Advisories archive Searching 24490 links categorized as php vuln/adviso since 2003-04-07 Search : Search in all sources Disable validation filter
24490 results found, please narrow your search...Wordpress Plugins Cart66-Lite DatabaseSQL Backup Disclosure VulnerabilityDigaSell - Digital store PHP Script V1.0.0 XSS VulnerabilityWebLord WL-Nuke Coppermine for PHP-Nuke v1.3.1c SQL InjectionphpMyAdmin 4.8 Cross Site Request ForgeryWordPress Plugin Insert or Embed Articulate Content into WordPress - Remote Code Execution (UPLOAD SHELL)MyBB <= 1.8.20: From Stored XSS to RCEPHP Security Advent Calendar 2018New Flaw in WordPress Live Chat Plugin Lets Hackers Steal and Hijack SessionsWordPress 5.2.1 Antena_Ri Institute Themes 2.0 Open RedirectionWordPress Satoshi 2.0 Cross Site Request Forgery / File UploadWordPress Plugin Form Maker 1.13.3 SQL InjectionShopware createInstanceFromNamedArguments PHP Object Instantiation Remote Code ExecutionHackers Infect 50,000 MS-SQL and PHPMyAdmin Servers with Rootkit MalwareWordPress 4.9.10 Xunjin Themes 4.6 Open RedirectionWordPress 4.8.9 Tigin Themes 1.0.5 Open RedirectionWordPress 5.2.1 Divi-Child Themes 1.0 Open RedirectionWordPress 5.1.1 jilijilibegin Themes LTS 4.6 Open RedirectionWordPress 4.9.x Jingke Themes 1.0 Open RedirectionJoomla 3.9.6 Com_Attachments Components 3.x Unauthorized File InsertionWordPress 4.9.10 4DMayi Themes 4.6 Open RedirectionWordPress 5.2.1 DingTalk Themes LTS 4.6 Open RedirectionWordPress 4.9.8 LaneMotorSport Responsive Themes 1.8.4 Open RedirectionWordPress 4.6.14 lqcPlugin-regiePublicites Plugins 1.0 Open RedirectionWordPress 4.6.12 PHPL Plugins 1.0 Open RedirectionWordPress 5.2.1 Dankov Planer Themes 1.1.2 Open RedirectionWordPress 4.9.10 Aliyun Themes 5.2 Open RedirectionWordPress 4.4.18 Ad-Manager Plugins 1.1.2 Open RedirectionShopware createInstanceFromNamedArguments PHP Object InstantiationPHP PHP_INI_SYSTEM Ineffective ControlsphpKF 1.10 XSS / CSRF / SQL InjectionXoops Wordpress Modules WP-Ktai 0.5.0 Japan Open RedirectionHorde Webmail - XSS + CSRF to SQLi, RCE, Stealing Emails < = v5.2.22Vuln: Drupal Novalnet Payment Module- Ubercart Module SQL Injection VulnerabilityPHP-Fusion 9.03.00 Remote Code ExecutionXOOPS CMS 2.5.9 SQL InjectionWordPress Form Maker 1.13.3 SQL Injection(Wordpress) Ninja Forms File Uploads Extension < = 3.0.22 – Unauthenticated Arbitrary File UploadWordPress Diarise 1.5.9 Local File DisclosureWordpress - W3 Total Cache - SSRF / RCEWordpress Social Warfare Remote Code ExecutionphpBB 3.2.5 Denial Of ServiceTraveler - Travel Booking WordPress Theme v2.7 Reflected XSS InjectionJoomla! Component JiFile 2.3.1 - Arbitrary File DownloadclientResponse Responsive PHP Client Management Stored XSS InjectionJoomla! Component ARI Quiz 3.7.4 - SQL InjectionJoomla! Component com_cwreserveer - SQL InjectionosTicket 1.11 Cross Site Scripting / Local File InclusionCritical Unpatched Flaw Disclosed in WordPress WooCommerce ExtensionHackers Actively Exploiting Widely-Used Social