webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2020-12-09 Task Management System 1.0 – ‘id’ SQL Injection
  • webapps
    		•  Saeed Bala Ahmed
    2020-12-09 Task Management System 1.0 – Unrestricted File Upload to Remote Code Execution
  • webapps
    		•  Saeed Bala Ahmed
    2020-12-09 Task Management System 1.0 – ‘First Name and Last Name’ Stored XSS
  • webapps
    		•  Saeed Bala Ahmed
    2020-12-09 VestaCP 0.9.8-26 – ‘backup’ Information Disclosure
  • webapps
    		•  Vulnerability-Lab
    2020-12-09 VestaCP 0.9.8-26 – ‘LoginAs’ Insufficient Session Validation
  • webapps
    		•  Vulnerability-Lab
    2020-12-08 Employee Performance Evaluation System 1.0 – ‘Task and Description’ Persistent Cross Site Scripting
  • webapps
    		•  Ritesh Gohil
    2020-12-08 Online Bus Ticket Reservation 1.0 – SQL Injection
  • webapps
    		•  Sakshi Sharma
    2020-12-07 Cyber Cafe Management System Project (CCMS) 1.0 – Persistent Cross-Site Scripting
  • webapps
    		•  Pruthvi Nekkanti
    2020-12-07 vBulletin 5.6.3 – ‘group’ Cross Site Scripting
  • webapps
    		•  Vincent666
    2020-12-07 Savsoft Quiz 5 – ‘Skype ID’ Stored XSS
  • webapps
    		•  Dipak Panchal
    2020-12-04 Zabbix 5.0.0 – Stored XSS via URL Widget Iframe
  • webapps
    		•  Shwetabh Vishnoi
    2020-12-04 CMS Made Simple 2.2.15 – Stored Cross-Site Scripting via SVG File Upload (Authenticated)
  • webapps
    		•  Eshan Singh
    2020-12-04 Laravel Nova 3.7.0 – ‘range’ DoS
  • webapps
    		•  iqzer0
    2020-12-04 Forma LMS 2.3 – ‘First & Last Name’ Stored Cross-Site Scripting
  • webapps
    		•  Hemant Patidar
    2020-12-04 Savsoft Quiz 5 – ‘field_title’ Stored Cross-Site Scripting
  • webapps
    		•  Dhruv Patel
    2020-12-04 Testa Online Test Management System 3.4.7 – ‘q’ SQL Injection
  • webapps
    		•  Ultra Security Team
    2020-12-04 MiniCMS 1.10 – ‘content box’ Stored XSS
  • webapps
    		•  yudp
    2020-12-04 Phpscript-sgh 0.1.0 – Time Based Blind SQL Injection
  • webapps
    		•  KeopssGroup0day,Inc
    2020-12-04 Composr CMS 10.0.34 – ‘banners’ Persistent Cross Site Scripting
  • webapps
    		•  Parshwa Bhavsar
    2020-12-04 WordPress Plugin Canto 1.3.0 – Blind SSRF (Unauthenticated)
  • webapps
    		•  Pankaj Verma
    2020-12-03 Online Matrimonial Project 1.0 – Authenticated Remote Code Execution
  • webapps
    		•  Valerio Alessandroni
    2020-12-03 EgavilanMedia Address Book 1.0 Exploit – SQLi Auth Bypass
  • webapps
    		•  Mayur Parmar
    2020-12-03 Coastercms 5.8.18 – Stored XSS
  • webapps
    		•  Hardik Solanki
    2020-12-03 User Registration & Login and User Management System 2.1 – Cross Site Request Forgery
  • webapps
    		•  Dipak Panchal