Advisories archive Searching 24105 links categorized as php vuln/adviso since 2003-04-07 Search : Search in all sources Disable validation filter
24105 results found, please narrow your search...GIU Gallery Image Upload 0.3.1 category SQL InjectionOwnTicket 1.0 SQL InjectionLearning With Texts 1.6.2 SQL InjectionPHP-SHOP Master 1.0 Cross Site Request ForgeryTime And Expense Management System 3.0 SQL InjectionWordPress Wordfence 7.1.12 XSS / Username DisclosureWordPress Plugin tajer v1.05 Arbitrary file upload vulnerabilityDrupal Multiple Flaws Let Remote Users Access and Modify Data and Cause Arbitrary Code to be ExecutedGIU Gallery Image Upload 0.3.1 SQL InjectionKados R10 GreenBee SQL InjectionWordPress Support Board 1.2.3 Cross Site ScriptingSugarCRM 6.5.26 Cross Site ScriptingHaPe PKH 1.1 Shell UploadHaPe PKH 1.1 Cross Site Request ForgeryHaPe PKH 1.1 SQL InjectionLUYA CMS 1.0.12 Cross Site ScriptingFluxBB < 1.5.6 SQL InjectionE-Registrasi Pencak Silat 18.10 id_partai SQL InjectionSitepress Multilingual 3.6.3 Cross Site ScriptingWordpress plugin csv2wpec-coupon v1.1 Remote file upload VulnerabilityWikidforum 2.20 Multiple SQL Injection VulnerabilityISPConfig Remote Command ExecutionWordPress Pie Register 3.0.15 Cross Site ScriptingMambo CMS vulnerabilitiesJoomla! Jimtawl 2.2.7 SQL InjectionJoomla! Component Jimtawl 2.2.7 id SQL InjectionJoomla! Component Responsive Portfolio 1.6.1 filter_order_Dir SQL InjectionWordPress WebARX Website Firewall 4.9.8 XSS / BypassJoomla Com_BibleStudy Proclaim MediaFileForm Remote File Upload VulnerabilityCMS ISWEB 3.5.3 - Local file downloadWordPress WP Insert 2.4.2 Arbitrary File UploadJoomla! AMGallery 1.2.3 SQL InjectionJoomla! Component Auction Factory 4.5.5 filter_order SQL InjectionMyBB Visual Editor Stored XSS < = v1.8.18MediaWiki Multiple Flaws Let Remote Authenticated Users Bypass Security Restrictions and Obtain Potentially Sensitive InformationLimeSurvey 3.14.7 Cross Site Scriptingphp virtual box 5.0.5 Configuration file source code disclosure VulnerabilityWordPress Wechat Broadcast 1.2.0 Local File InclusionWordPress Localize My Post 1.0 Local File InclusionWordPress Plugin Arigato Autoresponder and Newsletter 2.5 Blind SQL Injection / Reflected Cross-Site ScriptingMoodle 3.x PHP Unserialize Remote Code ExecutionVuln: Moodle CVE-2018-14630 Remote Code Execution VulnerabilityWordPress Survey And Poll 1.5.7.3 SQL InjectionMyBB 1.8.17 Cross-Site ScriptingphpMyAdmin Credential StealerQNAP Storage Devices PHP Buffer Error Lets Remote Users Deny ServiceWordPress Ajax BootModal Login 1.4.3 CAPTCHA IssueWordPress Developed by Netsoft Limited Software Development Bangladesh Improper Authentication VulnerabilitySphider 1.3.6 Auth By pass VulnerabilityWordPress Plugin Quizlord 2.0 Cross-Site ScriptingWordPress Jibu Pro 1.7 Cross Site ScriptingWordPress Plugin Jibu Pro 1.7 Cross-Site ScriptingThemeqx Advanced PhP Laravel Classified ads cms - Cross-Site ScriptingphpMyAdmin 4.7.x Cross-Site Request ForgeryVuln: Joomla! CVE-2018-15882 Arbitrary File Upload VulnerabilityWordPress Plugin Plainview Activity Monitor 20161228 Command InjectionGleez CMS 1.2.0 Cross Site Request ForgeryWordPress Plugin Gift Voucher 1.0.5 template_id SQL InjectionphpMyAdmin Input Validation Flaw in File Import Feature Lets Remote Users Conduct Cross-Site Scripting AttacksWordpress Plugin Ninja Forms 3.3.13 CSV InjectionSiteQuarters PHP Code InjectionWordPress Plugin Chained Quiz 1.0.8 answer SQL InjectionWordPress Tagregator 0.6 Cross Site ScriptingMyBB Moderator Log Notes Plugin 1.1 Cross-Site Request ForgeryWordpress Plugin Ninja Forms - CSV InjectionWordPress Dreamsmiths Themes 0.0.1 Arbitrary File DownloadphpMeteo v1.6 sensitive information disclosure VulnerabilityNew PHP Code Execution Attack Puts WordPress Sites at RiskPimcore 5.2.3 SQL Injection / Cross-Site Scripting / Cross-Site Request ForgeryActive Matrimonial CMS v1.4 - Arbitrary File UploadNew PHP Exploitation Technique AddedPlayTube - The Ultimate PHP Video CMS & Video Sharing Platform 1.4.3 privilege escalation VulnerabilitycPanel Filename Based Stored XSS < = v76OpenEMR < 5.0.1 Remote Code ExecutionPHP Template Store Script 3.0.6 Cross Site ScriptingVuln: PHP Multiple Heap Buffer Overflow VulnerabilitiesLaravel 4.2 sensitive information disclosure VulnerabilityCMS ISWEB 3.5.3 Directory TraversalBugtraq: [SECURITY] [DSA 4262-1] symfony security updateAuditor Website 2.0.1 Cross-Site Scriptinguhotel booking 2.79. XML external entity injection VulnerabilitySymfony Flaw Leaves Drupal Sites Vulnerable to Hackers—Patch NowDataLife Engine 13.0 Cross Site ScriptingDrupal Access Control Flaw in Symfony HttpFoundation Component Lets Remote Users Bypass Security Restrictions on the Target SystemSecuring Credentials for PHP with DockerKeeping Credentials Secure in PHPDataLife Engine Core Cross Site Scripting (XSS) & Execution CodeWeb Design itemDesc.php site sql injectionSuper Cms Blog Pro PHP Script v1.0 - XSSWordPress Plugin Responsive Thumbnail Slider Arbitrary File Upload (Metasploit)Symfony Remote Information DisclosureSuper CMS Blog Pro PHP Script 1.0 SQL Injection / Shell UploadWordPress Gwolle Guestbook 2.5.3 Cross Site ScriptingWordPress Strong Testimonials 2.31.4 Cross Site ScriptingWordPress Snazzy Maps 1.1.3 Cross Site ScriptingBugtraq: DefenseCode ThunderScan SAST Advisory: WordPress Gwolle Guestbook Plugin XSS Security VulnerabilityBugtraq: DefenseCode ThunderScan SAST Advisory: WordPress Strong Testimonials Plugin Multiple XSS Security VulnerabilitiesBugtraq: DefenseCode ThunderScan SAST Advisory: WordPress Snazzy Maps Plugin Multiple XSS Security VulnerabilitiesMyBB New Threads 1.1 Cross Site ScriptingPrestaShop < 1.6.1.19 AES CBC Privilege Escalation
