webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2021-07-05 Simple Client Management System 1.0 – Remote Code Execution (RCE)
  • webapps
    		•  Ishan Saha
    2021-07-05 WordPress Plugin Backup Guard 1.5.8 – Remote Code Execution (Authenticated)
  • webapps
    		•  Ron Jost
    2021-07-05 Church Management System 1.0 – ‘password’ SQL Injection (Authentication Bypass)
  • webapps
    		•  Murat DEMİRCİ
    2021-07-02 Garbage Collection Management System 1.0 – SQL Injection (Unauthenticated)
  • webapps
    		•  ircashem
    2021-07-02 WordPress Plugin Modern Events Calendar 5.16.2 – Event export (Unauthenticated)
  • webapps
    		•  Ron Jost
    2021-07-02 WordPress Plugin Modern Events Calendar 5.16.2 – Remote Code Execution (Authenticated)
  • webapps
    		•  Ron Jost
    2021-07-02 b2evolution 7.2.2 – ‘edit account details’ Cross-Site Request Forgery (CSRF)
  • webapps
    		•  Alperen Ergel
    2021-07-02 AKCP sensorProbe SPX476 – ‘Multiple’ Cross-Site Scripting (XSS)
  • webapps
    		•  Tyler Butler
    2021-07-02 Scratch Desktop 3.17 – Remote Code Execution
  • webapps
    		•  Stig Magnus Baugstø
    2021-07-01 Vianeos OctoPUS 5 – ‘login_user’ SQLi
  • webapps
    		•  Audencia Business SCHOOL Red Team
    2021-07-01 WordPress Plugin XCloner 4.2.12 – Remote Code Execution (Authenticated)
  • webapps
    		•  Ron Jost
    2021-07-01 Online Voting System 1.0 – Remote Code Execution (Authenticated)
  • webapps
    		•  Salman Asad
    2021-07-01 Online Voting System 1.0 – Authentication Bypass (SQLi)
  • webapps
    		•  Salman Asad
    2021-06-30 phpAbook 0.9i – SQL Injection
  • webapps
    		•  Alejandro Perez
    2021-06-30 Doctors Patients Management System 1.0 – SQL Injection (Authentication Bypass)
  • webapps
    		•  Murat DEMİRCİ
    2021-06-30 Simple Traffic Offense System 1.0 – Stored Cross Site Scripting (XSS)
  • webapps
    		•  Barış Yıldızoğlu
    2021-06-30 Apache Superset 1.1.0 – Time-Based Account Enumeration
  • webapps
    		•  Dolev Farhi
    2021-06-28 Netgear WNAP320 2.0.3 – ‘macAddress’ Remote Code Execution (RCE) (Unauthenticated)
  • webapps
    		•  Bryan Leong
    2021-06-28 Atlassian Jira Server Data Center 8.16.0 – Reflected Cross-Site Scripting (XSS)
  • webapps
    		•  Captain_hook
    2021-06-28 WordPress Plugin YOP Polls 6.2.7 – Stored Cross Site Scripting (XSS)
  • webapps
    		•  Toby Jackson
    2021-06-25 Lightweight facebook-styled blog 1.3 – Remote Code Execution (RCE) (Authenticated) (Metasploit)
  • webapps
    		•  Maide Ilkay Aydogdu
    2021-06-25 Simple Client Management System 1.0 – ‘uemail’ SQL Injection (Unauthenticated)
  • webapps
    		•  Barış Yıldızoğlu
    2021-06-25 Seeddms 5.1.10 – Remote Command Execution (RCE) (Authenticated)
  • webapps
    		•  Bryan Leong
    2021-06-24 TP-Link TL-WR841N – Command Injection
  • webapps
    		•  Koh You Liang