webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2020-12-17 Content Management System 1.0 – ’email’ SQL Injection
  • webapps
    		•  Zhaiyi
    2020-12-17 Content Management System 1.0 – ‘First Name’ Stored XSS
  • webapps
    		•  Zhaiyi
    2020-12-17 Linksys RE6500 1.0.11.001 – Unauthenticated RCE
  • webapps
    		•  RE-Solver
    2020-12-17 Dolibarr ERP-CRM 12.0.3 – Remote Code Execution (Authenticated)
  • webapps
    		•  Yilmaz Degirmenci
    2020-12-17 Victor CMS 1.0 – Multiple SQL Injection (Authenticated)
  • webapps
    		•  Furkan Göksel
    2020-12-17 PHPJabbers Appointment Scheduler 2.3 – Reflected XSS (Cross-Site Scripting)
  • webapps
    		•  Andrea Intilangelo
    2020-12-17 Employee Record System 1.0 – Multiple Stored XSS
  • webapps
    		•  Saeed Bala Ahmed
    2020-12-17 Interview Management System 1.0 – ‘id’ SQL Injection
  • webapps
    		•  Saeed Bala Ahmed
    2020-12-17 Interview Management System 1.0 – Stored XSS in Add New Question
  • webapps
    		•  Saeed Bala Ahmed
    2020-12-16 Sony Playstation 4 (PS4) < 7.02 - 'ValidationMessage::buildBubbleTree()' Use-After-Free WebKit Code Execution (PoC)
  • webapps
    		•  ChendoChap
    2020-12-16 Seotoaster 3.2.0 – Stored XSS on Edit page properties
  • webapps
    		•  Hardik Solanki
    2020-12-16 PrestaShop ProductComments 4.2.0 – ‘id_products’ Time Based Blind SQL Injection
  • webapps
    		•  Frederic ADAM
    2020-12-16 Magic Home Pro 1.5.1 – Authentication Bypass
  • webapps
    		•  Victor Hanna
    2020-12-16 Raysync 3.3.3.8 – RCE
  • webapps
    		•  james
    2020-12-16 Grav CMS 1.6.30 Admin Plugin 1.9.18 – ‘Page Title’ Persistent Cross-Site Scripting
  • webapps
    		•  Sagar Banwa
    2020-12-15 Cisco ASA 9.14.1.10 and FTD 6.6.0.1 – Path Traversal (2)
  • webapps
    		•  Freakyclown
    2020-12-15 Online Marriage Registration System (OMRS) 1.0 – Remote Code Execution (2)
  • webapps
    		•  Andrea Bruschi
    2020-12-15 Task Management System 1.0 – ‘page’ Local File Inclusion
  • webapps
    		•  İsmail BOZKURT
    2020-12-14 Rukovoditel 2.6.1 – Cross-Site Request Forgery (Change password)
  • webapps
    		•  KeopssGroup0day,Inc
    2020-12-14 Jenkins 2.235.3 – ‘X-Forwarded-For’ Stored XSS
  • webapps
    		•  gx1
    2020-12-14 GitLab 11.4.7 – Remote Code Execution (Authenticated) (1)
  • webapps
    		•  Fortunato Lodari
    2020-12-14 Macally WIFISD2-2A82 2.000.010 – Guest to Root Privilege Escalation
  • webapps
    		•  Maximilian Barz
    2020-12-14 Rumble Mail Server 0.51.3135 – ‘username’ Stored XSS
  • webapps
    		•  Mohammed Alshehri
    2020-12-14 Rumble Mail Server 0.51.3135 – ‘domain and path’ Stored XSS
  • webapps
    		•  Mohammed Alshehri