Types webapps - 体验盒子 - 不再关注网络安全

日期	标题	类别	作者
2014-07-17	OL-Commerce – ‘/OL-Commerce/create_account.php?country’ SQL Injection	webapps	AtT4CKxT3rR0r1ST
2014-07-17	OL-Commerce – ‘/OL-Commerce/affiliate_show_banner.php?affiliate_banner_id’ SQL Injection	webapps	AtT4CKxT3rR0r1ST
2014-07-17	OL-Commerce – ‘/OL-Commerce/affiliate_signup.php?a_country’ SQL Injection	webapps	AtT4CKxT3rR0r1ST
2014-07-17	Omeka 2.2 – Cross-Site Request Forgery / Persistent Cross-Site Scripting	webapps	LiquidWorm
2014-07-16	Bilboplanet 2.0 – Multiple Cross-Site Scripting Vulnerabilities	webapps	Vivek N
2014-07-16	Joomla! Component Youtube Gallery 4.1.7 – SQL Injection	webapps	Pham Van Khanh
2014-07-16	BitDefender GravityZone 5.1.5.386 – Multiple Vulnerabilities	webapps	SEC Consult
2014-07-14	WordPress Plugin CopySafe PDF Protection – Arbitrary File Upload	webapps	Jagriti Sahu
2014-07-14	Shopizer 1.1.5 – Multiple Vulnerabilities	webapps	SEC Consult
2014-07-14	WEBMIS CMS – Arbitrary File Upload	webapps	Jagriti Sahu
2014-07-13	WordPress Plugin DZS-VideoGallery – Cross-Site Scripting / Command Injection	webapps	MustLive
2014-07-12	Aerohive HiveOS 5.1r5 < 6.1r5 - Multiple Vulnerabilities	webapps	DearBytes
2014-07-10	WeBid – Multiple Cross-Site Scripting / LDAP Injection Vulnerabilities	webapps	Govind Singh
2014-07-10	Infoblox 6.8.2.11 – OS Command Injection	webapps	Nate Kettlewell
2014-07-10	C99Shell (Web Shell) – ‘c99.php’ Authentication Bypass	webapps	Mandat0ry
2014-07-09	WordPress Plugin BSK PDF Manager – ‘/wp-admin/admin.php’ Multiple SQL Injections	webapps	Claudio Viviani
2014-07-08	Dolibarr ERP/CRM 3.5.3 – Multiple Vulnerabilities	webapps	Deepak Rathore
2014-07-07	xClassified – ‘ads.php’ SQL Injection	webapps	Lazmania61
2014-07-07	AtomCMS – SQL Injection / Arbitrary File Upload	webapps	Jagriti Sahu
2014-07-07	Photo Org WonderApplications 8.3 iOS – Local File Inclusion	webapps	Vulnerability-Lab
2014-07-07	Netgear WNR1000v3 – Password Recovery Credential Disclosure (Metasploit)	webapps	c1ph04
2014-07-06	Frog CMS 0.9.5 – Arbitrary File Upload	webapps	Javid Hussain
2014-07-02	Kerio Control 8.3.1 – Blind SQL Injection	webapps	Khashayar Fereidani
2014-07-02	Zurmo CRM – Persistent Cross-Site Scripting	webapps	Provensec