webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2021-09-06 Bus Pass Management System 1.0 – ‘viewid’ Insecure direct object references (IDOR)
  • webapps
    		•  sudoninja
    2021-09-06 FlatCore CMS 2.0.7 – Remote Code Execution (RCE) (Authenticated)
  • webapps
    		•  Mason Soroka-Gill
    2021-09-06 OpenEMR 6.0.0 – ‘noteid’ Insecure Direct Object Reference (IDOR)
  • webapps
    		•  Allen Enosh Upputori
    2021-09-03 OpenSIS 8.0 ‘modname’ – Directory Traversal
  • webapps
    		•  Eric Salario
    2021-09-02 Compro Technology IP Camera – ‘killps.cgi’ Denial of Service (DoS)
  • webapps
    		•  icekam
    2021-09-02 OpenSIS Community 8.0 – ‘cp_id_miss_attn’ SQL Injection
  • webapps
    		•  Eric Salario
    2021-09-02 Dolibarr ERP 14.0.1 – Privilege Escalation
  • webapps
    		•  Vishwaraj Bhattrai
    2021-09-02 WordPress Plugin Duplicate Page 4.4.1 – Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Nikhil Kapoor
    2021-09-02 WPanel 4.3.1 – Remote Code Execution (RCE) (Authenticated)
  • webapps
    		•  Sentinal920
    2021-09-02 Compro Technology IP Camera – ‘ mjpegStreamer.cgi’ Screenshot Disclosure
  • webapps
    		•  icekam
    2021-09-02 Compro Technology IP Camera – ‘ index_MJpeg.cgi’ Stream Disclosure
  • webapps
    		•  icekam
    2021-09-02 Compro Technology IP Camera – ‘Multiple’ Credential Disclosure
  • webapps
    		•  icekam
    2021-09-02 Compro Technology IP Camera – RTSP stream disclosure (Unauthenticated)
  • webapps
    		•  icekam
    2021-09-01 WordPress Plugin Payments Plugin | GetPaid 2.4.6 – HTML Injection
  • webapps
    		•  Niraj Mahajan
    2021-09-01 Traffic Offense Management System 1.0 – Remote Code Execution (RCE) (Unauthenticated)
  • webapps
    		•  Tagoletta
    2021-09-01 Confluence Server 7.12.4 – ‘OGNL injection’ Remote Code Execution (RCE) (Unauthenticated)
  • webapps
    		•  Fellipe Oliveira
    2021-08-31 WordPress Plugin ProfilePress 3.1.3 – Privilege Escalation (Unauthenticated)
  • webapps
    		•  Numan Rajkotiya
    2021-08-31 Umbraco CMS 8.9.1 – Directory Traversal
  • webapps
    		•  BitTheByte
    2021-08-30 Strapi 3.0.0-beta.17.7 – Remote Code Execution (RCE) (Authenticated)
  • webapps
    		•  David Utón
    2021-08-30 Strapi 3.0.0-beta – Set Password (Unauthenticated)
  • webapps
    		•  David Anglada
    2021-08-30 Bus Pass Management System 1.0 – ‘viewid’ SQL Injection
  • webapps
    		•  Aryan Chehreghani
    2021-08-30 Usermin 1.820 – Remote Code Execution (RCE) (Authenticated)
  • webapps
    		•  numan türle
    2021-08-30 ZesleCP 3.1.9 – Remote Code Execution (RCE) (Authenticated)
  • webapps
    		•  numan türle
    2021-08-30 Projectsend r1295 – ‘name’ Stored XSS
  • webapps
    		•  Abdullah Kala