webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2024-11-15 SOPlanning 1.52.01 (Simple Online Planning Tool) – Remote Code Execution (RCE) (Authenticated)
  • webapps
    		•  cybersploit
    2024-10-01 reNgine 2.2.0 – Command Injection (Authenticated)
  • webapps
    		•  Caner Tercan
    2024-10-01 openSIS 9.1 – SQLi (Authenticated)
  • webapps
    		•  Devrim Dıragumandan
    2024-10-01 dizqueTV 1.5.3 – Remote Code Execution (RCE)
  • webapps
    		•  Ahmed Said Saud Al-Busaidi
    2024-08-28 NoteMark < 0.13.0 - Stored XSS
  • webapps
    		•  Alessio Romano (sfoffo)
    2024-08-28 Gitea 1.22.0 – Stored XSS
  • webapps
    		•  Catalin Iovita, Alexandru Postolache
    2024-08-28 Invesalius3 – Remote Code Execution
  • webapps
    		•  Alessio Romano (sfoffo), Riccardo Degli Esposti (partywave)
    2024-08-24 Elber ESE DVB-S/S2 Satellite Receiver 1.5.x – Authentication Bypass
  • webapps
    		•  LiquidWorm
    2024-08-24 Aurba 501 – Authenticated RCE
  • webapps
    		•  Hosein Vita
    2024-08-24 HughesNet HT2000W Satellite Modem – Password Reset
  • webapps
    		•  Simon Greenblatt
    2024-08-24 Elber Wayber Analog/Digital Audio STL 4.00 – Device Config Disclosure
  • webapps
    		•  LiquidWorm
    2024-08-24 Elber Wayber Analog/Digital Audio STL 4.00 – Authentication Bypass
  • webapps
    		•  LiquidWorm
    2024-08-24 Elber ESE DVB-S/S2 Satellite Receiver 1.5.x – Device Config
  • webapps
    		•  LiquidWorm
    2024-08-23 Helpdeskz v2.0.2 – Stored XSS
  • webapps
    		•  Md. Sadikul Islam
    2024-08-23 Calibre-web 0.6.21 – Stored XSS
  • webapps
    		•  Catalin Iovita, Alexandru Postolache
    2024-08-04 Devika v1 – Path Traversal via ‘snapshot_path’
  • webapps
    		•  Alperen Ergel
    2024-08-04 Ivanti vADC 9.9 – Authentication Bypass
  • webapps
    		•  ohnoisploited
    2024-07-01 Xhibiter NFT Marketplace 1.10.2 – SQL Injection
  • webapps
    		•  Sohel Yousef
    2024-07-01 Azon Dominator Affiliate Marketing Script – SQL Injection
  • webapps
    		•  Buğra Enis Dönmez
    2024-07-01 Microweber 2.0.15 – Stored XSS
  • webapps
    		•  tmrswrr
    2024-07-01 Customer Support System 1.0 – Stored XSS
  • webapps
    		•  Geraldo Alcantara
    2024-06-26 SolarWinds Platform 2024.1 SR1 – Race Condition
  • webapps
    		•  Elhussain Fathy
    2024-06-26 Flatboard 3.2 – Stored Cross-Site Scripting (XSS) (Authenticated)
  • webapps
    		•  tmrswrr
    2024-06-26 Poultry Farm Management System v1.0 – Remote Code Execution (RCE)
  • webapps
    		•  Jerry Thomas