Exploit
Web
Applications 2022()
-
Web Applications
H
2023 2022 2021
2020
2019
2018
2022-06-10
Confluence Data Center 7.18.0 - Remote Code Execution (RCE)
WebApps
Java
2022-06-10
WordPress Plugin Motopress Hotel Booking Lite 4.2.4 - Stored Cross-Site Scripting (XSS)
WebApps
PHP
2022-06-03
Microweber CMS 1.2.15 - Account Takeover
WebApps
PHP
2022-06-03
Contao 4.13.2 - Cross-Site Scripting (XSS)
WebApps
PHP
2022-05-25
qdPM 9.1 - Remote Code Execution (RCE) (Authenticated) (v2)
WebApps
PHP
2022-05-23
m1k1o's Blog v.10 - Remote Code Execution (RCE) (Authenticated)
WebApps
PHP
2022-05-23
OpenCart v3.x Newsletter Module - Blind SQLi
WebApps
PHP
2022-05-17
Showdoc 2.10.3 - Stored Cross-Site Scripting (XSS)
WebApps
PHP
2022-05-17
T-Soft E-Commerce 4 - SQLi (Authenticated)
WebApps
Multiple
2022-05-17
T-Soft E-Commerce 4 - 'UrunAdi' Stored Cross-Site Scripting (XSS)
WebApps
Multiple
2022-05-17
Survey Sparrow Enterprise Survey Software 2022 - Stored Cross-Site Scripting (XSS)
WebApps
Multiple
2022-05-12
TLR-2005KSH - Arbitrary File Delete
WebApps
Hardware
2022-05-12
Royal Event Management System 1.0 - 'todate' SQL Injection (Authenticated)
WebApps
PHP
2022-05-12
College Management System 1.0 - 'course_code' SQL Injection (Authenticated)
WebApps
PHP
2022-05-11
TLR-2005KSH - Arbitrary File Upload
WebApps
Hardware
2022-05-11
WordPress Plugin stafflist 3.1.2 - SQLi (Authenticated)
WebApps
PHP
2022-05-11
Joomla Plugin SexyPolling 2.1.7 - SQLi
WebApps
PHP
2022-05-11
WordPress Plugin Blue Admin 21.06.01 - Cross-Site Request Forgery (CSRF)
WebApps
PHP
2022-05-11
MyBB 1.8.29 - MyBB 1.8.29 - Remote Code Execution (RCE) (Authenticated)
WebApps
PHP
2022-05-11
Beehive Forum - Account Takeover
WebApps
PHP
2022-05-11
PHProjekt PhpSimplyGest v1.3. - Stored Cross-Site Scripting (XSS)
WebApps
PHP
2022-05-11
Navigate CMS 2.9.4 - Server-Side Request Forgery (SSRF) (Authenticated)
WebApps
PHP
2022-05-11
Explore CMS 1.0 - SQL Injection
WebApps
PHP
2022-05-11
Anuko Time Tracker - SQLi (Authenticated)
WebApps
PHP
2022-05-11
e107 CMS v3.2.1 - Multiple Vulnerabilities
WebApps
PHP
2022-05-11
Cyclos 4.14.7 - 'groupId' DOM Based Cross-Site Scripting (XSS)
WebApps
Multiple
2022-05-11
Cyclos 4.14.7 - DOM Based Cross-Site Scripting (XSS)
WebApps
Multiple
2022-05-11
CSZ CMS 1.3.0 - 'Multiple' Blind SQLi
WebApps
PHP
2022-05-11
Bitrix24 - Remote Code Execution (RCE) (Authenticated)
WebApps
PHP
2022-05-11
Magento eCommerce CE v2.3.5-p2 - Blind SQLi
WebApps
PHP
2022-05-11
WordPress Plugin Advanced Uploader 4.2 - Arbitrary File Upload (Authenticated)
WebApps
PHP
2022-05-11
WebTareas 2.4 - Blind SQLi (Authenticated)
WebApps
PHP
2022-05-11
Microfinance Management System 1.0 - 'customer_number' SQLi
WebApps
PHP
2022-05-11
ImpressCMS v1.4.4 - Unrestricted File Upload
WebApps
PHP
2022-04-26
GitLab 14.9 - Stored Cross-Site Scripting (XSS)
WebApps
Ruby
2022-04-26
Gitlab 14.9 - Authentication Bypass
WebApps
Ruby
2022-04-19
Fuel CMS 1.5.0 - Cross-Site Request Forgery (CSRF)
WebApps
PHP
2022-04-19
