webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2021-10-25 Balbooa Joomla Forms Builder 2.0.6 – SQL Injection (Unauthenticated)
  • webapps
    		•  blockomat2100
    2021-10-25 Apache HTTP Server 2.4.50 – Remote Code Execution (RCE) (2)
  • webapps
    		•  ThelastVvV
    2021-10-25 Build Smart ERP 21.0817 – ‘eidValue’ SQL Injection (Unauthenticated)
  • webapps
    		•  Nehru Sethuraman
    2021-10-25 Engineers Online Portal 1.0 – File Upload Remote Code Execution (RCE)
  • webapps
    		•  SadKris
    2021-10-25 WordPress Plugin TaxoPress 3.0.7.1 – Stored Cross-Site Scripting (XSS) (Authenticated)
  • webapps
    		•  Akash Patil
    2021-10-25 Hikvision Web Server Build 210702 – Command Injection
  • webapps
    		•  bashis
    2021-10-22 Online Course Registration 1.0 – Blind Boolean-Based SQL Injection (Authenticated)
  • webapps
    		•  Sam Ferguson
    2021-10-22 Clinic Management System 1.0 – SQL injection to Remote Code Execution
  • webapps
    		•  Pablo Santiago
    2021-10-22 Jetty 9.4.37.v20210219 – Information Disclosure
  • webapps
    		•  Mayank Deshmukh
    2021-10-21 Easy Chat Server 3.1 – Directory Traversal and Arbitrary File Read
  • webapps
    		•  z4nd3r
    2021-10-21 Small CRM 3.0 – ‘description’ Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Ghuliev
    2021-10-20 Dolibarr ERP-CRM 14.0.2 – Stored Cross-Site Scripting (XSS) / Privilege Escalation
  • webapps
    		•  Oscar Gil Gutierrez
    2021-10-20 SonicWall SMA 10.2.1.0-17sv – Password Reset
  • webapps
    		•  Jacob Baines
    2021-10-19 Online Motorcycle (Bike) Rental System 1.0 – Blind Time-Based SQL Injection (Unauthenticated)
  • webapps
    		•  Chase Comardelle
    2021-10-19 myfactory FMS 7.1-911 – ‘Multiple’ Reflected Cross-Site Scripting (XSS)
  • webapps
    		•  RedTeam Pentesting GmbH
    2021-10-19 WordPress Theme Enfold 4.8.3 – Reflected Cross-Site Scripting (XSS)
  • webapps
    		•  David Álvarez Robles
    2021-10-18 Company’s Recruitment Management System 1.0 – ‘description’ Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Aniket Deshmane
    2021-10-18 Mitsubishi Electric & INEA SmartRTU – Reflected Cross-Site Scripting (XSS)
  • webapps
    		•  Hamit CİBO
    2021-10-18 Mitsubishi Electric & INEA SmartRTU – Source Code Disclosure
  • webapps
    		•  Hamit CİBO
    2021-10-18 Company’s Recruitment Management System 1.0. – ‘title’ Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Aniket Deshmane
    2021-10-18 WordPress Plugin Duplicator 1.3.26 – Unauthenticated Arbitrary File Read
  • webapps
    		•  nam3lum
    2021-10-18 Support Board 3.3.4 – ‘Message’ Stored Cross-Site Scripting (XSS)
  • webapps
    		•  John Jefferson Li
    2021-10-18 Plastic SCM 10.0.16.5622 – WebAdmin Server Access
  • webapps
    		•  Basavaraj Banakar
    2021-10-18 Company’s Recruitment Management System 1.0 – ‘Add New user’ Cross-Site Request Forgery (CSRF)
  • webapps
    		•  Aniket Deshmane