webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2014-10-12 vBulletin 4.x/5.x – AdminCP/ApiLog via xmlrpc API (Authenticated) Persistent Cross-Site Scripting
  • webapps
    		•  tintinweb
    2014-10-12 CMS Made Simple 1.11.9 – Multiple Vulnerabilities
  • webapps
    		•  Pedro Ribeiro
    2014-10-12 GetSimple CMS 3.3.1 – Cross-Site Scripting
  • webapps
    		•  Pedro Ribeiro
    2014-10-09 Nessus Web UI 2.3.3 – Persistent Cross-Site Scripting
  • webapps
    		•  Frank Lycops
    2014-10-09 DrayTek VigorACS SI 1.3.0 – Multiple Vulnerabilities
  • webapps
    		•  Digital Misfits
    2014-10-09 BMC Track-It! – Multiple Vulnerabilities
  • webapps
    		•  Pedro Ribeiro
    2014-10-08 WordPress Plugin Creative Contact Form 0.9.7 – Arbitrary File Upload
  • webapps
    		•  Gianni Angelozzi
    2014-10-07 HttpCombiner ASP.NET – Remote File Disclosure
  • webapps
    		•  Le Ngoc Son
    2014-10-06 Ultra Electronics 7.2.0.19/7.4.0.7 – Multiple Vulnerabilities
  • webapps
    		•  OSI Security
    2014-10-06 Bash CGI – ‘Shellshock’ Remote Command Injection (Metasploit)
  • webapps
    		•  Fady Mohammed Osman
    2014-10-02 Epicor Enterprise 7.4 – Multiple Vulnerabilities
  • webapps
    		•  Fara Rustein
    2014-10-02 TestLink 1.9.11 – Multiple SQL Injections
  • webapps
    		•  Portcullis
    2014-10-02 PHPCompta/NOALYSS 6.7.1 5638 – Remote Command Execution
  • webapps
    		•  Portcullis
    2014-10-02 RBS Change Complet Open Source 3.6.8 – Cross-Site Request Forgery
  • webapps
    		•  Krusty Hack
    2014-10-02 WordPress Plugin All In One WP Security & Firewall 3.8.3 – Persistent Cross-Site Scripting
  • webapps
    		•  Vulnerability-Lab
    2014-10-02 Rejetto HTTP File Server (HFS) 2.3a/2.3b/2.3c – Remote Command Execution
  • webapps
    		•  Daniele Linguaglossa
    2014-10-02 Bacula-Web 5.2.10 – ‘joblogs.php?jobid’ SQL Injection
  • webapps
    		•  wishnusakti
    2014-10-02 Moab < 7.2.9 - Authentication Bypass
  • webapps
    		•  MWR InfoSecurity
    2014-10-01 IPFire – CGI Web Interface (Authenticated) Bash Environment Variable Code Injection
  • webapps
    		•  Claudio Viviani
    2014-09-29 OpenFiler 2.99.1 – Cross-Site Request Forgery
  • webapps
    		•  Dolev Farhi
    2014-09-29 Microsoft Exchange – IIS HTTP Internal IP Address Disclosure (Metasploit)
  • webapps
    		•  Nate Power
    2014-09-29 GS Foto Uebertraeger 3.0 iOS – Local File Inclusion
  • webapps
    		•  Vulnerability-Lab
    2014-09-27 Typo3 Extension JobControl 2.14.0 – Cross-Site Scripting / SQL Injection
  • webapps
    		•  Adler Freiheit
    2014-09-25 WordPress Plugin All In One WP Security 3.8.2 – SQL Injection
  • webapps
    		•  High-Tech Bridge SA