java

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2024-05-19 Apache OFBiz 18.12.12 – Directory Traversal
  • webapps
    		•  Abdualhadi khalifa
    2024-04-15 Jenkins 2.441 – Local File Inclusion
  • webapps
    		•  Matisse Beckandt
    2024-03-16 Karaf v4.4.3 Console – RCE
  • webapps
    		•  Andrzej Olchawa, Milenko Starcik
    2024-03-14 GitLab CE/EE < 16.7.2 - Password Reset
  • remote
    		•  0xB455
    2024-03-14 JetBrains TeamCity 2023.05.3 – Remote Code Execution (RCE)
  • remote
    		•  ByteHunter
    2023-07-11 Spring Cloud 3.2.2 – Remote Command Execution (RCE)
  • webapps
    		•  GatoGamer1155
    2023-07-11 Netlify CMS 2.10.192 – Stored Cross-Site Scripting (XSS)
  • webapps
    		•  tmrswrr
    2023-07-03 Alkacon OpenCMS 15.0 – Multiple Cross-Site Scripting (XSS)
  • webapps
    		•  tmrswrr
    2023-04-08 Goanywhere Encryption helper 7.1.1 – Remote Code Execution (RCE)
  • webapps
    		•  Youssef Muhammad
    2023-04-05 ERPNext 12.29 – Cross-Site Scripting (XSS)
  • webapps
    		•  Patrick Dean Ramos / Nathu Nandwani / Junnair Manla
    2023-04-05 Liferay Portal 6.2.5 – Insecure Permissions
  • webapps
    		•  Fu2x2000
    2023-04-03 Nacos 2.0.3 – Access Control vulnerability
  • webapps
    		•  Jenson Zhao
    2023-04-01 AD Manager Plus 7122 – Remote Code Execution (RCE)
  • remote
    		•  Chan Nyein Wai
    2022-06-10 Confluence Data Center 7.18.0 – Remote Code Execution (RCE)
  • webapps
    		•  Fellipe Oliveira
    2022-03-07 Spring Cloud Gateway 3.1.0 – Remote Code Execution (RCE)
  • webapps
    		•  Carlos E. Vieira
    2022-02-02 Ametys CMS v4.4.1 – Cross Site Scripting (XSS)
  • webapps
    		•  Vulnerability-Lab
    2021-12-14 Apache Log4j 2 – Remote Code Execution (RCE)
  • remote
    		•  kozmer
    2021-12-14 Apache Log4j2 2.14.1 – Information Disclosure
  • remote
    		•  leonjza
    2021-11-03 OpenAM 13.0 – LDAP Injection
  • webapps
    		•  Charlton Trezevant
    2021-11-03 Eclipse Jetty 11.0.5 – Sensitive File Disclosure
  • webapps
    		•  Mayank Deshmukh
    2021-10-22 Jetty 9.4.37.v20210219 – Information Disclosure
  • webapps
    		•  Mayank Deshmukh
    2021-10-13 Keycloak 12.0.1 – ‘request_uri ‘ Blind Server-Side Request Forgery (SSRF) (Unauthenticated)
  • webapps
    		•  Mayank Deshmukh
    2021-10-05 Atlassian Confluence 7.12.2 – Pre-Authorization Arbitrary File Read
  • webapps
    		•  Mayank Deshmukh
    2021-09-01 Confluence Server 7.12.4 – ‘OGNL injection’ Remote Code Execution (RCE) (Unauthenticated)
  • webapps
    		•  Fellipe Oliveira