webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2023-03-28 Moodle LMS 4.0 – Cross-Site Scripting (XSS)
  • webapps
    		•  Saud Alenazi
    2023-03-27 WPN-XM Serverstack for Windows 0.8.6 – Multiple Vulnerabilities
  • webapps
    		•  Rafael Pedrero
    2023-03-27 Webgrind 1.1 – Reflected Cross-Site Scripting (XSS) & Remote Command Execution (RCE)
  • webapps
    		•  Rafael Pedrero
    2023-03-27 Grafana <=6.2.4 - HTML Injection
  • webapps
    		•  SimranJeet Singh
    2023-03-27 Zoneminder < v1.37.24 - Log Injection & Stored XSS & CSRF Bypass
  • webapps
    		•  Trenches of IT
    2023-03-27 Clansphere CMS 2011.4 – Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Sinem Şahin
    2023-03-27 Zentao Project Management System 17.0 – Authenticated Remote Code Execution (RCE)
  • webapps
    		•  mister0xf
    2023-03-27 FlatCore CMS 2.1.1 – Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Sinem Şahin
    2023-03-27 eXtplorer<= 2.1.14 - Authentication Bypass & Remote Code Execution (RCE)
  • webapps
    		•  ErPaciocco
    2023-03-27 FortiOS, FortiProxy, FortiSwitchManager v7.2.1 – Authentication Bypass
  • webapps
    		•  Felipe Alcantara
    2023-03-27 Canteen-Management v1.0 – SQL Injection
  • webapps
    		•  nu11secur1ty
    2023-03-27 WebTareas 2.4 – RCE (Authorized)
  • webapps
    		•  Hubert Wojciechowski
    2023-03-27 Canteen-Management v1.0 – XSS-Reflected
  • webapps
    		•  nu11secur1ty
    2023-03-27 WebTareas 2.4 – Reflected XSS (Unauthorised)
  • webapps
    		•  Hubert Wojciechowski
    2023-03-27 WebTareas 2.4 – SQL Injection (Unauthorised)
  • webapps
    		•  Hubert Wojciechowski
    2023-03-27 Atom CMS v2.0 – SQL Injection (no auth)
  • webapps
    		•  Hubert Wojciechowski
    2023-03-27 Aero CMS v0.0.1 – PHP Code Injection (auth)
  • webapps
    		•  Hubert Wojciechowski
    2023-03-27 Aero CMS v0.0.1 – SQL Injection (no auth)
  • webapps
    		•  Hubert Wojciechowski
    2023-03-27 Desktop Central 9.1.0 – Multiple Vulnerabilities
  • webapps
    		•  Rafael Pedrero
    2023-03-25 Lavalite v9.0.0 – XSRF-TOKEN cookie File path traversal
  • webapps
    		•  nu11secur1ty
    2023-03-25 Employee Performance Evaluation System v1.0 – File Inclusion and RCE
  • webapps
    		•  nu11secur1ty
    2023-03-25 Yoga Class Registration System v1.0 – Multiple SQLi
  • webapps
    		•  Abdulhakim Öner
    2023-03-25 Human Resources Management System v1.0 – Multiple SQLi
  • webapps
    		•  Abdulhakim Öner
    2023-03-25 Online Diagnostic Lab Management System v1.0 – Remote Code Execution (RCE) (Unauthenticated)
  • webapps
    		•  yousef alraddadi