webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2017-05-01 Alerton Webtalk 2.5/3.3 – Multiple Vulnerabilities
  • webapps
    		•  David Tomaschik
    2017-04-30 Emby MediaServer 3.2.5 – Directory Traversal
  • webapps
    		•  LiquidWorm
    2017-04-30 Emby MediaServer 3.2.5 – Password Reset
  • webapps
    		•  LiquidWorm
    2017-04-30 Emby MediaServer 3.2.5 – SQL Injection
  • webapps
    		•  LiquidWorm
    2017-04-28 Admidio 3.2.8 – Cross-Site Request Forgery
  • webapps
    		•  Faiz Ahmed Zaidi
    2017-04-27 TYPO3 Extension News – SQL Injection
  • webapps
    		•  Charles Fol
    2017-04-27 Easy File Uploader – Arbitrary File Upload
  • webapps
    		•  Daniel Godoy
    2017-04-27 Simple File Uploader – Arbitrary File Download
  • webapps
    		•  Daniel Godoy
    2017-04-26 Revive Ad Server 4.0.1 – Cross-Site Scripting / Cross-Site Request Forgery
  • webapps
    		•  Cyril Vallicari
    2017-04-25 October CMS 1.0.412 – Multiple Vulnerabilities
  • webapps
    		•  Anti Räis
    2017-04-25 HPE OpenCall Media Platform (OCMP) 4.3.2 – Cross-Site Scripting / Remote File Inclusion
  • webapps
    		•  Paolo Stagno
    2017-04-25 Oracle E-Business Suite 12.2.3 – ‘IESFOOTPRINT’ SQL Injection
  • webapps
    		•  ERPScan
    2017-04-25 Oracle PeopleSoft – ‘PeopleSoftServiceListeningConnector’ XML External Entity via DOCTYPE
  • webapps
    		•  ERPScan
    2017-04-25 WordPress Plugin Wow Forms 2.1 – SQL Injection
  • webapps
    		•  TAD GROUP
    2017-04-25 WordPress Plugin Wow Viral Signups 2.1 – SQL Injection
  • webapps
    		•  TAD GROUP
    2017-04-25 WordPress Plugin Car Rental System 2.5 – SQL Injection
  • webapps
    		•  TAD GROUP
    2017-04-25 WordPress Plugin KittyCatfish 2.2 – SQL Injection
  • webapps
    		•  TAD GROUP
    2017-04-25 FlySpray 1.0-rc4 – Cross-Site Scripting / Cross-Site Request Forgery
  • webapps
    		•  Cyril Vallicari
    2017-04-25 OpenText Documentum Content Server – dm_bp_transition.ebs docbase Method Arbitrary Code Execution
  • webapps
    		•  Andrey B. Panfilov
    2017-04-24 LogRhythm Network Monitor – Authentication Bypass / Command Injection
  • webapps
    		•  Francesco Oddo
    2017-04-24 Joomla! Component Myportfolio 3.0.2 – ‘pid’ SQL Injection
  • webapps
    		•  Persian Hack Team
    2017-04-20 Apple WebKit / Safari 10.0.2(12602.3.12.0.1) – ‘PrototypeMap::createEmptyStructure’ Universal Cross-Site Scripting
  • webapps
    		•  Google Security Research
    2017-04-20 Apple WebKit / Safari 10.0.2(12602.3.12.0.1) – ‘operationSpreadGeneric’ Universal Cross-Site Scripting
  • webapps
    		•  Google Security Research
    2017-04-16 Mantis Bug Tracker 1.3.0/2.3.0 – Password Reset
  • webapps
    		•  hyp3rlinx