webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2021-01-11 WordPress Plugin Custom Global Variables 1.0.5 – ‘name’ Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Swapnil Subhash Bodekar
    2021-01-08 WordPress Plugin wpDiscuz 7.0.4 – Unauthenticated Arbitrary File Upload (Metasploit)
  • webapps
    		•  SunCSR Team
    2021-01-08 WordPress Plugin Autoptimize 2.7.6 – Authenticated Arbitrary File Upload (Metasploit)
  • webapps
    		•  SunCSR Team
    2021-01-08 Apache Flink 1.11.0 – Unauthenticated Arbitrary File Read (Metasploit)
  • webapps
    		•  SunCSR Team
    2021-01-08 Cockpit Version 234 – Server-Side Request Forgery (Unauthenticated)
  • webapps
    		•  Metin Yunus Kandemir
    2021-01-08 Online Doctor Appointment System 1.0 – ‘Multiple’ Stored XSS
  • webapps
    		•  Mohamed habib Smidi
    2021-01-08 Life Insurance Management System 1.0 – Multiple Stored XSS
  • webapps
    		•  Arnav Tripathy
    2021-01-07 CRUD Operation 1.0 – Multiple Stored XSS
  • webapps
    		•  Arnav Tripathy
    2021-01-07 ECSIMAGING PACS 6.21.5 – SQL injection
  • webapps
    		•  shoxxdj
    2021-01-07 Curfew e-Pass Management System 1.0 – Stored XSS
  • webapps
    		•  Arnav Tripathy
    2021-01-07 Cockpit CMS 0.6.1 – Remote Code Execution
  • webapps
    		•  Rafael Resende
    2021-01-07 Employee Record System 1.0 – Unrestricted File Upload to Remote Code Execution
  • webapps
    		•  Saeed Bala Ahmed
    2021-01-07 ECSIMAGING PACS 6.21.5 – Remote code execution
  • webapps
    		•  shoxxdj
    2021-01-07 iBall-Baton WRA150N Rom-0 Backup – File Disclosure (Sensitive Information)
  • webapps
    		•  h4cks1n
    2021-01-06 Sonatype Nexus 3.21.1 – Remote Code Execution (Authenticated)
  • webapps
    		•  1F98D
    2021-01-06 Gitea 1.7.5 – Remote Code Execution
  • webapps
    		•  1F98D
    2021-01-06 Resumes Management and Job Application Website 1.0 – RCE (Unauthenticated)
  • webapps
    		•  Arnav Tripathy
    2021-01-06 Newgen Correspondence Management System (corms) eGov 12.0 – IDOR
  • webapps
    		•  ALI AL SINAN
    2021-01-06 WordPress Plugin WP24 Domain Check 1.6.2 – ‘fieldnameDomain’ Stored Cross Site Scripting
  • webapps
    		•  Mehmet Kelepçe
    2021-01-06 Responsive E-Learning System 1.0 – Stored Cross Site Scripting
  • webapps
    		•  Kshitiz Raj
    2021-01-06 Responsive E-Learning System 1.0 – Unrestricted File Upload to RCE
  • webapps
    		•  Kshitiz Raj
    2021-01-06 WordPress Plugin litespeed cache 3.6 – ‘server_ip’ Cross-Site Scripting
  • webapps
    		•  Nhat Ha
    2021-01-06 Expense Tracker 1.0 – ‘Expense Name’ Stored Cross-Site Scripting
  • webapps
    		•  Shivam Verma
    2021-01-06 IPeakCMS 3.5 – Boolean-based blind SQLi
  • webapps
    		•  MoeAlBarbari