webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2017-05-19 Joomla! 3.7.0 – ‘com_fields’ SQL Injection
  • webapps
    		•  Mateus Lino
    2017-05-17 Oracle PeopleSoft Enterprise PeopleTools < 8.55 - Remote Code Execution Via Blind XML External Entity
  • webapps
    		•  Charles Fol
    2017-05-17 INFOR EAM 11.0 Build 201410 – Persistent Cross-Site Scripting via Comment Fields
  • webapps
    		•  Yoroi
    2017-05-17 INFOR EAM 11.0 Build 201410 – ‘filtervalue’ SQL Injection
  • webapps
    		•  Yoroi
    2017-05-15 Mailcow 0.14 – Cross-Site Request Forgery
  • webapps
    		•  hyp3rlinx
    2017-05-14 PlaySMS 1.4 – ‘/sendfromfile.php’ Remote Code Execution / Unrestricted File Upload
  • webapps
    		•  Touhid M.Shaikh
    2017-05-10 Cisco DPC3928 Router – Arbitrary File Disclosure
  • webapps
    		•  SecuriTeam
    2017-05-10 CMS Made Simple 2.1.6 – Multiple Vulnerabilities
  • webapps
    		•  Osanda Malith Jayathissa
    2017-05-10 Gongwalker API Manager 1.1 – Cross-Site Request Forgery
  • webapps
    		•  HaHwul
    2017-05-10 BanManager WebUI 1.5.8 – PHP Code Injection
  • webapps
    		•  HaHwul
    2017-05-10 QNAP PhotoStation 5.2.4 / MusicStation 4.8.4 – Authentication Bypass
  • webapps
    		•  Kacper Szurek
    2017-05-09 Personify360 7.5.2/7.6.1 – Improper Database Schema Access Restrictions
  • webapps
    		•  Pesach Zirkind
    2017-05-09 Personify360 7.5.2/7.6.1 – Improper Access Restrictions
  • webapps
    		•  Pesach Zirkind
    2017-05-09 I, Librarian 4.6/4.7 – Command Injection / Server Side Request Forgery / Directory Enumeration / Cross-Site Scripting
  • webapps
    		•  SEC Consult
    2017-05-05 Sitecore CMS 8.2 – Cross-Site Scripting / Arbitrary File Disclosure
  • webapps
    		•  Usman Saeed
    2017-05-05 ViMbAdmin 3.0.15 – Multiple Cross-Site Request Forgery Vulnerabilities
  • webapps
    		•  Sysdream
    2017-05-05 WordPress Plugin WebDorado Gallery 1.3.29 – SQL Injection
  • webapps
    		•  defensecode
    2017-05-03 WordPress Core < 4.7.4 - Unauthorized Password Reset
  • webapps
    		•  Dawid Golunski
    2017-05-03 WordPress Core 4.6 – Remote Code Execution
  • webapps
    		•  Dawid Golunski
    2017-05-03 Serviio PRO 1.8 DLNA Media Streaming Server – REST API Arbitrary Code Execution
  • webapps
    		•  LiquidWorm
    2017-05-03 Serviio PRO 1.8 DLNA Media Streaming Server – REST API Arbitrary Password Change
  • webapps
    		•  LiquidWorm
    2017-05-03 Serviio PRO 1.8 DLNA Media Streaming Server – REST API Information Disclosure
  • webapps
    		•  LiquidWorm
    2017-05-02 Zyxel P-660HW-61 Firmware < 3.40(PE.11)C0 Router - Local File Inclusion
  • webapps
    		•  ReverseBrain
    2017-05-01 Tuleap Project Wiki 8.3 < 9.6.99.86 - Command Injection
  • webapps
    		•  Ben Nott