搜索 “exploit-db”

不再关注网络安全

inurl:"/wp-content/plugins/super-forms/"
  • 2021-02-05
    • shdb
  • 1057 阅读

# Google Dork: inurl:"/wp-content/plugins/super-forms/" # WordPress Plugin SuperForms 4.9 - Arbitrary File Upload to Remote Code # Execution. https://www.exploit-db.com/exploits/49490 # Date: 3/2/2021 # Exploit Author: Alexandros Pappas

inurl:uno.php
  • 2021-02-04
    • shdb
  • 1053 阅读

# Google Dork: inurl:uno.php # CMSUno 1.6.2 - 'lang/user' Remote Code Execution (Authenticated). #CVE :CVE-2020-25557 & CVE-2020-25538. https://www.exploit-db.com/exploits/49485 # Date: 3/2/2021 # Exploit Author: Alexandros Pappas

inurl:"/console/login/LoginForm.jsp"
  • 2021-02-01
    • shdb
  • 6139 阅读

# Google Dork: inurl:"/console/login/LoginForm.jsp" # Oracle WebLogic Server 12.2.1.0 - RCE (Unauthenticated). CVE-2020 14882. # https://www.exploit-db.com/exploits/49479 # Date: 28/1/2021 # Exploit Author: Alexandros Pappas

"machform" inurl:"view.php"
  • 2021-01-22
    • shdb
  • 1096 阅读

# Google Dork: "machform" inurl:"view.php" # MachForm < 4.2.3 - SQL Injection / Path Traversal / Upload # Bypass. CVE-2018-6409, CVE-2018-6410, CVE-2018-6411. # https://www.exploit-db.com/exploits/44804 # Date: 21/1/2021 # E...

intext:"Incom CMS 2.0"
  • 2021-01-07
    • shdb
  • 1565 阅读

# Google Dork: intext:"Incom CMS 2.0" # IncomCMS 2.0 - Insecure File Upload. CVE: CVE-2020-29597. https://www.exploit-db.com/exploits/49351 # Date: 5/1/2021 # Exploit Author: Alexandros Pappas

inurl:/pro_users/login
  • 2021-01-05
    • shdb
  • 4240 阅读

# Google Dork: inurl:/pro_users/login # Spiceworks 7.5 - HTTP Header Injection. CVE : CVE-2020-25901. # https://www.exploit-db.com/exploits/49299 # Date: 21/12/2020 # Exploit Author: Alexandros Pappas

inurl:/cgi-bin/manlist?section
  • 2021-01-05
    • shdb
  • 1696 阅读

# Google Dork: inurl:/cgi-bin/manlist?section # SCO Openserver 5.0.7 - 'section' Reflected XSS. CVE : CVE-2020-25495. # https://www.exploit-db.com/exploits/49300 # SCO Openserver 5.0.7 - 'outputform' Command Injection. CVE : CV...

"Powered by vBulletin(R) Version 5.6.3"
  • 2020-12-07
    • shdb
  • 4015 阅读

# Google Dork: "Powered by vBulletin® Version 5.6.3" # vBulletin 5.6.3 - 'group' Cross Site Scripting. https://www.exploit-db.com/exploits/49209 # Date: 7/12/2020 # Exploit Author: Alexandros Pappas

intitle:"Please Login" "Use FTM Push"
  • 2020-11-24
    • shdb
  • 3176 阅读

# Google Dork: intitle:"Please Login" "Use FTM Push" # Fortinet FortiOS 6.0.4 - Unauthenticated SSL VPN User Password Modification. CVE-2018-13382. https://www.exploit-db.com/exploits/49074 # Date: 22/11/2020 # Exploit Author: ...

inurl:opac_css
  • 2020-11-17
    • shdb
  • 2227 阅读

# Google Dork: inurl:opac_css # PMB 5.6 - 'chemin' Local File Disclosure. # https://www.exploit-db.com/exploits/49054 # Date: 17/11/2020 # Exploit Author: Alexandros Pappas