webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2023-05-02 GLPI 9.5.7 – Username Enumeration
  • webapps
    		•  Rafael B.
    2023-05-02 Companymaps v8.0 – Stored Cross Site Scripting (XSS)
  • webapps
    		•  Lucas Noki (0xPrototype)
    2023-05-02 PHPJabbers Simple CMS 5.0 – SQL Injection
  • webapps
    		•  Ahmet Ümit BAYRAM
    2023-05-02 PHPJabbers Simple CMS V5.0 – Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Ahmet Ümit BAYRAM
    2023-05-02 OpenEMR v7.0.1 – Authentication credentials brute force
  • webapps
    		•  abhhi (Abhishek Birdawade)
    2023-05-02 PHPFusion 9.10.30 – Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Mirabbas Ağalarov
    2023-05-02 SoftExpert (SE) Suite v2.1.3 – Local File Inclusion
  • webapps
    		•  Felipe Alcantara
    2023-04-25 Sophos Web Appliance 4.3.10.4 – Pre-auth command injection
  • webapps
    		•  Behnam Abasi Vanda
    2023-04-25 Multi-Vendor Online Groceries Management System 1.0 – Remote Code Execution
  • webapps
    		•  Or4nG.M4N
    2023-04-25 Mars Stealer 8.3 – Admin Account Takeover
  • webapps
    		•  Sköll
    2023-04-25 PaperCut NG/MG 22.0.4 – Authentication Bypass
  • webapps
    		•  MaanVader
    2023-04-25 KodExplorer 4.49 – CSRF to Arbitrary File Upload
  • webapps
    		•  Mr Empy
    2023-04-20 Bang Resto v1.0 – Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Rahad Chowdhury
    2023-04-20 Lilac-Reloaded for Nagios 2.0.8 – Remote Code Execution (RCE)
  • webapps
    		•  max / Zoltan Padanyi
    2023-04-20 Serendipity 2.4.0 – Cross-Site Scripting (XSS)
  • webapps
    		•  Mirabbas Ağalarov
    2023-04-20 Serendipity 2.4.0 – Remote Code Execution (RCE) (Authenticated)
  • webapps
    		•  Mirabbas Ağalarov
    2023-04-20 ProjeQtOr Project Management System 10.3.2 – Remote Code Execution (RCE)
  • webapps
    		•  Mirabbas Ağalarov
    2023-04-20 Piwigo 13.6.0 – Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Mirabbas Ağalarov
    2023-04-20 FUXA V.1.1.13-1186 – Unauthenticated Remote Code Execution (RCE)
  • webapps
    		•  Rodolfo Mariano
    2023-04-20 Chitor-CMS v1.1.2 – Pre-Auth SQL Injection
  • webapps
    		•  msd0pe
    2023-04-20 GDidees CMS 3.9.1 – Local File Disclosure
  • webapps
    		•  Hadi Mene
    2023-04-20 Swagger UI 4.1.3 – User Interface (UI) Misrepresentation of Critical Information
  • webapps
    		•  Rafael Cintra Lopes
    2023-04-20 Bang Resto v1.0 – ‘Multiple’ SQL Injection
  • webapps
    		•  Rahad Chowdhury
    2023-04-14 Sielco PolyEco Digital FM Transmitter 2.0.6 – Unauthenticated Information Disclosure
  • webapps
    		•  LiquidWorm