webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2017-05-30 Trend Micro Deep Security 6.5 – XML External Entity Injection / Local Privilege Escalation / Remote Code Execution
  • webapps
    		•  SecuriTeam
    2017-05-30 uc-http Daemon – Local File Inclusion / Directory Traversal
  • webapps
    		•  Project Insecurity
    2017-05-29 WordPress Plugin Huge-IT Video Gallery 2.0.4 – SQL Injection
  • webapps
    		•  defensecode
    2017-05-26 QWR-1104 Wireless-N Router – Cross-Site Scripting
  • webapps
    		•  Touhid M.Shaikh
    2017-05-25 WebKit – ‘enqueuePageshowEvent’ / ‘enqueuePopstateEvent’ Universal Cross-Site Scripting
  • webapps
    		•  Google Security Research
    2017-05-25 WebKit – ‘ContainerNode::parserInsertBefore’ Universal Cross-Site Scripting
  • webapps
    		•  Google Security Research
    2017-05-25 WebKit – ‘ContainerNode::parserRemoveChild’ Universal Cross-Site Scripting
  • webapps
    		•  Google Security Research
    2017-05-25 Apple WebKit / Safari 10.0.3(12602.4.8) – ‘Editor::Command::execute’ Universal Cross-Site Scripting
  • webapps
    		•  Google Security Research
    2017-05-25 Sophos Cyberoam – Cross-site scripting
  • webapps
    		•  Bhadresh Patel
    2017-05-25 Apple Safari 10.0.3(12602.4.8) / WebKit – ‘HTMLObjectElement::updateWidget’ Universal Cross-Site Scripting
  • webapps
    		•  Google Security Research
    2017-05-25 WebKit – ‘FrameLoader::clear’ Stealing Variables via Page Navigation
  • webapps
    		•  Google Security Research
    2017-05-24 NetGain EM 7.2.647 build 941 – Authentication Bypass / Local File Inclusion
  • webapps
    		•  f3ci
    2017-05-22 Aerohive HiveOS 5.1r5 < 6.1r5 - Remote Code Execution
  • webapps
    		•  Ike-Clinton
    2017-05-21 PlaySMS 1.4 – ‘import.php’ Remote Code Execution
  • webapps
    		•  Touhid M.Shaikh
    2017-05-20 Mantis Bug Tracker 1.3.10/2.3.0 – Cross-Site Request Forgery
  • webapps
    		•  hyp3rlinx
    2017-05-20 KMCIS CaseAware – Cross-Site Scripting
  • webapps
    		•  justpentest
    2017-05-19 Tecnovision DLX Spot – Arbitrary File Upload
  • webapps
    		•  Simon Brannstrom
    2017-05-19 Tecnovision DLX Spot – Authentication Bypass
  • webapps
    		•  Simon Brannstrom
    2017-05-19 D-Link DIR-600M Wireless N 150 – Authentication Bypass
  • webapps
    		•  Touhid M.Shaikh
    2017-05-19 PlaySMS 1.4 – Remote Code Execution
  • webapps
    		•  Touhid M.Shaikh
    2017-05-19 ManageEngine ServiceDesk Plus 9.0 – Authentication Bypass
  • webapps
    		•  ByteM3
    2017-05-19 SAP Business One for Android 1.2.3 – XML External Entity Injection
  • webapps
    		•  Ravindra Singh Rathore
    2017-05-19 Belden Garrettcom 6K/10K Switches – Authentication Bypass / Memory Corruption
  • webapps
    		•  David Tomaschik
    2017-05-19 Oracle PeopleSoft – Server-Side Request Forgery
  • webapps
    		•  ERPScan