webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2021-07-21 KevinLAB BEMS 1.0 – Authentication Bypass
  • webapps
    		•  LiquidWorm
    2021-07-20 Webmin 1.973 – ‘run.cgi’ Cross-Site Request Forgery (CSRF)
  • webapps
    		•  Mesh3l_911
    2021-07-20 WordPress Plugin KN Fix Your Title 1.0.1 – ‘Separator’ Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Aakash Choudhary
    2021-07-19 PEEL Shopping 9.3.0 – ‘id’ Time-based SQL Injection
  • webapps
    		•  faisalfs10x
    2021-07-19 WordPress Plugin Mimetic Books 0.2.13 – ‘Default Publisher ID field’ Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Vikas Srivastava
    2021-07-19 WordPress Plugin LearnPress 3.2.6.8 – Privilege Escalation
  • webapps
    		•  nhattruong
    2021-07-19 WordPress Plugin LearnPress 3.2.6.7 – ‘current_items’ SQL Injection (Authenticated)
  • webapps
    		•  nhattruong
    2021-07-16 Seagate BlackArmor NAS sg2000-2000.1331 – Command Injection
  • webapps
    		•  Metin Yunus Kandemir
    2021-07-16 ForgeRock Access Manager 14.6.3 – Remote Code Execution (RCE) (Unauthenticated)
  • webapps
    		•  Photubias
    2021-07-15 WordPress Plugin Popular Posts 5.3.2 – Remote Code Execution (RCE) (Authenticated)
  • webapps
    		•  Simone Cristofaro
    2021-07-15 osCommerce 2.3.4.1 – Remote Code Execution (2)
  • webapps
    		•  Bryan Leong
    2021-07-14 WordPress Plugin Current Book 1.0.1 – ‘Book Title’ Persistent Cross-Site Scripting
  • webapps
    		•  Vikas Srivastava
    2021-07-14 Webmin 1.973 – ‘save_user.cgi’ Cross-Site Request Forgery (CSRF)
  • webapps
    		•  Mesh3l_911
    2021-07-13 Invoice System 1.0 – ‘Multiple’ Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Subhadip Nag
    2021-07-13 WordPress Plugin WPFront Notification Bar 1.9.1.04012 – Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Swapnil Subhash Bodekar
    2021-07-13 Apache Tomcat 9.0.0.M1 – Cross-Site Scripting (XSS)
  • webapps
    		•  Central InfoSec
    2021-07-13 Apache Tomcat 9.0.0.M1 – Open Redirect
  • webapps
    		•  Central InfoSec
    2021-07-13 Garbage Collection Management System 1.0 – SQL Injection + Arbitrary File Upload
  • webapps
    		•  Luca Bernardi
    2021-07-13 OpenEMR 5.0.1.3 – ‘manage_site_files’ Remote Code Execution (Authenticated) (2)
  • webapps
    		•  Alexandre ZANNI
    2021-07-09 Zoo Management System 1.0 – ‘Multiple’ Persistent Cross-Site-Scripting (XSS)
  • webapps
    		•  Subhadip Nag
    2021-07-09 Church Management System 1.0 – SQL Injection (Authentication Bypass) + Arbitrary File Upload + RCE
  • webapps
    		•  Eleonora Guardini
    2021-07-08 WordPress Plugin SP Project & Document Manager 4.21 – Remote Code Execution (RCE) (Authenticated)
  • webapps
    		•  Ron Jost
    2021-07-08 Online Covid Vaccination Scheduler System 1.0 – Arbitrary File Upload to Remote Code Execution (Unauthenticated)
  • webapps
    		•  faisalfs10x
    2021-07-08 Wyomind Help Desk 1.3.6 – Remote Code Execution (RCE)
  • webapps
    		•  Patrik Lantz