Advisories archive Searching 24438 links categorized as php vuln/adviso since 2003-04-07 Search : Search in all sources Disable validation filter
24438 results found, please narrow your search...Shadow-Fox PhP Uploader Script Cross Site Scripting VulnerabilityWordPress Download Manager 2.9.93 Cross Site ScriptingDrupal Releases Core CMS Updates to Patch Several VulnerabilitiesTasked PHP Task Management Multiple Stored XSS InjectionOpenDocMan 1.3.4 - Multiple XSS InjectionphpRechnung 1.6.6 - Multiple XSS InjectionBackUpWordPress 3.8 Plugins Backup Path Disclosure VulnerabilityATutor file_manager Remote Code ExecutionWordPress Plugin Contact Form Maker 1.13.1 Cross-Site Request ForgeryHorde Form Shell UploadWordpress Markant theme Arbitrary file DownloadPHP 7.2 imagecolormatch() Out of Band Heap WriteYiiCMS JetBrains PHPStorm 6.0.3 Database DisclosureVuln: WordPress Wordfence Plugin Unspecified Cross Site Scripting VulnerabilityWordPress Limit Login Attempts Reloaded 2.7.4 BypassJoomla omponent iPhone homepage icon 2.0.0 Parameter SQL InjectionWordPress Menu Plugin - Mega Main Menu unauthorized backupWordPress 5.0.0 Crop-image Shell Upload (Metasploit)WordPress Plugin PayPal Checkout Payment Gateway 1.6.8 Parameter TamperingWordPress 5.0.0 crop-image Shell UploadVuln: Drupal Core SA-CORE-2019-004 Cross Site Scripting VulnerabilityWordPress iOS App Bug Leaked Secret Access Tokens to Third-Party SitesphpFileManager 1.7.8 Local File InclusionCMS Made Simple SQL InjectionWordPress - Nishizawa_Tmp Themes Directory Traversal VulnerabilityWordPress 4.9.x U_Parts Themes Directory Traversal VulnerabilityWordPress Oxygen-Theme Directory Traversal VulnerabilityCritical Magento SQL Injection Vulnerability Discovered – Patch Your SitesMagento 2.3.0 SQL InjectionWordPress 4.9.10 ButterKekse Plugins Open RedirectionMagento 2.2.0 <= 2.3.0 Unauthenticated SQLiWordPress 4.9.2 WordPress-Feed-Statistics Plugins 4.1 Open RedirectionMyBB Upcoming Events Plugin 1.32 - Cross-Site ScriptingWordPress 4.6.1 WireFunnel Plugins Open RedirectionWordPress 4.8 Ait-ThemesClub TemplatePreview 1.8.1 RFI Open RedirectionWordPress Ultimate Form Builder Plugins 1.0 Database DisclosureWordPress 5.1.1 WPBounce AND-AntiBounce Plugins 1.0.3 Open RedirectionWordPress 2.0.2 WP-Forum Plugins 1.7.8 Database DisclosureWordpress 5.0.4 begin Themes Open RedirectionSpip CMS 2.x/3.x Add Administrator Account & Insert File VulnerabilityWordPress 3.4.2 The-CL-Amazon-Thingy Plugins 1.0 Open RedirectionWordPress Easy WP SMTP plugin 0-dayWordPress 5.0.4 Age-Verification Plugins 0.5 Open RedirectionWordPress 4.9.8 KingAbdullahPort KAP Themes Database Configuration File DownloadWordPress 4.9.x U_Parts Themes Database Configuration File DownloadWordPress 4.7.13 ChurcHope Responsive Themes 4.7.x Database Configuration File DownloadWordPress 4.2.2 Oxygen-Theme Themes Database Configuration File DownloadWordPress 4.x CafeSalivation Themes Database Configuration File DownloadWordPress 5.1.1 Slider