WordPress Plugin Elementor 3.6.2 - Remote Code Execution (RCE) (Authenticated)
WebApps
PHP
2022-04-19
PKP Open Journals System 3.3 - Cross-Site Scripting (XSS)
WebApps
PHP
2022-04-19
REDCap 11.3.9 - Stored Cross Site Scripting
WebApps
PHP
2022-04-19
WordPress Plugin Popup Maker 1.16.5 - Stored Cross-Site Scripting (Authenticated)
WebApps
PHP
2022-04-19
WordPress Plugin Videos sync PDF 1.7.4 - Stored Cross Site Scripting (XSS)
WebApps
PHP
2022-04-19
Scriptcase 9.7 - Remote Code Execution (RCE)
WebApps
PHP
2022-04-19
Easy Appointments 1.4.2 - Information Disclosure
WebApps
PHP
2022-04-19
WordPress Plugin Motopress Hotel Booking Lite 4.2.4 - SQL Injection
WebApps
PHP
2022-04-11
Razer Sila - Command Injection
WebApps
Hardware
2022-04-11
Razer Sila - Local File Inclusion (LFI)
WebApps
Hardware
2022-04-11
Telesquare TLR-2855KS6 - Arbitrary File Deletion
WebApps
Hardware
2022-04-11
Telesquare TLR-2855KS6 - Arbitrary File Creation
WebApps
Hardware
2022-04-11
SAM SUNNY TRIPOWER 5.0 - Insecure Direct Object Reference (IDOR)
WebApps
Hardware
2022-04-07
ICEHRM 31.0.0.0S - Cross-site Request Forgery (CSRF) to Account Deletion
WebApps
PHP
2022-04-07
qdPM 9.2 - Cross-site Request Forgery (CSRF)
WebApps
PHP
2022-04-07
minewebcms 1.15.2 - Cross-site Scripting (XSS)
WebApps
PHP
2022-04-07
KLiK Social Media Website 1.0 - 'Multiple' SQLi
WebApps
PHP
2022-04-07
Zenario CMS 9.0.54156 - Remote Code Execution (RCE) (Authenticated)
WebApps
PHP
2022-03-30
WordPress Plugin Easy Cookie Policy 1.6.2 - Broken Access Control to Stored XSS
WebApps
PHP
2022-03-30
CSZ CMS 1.2.9 - 'Multiple' Blind SQLi(Authenticated)
WebApps
PHP
2022-03-30
WordPress Plugin admin-word-count-column 2.2 - Local File Read
WebApps
PHP
2022-03-30
WordPress Plugin video-synchro-pdf 1.7.4 - Local File Inclusion
WebApps
PHP
2022-03-30
WordPress Plugin cab-fare-calculator 1.0.3 - Local File Inclusion
WebApps
PHP
2022-03-30
WordPress Plugin Curtain 1.0.2 - Cross-site Request Forgery (CSRF)
WebApps
PHP
2022-03-30
Drupal avatar_uploader v7.x-1.0-beta8 - Cross Site Scripting (XSS)
WebApps
PHP
2022-03-30
Atom CMS 2.0 - Remote Code Execution (RCE)
WebApps
PHP
2022-03-30
ImpressCMS 1.4.2 - Remote Code Execution (RCE)
WebApps
PHP
2022-03-23
WordPress Plugin amministrazione-aperta 3.7.3 - Local File Read - Unauthenticated
WebApps
PHP
2022-03-22
ICEHRM 31.0.0.0S - Cross-site Request Forgery (CSRF) to Account Takeover
WebApps
PHP
2022-03-21
Wordpress Plugin iQ Block Country 1.2.13 - Arbitrary File Deletion via Zip Slip (Authenticated)
WebApps
PHP
2022-03-16
Tiny File Manager 2.4.6 - Remote Code Execution (RCE)
WebApps
PHP
2022-03-16
Pluck CMS 4.7.16 - Remote Code Execution (RCE) (Authenticated)
WebApps
PHP
2022-03-16
Moodle 3.11.5 - SQLi (Authenticated)
WebApps
PHP
2022-03-14
Baixar GLPI Project 9.4.6 - SQLi
WebApps
Multiple
2022-03-10
Zabbix 5.0.17 - Remote Code Execution (RCE) (Authenticated)
WebApps
PHP
2022-03-09
Webmin 1.984 - Remote Code Execution (Authenticated)
WebApps
Linux
2022-03-07
Hasura GraphQL 2.2.0 - Information Disclosure
