WEB

<<共1/238页 1 [2] [3] [4] [5] 下页末页 >>

Date	Description		Plat.	Author
2026-04-30	FUXA 1.2.8 - Authentication Bypass + RCE Exploit	11	WEB	joshua
2026-04-30	Python-Multipart 0.0.22 - Path Traversal	6	WEB	jefersoncardoso.dev
2026-04-30	Repetier-Server 1.4.10 - Path Traversal	6	WEB	banyamer
2026-04-30	HUSTOJ Zip-Slip v26.01.24 - RCE	8	WEB	Marshall Whittaker
2026-04-30	BusyBox 1.37.0 - Path Traversal	10	WEB	Calil Khalil
2026-04-30	JUNG Smart Visu Server 1.1.1050 - Dos	7	WEB	banyamer
2026-04-30	SumatraPDF 3.5.2 - Remote Code Execution	7	WEB	banyamer
2026-04-30	NiceGUI 3.6.1 - Path Traversal	6	WEB	banyamer
2026-04-30	Frigate NVR 0.16.3 - Remote Code Execution	4	WEB	jduardo2704
2026-04-30	Js2Py 0.74 - RCE	7	WEB	alisunbul
2026-04-30	Camaleon CMS v2.9.0 - Path Traversal	4	WEB	velampudisakshi
2026-04-30	Cybersecurity AI (CAI) Framework 0.5.10 - Command Injection	4	WEB	banyamer
2026-04-30	Erugo 0.2.14 - Remote Code Execution (RCE)	4	WEB	abdulmoiz
2026-04-30	deephas 1.0.7 - Prototype Pollution	4	WEB	banyamer
2026-04-30	SUSE Manager 4.3.15 - Code Execution	4	WEB	wjmaj98
2026-04-29	HAX CMS 24.x - Stored Cross-Site Scripting (XSS)	6	WEB	banyamer
2026-04-29	Craft CMS 5.6.16 - RCE	6	WEB	banyamer
2026-04-29	phpMyFAQ 4.0.16 - Improper Authorization	7	WEB	contact
2026-04-29	GeographicLib v2.5.1 - stack buffer overflow	6	WEB	rosario
2026-04-29	OpenKM 6.3.12 - Multiple	6	WEB	skumar
2026-04-29	GUnet OpenEclass E-learning platform < 4.2 - Remote Code Execution (RCE)	8	WEB	unico007x
2026-04-29	JuzaWeb CMS 3.4.2 - Authenticated Remote Code Execution	6	WEB	sardordev02
2026-04-29	FacturaScripts 2025.43 - XSS	4	WEB	uvettrivel007
2026-04-29	Xibo CMS 4.3.0 - RCE via SSTI	6	WEB	Cristian Branet
2026-04-29	LangChain Core 1.2.4 - SSTI/RCE	7	WEB	banyamer
2026-04-22	WordPress Plugin 5.2.0 - Broken Access Control	18	WEB	cydev.turing
2026-04-10	D-Link DIR-650IN - Authenticated Command Injection	22	WEB	Sanjay Singh
2026-04-09	React Server 19.2.0 - Remote Code Execution	28	WEB	danieljavanrad
2026-04-09	RomM 4.4.0 - XSS_CSRF Chain	17	WEB	mmohammedheshamm
2026-04-09	Jumbo Website Manager - Remote Code Execution	22	WEB	Mirabbas Ağalarov
2026-04-08	FortiWeb 8.0.2 - Remote Code Execution	42	WEB	Mohammed Idrees Banyamer
2026-04-08	xibocms 3.3.4 - RCE	26	WEB	complexusprada
2026-04-08	Horilla v1.3 - RCE	29	WEB	nakleh
2026-04-06	Fortinet FortiWeb v8.0.1 - Auth Bypass	24	WEB	nu11secur1ty
2026-04-06	ASP.net 8.0.10 - Bypass	23	WEB	Mohammed Idrees Banyamer
2026-04-06	Grafana 11.6.0 - SSRF	25	WEB	Beatriz Fresno Naumova
