webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2021-04-21 OpenEMR 5.0.2.1 – Remote Code Execution
  • webapps
    		•  Hato0
    2021-04-21 rconfig 3.9.6 – Arbitrary File Upload
  • webapps
    		•  Vishwaraj Bhattrai
    2021-04-21 RemoteClinic 2 – ‘Multiple’ Cross-Site Scripting (XSS)
  • webapps
    		•  nu11secur1ty
    2021-04-21 BlackCat CMS 1.3.6 – ‘Multiple’ Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Ömer Hasan Durmuş
    2021-04-21 WordPress Plugin RSS for Yandex Turbo 1.29 – Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Himamshu Dilip Kulkarni
    2021-04-21 Fast PHP Chat 1.3 – ‘my_item_search’ SQL Injection
  • webapps
    		•  Fatih Coskun
    2021-04-21 Multilaser Router RE018 AC1200 – Cross-Site Request Forgery (Enable Remote Access)
  • webapps
    		•  Rodolfo Mariano
    2021-04-21 Hasura GraphQL 1.3.3 – Service Side Request Forgery (SSRF)
  • webapps
    		•  Dolev Farhi
    2021-04-21 Hasura GraphQL 1.3.3 – Local File Read
  • webapps
    		•  Dolev Farhi
    2021-04-21 GravCMS 1.10.7 – Unauthenticated Arbitrary File Write (Metasploit)
  • webapps
    		•  Mehmet Ince
    2021-04-21 Adtran Personal Phone Manager 10.8.1 – DNS Exfiltration
  • webapps
    		•  3ndG4me
    2021-04-21 Adtran Personal Phone Manager 10.8.1 – ‘Multiple’ Reflected Cross-Site Scripting (XSS)
  • webapps
    		•  3ndG4me
    2021-04-16 GetSimple CMS My SMTP Contact Plugin 1.1.1 – Cross-Site Request Forgery
  • webapps
    		•  boku
    2021-04-15 htmly 2.8.0 – ‘description’ Stored Cross-Site Scripting (XSS)
  • webapps
    		•  nu11secur1ty
    2021-04-15 Tileserver-gl 3.0.0 – ‘key’ Reflected Cross-Site Scripting (XSS)
  • webapps
    		•  Akash Chathoth
    2021-04-15 Horde Groupware Webmail 5.2.22 – Stored XSS
  • webapps
    		•  nu11secur1ty
    2021-04-14 jQuery 1.0.3 – Cross-Site Scripting (XSS)
  • webapps
    		•  Central InfoSec
    2021-04-14 jQuery 1.2 – Cross-Site Scripting (XSS)
  • webapps
    		•  Central InfoSec
    2021-04-14 Genexis PLATINUM 4410 2.1 P4410-V2-1.28 – RCE
  • webapps
    		•  Jay Sharma
    2021-04-14 CITSmart ITSM 9.1.2.27 – ‘query’ Time-based Blind SQL Injection (Authenticated)
  • webapps
    		•  skysbsb
    2021-04-14 CITSmart ITSM 9.1.2.22 – LDAP Injection
  • webapps
    		•  skysbsb
    2021-04-14 Digital Crime Report Management System 1.0 – SQL Injection (Authentication Bypass)
  • webapps
    		•  GaluhID
    2021-04-13 Simple Student Information System 1.0 – SQL Injection (Authentication Bypass)
  • webapps
    		•  GaluhID
    2021-04-13 ExpressVPN VPN Router 1.0 – Router Login Panel’s Integer Overflow
  • webapps
    		•  Jai Kumar Sharma