webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2014-08-28 WordPress Plugin ShortCode 0.2.3 – Local File Inclusion
  • webapps
    		•  Mehdi Karout & Christian Galeone
    2014-08-27 WordPress Plugin WooCommerce Store Exporter 1.7.5 – Multiple Cross-Site Scripting Vulnerabilities
  • webapps
    		•  Mike Manzotti
    2014-08-26 Joomla! Component spidervideoplayer – ‘theme’ SQL Injection
  • webapps
    		•  Claudio Viviani
    2014-08-26 VTLS Virtua InfoStation.cgi – SQL Injection
  • webapps
    		•  José Tozo
    2014-08-26 ntopng 1.2.0 – Cross-Site Scripting Injection
  • webapps
    		•  Steffen Bauch
    2014-08-25 Innovaphone PBX Admin-GUI – Cross-Site Request Forgery
  • webapps
    		•  Rainer Giedat
    2014-08-25 PHP Stock Management System 1.02 – Multiple Persistent Cross-Site Scripting Vulnerabilities
  • webapps
    		•  Ragha Deepthi K R
    2014-08-25 ManageEngine Password Manager – MetadataServlet.dat SQL Injection (Metasploit)
  • webapps
    		•  Pedro Ribeiro
    2014-08-24 WordPress Plugin KenBurner Slider – ‘admin-ajax.php’ Arbitrary File Download
  • webapps
    		•  MF0x
    2014-08-23 LiveWorld Multiple Products – Cross Site Scripting
  • webapps
    		•  GulfTech Security
    2014-08-22 MyAwards MyBB Module – Cross-Site Request Forgery
  • webapps
    		•  Vagineer
    2014-08-21 MyBB 1.8 Beta 3 – Multiple Vulnerabilities
  • webapps
    		•  DemoLisH B3yaZ
    2014-08-20 ArticleFR – ‘id’ SQL Injection
  • webapps
    		•  High-Tech Bridge
    2014-08-20 ManageEngine Password Manager Pro / ManageEngine IT360 – SQL Injection
  • webapps
    		•  Pedro Ribeiro
    2014-08-19 WordPress Plugin WP Content Source Control – ‘download.php’ Directory Traversal
  • webapps
    		•  Henri Salo
    2014-08-18 Tenda A5s Router 3.02.05_CN – Authentication Bypass
  • webapps
    		•  zixian
    2014-08-14 WordPress Plugin Disqus 2.7.5 – Cross-Site Request Forgery (Admin Persistent) / Cross-Site Scripting
  • webapps
    		•  Nik Cubrilovic
    2014-08-11 WordPress Plugin GB Gallery Slideshow – ‘/wp-admin/admin-ajax.php’ SQL Injection
  • webapps
    		•  Claudio Viviani
    2014-08-09 TomatoCart 1.x – SQL Injection
  • webapps
    		•  Breaking.Technology
    2014-08-09 Easy FTP Pro 4.2 iOS – Command Injection
  • webapps
    		•  Vulnerability-Lab
    2014-08-09 PhotoSync Wifi & Bluetooth 1.0 – Local File Inclusion
  • webapps
    		•  Vulnerability-Lab
    2014-08-08 VoipSwitch – ‘user.php’ Local File Inclusion
  • webapps
    		•  0x4148
    2014-08-06 HybridAuth 2.2.2 – Remote Code Execution
  • webapps
    		•  @u0x
    2014-08-06 WordPress Plugin wpSS – ‘ss_handler.php’ SQL Injection
  • webapps
    		•  Ashiyane Digital Security Team