2026-04-06	Zhiyuan OA - arbitrary file upload leading	22	WEB	Beatriz Fresno Naumova
2026-04-06	WBCE CMS 1.6.4 - Remote Code Execution	12	WEB	red
2026-04-06	RiteCMS 3.1.0 - Authenticated Remote Code Execution	7	WEB	red
2026-04-06	WordPress Madara - Local File Inclusion	13	WEB	Beatriz Fresno Naumova
2026-03-03	WordPress Backup Migration 1.3.7 - Remote Command Execution	82	WEB	dangwenjing
2026-03-03	mailcow 2025-01a - Host Header Password Reset Poisoning	37	WEB	alvarez
2026-03-03	Easy File Sharing Web Server v7.2 - Buffer Overflow	36	WEB	diogo
2026-03-03	WeGIA 3.5.0 - SQL Injection	46	WEB	onurdemir
2026-03-03	Boss Mini v1.4.0 - Local File Inclusion (LFI)	27	WEB	andersoncezar048
2026-02-11	motionEye 0.43.1b4 - RCE	55	WEB	prabhat
2026-02-04	OctoPrint 1.11.2 - File Upload	77	WEB	prabhat
2026-02-04	aiohttp 3.9.1 - directory traversal PoC	52	WEB	Beatriz Fresno Naumova
2026-02-04	FortiWeb Fabric Connector 7.6.x - SQL Injection to Remote Code Execution	51	WEB	Milad Karimi (Ex3ptionaL)
2026-02-02	Piranha CMS 12.0 - Stored XSS in Text Block	54	WEB	terminalvenoms
2026-02-02	RPi-Jukebox-RFID 2.8.0 - Stored Cross-Site Scripting (XSS)	38	WEB	Beatriz Fresno Naumova
2026-02-02	D-Link DIR-825 Rev.B 2.10 - Stack Buffer Overflow (DoS)	36	WEB	Beatriz Fresno Naumova
2026-01-17	RPi-Jukebox-RFID 2.8.0 - Remote Command Execution	60	WEB	Beatriz Fresno Naumova
2026-01-17	Siklu EtherHaul Series EH-8010 - Arbitrary File Upload	48	WEB	semaja2
2026-01-17	Siklu EtherHaul Series EH-8010 - Remote Command Execution	40	WEB	semaja2
2025-12-25	WordPress Quiz Maker 6.7.0.56 - SQL Injection	115	WEB	Rahul Sreenivasan
2025-12-25	Chained Quiz 1.3.5 - Unauthenticated Insecure Direct Object Reference via Cookie	34	WEB	0xsabre
2025-12-25	FreeBSD rtsold 15.x - Remote Code Execution via DNSSL	55	WEB	Lukas Johannes Möller
2025-12-16	Summar Employee Portal 3.98.0 - Authenticated SQL Injection	71	WEB	Peter Gabaldon
2025-12-16	esm-dev 136 - Path Traversal	47	WEB	Byte Reaper
2025-12-08	Pluck 4.7.7-dev2 - PHP Code Execution	76	WEB	CodeSecLab
2025-12-03	phpMyFAQ 2.9.8 - Cross-Site Request Forgery(CSRF)	60	WEB	CodeSecLab
2025-12-03	phpMyFAQ 2.9.8 - Cross-Site Request Forgery (CSRF)	44	WEB	CodeSecLab
2025-12-03	MaNGOSWebV4 4.0.6 - Reflected XSS	43	WEB	CodeSecLab
2025-12-03	Django 5.1.13 - SQL Injection	94	WEB	Wafcontrol Security Team
2025-12-03	phpMyFaq 2.9.8 - Cross Site Request Forgery (CSRF)	46	WEB	CodeSecLab
2025-12-03	MobileDetect 2.8.31 - Cross-Site Scripting (XSS)	29	WEB	CodeSecLab
2025-12-03	phpIPAM 1.4 - SQL-Injection	39	WEB	CodeSecLab
