webapps

日期	标题	类别	作者
2017-09-25	FLIR Thermal Camera PT-Series (PT-334 200562) – Root Remote Code Execution	webapps	LiquidWorm
2017-09-24	HBGK DVR 3.0.0 build20161206 – Authentication Bypass	webapps	RAT - ThiefKing
2017-09-22	Lending And Borrowing – ‘pid’ SQL Injection	webapps	Ihsan Sencan
2017-09-22	Stock Photo Selling 1.0 – SQL Injection	webapps	Ihsan Sencan
2017-09-22	JitBit HelpDesk < 9.0.2 - Authentication Bypass	webapps	Kc57
2017-09-22	PHP Auction Ecommerce Script 1.6 – SQL Injection	webapps	8bitsec
2017-09-22	Secure E-commerce Script 1.02 – ‘sid’ SQL Injection	webapps	8bitsec
2017-09-22	Claydip Airbnb Clone 1.0 – Arbitrary File Upload	webapps	Ihsan Sencan
2017-09-22	Cash Back Comparison Script 1.0 – SQL Injection	webapps	Ihsan Sencan
2017-09-22	Multi Level Marketing – SQL Injection	webapps	Ihsan Sencan
2017-09-21	PHPMyFAQ 2.9.8 – Cross-Site Scripting (1)	webapps	Ishaq Mohammed
2017-09-20	Apache Tomcat < 9.0.1 (Beta) / < 8.5.23 / < 8.0.47 / < 7.0.8 - JSP Upload Bypass / Remote Code Execution (1)	webapps	xxlegend
2017-09-19	DenyAll WAF < 6.3.0 - Remote Code Execution (Metasploit)	webapps	Mehmet Ince
2017-09-18	Apache < 2.2.34 / < 2.4.27 - OPTIONS Memory Leak	webapps	Hanno Bock
2017-09-18	iBall ADSL2+ Home Router – Authentication Bypass	webapps	Gem George
2017-09-18	DigiAffiliate 1.4 – Cross-Site Request Forgery (Update Admin)	webapps	Ihsan Sencan
2017-09-18	Digileave 1.2 – Cross-Site Request Forgery (Update Admin)	webapps	Ihsan Sencan
2017-09-18	Digirez 3.4 – Cross-Site Request Forgery (Update Admin)	webapps	Ihsan Sencan
2017-09-16	WordPress Plugin Content Timeline – SQL Injection	webapps	Jeroen - IT Nerdbox
2017-09-15	PTCEvolution 5.50 – SQL Injection	webapps	Ihsan Sencan
2017-09-15	iTech Gigs Script 1.20 – ‘cat’ SQL Injection	webapps	8bitsec
2017-09-15	UTStar WA3002G4 ADSL Broadband Modem – Authentication Bypass	webapps	Gem George
2017-09-15	Contact Manager 1.0 – ‘femail’ SQL Injection	webapps	Ihsan Sencan
2017-09-14	Humax Wi-Fi Router HG100R 2.0.6 – Authentication Bypass	webapps	Kivson