WebApps
Multiple
2022-03-07
Attendance and Payroll System v1.0 - SQLi Authentication Bypass
WebApps
PHP
2022-03-07
Attendance and Payroll System v1.0 - Remote Code Execution (RCE)
WebApps
PHP
2022-03-07
part-db 0.5.11 - Remote Code Execution (RCE)
WebApps
PHP
2022-03-07
Spring Cloud Gateway 3.1.0 - Remote Code Execution (RCE)
WebApps
Java
2022-03-02
Zyxel ZyWALL 2 Plus Internet Security Appliance - Cross-Site Scripting (XSS)
WebApps
Multiple
2022-03-02
Xerte 3.9 - Remote Code Execution (RCE) (Authenticated)
WebApps
PHP
2022-03-02
Xerte 3.10.3 - Directory Traversal (Authenticated)
WebApps
PHP
2022-02-28
Casdoor 1.13.0 - SQL Injection (Unauthenticated)
WebApps
Multiple
2022-02-28
Cipi Control Panel 3.1.15 - Stored Cross-Site Scripting (XSS) (Authenticated)
WebApps
Linux
2022-02-23
Microweber CMS 1.2.10 - Local File Inclusion (Authenticated) (Metasploit)
WebApps
PHP
2022-02-23
WebHMI 4.1 - Stored Cross Site Scripting (XSS) (Authenticated)
WebApps
PHP
2022-02-23
WebHMI 4.1.1 - Remote Code Execution (RCE) (Authenticated)
WebApps
PHP
2022-02-23
Student Record System 1.0 - 'cid' SQLi (Authenticated)
WebApps
PHP
2022-02-23
aaPanel 6.8.21 - Directory Traversal (Authenticated)
WebApps
Linux
2022-02-23
Air Cargo Management System v1.0 - SQLi
WebApps
PHP
2022-02-23
Simple Real Estate Portal System 1.0 - 'id' SQLi
WebApps
PHP
2022-02-21
Dbltek GoIP - Local File Inclusion
WebApps
Hardware
2022-02-21
FileCloud 21.2 - Cross-Site Request Forgery (CSRF)
WebApps
PHP
2022-02-21
WordPress Plugin WP User Frontend 3.5.25 - SQLi (Authenticated)
WebApps
PHP
2022-02-21
Thinfinity VirtualUI 2.5.26.2 - Information Disclosure
WebApps
Multiple
2022-02-21
Thinfinity VirtualUI 2.5.41.0 - IFRAME Injection
WebApps
Multiple
2022-02-21
Cab Management System 1.0 - Remote Code Execution (RCE) (Authenticated)
WebApps
PHP
2022-02-21
Microweber 1.2.11 - Remote Code Execution (RCE) (Authenticated)
WebApps
PHP
2022-02-21
Cab Management System 1.0 - 'id' SQLi (Authenticated)
WebApps
PHP
2022-02-21
WordPress Plugin Perfect Survey - 1.5.1 - SQLi (Unauthenticated)
WebApps
PHP
2022-02-18
Fortinet Fortimail 7.0.1 - Reflected Cross-Site Scripting (XSS)
WebApps
Multiple
2022-02-18
Hotel Druid 3.0.3 - Remote Code Execution (RCE)
WebApps
PHP
2022-02-18
WordPress Plugin dzs-zoomsounds 6.60 - Remote Code Execution (RCE) (Unauthenticated)
WebApps
PHP
2022-02-18
WordPress Plugin MasterStudy LMS 2.7.5 - Unauthenticated Admin Account Creation
WebApps
PHP
2022-02-16
WordPress Plugin Error Log Viewer 1.1.1 - Arbitrary File Clearing (Authenticated)
WebApps
PHP
2022-02-16
Network Video Recorder NVR304-16EP - Reflected Cross-Site Scripting (XSS) (Unauthenticated)
WebApps
Hardware
2022-02-16
ServiceNow - Username Enumeration
WebApps
Multiple
2022-02-16
Simple Student Quarterly Result/Grade System 1.0 - SQLi Authentication Bypass
WebApps
PHP
2022-02-16
Multi-Vendor Online Groceries Management System 1.0 - 'id' Blind SQL Injection
WebApps
PHP
2022-02-11
Kyocera Command Center RX ECOSYS M2035dn - Directory Traversal File Disclosure (Unauthenticated)