2025-12-03	OpenRepeater 2.1 - OS Command Injection	37	WEB	CodeSecLab
2025-12-03	phpMyAdmin 5.0.0 - SQL Injection	49	WEB	CodeSecLab
2025-12-03	RosarioSIS 6.7.2 - Cross Site Scripting (XSS)	37	WEB	CodeSecLab
2025-12-03	RosarioSIS 6.7.2 - Cross-Site Scripting (XSS)	32	WEB	CodeSecLab
2025-12-03	PluckCMS 4.7.10 - Unrestricted File Upload	47	WEB	CodeSecLab
2025-12-03	openSIS Community Edition 8.0 - SQL Injection	29	WEB	CodeSecLab
2025-12-02	YOURLS 1.8.2 - Cross-Site Request Forgery (CSRF)	24	WEB	CodeSecLab
2025-12-02	phpMyFAQ 3.1.7 - Reflected Cross-Site Scripting (XSS)	42	WEB	CodeSecLab
2025-12-02	phpIPAM 1.5.1 - SQL Injection	34	WEB	CodeSecLab
2025-12-02	Piwigo 13.6.0 - SQL Injection	35	WEB	CodeSecLab
2025-12-02	phpIPAM 1.6 - Reflected-Cross-Site Scripting (XSS)	30	WEB	CodeSecLab
2025-12-02	phpIPAM 1.6 - Reflected Cross-Site Scripting (XSS)	31	WEB	CodeSecLab
2025-10-31	Flowise 3.0.4 - Remote Code Execution (RCE)	116	WEB	nltt0
2025-10-29	Casdoor 2.95.0 - Cross-Site Request Forgery (CSRF)	67	WEB	Van Lam Nguyen
2025-09-16	Tourism Management System 2.0 - Arbitrary Shell Upload	161	WEB	Debug Security
2025-09-16	Casdoor 2.55.0 - Cross-Site Request Forgery (CSRF)	83	WEB	Van Lam Nguyen
2025-09-16	dotCMS 25.07.02-1 - Authenticated Blind SQL Injection	82	WEB	Matan Sandori (OSCP_ OSEP_ OSWE)
2025-09-16	ELEX WooCommerce WordPress Plugin 1.4.3 - SQL Injection	77	WEB	Byte Reaper
2025-09-16	XWiki Platform 15.10.10 - Metasploit Module for Remote Code Execution (RCE)	76	WEB	Maksim Rogov
2025-09-16	Concrete CMS 9.4.3 - Stored XSS	76	WEB	Chokri Hammedi
2025-08-26	StoryChief Wordpress Plugin 1.0.42 - Arbitrary File Upload	142	WEB	xpl0dec
2025-08-26	Lingdang CRM 8.6.4.7 - SQL Injection	113	WEB	Beatriz Fresno Naumova
2025-08-26	Birth Chart Compatibility WordPress Plugin 2.0 - Full Path Disclosure	68	WEB	Byte Reaper
2025-08-18	Lantronix Provisioning Manager 7.10.3 - XML External Entity Injection (XXE)	74	WEB	Byte Reaper
2025-08-18	Soosyze CMS 2.0 - Brute Force Login	84	WEB	Beatriz Fresno Naumova
2025-08-18	RiteCMS 3.0.0 - Reflected Cross Site Scripting (XSS)	66	WEB	Gurjot Singh
2025-08-18	BigAnt Office Messenger 5.6.06 - SQL Injection	47	WEB	Nicat Abbasov
2025-08-11	JetBrains TeamCity 2023.11.4 - Authentication Bypass	59	WEB	İbrahimsql
2025-08-11	ServiceNow Multiple Versions - Input Validation & Template Injection	48	WEB	İbrahimsql
2025-08-11	Ghost CMS 5.59.1 - Arbitrary File Read	56	WEB	İbrahimsql
2025-08-11	Ghost CMS 5.42.1 - Path Traversal	48	WEB	İbrahimsql
