webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2021-06-16 Cotonti Siena 0.9.19 – ‘maintitle’ Stored Cross-Site Scripting
  • webapps
    		•  Fatih İLGİN
    2021-06-15 Client Management System 1.1 – ‘Search’ SQL Injection
  • webapps
    		•  BHAVESH KAUL
    2021-06-15 Client Management System 1.1 – ‘username’ Stored Cross-Site Scripting (XSS)
  • webapps
    		•  BHAVESH KAUL
    2021-06-14 TextPattern CMS 4.8.7 – Remote Command Execution (Authenticated)
  • webapps
    		•  Mert Daş
    2021-06-14 Small CRM 3.0 – ‘Authentication Bypass’ SQL Injection
  • webapps
    		•  BHAVESH KAUL
    2021-06-14 Stock Management System 1.0 – ‘user_id’ Blind SQL injection (Authenticated)
  • webapps
    		•  Riadh Benlamine
    2021-06-14 COVID19 Testing Management System 1.0 – ‘State’ Stored Cross-Site-Scripting (XSS)
  • webapps
    		•  BHAVESH KAUL
    2021-06-14 GLPI 9.4.5 – Remote Code Execution (RCE)
  • webapps
    		•  Brian Peters
    2021-06-14 Accela Civic Platform 21.1 – ‘contactSeqNumber’ Insecure Direct Object References (IDOR)
  • webapps
    		•  Abdulazeez Alaseeri
    2021-06-14 Accela Civic Platform 21.1 – ‘successURL’ Cross-Site-Scripting (XSS)
  • webapps
    		•  Abdulazeez Alaseeri
    2021-06-14 OpenEMR 5.0.1.3 – ‘manage_site_files’ Remote Code Execution (Authenticated)
  • webapps
    		•  Ron Jost
    2021-06-11 WoWonder Social Network Platform 3.1 – Authentication Bypass
  • webapps
    		•  securityforeveryone.com
    2021-06-11 Zenario CMS 8.8.52729 – ‘cID’ SQL injection (Authenticated)
  • webapps
    		•  Avinash R
    2021-06-11 Solar-Log 500 2.8.2 – Unprotected Storage of Credentials
  • webapps
    		•  Luca.Chiou
    2021-06-11 Solar-Log 500 2.8.2 – Incorrect Access Control
  • webapps
    		•  Luca.Chiou
    2021-06-11 Grocery crud 1.6.4 – ‘order_by’ SQL Injection
  • webapps
    		•  TonyShavez
    2021-06-11 WordPress Plugin Database Backups 1.2.2.6 – ‘Database Backup Download’ CSRF
  • webapps
    		•  0xB9
    2021-06-11 OpenEMR 5.0.0 – Remote Code Execution (Authenticated)
  • webapps
    		•  Ron Jost
    2021-06-11 Microsoft SharePoint Server 16.0.10372.20060 – ‘GetXmlDataFromDataSource’ Server-Side Request Forgery (SSRF)
  • webapps
    		•  Alex Birnberg
    2021-06-11 Cerberus FTP Web Service 11 – ‘svg’ Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Mohammad Hossein Kaviyany
    2021-06-11 Accela Civic Platform 21.1 – ‘servProvCode’ Cross-Site-Scripting (XSS)
  • webapps
    		•  Abdulazeez Alaseeri
    2021-06-10 TextPattern CMS 4.8.7 – Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Mert Daş
    2021-06-10 Student Result Management System 1.0 – ‘class’ SQL Injection
  • webapps
    		•  Riadh Benlamine
    2021-06-09 OpenCart 3.0.3.6 – ‘subject’ Stored Cross-Site Scripting
  • webapps
    		•  Mert Daş