Share Plugin for WordPressJobCareer | Job Board Responsive WordPress Theme v2.5 Stored XSS InjectionWarkers PHP Search Script WebShell UploadJoomla Core 1.5.0 3.9.4 Directory Traversal / Authenticated Arbitrary File DeletionShadow-Fox PhP Uploader Script Cross Site Scripting VulnerabilityWordPress Download Manager 2.9.93 Cross Site ScriptingDrupal Releases Core CMS Updates to Patch Several VulnerabilitiesTasked PHP Task Management Multiple Stored XSS InjectionOpenDocMan 1.3.4 - Multiple XSS InjectionphpRechnung 1.6.6 - Multiple XSS InjectionBackUpWordPress 3.8 Plugins Backup Path Disclosure VulnerabilityATutor file_manager Remote Code ExecutionWordPress Plugin Contact Form Maker 1.13.1 Cross-Site Request ForgeryHorde Form Shell UploadWordpress Markant theme Arbitrary file DownloadPHP 7.2 imagecolormatch() Out of Band Heap WriteYiiCMS JetBrains PHPStorm 6.0.3 Database DisclosureVuln: WordPress Wordfence Plugin Unspecified Cross Site Scripting VulnerabilityWordPress Limit Login Attempts Reloaded 2.7.4 BypassJoomla omponent iPhone homepage icon 2.0.0 Parameter SQL InjectionWordPress Menu Plugin - Mega Main Menu unauthorized backupWordPress 5.0.0 Crop-image Shell Upload (Metasploit)WordPress Plugin PayPal Checkout Payment Gateway 1.6.8 Parameter TamperingWordPress 5.0.0 crop-image Shell UploadVuln: Drupal Core SA-CORE-2019-004 Cross Site Scripting VulnerabilityWordPress iOS App Bug Leaked Secret Access Tokens to Third-Party SitesphpFileManager 1.7.8 Local File InclusionCMS Made Simple SQL InjectionWordPress - Nishizawa_Tmp Themes Directory Traversal VulnerabilityWordPress 4.9.x U_Parts Themes Directory Traversal VulnerabilityWordPress Oxygen-Theme Directory Traversal VulnerabilityCritical Magento SQL Injection Vulnerability Discovered – Patch Your SitesMagento 2.3.0 SQL InjectionWordPress 4.9.10 ButterKekse Plugins Open RedirectionMagento 2.2.0 <= 2.3.0 Unauthenticated SQLiWordPress 4.9.2 WordPress-Feed-Statistics Plugins 4.1 Open RedirectionMyBB Upcoming Events Plugin 1.32 - Cross-Site ScriptingWordPress 4.6.1 WireFunnel Plugins Open RedirectionWordPress 4.8 Ait-ThemesClub TemplatePreview 1.8.1 RFI Open RedirectionWordPress Ultimate Form Builder Plugins 1.0 Database DisclosureWordPress 5.1.1 WPBounce AND-AntiBounce Plugins 1.0.3 Open RedirectionWordPress 2.0.2 WP-Forum Plugins 1.7.8 Database DisclosureWordpress 5.0.4 begin Themes Open RedirectionSpip CMS 2.x/3.x Add Administrator Account & Insert File VulnerabilityWordPress 3.4.2 The-CL-Amazon-Thingy Plugins 1.0 Open RedirectionWordPress Easy WP SMTP plugin 0-dayWordPress 5.0.4 Age-Verification Plugins 0.5 Open RedirectionWordPress 4.9.8 KingAbdullahPort KAP Themes Database Configuration File DownloadWordPress 4.9.x U_Parts Themes Database Configuration File DownloadWordPress 4.7.13 ChurcHope Responsive Themes 4.7.x Database Configuration File DownloadWordPress 4.2.2 Oxygen-Theme Themes Database Configuration File DownloadWordPress 4.x CafeSalivation Themes Database Configuration File Download
