webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2022-01-27 WordPress Plugin RegistrationMagic V 5.0.1.5 – SQL Injection (Authenticated)
  • webapps
    		•  Ron Jost
    2022-01-27 WordPress Plugin Mortgage Calculators WP 1.52 – Stored Cross-Site Scripting (XSS) (Authenticated)
  • webapps
    		•  Ceylan BOZOĞULLARINDAN
    2022-01-25 PHPIPAM 1.4.4 – SQLi (Authenticated)
  • webapps
    		•  Rodolfo Tavares
    2022-01-25 Online Project Time Management System 1.0 – Multiple Stored Cross Site Scripting (XSS) (Authenticated)
  • webapps
    		•  Felipe Alcantara
    2022-01-25 Online Project Time Management System 1.0 – SQLi (Authenticated)
  • webapps
    		•  Felipe Alcantara
    2022-01-24 Landa Driving School Management System 2.0.1 – Arbitrary File Upload
  • webapps
    		•  Sohel Yousef
    2022-01-19 Affiliate Pro 1.7 – ‘Multiple’ Cross Site Scripting (XSS)
  • webapps
    		•  Vulnerability-Lab
    2022-01-19 Rocket LMS 1.1 – Persistent Cross Site Scripting (XSS)
  • webapps
    		•  Vulnerability-Lab
    2022-01-19 uDoctorAppointment v2.1.1 – ‘Multiple’ Cross Site Scripting (XSS)
  • webapps
    		•  Vulnerability-Lab
    2022-01-18 OpenBMCS 2.4 – SQLi (Authenticated)
  • webapps
    		•  LiquidWorm
    2022-01-18 OpenBMCS 2.4 – Cross Site Request Forgery (CSRF)
  • webapps
    		•  LiquidWorm
    2022-01-18 Online Resort Management System 1.0 – SQLi (Authenticated)
  • webapps
    		•  Gaurav Grover
    2022-01-18 Creston Web Interface 1.0.0.2159 – Credential Disclosure
  • webapps
    		•  RedTeam Pentesting GmbH
    2022-01-18 Nyron 1.0 – SQLi (Unauthenticated)
  • webapps
    		•  Miguel Santareno
    2022-01-18 Simple Chatbot Application 1.0 – ‘message’ Blind SQLi
  • webapps
    		•  Saud Alenazi
    2022-01-18 Simple Chatbot Application 1.0 – Remote Code Execution (RCE)
  • webapps
    		•  Saud Alenazi
    2022-01-18 OpenBMCS 2.4 – Information Disclosure
  • webapps
    		•  LiquidWorm
    2022-01-18 OpenBMCS 2.4 – Server Side Request Forgery (SSRF) (Unauthenticated)
  • webapps
    		•  LiquidWorm
    2022-01-18 OpenBMCS 2.4 – Create Admin / Remote Privilege Escalation
  • webapps
    		•  LiquidWorm
    2022-01-13 WordPress Core 5.8.2 – ‘WP_Query’ SQL Injection
  • webapps
    		•  Aryan Chehreghani
    2022-01-13 Online Diagnostic Lab Management System 1.0 – SQL Injection (Unauthenticated)
  • webapps
    		•  Himash
    2022-01-13 Online Diagnostic Lab Management System 1.0 – Stored Cross Site Scripting (XSS)
  • webapps
    		•  Himash
    2022-01-13 Online Diagnostic Lab Management System 1.0 – Account Takeover (Unauthenticated)
  • webapps
    		•  Himash
    2022-01-13 SalonERP 3.0.1 – ‘sql’ SQL Injection (Authenticated)
  • webapps
    		•  Betul Denizler