    2018-01-10 WordPress Plugin CMS Tree Page View 1.4 – Cross-Site Request Forgery / Privilege Escalation
  • webapps
    		•  Panagiotis Vagenas
    2018-01-10 WordPress Plugin Social Media Widget by Acurax 3.2.5 – Cross-Site Request Forgery
  • webapps
    		•  Panagiotis Vagenas
    2018-01-10 WordPress Plugin Events Calendar – ‘event_id’ SQL Injection
  • webapps
    		•  Dennis Veninga
    2018-01-10 Muviko 1.1 – SQL Injection
  • webapps
    		•  Ahmad Mahfouz
    2018-01-10 WordPress Plugin Service Finder Booking < 3.2 - Local File Disclosure
  • webapps
    		•  telahdihapus
    2018-01-10 Synology Photostation 6.7.2-3429 – Remote Code Execution (Metasploit)
  • webapps
    		•  James Bercegay
    2018-01-08 SonicWall NSA 6600/5600/4600/3600/2600/250M – Multiple Vulnerabilities
  • webapps
    		•  Vulnerability-Lab
    2018-01-08 Photos in Wifi 1.0.1 – Path Traversal
  • webapps
    		•  Vulnerability-Lab
    2018-01-08 Synology DiskStation Manager (DSM) < 6.1.3-15152 - 'forget_passwd.cgi' User Enumeration
  • webapps
    		•  Steve Kaun
    2018-01-08 Synology Photostation < 6.7.2-3429 - Multiple Vulnerabilities
  • webapps
    		•  GulfTech Security
    2018-01-08 Vanilla < 2.1.5 - Cross-Site Request Forgery
  • webapps
    		•  Anand Meyyappan
    2018-01-08 WordPress Plugin LearnDash 2.5.3 – Arbitrary File Upload
  • webapps
    		•  NinTechNet
    2018-01-08 FiberHome LM53Q1 – Multiple Vulnerabilities
  • webapps
    		•  Ibad Shah
    2018-01-05 Gespage 7.4.8 – SQL Injection
  • webapps
    		•  Sysdream
    2018-01-05 gps-server.net GPS Tracking Software < 3.1 - Multiple Vulnerabilities
  • webapps
    		•  Noman Riffat
    2018-01-03 EMC xPression 4.5SP1 Patch 13 – ‘model.jobHistoryId’ SQL Injection
  • webapps
    		•  Pawel Gocyla
    2018-01-03 WordPress Plugin Smart Google Code Inserter < 3.5 - Authentication Bypass / SQL Injection
  • webapps
    		•  Benjamin Lim
    2017-12-31 PHP Melody 2.7.1 – ‘playlist’ SQL Injection
  • webapps
    		•  Ahmad Mahfouz
    2017-12-27 DotNetNuke DreamSlider 01.01.02 – Arbitrary File Download (Metasploit)
  • webapps
    		•  Glafkos Charalambous