WebApps
Hardware
2022-02-11
Subrion CMS 4.2.1 - Cross Site Request Forgery (CSRF) (Add Amin)
WebApps
PHP
2022-02-11
Accounting Journal Management System 1.0 - 'id' SQLi (Authenticated)
WebApps
PHP
2022-02-10
WordPress Plugin Jetpack 9.1 - Cross Site Scripting (XSS)
WebApps
PHP
2022-02-10
WordPress Plugin Contact Form Builder 1.6.1 - Cross-Site Scripting (XSS)
WebApps
PHP
2022-02-10
WordPress Plugin Secure Copy Content Protection and Content Locking 2.8.1 - SQL-Injection (Unauthenticated)
WebApps
PHP
2022-02-10
Home Owners Collection Management System 1.0 - 'id' Blind SQL Injection
WebApps
PHP
2022-02-10
Home Owners Collection Management System 1.0 - Remote Code Execution (RCE) (Authenticated)
WebApps
PHP
2022-02-10
Home Owners Collection Management System 1.0 - Account Takeover (Unauthenticated)
WebApps
PHP
2022-02-10
Hospital Management Startup 1.0 - 'Multiple' SQLi
WebApps
PHP
2022-02-09
AtomCMS v2.0 - SQLi
WebApps
PHP
2022-02-09
Exam Reviewer Management System 1.0 - Remote Code Execution (RCE) (Authenticated)
WebApps
PHP
2022-02-09
Exam Reviewer Management System 1.0 - ‘id’ SQL Injection
WebApps
PHP
2022-02-08
WordPress Plugin CP Blocks 1.0.14 - Stored Cross Site Scripting (XSS)
WebApps
PHP
2022-02-08
WordPress Plugin Security Audit 1.0.0 - Stored Cross Site Scripting (XSS)
WebApps
PHP
2022-02-08
Wordpress Plugin Simple Job Board 2.9.3 - Local File Inclusion
WebApps
PHP
2022-02-08
WordPress Plugin International Sms For Contact Form 7 Integration V1.2 - Cross Site Scripting (XSS)
WebApps
PHP
2022-02-08
Hospital Management System 4.0 - 'multiple' SQL Injection
WebApps
PHP
2022-02-08
FileBrowser 2.17.2 - Cross Site Request Forgery (CSRF) to Remote Code Execution (RCE)
WebApps
Multiple
2022-02-08
Strapi CMS 3.0.0-beta.17.4 - Set Password (Unauthenticated) (Metasploit)
WebApps
NodeJS
2022-02-08
Hotel Reservation System 1.0 - SQLi (Unauthenticated)
WebApps
PHP
2022-02-04
Servisnet Tessa - Add sysAdmin User (Unauthenticated) (Metasploit)
WebApps
Multiple
2022-02-04
Servisnet Tessa - MQTT Credentials Dump (Unauthenticated) (Metasploit)
WebApps
Multiple
2022-02-04
Servisnet Tessa - Privilege Escalation (Metasploit)
WebApps
Multiple
2022-02-04
WordPress Plugin IP2Location Country Blocker 2.26.7 - Stored Cross Site Scripting (XSS) (Authenticated)
WebApps
PHP
2022-02-04
WBCE CMS 1.5.2 - Remote Code Execution (RCE) (Authenticated)
WebApps
PHP
2022-02-02
WordPress Plugin Learnpress 4.1.4.1 - Arbitrary Image Renaming
WebApps
PHP
2022-02-02
WordPress Plugin Post Grid 2.1.1 - Cross Site Scripting (XSS)
WebApps
PHP
2022-02-02
WordPress Plugin Product Slider for WooCommerce 1.13.21 - Cross Site Scripting (XSS)
WebApps
PHP
2022-02-02
WordPress Plugin Contact Form Check Tester 1.0.2 - Broken Access Control
WebApps
PHP
2022-02-02
PHP Unit 4.8.28 - Remote Code Execution (RCE) (Unauthenticated)
WebApps
PHP
2022-02-02
Huawei DG8045 Router 1.0 - Credential Disclosure
WebApps
Hardware
2022-02-02
Moodle 3.11.4 - SQL Injection
