webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2012-02-29 Dotclear 2.4.1.2 – ‘/admin/plugin.php?page’ Cross-Site Scripting
  • webapps
    		•  High-Tech Bridge SA
    2012-02-29 Dotclear 2.4.1.2 – ‘/admin/comments.php’ Multiple Cross-Site Scripting Vulnerabilities
  • webapps
    		•  High-Tech Bridge SA
    2012-02-29 Dotclear 2.4.1.2 – ‘/admin/blogs.php?nb’ Cross-Site Scripting
  • webapps
    		•  High-Tech Bridge SA
    2012-02-29 Dotclear 2.4.1.2 – ‘/admin/auth.php?login_data’ Cross-Site Scripting
  • webapps
    		•  High-Tech Bridge SA
    2012-02-29 Wolf CMS 0.7.5 – Multiple Vulnerabilities
  • webapps
    		•  longrifle0x
    2012-02-28 Fork CMS 3.x – ‘/backend/modules/error/actions/index.php?parse()’ Multiple Error Display Cross-Site Scripting Vulnerabilities
  • webapps
    		•  anonymous
    2012-02-28 Fork CMS 3.x – ‘/private/en/locale/index?name’ Cross-Site Scripting
  • webapps
    		•  anonymous
    2012-02-28 WebfolioCMS 1.1.4 – Cross-Site Request Forgery (Add Admin/Modify Pages)
  • webapps
    		•  Ivano Binetti
    2012-02-27 OSQA’s CMS – Multiple HTML Injection Vulnerabilities
  • webapps
    		•  Ucha Gobejishvili
    2012-02-27 Bontq – ‘user/’ URI Cross-Site Scripting
  • webapps
    		•  sonyy
    2012-02-26 Webglimpse 2.x – Multiple Cross-Site Scripting Vulnerabilities
  • webapps
    		•  MustLive
    2012-02-26 MyJobList 0.1.3 – ‘eid’ SQL Injection
  • webapps
    		•  Red Security TEAM
    2012-02-26 ContaoCMS (aka TYPOlight) 2.11 – Cross-Site Request Forgery (Delete Admin / Delete Article)
  • webapps
    		•  Ivano Binetti
    2012-02-25 webgrind 1.0 – ‘file’ Local File Inclusion
  • webapps
    		•  LiquidWorm
    2012-02-25 cPassMan 1.82 – Remote Command Execution
  • webapps
    		•  ls
    2012-02-25 YVS Image Gallery – SQL Injection
  • webapps
    		•  CorryL
    2012-02-24 PHP Gift Registry 1.5.5 – SQL Injection
  • webapps
    		•  G13
    2012-02-23 Mobile Mp3 Search Script 2.0 – ‘dl.php’ HTTP Response Splitting
  • webapps
    		•  Corrado Liotta
    2012-02-23 The Uploader 2.0.4 (English/Italian) – Arbitrary File Upload / Remote Code Execution (Metasploit)
  • webapps
    		•  Danny Moules
    2012-02-23 Snom IP Phone – Privilege Escalation
  • webapps
    		•  Sense of Security
    2012-02-23 phpDenora 1.4.6 – Multiple SQL Injections
  • webapps
    		•  Patrick de Brouwer
    2012-02-22 Chyrp 2.1.1 – ‘ajax.php’ HTML Injection
  • webapps
    		•  High-Tech Bridge SA
    2012-02-22 Dolibarr ERP/CRM 3.2 Alpha – Multiple Directory Traversal Vulnerabilities
  • webapps
    		•  Benjamin Kunz Mejri
    2012-02-22 ContentLion Alpha 1.3 – ‘login.php’ Cross-Site Scripting
  • webapps
    		•  Stefan Schurtz