Types webapps - 体验盒子 - 不再关注网络安全

日期	标题	类别	作者
2023-04-08	Joomla! v4.2.8 – Unauthenticated information disclosure	webapps	Alexandre ZANNI
2023-04-08	Restaurant Management System 1.0 – SQL Injection	webapps	calfcrusher
2023-04-08	dotclear 2.25.3 – Remote Code Execution (RCE) (Authenticated)	webapps	Mirabbas Ağalarov
2023-04-08	Icinga Web 2.10 – Arbitrary File Disclosure	webapps	Jacob Ebben
2023-04-08	Pentaho BA Server EE 9.3.0.0-428 – Remote Code Execution (RCE) (Unauthenticated)	webapps	dwbzn
2023-04-08	Adobe Connect 11.4.5 – Local File Disclosure	webapps	h4shur
2023-04-08	WebsiteBaker v2.13.3 – Cross-Site Scripting (XSS)	webapps	Mirabbas Ağalarov
2023-04-08	Altenergy Power Control Software C1.2.5 – OS command injection	webapps	Ahmed Alroky
2023-04-07	Snitz Forum v1.0 – Blind SQL Injection	webapps	Emiliano Febbi
2023-04-07	Rukovoditel 3.3.1 – Remote Code Execution (RCE)	webapps	Mirabbas Ağalarov
2023-04-07	ChurchCRM 4.5.1 – Authenticated SQL Injection	webapps	Arvandy
2023-04-07	NotrinosERP 0.7 – Authenticated Blind SQL Injection	webapps	Arvandy
2023-04-07	MAC 1200R – Directory Traversal	webapps	Chunlei Shang, Jiangsu Public Information Co., Ltd.
2023-04-06	flatnux 2021-03.25 – Remote Code Execution (Authenticated)	webapps	Ömer Hasan Durmuş
2023-04-06	POLR URL 2.3.0 – Shortener Admin Takeover	webapps	p4kl0nc4t
2023-04-06	Simple Food Ordering System v1.0 – Cross-Site Scripting (XSS)	webapps	Muhammad Navaid Zafar Ansari
2023-04-06	modoboa 2.0.4 – Admin TakeOver	webapps	7h3h4ckv157
2023-04-06	Music Gallery Site v1.0 – SQL Injection on page Master.php	webapps	Muhammad Navaid Zafar Ansari
2023-04-06	LDAP Tool Box Self Service Password v1.5.2 – Account takeover	webapps	Tahar BENNACEF
2023-04-06	Music Gallery Site v1.0 – SQL Injection on page view_music_details.php	webapps	Muhammad Navaid Zafar Ansari
2023-04-06	Intern Record System v1.0 – SQL Injection (Unauthenticated)	webapps	Hamdi Sevben
2023-04-06	Music Gallery Site v1.0 – Broken Access Control	webapps	Muhammad Navaid Zafar Ansari
2023-04-06	Simple Task Managing System v1.0 – SQL Injection (Unauthenticated)	webapps	Hamdi Sevben
2023-04-06	Music Gallery Site v1.0 – SQL Injection on music_list.php	webapps	Muhammad Navaid Zafar Ansari