webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2021-08-04 qdPM 9.1 – Remote Code Execution (Authenticated)
  • webapps
    		•  Leon Trappett
    2021-08-04 WordPress Plugin WP Customize Login 1.1 – ‘Change Logo Title’ Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Aryan Chehreghani
    2021-08-03 Hotel Management System 1.0 – Cross-Site Scripting (XSS) Arbitrary File Upload Remote Code Execution (RCE)
  • webapps
    		•  Merbin Russel
    2021-08-02 Men Salon Management System 1.0 – SQL Injection Authentication Bypass
  • webapps
    		•  Akshay Khanna
    2021-08-02 Panasonic Sanyo CCTV Network Camera 2.03-0x – Cross-Site Request Forgery (Change Password)
  • webapps
    		•  LiquidWorm
    2021-08-02 Online Hotel Reservation System 1.0 – ‘Multiple’ Cross-site scripting (XSS)
  • webapps
    		•  Mohammad Koochaki
    2021-07-29 Oracle Fatwire 6.3 – Multiple Vulnerabilities
  • webapps
    		•  J. Francisco Bolivar
    2021-07-29 CloverDX 5.9.0 – Cross-Site Request Forgery (CSRF)
  • webapps
    		•  niebardzo
    2021-07-29 Care2x Integrated Hospital Info System 2.7 – ‘Multiple’ SQL Injection
  • webapps
    		•  securityforeveryone.com
    2021-07-29 IntelliChoice eFORCE Software Suite 2.5.9 – Username Enumeration
  • webapps
    		•  LiquidWorm
    2021-07-29 Longjing Technology BEMS API 1.21 – Remote Arbitrary File Download
  • webapps
    		•  LiquidWorm
    2021-07-29 Denver IP Camera SHO-110 – Unauthenticated Snapshot
  • webapps
    		•  Ivan Nikolsky
    2021-07-28 TripSpark VEO Transportation – Blind SQL Injection
  • webapps
    		•  Sedric Louissaint
    2021-07-28 Event Registration System with QR Code 1.0 – Authentication Bypass
  • webapps
    		•  Javier Olmedo
    2021-07-27 Customer Relationship Management System (CRM) 1.0 – Sql Injection Authentication Bypass
  • webapps
    		•  Shafique_Wasta
    2021-07-27 PHP 7.3.15-3 – ‘PHP_SESSION_UPLOAD_PROGRESS’ Session Data Injection
  • webapps
    		•  S1lv3r
    2021-07-26 XOS Shop 1.0.9 – ‘Multiple’ Arbitrary File Deletion (Authenticated)
  • webapps
    		•  faisalfs10x
    2021-07-26 NoteBurner 2.35 – Denial Of Service (DoS) (PoC)
  • webapps
    		•  stresser
    2021-07-26 Elasticsearch ECE 7.13.3 – Anonymous Database Dump
  • webapps
    		•  Joan Martinez
    2021-07-23 ElasticSearch 7.13.3 – Memory disclosure
  • webapps
    		•  r0ny
    2021-07-23 Microsoft SharePoint Server 2019 – Remote Code Execution (2)
  • webapps
    		•  Podalirius
    2021-07-23 WordPress Plugin Simple Post 1.1 – ‘Text field’ Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Vikas Srivastava
    2021-07-21 CSZ CMS 1.2.9 – ‘Multiple’ Arbitrary File Deletion
  • webapps
    		•  faisalfs10x
    2021-07-21 KevinLAB BEMS 1.0 – File Path Traversal Information Disclosure (Authenticated)
  • webapps
    		•  LiquidWorm