webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2022-05-11 Microfinance Management System 1.0 – ‘customer_number’ SQLi
  • webapps
    		•  Eren Gozaydin
    2022-05-11 WordPress Plugin Blue Admin 21.06.01 – Cross-Site Request Forgery (CSRF)
  • webapps
    		•  Abisheik M
    2022-05-11 ImpressCMS v1.4.4 – Unrestricted File Upload
  • webapps
    		•  Ünsal Furkan Harani
    2022-05-11 MyBB 1.8.29 – MyBB 1.8.29 – Remote Code Execution (RCE) (Authenticated)
  • webapps
    		•  Altelus
    2022-05-11 Beehive Forum – Account Takeover
  • webapps
    		•  Pablo Santiago
    2022-04-26 GitLab 14.9 – Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Greenwolf
    2022-04-26 Gitlab 14.9 – Authentication Bypass
  • webapps
    		•  Greenwolf
    2022-04-19 WordPress Plugin Elementor 3.6.2 – Remote Code Execution (RCE) (Authenticated)
  • webapps
    		•  AkuCyberSec
    2022-04-19 PKP Open Journals System 3.3 – Cross-Site Scripting (XSS)
  • webapps
    		•  Hemant Kashyap
    2022-04-19 REDCap 11.3.9 – Stored Cross Site Scripting
  • webapps
    		•  Kendrick Lam
    2022-04-19 WordPress Plugin Popup Maker 1.16.5 – Stored Cross-Site Scripting (Authenticated)
  • webapps
    		•  Roel van Beurden
    2022-04-19 WordPress Plugin Videos sync PDF 1.7.4 – Stored Cross Site Scripting (XSS)
  • webapps
    		•  UnD3sc0n0c1d0
    2022-04-19 Scriptcase 9.7 – Remote Code Execution (RCE)
  • webapps
    		•  luckyt0mat0
    2022-04-19 Easy Appointments 1.4.2 – Information Disclosure
  • webapps
    		•  Alexandre ZANNI
    2022-04-19 WordPress Plugin Motopress Hotel Booking Lite 4.2.4 – SQL Injection
  • webapps
    		•  Mohsen Dehghani
    2022-04-19 Fuel CMS 1.5.0 – Cross-Site Request Forgery (CSRF)
  • webapps
    		•  Ali J
    2022-04-11 Razer Sila – Command Injection
  • webapps
    		•  Kevin Randall
    2022-04-11 Razer Sila – Local File Inclusion (LFI)
  • webapps
    		•  Kevin Randall
    2022-04-11 Telesquare TLR-2855KS6 – Arbitrary File Deletion
  • webapps
    		•  Momen Eldawakhly
    2022-04-11 Telesquare TLR-2855KS6 – Arbitrary File Creation
  • webapps
    		•  Momen Eldawakhly
    2022-04-11 SAM SUNNY TRIPOWER 5.0 – Insecure Direct Object Reference (IDOR)
  • webapps
    		•  Momen Eldawakhly
    2022-04-07 ICEHRM 31.0.0.0S – Cross-site Request Forgery (CSRF) to Account Deletion
  • webapps
    		•  Devansh Bordia
    2022-04-07 qdPM 9.2 – Cross-site Request Forgery (CSRF)
  • webapps
    		•  Chetanya Sharma
    2022-04-07 minewebcms 1.15.2 – Cross-site Scripting (XSS)
  • webapps
    		•  Chetanya Sharma