php

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2024-03-06 Lot Reservation Management System – Unauthenticated File Disclosure
  • webapps
    		•  Elijah Mandila Syoyi
    2024-03-06 Lot Reservation Management System – Unauthenticated File Upload and Remote Code Execution
  • webapps
    		•  Elijah Mandila Syoyi
    2024-03-05 kk Star Ratings < 5.4.6 - Rating Tampering via Race Condition
  • webapps
    		•  Mohammad Reza Omrani
    2024-03-05 Neontext WordPress Plugin – Stored XSS
  • webapps
    		•  Eren Car
    2024-03-03 Simple Student Attendance System v1.0 – ‘classid’ Time Based Blind & Union Based SQL Injection
  • remote
    		•  Gnanaraj Mauviel
    2024-03-03 Simple Student Attendance System v1.0 – Time Based Blind SQL Injection
  • remote
    		•  Gnanaraj Mauviel
    2024-03-03 Real Estate Management System v1.0 – Remote Code Execution via File Upload
  • remote
    		•  Diyar Saadi
    2024-03-03 Petrol Pump Management Software v1.0 – Remote Code Execution via File Upload
  • remote
    		•  Shubham Pandey
    2024-03-03 Petrol Pump Management Software v.1.0 – SQL Injection
  • remote
    		•  Shubham Pandey
    2024-03-03 Petrol Pump Management Software v.1.0 – Stored Cross Site Scripting via SVG file
  • remote
    		•  Shubham Pandey
    2024-03-03 Petrol Pump Management Software v1.0 – ‘Address’ Stored Cross Site Scripting
  • remote
    		•  Shubham Pandey
    2024-03-03 Boss Mini 1.4.0 – local file inclusion
  • webapps
    		•  nltt0
    2024-03-03 Enrollment System v1.0 – SQL Injection
  • remote
    		•  Gnanaraj Mauviel
    2024-03-03 AC Repair and Services System v1.0 – Multiple SQL Injection
  • remote
    		•  Gnanaraj Mauviel
    2024-02-28 WP Fastest Cache 1.2.2 – Unauthenticated SQL Injection
  • webapps
    		•  Meryem Taşkın
    2024-02-28 Blood Bank v1.0 – Multiple SQL Injection
  • webapps
    		•  Ersin Erenler
    2024-02-28 WordPress Plugin Admin Bar & Dashboard Access Control Version: 1.2.8 – “Dashboard Redirect” field Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Rachit Arora
    2024-02-28 WP Rocket < 2.10.3 - Local File Inclusion (LFI)
  • webapps
    		•  E1 Coders
    2024-02-27 WordPress Plugin Canto < 3.0.5 - Remote File Inclusion (RFI) and Remote Code Execution (RCE)
  • webapps
    		•  Leopoldo Angulo (leoanggal1)
    2024-02-27 Automatic-Systems SOC FL9600 FastLine – The device contains hardcoded login and password for super admin
  • webapps
    		•  Marcin Kozlowski
    2024-02-27 Automatic-Systems SOC FL9600 FastLine – Directory Transversal
  • webapps
    		•  Marcin Kozlowski
    2024-02-27 SuperStoreFinder – Multiple Vulnerabilities
  • webapps
    		•  bRpsd
    2024-02-27 Moodle 4.3 – Insecure Direct Object Reference
  • webapps
    		•  tmrswrr
    2024-02-27 Zoo Management System 1.0 – Unauthenticated RCE
  • webapps
    		•  Çağatay Ceyhan