Types webapps - 体验盒子 - 不再关注网络安全

日期	标题	类别	作者
2023-04-05	Calendar Event Multi View 1.4.07 – Unauthenticated Arbitrary Event Creation to Cross-Site Scripting (XSS)	webapps	Mostafa Farzaneh
2023-04-05	zstore 6.6.0 – Cross-Site Scripting (XSS)	webapps	nu11secur1ty
2023-04-05	projectSend r1605 – Remote Code Exectution RCE	webapps	Mirabbas Ağalarov
2023-04-05	Provide Server v.14.4 XSS – CSRF & Remote Code Execution (RCE)	webapps	Andreas Finstad
2023-04-05	Secure Web Gateway 10.2.11 – Cross-Site Scripting (XSS)	webapps	RedTeam Pentesting GmbH
2023-04-05	Froxlor 2.0.3 Stable – Remote Code Execution (RCE)	webapps	Askar
2023-04-05	PhotoShow 3.0 – Remote Code Execution	webapps	LSCP Responsible Disclosure Lab
2023-04-05	CKEditor 5 35.4.0 – Cross-Site Scripting (XSS)	webapps	Manish Pathak
2023-04-05	Answerdev 1.0.3 – Account Takeover	webapps	Eduardo Pérez-Malumbres Cervera
2023-04-05	ERPNext 12.29 – Cross-Site Scripting (XSS)	webapps	Patrick Dean Ramos / Nathu Nandwani / Junnair Manla
2023-04-05	BTCPay Server v1.7.4 – HTML Injection	webapps	Manojkumar J
2023-04-05	itech TrainSmart r1044 – SQL injection	webapps	Adrian Bondocea
2023-04-03	Paid Memberships Pro v2.9.8 (WordPress Plugin) – Unauthenticated SQL Injection	webapps	r3nt0n
2023-04-03	Art Gallery Management System Project v1.0 – SQL Injection (cid) Unauthenticated	webapps	Rahul Patwari
2023-04-03	GLPI Cartography Plugin v6.0.0 – Unauthenticated Remote Code Execution (RCE)	webapps	Nuri Çilengir
2023-04-03	Art Gallery Management System Project v1.0 – Reflected Cross-Site Scripting (XSS)	webapps	Rahul Patwari
2023-04-03	GLPI v10.0.2 – SQL Injection (Authentication Depends on Configuration)	webapps	Nuri Çilengir
2023-04-03	MyBB 1.8.32 – Remote Code Execution (RCE) (Authenticated)	webapps	lUc1f3r11
2023-04-03	GLPI Activity v3.1.0 – Authenticated Local File Inclusion on Activity plugin	webapps	Nuri Çilengir
2023-04-03	SLIMSV 9.5.2 – Cross-Site Scripting (XSS)	webapps	nu11secur1ty
2023-04-03	GLPI Glpiinventory v1.0.1 – Unauthenticated Local File Inclusion	webapps	Nuri Çilengir
2023-04-03	Zstore 6.5.4 – Reflected Cross-Site Scripting (XSS)	webapps	nu11secur1ty
2023-04-03	GLPI 4.0.2 – Unauthenticated Local File Inclusion on Manageentities plugin	webapps	Nuri Çilengir
2023-04-03	Nacos 2.0.3 – Access Control vulnerability	webapps	Jenson Zhao