webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2020-10-23 Stock Management System 1.0 – ‘brandId and categoriesId’ SQL Injection
  • webapps
    		•  Ihsan Sencan
    2020-10-23 Ajenti 2.1.36 – Remote Code Execution (Authenticated)
  • webapps
    		•  Ahmet Ümit BAYRAM
    2020-10-23 Online Library Management System 1.0 – Arbitrary File Upload
  • webapps
    		•  Jyotsna Adhana
    2020-10-23 TextPattern CMS 4.8.3 – Remote Code Execution (Authenticated)
  • webapps
    		•  0blio_
    2020-10-23 Bludit 3.9.2 – Auth Bruteforce Bypass
  • webapps
    		•  Mayank Deshmukh
    2020-10-21 Tiki Wiki CMS Groupware 21.1 – Authentication Bypass
  • webapps
    		•  Maximilian Barz
    2020-10-21 Stock Management System 1.0 – ‘Brand Name’ Persistent Cross-Site Scripting
  • webapps
    		•  Adeeb Shah
    2020-10-21 Stock Management System 1.0 – ‘Categories Name’ Persistent Cross-Site Scripting
  • webapps
    		•  Adeeb Shah
    2020-10-21 Stock Management System 1.0 – ‘Product Name’ Persistent Cross-Site Scripting
  • webapps
    		•  Adeeb Shah
    2020-10-21 GOautodial 4.0 – Authenticated Shell Upload
  • webapps
    		•  Balzabu
    2020-10-21 School Faculty Scheduling System 1.0 – Authentication Bypass POC
  • webapps
    		•  Jyotsna Adhana
    2020-10-21 School Faculty Scheduling System 1.0 – Stored Cross Site Scripting POC
  • webapps
    		•  Jyotsna Adhana
    2020-10-21 Hrsale 2.0.0 – Local File Inclusion
  • webapps
    		•  Sosecure
    2020-10-20 WordPress Plugin HS Brand Logo Slider 2.1 – ‘logoupload’ File Upload
  • webapps
    		•  Net-Hunter
    2020-10-20 Ultimate Project Manager CRM PRO Version 2.0.5 – SQLi (Authenticated)
  • webapps
    		•  nag0mez
    2020-10-20 Visitor Management System in PHP 1.0 – SQL Injection (Authenticated)
  • webapps
    		•  Rahul Ramkumar
    2020-10-20 WordPress Plugin WP Courses < 2.0.29 - Broken Access Controls leading to Courses Content Disclosure
  • webapps
    		•  redtimmysec
    2020-10-20 Loan Management System 1.0 – Multiple Cross Site Scripting (Stored)
  • webapps
    		•  Akıner Kısa
    2020-10-20 Comtrend AR-5387un router – Persistent XSS (Authenticated)
  • webapps
    		•  OscarAkaElvis
    2020-10-20 WordPress Plugin Colorbox Lightbox v1.1.1 – Persistent Cross-Site Scripting (Authenticated)
  • webapps
    		•  n1x_
    2020-10-20 WordPress Plugin Rest Google Maps < 7.11.18 - SQL Injection
  • webapps
    		•  Jonatas Fil
    2020-10-20 Apache Struts 2 – DefaultActionMapper Prefixes OGNL Code Execution
  • webapps
    		•  Jonatas Fil
    2020-10-20 Mobile Shop System v1.0 – SQL Injection Authentication Bypass
  • webapps
    		•  Moaaz Taha
    2020-10-20 RiteCMS 2.2.1 – Remote Code Execution (Authenticated)
  • webapps
    		•  H0j3n