WebApps
PHP
2022-02-02
PHP Restaurants 1.0 - SQLi (Unauthenticated)
WebApps
PHP
2022-02-02
Wordpress Plugin 404 to 301 2.0.2 - SQL-Injection (Authenticated)
WebApps
PHP
2022-02-02
WordPress Plugin Domain Check 1.0.16 - Reflected Cross-Site Scripting (XSS) (Authenticated)
WebApps
PHP
2022-02-02
Wordpress Plugin Download Monitor WordPress V 4.4.4 - SQL Injection (Authenticated)
WebApps
PHP
2022-02-02
Chamilo LMS 1.11.14 - Account Takeover
WebApps
PHP
2022-02-02
uBidAuction v2.0.1 - 'Multiple' Cross Site Scripting (XSS)
WebApps
PHP
2022-02-02
Ametys CMS v4.4.1 - Cross Site Scripting (XSS)
WebApps
Java
2022-01-27
WordPress Plugin Modern Events Calendar V 6.1 - SQL Injection (Unauthenticated)
WebApps
PHP
2022-01-27
WordPress Plugin RegistrationMagic V 5.0.1.5 - SQL Injection (Authenticated)
WebApps
PHP
2022-01-27
WordPress Plugin Mortgage Calculators WP 1.52 - Stored Cross-Site Scripting (XSS) (Authenticated)
WebApps
PHP
2022-01-25
PHPIPAM 1.4.4 - SQLi (Authenticated)
WebApps
PHP
2022-01-25
Online Project Time Management System 1.0 - Multiple Stored Cross Site Scripting (XSS) (Authenticated)
WebApps
PHP
2022-01-25
Online Project Time Management System 1.0 - SQLi (Authenticated)
WebApps
PHP
2022-01-24
Landa Driving School Management System 2.0.1 - Arbitrary File Upload
WebApps
PHP
2022-01-19
Affiliate Pro 1.7 - 'Multiple' Cross Site Scripting (XSS)
WebApps
PHP
2022-01-19
Rocket LMS 1.1 - Persistent Cross Site Scripting (XSS)
WebApps
PHP
2022-01-19
uDoctorAppointment v2.1.1 - 'Multiple' Cross Site Scripting (XSS)
WebApps
PHP
2022-01-18
Creston Web Interface 1.0.0.2159 - Credential Disclosure
WebApps
Hardware
2022-01-18
Nyron 1.0 - SQLi (Unauthenticated)
WebApps
ASPX
2022-01-18
Simple Chatbot Application 1.0 - 'message' Blind SQLi
WebApps
PHP
2022-01-18
Simple Chatbot Application 1.0 - Remote Code Execution (RCE)
WebApps
PHP
2022-01-18
OpenBMCS 2.4 - Information Disclosure
WebApps
PHP
2022-01-18
OpenBMCS 2.4 - Server Side Request Forgery (SSRF) (Unauthenticated)
WebApps
PHP
2022-01-18
OpenBMCS 2.4 - Create Admin / Remote Privilege Escalation
WebApps
PHP
2022-01-18
OpenBMCS 2.4 - SQLi (Authenticated)
WebApps
PHP
2022-01-18
OpenBMCS 2.4 - Cross Site Request Forgery (CSRF)
WebApps
PHP
2022-01-18
Online Resort Management System 1.0 - SQLi (Authenticated)
WebApps
PHP
2022-01-13
WordPress Core 5.8.2 - 'WP_Query' SQL Injection
WebApps
PHP
2022-01-13
Online Diagnostic Lab Management System 1.0 - SQL Injection (Unauthenticated)
WebApps
PHP
2022-01-13
Online Diagnostic Lab Management System 1.0 - Stored Cross Site Scripting (XSS)
WebApps
PHP
2022-01-13
Online Diagnostic Lab Management System 1.0 - Account Takeover (Unauthenticated)
WebApps
PHP
2022-01-13
SalonERP 3.0.1 - 'sql' SQL Injection (Authenticated)
WebApps
PHP
2022-01-13
Hospitals Patient Records Management System 1.0 - 'doctors' Stored Cross Site Scripting (XSS)
WebApps
PHP
2022-01-13
Hospitals Patient Records Management System 1.0 - 'room_list' Stored Cross Site Scripting (XSS)
WebApps
PHP
2022-01-13
