Exploits found on the INTERNET

This is live excerpt from our database. Available also using API

Edit Date Name Status
2020-07-02E-learning PHP Script 0.1.0 SQL InjectionPublished
2020-06-16PHP-Fusion 9.03.60 PHP Object Injection / SQL InjectionPublished
2020-06-05NeonLMS - Learning Management System PHP Laravel Script - 'Arbitrary' File DownloadPublished
2020-05-30NeonLMS - Learning Management System PHP Laravel Script - 'Messages' Persistent Cross SitePublished
2020-05-28Kuicms PHP EE 2.0 Cross Site ScriptingPublished
2020-05-13Netsweeper WebAdmin unixlogin.php Python Code InjectionPublished
2020-05-05Johncaruso PHP Photo Gallery Remote File Inculsion Vulnerability [ RFI ]Published
2020-04-28PhpCollab 2.7.2 - Arbitrary File UploadPublished
2020-04-28POS PHP 17.5 Cross Site ScriptingPublished
2020-04-27PhpCollab v2.7.2 - CSRF Arbitrary File Upload RCE PoC ScriptPublished
2020-04-19Coins Clone - PHP Script SQL InjectionPublished
2020-04-07PlaySMS index.php Unauthenticated Template Injection Code ExecutionPublished
2020-04-04SAUDI SOFTECH MST search.php Sql injectionPublished
2020-03-24Joomla com_hdwplayer 4.2 search.php SQL InjectionPublished
2020-03-23RConfig 3.9.4 search.crud.php Remote Command InjectionPublished
2020-03-16PHPKB Multi-Language 9 Authenticated Remote Code ExecutionPublished
2020-03-16PHPKB Multi-Language 9 Authenticated Directory TraversalPublished
2020-03-14PHP Scripts Mall website-seller Script 2.0.5 Reflected XSS.Published
2020-03-11PHPStudy Backdoor Remote Code execution MetasploitPublished
2020-03-10PHPStudy Backdoor Remote Code ExecutionPublished
2020-03-0960CycleCMS news.php SQL InjectionPublished
2020-03-07PHP-FPM 7.x Remote Code ExecutionPublished
2020-02-28PHP-Fusion CMS 9.03 Cross Site ScriptingPublished
2020-02-14PHP 7.0 < 7.4 Unix debug_backtrace disable_functions BypassPublished
2020-02-13SuiteCRM 7.11.11 Second-Order PHP Object InjectionPublished
2020-01-30PHP 7.0-7.4 disable_functions bypass PoC *nix onlyPublished
2020-01-09Quickjob job board php script 1.0.0 - Persistent Cross-Site ScriptingPublished
2020-01-07Quickdate the ultimate php dating platform - XSS PersistencePublished
2019-12-21WordPress Core < 5.3.x xmlrpc.php Denial of ServicePublished
2019-11-15FusionPBX Operator Panel exec.php Command ExecutionPublished
2019-11-15FusionPBX Command exec.php Command ExecutionPublished
2019-10-29Waldronmatt FullCalendar-BS4-PHP-MySQL-JSON 1.21 Cross Site ScriptingPublished

Copyright © 2020 Exploitalert v1 BETA.
About us & Partners This information is provided for TESTING and LEGAL RESEARCH purposes only.
All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use and Privacy Policy