jsp

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2024-10-01 dizqueTV 1.5.3 – Remote Code Execution (RCE)
  • webapps
    		•  Ahmed Said Saud Al-Busaidi
    2024-04-13 BMC Compuware iStrobe Web – 20.13 – Pre-auth RCE
  • webapps
    		•  trancap
    2023-06-04 STARFACE 7.3.0.10 – Authentication with Password Hash Possible
  • webapps
    		•  RedTeam Pentesting GmbH
    2023-04-08 Pentaho BA Server EE 9.3.0.0-428 – Remote Code Execution (RCE) (Unauthenticated)
  • webapps
    		•  dwbzn
    2023-03-28 ZKTeco ZEM/ZMM 8.88 – Missing Authentication
  • webapps
    		•  RedTeam Pentesting GmbH
    2023-03-27 Desktop Central 9.1.0 – Multiple Vulnerabilities
  • webapps
    		•  Rafael Pedrero
    2020-12-11 Openfire 4.6.0 – ‘sql’ Stored XSS
  • webapps
    		•  j5s
    2020-12-11 Openfire 4.6.0 – ‘users’ Stored XSS
  • webapps
    		•  j5s
    2020-12-11 Openfire 4.6.0 – ‘groupchatJID’ Stored XSS
  • webapps
    		•  j5s
    2020-12-10 Openfire 4.6.0 – ‘path’ Stored XSS
  • webapps
    		•  j5s
    2019-11-12 Atlassian Confluence 6.15.1 – Directory Traversal (Metasploit)
  • webapps
    		•  max7253
    2019-11-12 Atlassian Confluence 6.15.1 – Directory Traversal
  • webapps
    		•  max7253
    2019-09-16 NetGain EM Plus 10.1.68 – Remote Command Execution
  • webapps
    		•  azams
    2019-07-26 Ahsay Backup 8.1.1.50 – Insecure File Upload and Code Execution (Authenticated)
  • webapps
    		•  Wietse Boonstra
    2019-07-26 Ahsay Backup 7.x – 8.1.1.50 – XML External Entity Injection
  • webapps
    		•  Wietse Boonstra
    2019-07-26 Ahsay Backup 7.x – 8.1.1.50 – Authenticated Arbitrary File Upload / Remote Code Execution (Metasploit)
  • webapps
    		•  Wietse Boonstra
    2019-06-11 Liferay Portal 7.1 CE GA=3 / SimpleCaptcha API – Cross-Site Scripting
  • webapps
    		•  Valerio Brussani
    2019-06-05 Zimbra < 8.8.11 - XML External Entity Injection / Server-Side Request Forgery
  • webapps
    		•  k8gege
    2019-05-10 dotCMS 5.1.1 – HTML Injection
  • webapps
    		•  Ismail Tasdelen
    2019-04-05 Manage Engine ServiceDesk Plus 10.0 – Privilege Escalation
  • webapps
    		•  Ata Hakçıl, Melih Kaan Yıldız
    2019-03-11 OpenKM 6.3.2 < 6.3.7 - Remote Command Execution (Metasploit)
  • webapps
    		•  AkkuS
    2019-02-19 Zoho ManageEngine Netflow Analyzer Professional 7.0.0.2 – Path Traversal / Cross-Site Scripting
  • webapps
    		•  Rafael Pedrero
    2019-02-18 Zoho ManageEngine ServiceDesk Plus (SDP) < 10.0 build 10012 - Arbitrary File Upload
  • webapps
    		•  Dao Duy Hung
    2018-10-30 Microstrategy Web 7 – Cross-Site Scripting / Directory Traversal
  • webapps
    		•  Rafael Pedrero