Hospitals Patient Records Management System 1.0 - 'room_types' Stored Cross Site Scripting (XSS)
WebApps
PHP
2022-01-12
WordPress Plugin Frontend Uploader 1.3.2 - Stored Cross Site Scripting (XSS) (Unauthenticated)
WebApps
PHP
2022-01-10
Open-AudIT Community 4.2.0 - Cross-Site Scripting (XSS) (Authenticated)
WebApps
PHP
2022-01-10
Online Railway Reservation System 1.0 - 'Multiple' Stored Cross Site Scripting (XSS) (Unauthenticated)
WebApps
PHP
2022-01-10
Online Railway Reservation System 1.0 - Admin Account Creation (Unauthenticated)
WebApps
PHP
2022-01-10
Online Railway Reservation System 1.0 - Remote Code Execution (RCE) (Unauthenticated)
WebApps
PHP
2022-01-10
Online Railway Reservation System 1.0 - 'id' SQL Injection (Unauthenticated)
WebApps
PHP
2022-01-10
HTTP Commander 3.1.9 - Stored Cross Site Scripting (XSS)
WebApps
Windows
2022-01-07
Online Veterinary Appointment System 1.0 - 'Multiple' SQL Injection
WebApps
PHP
2022-01-05
WordPress Plugin AAWP 3.16 - 'tab' Reflected Cross Site Scripting (XSS) (Authenticated)
WebApps
PHP
2022-01-05
Projeqtor v9.3.1 - Stored Cross Site Scripting (XSS)
WebApps
PHP
2022-01-05
openSIS Student Information System 8.0 - 'multiple' SQL Injection
WebApps
PHP
2022-01-05
Vodafone H-500-s 3.5.10 - WiFi Password Disclosure
WebApps
Hardware
2022-01-05
Terramaster TOS 4.2.15 - Remote Code Execution (RCE) (Unauthenticated)
WebApps
PHP
2022-01-05
Virtual Airlines Manager 2.6.2 - 'multiple' SQL Injection
WebApps
PHP
2022-01-05
BeyondTrust Remote Support 6.0 - Reflected Cross-Site Scripting (XSS) (Unauthenticated)
WebApps
Multiple
2022-01-05
Hospitals Patient Records Management System 1.0 - Account TakeOver
WebApps
PHP
2022-01-05
Hospitals Patient Records Management System 1.0 - 'id' SQL Injection (Authenticated)
WebApps
PHP
2022-01-05
Hostel Management System 2.1 - Cross Site Scripting (XSS)
WebApps
PHP
2022-01-05
Nettmp NNT 5.1 - SQLi Authentication Bypass
WebApps
PHP
2022-01-05
SAFARI Montage 8.5 - Reflected Cross Site Scripting (XSS)
WebApps
PHP
2022-01-05
Library System in PHP 1.0 - 'publisher name' Stored Cross-Site Scripting (XSS)
WebApps
PHP
2022-01-05
WordPress Plugin The True Ranker 2.2.2 - Arbitrary File Read (Unauthenticated)
WebApps
PHP
2022-01-05
Online Admission System 1.0 - Remote Code Execution (RCE) (Unauthenticated)
WebApps
PHP
2022-01-05
Movie Rating System 1.0 - SQLi to RCE (Unauthenticated)
WebApps
PHP
2022-01-05
Movie Rating System 1.0 - Broken Access Control (Admin Account Creation) (Unauthenticated)
WebApps
PHP
2022-01-05
WordPress Plugin WP Visitor Statistics 4.7 - SQL Injection
WebApps
PHP
2022-01-05
WordPress Plugin Contact Form Entries 1.1.6 - Cross Site Scripting (XSS) (Unauthenticated)
WebApps
PHP
2022-01-05
RiteCMS 3.1.0 - Remote Code Execution (RCE) (Authenticated)
WebApps
PHP
2022-01-05
RiteCMS 3.1.0 - Arbitrary File Deletion (Authenticated)
WebApps
PHP
2022-01-05
RiteCMS 3.1.0 - Arbitrary File Overwrite (Authenticated)
WebApps
PHP
2022-01-05
CMSimple 5.4 - Cross Site Scripting (XSS)
WebApps
PHP