webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2016-12-26 PHPMailer < 5.2.19 - Sendmail Argument Injection (Metasploit)
  • webapps
    		•  Metasploit
    2016-12-26 PHPMailer < 5.2.18 - Remote Code Execution
  • webapps
    		•  Dawid Golunski
    2016-12-26 Joomla! Component Blog Calendar – SQL Injection
  • webapps
    		•  X-Cisadane
    2016-12-25 Sonicwall 8.1.0.2-14sv – ‘extensionsettings.cgi’ Remote Command Injection (Metasploit)
  • webapps
    		•  xort
    2016-12-25 PHPMailer < 5.2.18 - Remote Code Execution
  • webapps
    		•  Dawid Golunski
    2016-12-24 Sonicwall 8.1.0.2-14sv – ‘viewcert.cgi’ Remote Command Injection (Metasploit)
  • webapps
    		•  xort
    2016-12-23 Freepbx < 2.11.1.5 - Remote Code Execution
  • webapps
    		•  inj3ctor3
    2016-12-23 Apache mod_session_crypto – Padding Oracle
  • webapps
    		•  RedTeam Pentesting GmbH
    2016-12-19 WordPress Plugin 404 Redirection Manager 1.0 – SQL Injection
  • webapps
    		•  Ahmed Sherif
    2016-12-16 WordPress Plugin WP Support Plus Responsive Ticket System 7.1.3 – SQL Injection
  • webapps
    		•  Lenon Leite
    2016-12-16 WordPress Plugin Quiz And Survey Master 4.5.4/4.7.8 – Cross-Site Request Forgery
  • webapps
    		•  dxw
    2016-12-16 WHMCompleteSolution (WHMCS) Addon VMPanel 2.7.4 – SQL Injection
  • webapps
    		•  ZwX
    2016-12-16 WordPress Plugin WP Private Messages 1.0.1 – SQL Injection (1)
  • webapps
    		•  Lenon Leite
    2016-12-13 Joomla! Component DT Register – ‘cat’ SQL Injection
  • webapps
    		•  Elar Lang
    2016-12-12 Sophos Web Appliance 4.2.1.3 – DiagnosticTools Remote Command Injection (Metasploit)
  • webapps
    		•  xort
    2016-12-12 Sophos Web Appliance 4.2.1.3 – block/unblock Remote Command Injection (Metasploit)
  • webapps
    		•  xort
    2016-12-12 WordPress Plugin Multisite Post Duplicator 0.9.5.1 – Cross-Site Request Forgery
  • webapps
    		•  dxw
    2016-12-11 ARG-W4 ADSL Router – Multiple Vulnerabilities
  • webapps
    		•  Persian Hack Team
    2016-12-11 Netgear R7000 – Cross-Site Scripting
  • webapps
    		•  Vincent Yiu
    2016-12-09 D-Link DI-524 – Cross-Site Request Forgery
  • webapps
    		•  Felipe Soares de Souza
    2016-12-09 Splunk Enterprise 6.4.3 – Server-Side Request Forgery
  • webapps
    		•  Security-Assessment.com
    2016-12-09 Roundcube 1.2.2 – Remote Code Execution
  • webapps
    		•  Robin Peraglie
    2016-12-07 Netgear R7000 – Command Injection
  • webapps
    		•  Acew0rm
    2016-12-07 Cisco Unified Communications Manager 7/8/9 – Directory Traversal
  • webapps
    		•  justpentest