Revolution 4.6.5 UpdateCaptionsCSS Remote Content InjectionWordPress 4.x Nishizawa_Tmp Themes Database Configuration File DownloadMyBB Upcoming Events 1.32 Cross Site ScriptingeNdonesia Portal 8.7 Iframe Injection / SQL InjectionNetartmedia PHP Mall 4.1 SQL InjectionPHP MySQLi Database Class 2.9.2 SQL InjectionWordPress Menu Plugin - Mega Main Menu v2.1.2 unauthorized backup download VulnerabilityVuln: PHP Information Disclosure and Heap Buffer Overflow VulnerabilitiesWordPress GraceMedia Media Player 1.0 Local File InclusionNew WordPress Flaw Lets Unauthenticated Remote Attackers Hack SitesWordPress WP Fastest Cache 0.8.9.0 Arbitrary File DeletionWordPress 5.1 CSRF to Remote Code ExecutionWordPress Aibbt Themes Open RedirectionWordPress Deep Themes Open RedirectionWordPress 2kqq Themes Open RedirectionWordPress Azzxx Themes Open RedirectionphpBB 3.2.3 Remote Code ExecutionDrupal RESTful Web Services unserialize() Remote Code ExecutionWordPress ii-commerce Themes Unauthorized File InsertationWordPress nlh_omp-v1 Themes 1.0 Unauthorized File InsertationWordPress OneSocial-Child Themes Unauthorized File InsertationWordPress fuecaHome Plugins Unauthorized File InsertationWordPress WebFatorial-FoodNetwork Themes Unauthorized File InsertationWordPress wp-bs3-rad Themes Unauthorized File InsertationWordPress wp-bs3-rad Themes Unauthorized Insert File VulnerabilityWordPress HT-Poi Plugins 2.9 Unauthorized File InsertationWordPress WP-DreamworkGallery Plugins 2.3 CSRF Backdoor Access VulnerabilityPHPMiniAdmin 1.9 Database Open No-Secure ExploitvBulletin 4.2.5 Ajax Threads 1.1.3 Lite Open RedirectionJoomla ModPPCSimpleSpotLight Modules 1.2/3.0 CSRF Backdoor Access VulnerabilityXoops 1.0.2 PD-Links Modules 1.0 Krobi Database DisclosureJoomla J2Store SQL InjectionvBulletin 3.8.4 Zoints SEO 2.3.2 Computer-Logic Open RedirectionvBulletin 3.8.x vBadvanced CMPS v3.2.3 Open RedirectionvBulletin 4.2.5 vBSEO 3.6.1 Open RedirectionvBulletin 4.x.x DragonByte SEO v2.0.31 Pro Open RedirectionJoomla Content Components 3.x SQL InjectionWordPress NativeChurch Multi-Purpose Themes 5.0.x Arbitrary File DownloadWordPress Plugin WooCommerce GloBee (cryptocurrency) Payment Gateway 1.1.1 Payment Bypass / Unauthorized Order Status SpoofingVuln: PHP CVE-2019-9023 Multiple Heap Buffer Overflow VulnerabilitiesMyBB 1.6.x ChangUonDyU Chatbox Plugins 3.6.0 Cross Site ScriptingVuln: PHP 'phar_detect_phar_fname_ext()' Heap Buffer Overflow VulnerabilityvBulletin 4.2.0 ChangUonDyU Chatbox Plugins 3.6.0 Cross Site ScriptingJoomla BookingCalendarForJoomla Components 3.4.0 SQL InjectionJoomla Furniture Virtuemart Templates 1.5 SQL InjectionJoomla FlexiContent Components 3.2.1.15 SQL InjectionJoomla Contact Enhanced Components 3.9.2 SQL InjectionDrupal REST Module Remote Code ExecutionDrupal Pubdlcnt 7.x-1.2 Open RedirectionExploiting Drupal8's REST RCETypo3 CMS Modern Guestbook tx_veguestbook_pi1 3.3.0 SQL InjectionDrupal Pubdlcnt Modules 7.x-1.2 Public Download Count Open Redirection
