webapps

日期	标题	类别	作者
2013-01-16	Cydia Repo Manager – Cross-Site Request Forgery	webapps	Ramdan Yantu
2013-01-16	Oracle Application Framework – Diagnostic Mode Bypass	webapps	Trustwave's SpiderLabs
2013-01-15	phpLiteAdmin – ‘table’ SQL Injection	webapps	KedAns-Dz
2013-01-15	CMS snews – SQL Injection	webapps	By onestree
2013-01-14	phpShop 2.0 – SQL Injection	webapps	By onestree
2013-01-13	phlyLabs phlyMail Lite 4.03.04 – Full Path Disclosure / Persistent Cross-Site Scripting	webapps	LiquidWorm
2013-01-13	phlyLabs phlyMail Lite 4.03.04 – ‘go’ Open Redirect	webapps	LiquidWorm
2013-01-11	PHPLiteAdmin 1.9.3 – Remote PHP Code Injection	webapps	L@usch
2013-01-10	WordPress Plugin Gallery – ‘filename_1’ Arbitrary File Access	webapps	Beni_Vanda
2013-01-09	Quick.CMS / Quick.Cart – Cross-Site Scripting	webapps	High-Tech Bridge
2013-01-09	Prizm Content Connect – Arbitrary File Upload	webapps	Include Security Research
2013-01-09	TinyBrowser – ‘edit.php’ Directory Listing	webapps	MustLive
2013-01-09	TinyBrowser – ‘tinybrowser.php’ Directory Listing	webapps	MustLive
2013-01-09	tinybrowser – ‘type’ Cross-Site Scripting	webapps	MustLive
2013-01-09	WeBid 1.0.6 – SQL Injection	webapps	Life Wasted
2013-01-09	Watson Management Console 4.11.2.G – Directory Traversal	webapps	Dhruv Shah
2013-01-09	Free Blog 1.0 – Multiple Vulnerabilities	webapps	cr4wl3r
2013-01-09	WebsiteBaker Addon Concert Calendar 2.1.4 – Multiple Vulnerabilities	webapps	Stefan Schurtz
2013-01-08	Advantech Webaccess HMI/SCADA Software – Persistence Cross-Site Scripting	webapps	SecPod Research
2013-01-08	E Sms Script – Multiple SQL Injections	webapps	cr4wl3r
2013-01-08	WordPress Plugin NextGEN Gallery – ‘test-head’ Cross-Site Scripting	webapps	Am!r
2013-01-08	Joomla! Component com_incapsula – Multiple Cross-Site Scripting Vulnerabilities	webapps	Gjoko Krstic
2013-01-08	MotoCMS – ‘admin/data/users.xml’ Access Restriction / Information Disclosure	webapps	AkaStep
2013-01-08	WordPress Plugin Google Document Embedder – Arbitrary File Disclosure (Metasploit)	webapps	Metasploit