2025-08-11	VMware vSphere Client 8.0.3.0 - Reflected Cross-Site Scripting (XSS)	80	WEB	Imraan Khan (Lich-Sec)
2025-08-11	Microsoft Edge Renderer Process (Mojo IPC) 134.0.6998.177 - Sandbox Escape	34	WEB	nu11secur1ty
2025-08-11	Grav CMS 1.7.48 - Remote Code Execution (RCE)	47	WEB	/bin/neko
2025-08-11	atjiu pybbs 6.0.0 - Cross Site Scripting (XSS)	63	WEB	Byte Reaper
2025-08-11	projectworlds Online Admission System 1.0 - SQL Injection	54	WEB	Byte Reaper
2025-08-03	Ultimate Member WordPress Plugin 2.6.6 - Privilege Escalation	94	WEB	Gurjot Singh
2025-08-03	LPAR2RRD 8.04 - Remote Code Execution (RCE)	42	WEB	Byte Reaper
2025-08-03	Copyparty 1.18.6 - Reflected Cross-Site Scripting (XSS)	31	WEB	Byte Reaper
2025-08-03	Gandia Integra Total 4.4.2236.1 - SQL Injection	27	WEB	Byte Reaper
2025-07-28	Adobe ColdFusion 2023.6 - Remote File Read	42	WEB	İbrahimsql
2025-07-28	Mezzanine CMS 6.1.0 - Stored Cross Site Scripting (XSS)	70	WEB	Kevin Dicks
2025-07-28	XWiki 14 - SQL Injection via getdeleteddocuments.vm	30	WEB	Byte Reaper
2025-07-28	Invision Community 4.7.20 - (calendar/view.php) SQL Injection	52	WEB	Egidio Romano
2025-07-22	LiveHelperChat 4.61 - Stored Cross Site Scripting (XSS) via Department Assignment Alias Nick Field	65	WEB	Manojkumar J
2025-07-22	LiveHelperChat 4.61 - Stored Cross Site Scripting (XSS) via the Chat Transfer Function	29	WEB	Manojkumar J
2025-07-22	LiveHelperChat 4.61 - Stored Cross Site Scripting (XSS) via Personal Canned Messages	26	WEB	Manojkumar J
2025-07-22	LiveHelperChat 4.61 - Stored Cross Site Scripting (XSS) via Facebook Integration Page Name Field	27	WEB	Manojkumar J
2025-07-22	LiveHelperChat 4.61 - Stored Cross Site Scripting (XSS) via Operator Surname	25	WEB	Manojkumar J
2025-07-22	LiveHelperChat 4.61 - Stored Cross Site Scripting (XSS) via Telegram Bot Username	30	WEB	Manojkumar J
2025-07-22	Discourse 3.1.1 - Unauthenticated Chat Message Access	34	WEB	İbrahimsql
2025-07-22	Joomla JS Jobs plugin 1.4.2 - SQL injection	29	WEB	Adam Wallwork
2025-07-22	Simple File List WordPress Plugin 4.2.2 - File Upload to RCE	44	WEB	Md Amanat Ullah (xSwads)
2025-07-22	Pie Register WordPress Plugin 3.7.1.4 - Authentication Bypass to RCE	30	WEB	Md Amanat Ullah (xSwads)
2025-07-16	WP Publications WordPress Plugin 1.2 - Stored XSS	67	WEB	Zeynalxan Quliyev
2025-07-16	White Star Software Protop 4.4.2-2024-11-27 - Local File Inclusion (LFI)	74	WEB	Imraan Khan (Lich-Sec)
2025-07-16	SugarCRM 14.0.0 - SSRF/Code Injection	58	WEB	Egidio Romano

<<共1/238页 1 [2] [3] [4] [5] 下页末页 >>