webapps

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2024-03-06 Lot Reservation Management System – Unauthenticated File Disclosure
  • webapps
    		•  Elijah Mandila Syoyi
    2024-03-06 Lot Reservation Management System – Unauthenticated File Upload and Remote Code Execution
  • webapps
    		•  Elijah Mandila Syoyi
    2024-03-05 kk Star Ratings < 5.4.6 - Rating Tampering via Race Condition
  • webapps
    		•  Mohammad Reza Omrani
    2024-03-05 Neontext WordPress Plugin – Stored XSS
  • webapps
    		•  Eren Car
    2024-03-05 Solar-Log 200 PM+ 3.6.0 Build 99 – 15.10.2019 – Stored XSS
  • webapps
    		•  Vincent McRae, Mesut Cetin
    2024-03-03 Easywall 0.3.1 – Authenticated Remote Command Execution
  • webapps
    		•  Melvin Mejia
    2024-03-03 Boss Mini 1.4.0 – local file inclusion
  • webapps
    		•  nltt0
    2024-03-03 Magento ver. 2.4.6 – XSLT Server Side Injection
  • webapps
    		•  tmrswrr
    2024-02-28 WP Fastest Cache 1.2.2 – Unauthenticated SQL Injection
  • webapps
    		•  Meryem Taşkın
    2024-02-28 Blood Bank v1.0 – Multiple SQL Injection
  • webapps
    		•  Ersin Erenler
    2024-02-28 WordPress Plugin Admin Bar & Dashboard Access Control Version: 1.2.8 – “Dashboard Redirect” field Stored Cross-Site Scripting (XSS)
  • webapps
    		•  Rachit Arora
    2024-02-28 WP Rocket < 2.10.3 - Local File Inclusion (LFI)
  • webapps
    		•  E1 Coders
    2024-02-27 Atlassian Confluence Data Center and Server – Authentication Bypass (Metasploit)
  • webapps
    		•  Emir Polat
    2024-02-27 WordPress Plugin Canto < 3.0.5 - Remote File Inclusion (RFI) and Remote Code Execution (RCE)
  • webapps
    		•  Leopoldo Angulo (leoanggal1)
    2024-02-27 Automatic-Systems SOC FL9600 FastLine – The device contains hardcoded login and password for super admin
  • webapps
    		•  Marcin Kozlowski
    2024-02-27 Automatic-Systems SOC FL9600 FastLine – Directory Transversal
  • webapps
    		•  Marcin Kozlowski
    2024-02-27 SuperStoreFinder – Multiple Vulnerabilities
  • webapps
    		•  bRpsd
    2024-02-27 Moodle 4.3 – Insecure Direct Object Reference
  • webapps
    		•  tmrswrr
    2024-02-27 Zoo Management System 1.0 – Unauthenticated RCE
  • webapps
    		•  Çağatay Ceyhan
    2024-02-27 dawa-pharma 1.0-2022 – Multiple-SQLi
  • webapps
    		•  nu11secur1ty
    2024-02-26 comments-like-dislike < 1.2.0 - Authenticated (Subscriber+) Plugin Setting Reset
  • webapps
    		•  Diaa Hanna
    2024-02-26 Online Shopping System Advanced – Sql Injection
  • webapps
    		•  Furkan Gedik
    2024-02-26 taskhub 2.8.7 – SQL Injection
  • webapps
    		•  CraCkEr
    2024-02-21 WEBIGniter v28.7.23 – Stored Cross Site Scripting (XSS)
  • webapps
    		•  Sagar Banwa