Advisories archive Searching 24937 links categorized as php vuln/adviso since 2003-04-07 Search : Search in all sources Disable validation filter
24937 results found, please narrow your search...CologneBlue Skin bis 1.35 auf MediaWiki qbfind Message CologneBlueTemplate.php Cross Site ScriptingSPIP bis 3.2.7 configurer_preferences.php unbekannte SchwachstellePollNY Extension bis 1.35 auf MediaWiki Answer Option Cross Site ScriptingOnline Doctor Appointment Booking System PHP and Mysql 1.0 q SQL InjectionWordPress Fancy Product Designer For WooCommerce 4.5.1 File UploadVtiger CRM 7.0 Cross Site ScriptingWordPress WP Forms 1.6.3.1 Cross SIte ScriptingWordPress Buddypress 6.2.0 Cross Site ScriptingSugarCRM 6.5.18 Cross Site ScriptingWordPress Good LMS 2.1.4 SQL InjectionrConfig bis 3.9.6 lib/crud/userprocess.php schwache AuthentisierungGood Layers LMS Plugin bis 2.1.4 auf WordPress POST Parameter wp_ajax_nopriv id SQL InjectionCacti 1.2.13 Template Import templates_import.php xml_path Cross Site ScriptingWordpress Plugin Good LMS 2.1.4 id Unauthenticated SQL InjectionWordPress File Manager 6.8 Remote Code ExecutionBA Book Everything WordPress plugin v1.3.24 - Unauthenticated Reflected XSS & XFSWordpress Plugin Yoast SEO 15.2.1 - Remote File UploadWordpress Plugin Jetpack 9.1 - Cross Site ScriptingWordpress Plugin Rank Math v1.0.52.1 - Remote Command ExecutionAltair WordPress theme v4.8 - Unauthenticated Reflected XSSLove Travel WordPress theme v3.8 - Unauthenticated Reflected XSSLove Travel WordPress theme v1.9 - Unauthenticated Reflected XSSMitel ShoreTel 19.46.1802.0 Home Meeting Page index.php PATH_INFO Cross Site ScriptingMagento bis 2.3.5p1/2.4.0 File Upload erweiterte RechteMagento bis 2.3.4/2.4.0 Installation Information DisclosureMagento bis 2.3.5p1/2.4.0 Inventory Module erweiterte RechteMagento bis 2.3.5p1/2.4.0 Integrations erweiterte RechteMagento bis 2.3.5p1/2.4.0 Inventory Source erweiterte RechteMagento bis 2.3.5p1/2.4.0 Authorization erweiterte RechteMagento bis 2.3.5/2.4.0 SQL Injection [CVE-2020-24400]usc-e-shop Plugin bis 1.9.35 auf WordPress usces_unserialize erweiterte RechteJoomla JVTwitter - SQL Injection & XSS VulnerabilitiesWordPress Plugin Simple File List 5.4 Arbitrary File UploadNagios XI 5.7.3 mibs.php Remote Command Injection (Authenticated)WordPress Simple File List 5.4 Shell UploadvBulletin bis 5.6.2 subWidgets Data widget_tabbedcontainer_tab_panel unbekannte SchwachstelleWp File Manager V6.9 - Remote Command ExecutionWordpress EZ-done File Manager 3.1.2 - Remote File UploadosCommerce Phoenix CE bis 1.0.5.3 POST Parameter admin/mail.php erweiterte RechteosCommerce Phoenix CE bis 1.0.5.3 define_language.php Cross Site Request ForgeryNeoPost Mail Accounting Software Pro 5.0.6 FUS_SCM_BlockStart.php code Cross Site ScriptingReal Estate 7 WordPress theme v3.0.4 - Unauthenticated Reflected XSSOneMall WordPress theme v1.7.7 - Unauthenticated Reflected XSS & XFSVictor CMS 1.0 category.php cat_id SQL InjectionSphider Search Engine 1.3.6 word_upper_bound RCE (Authenticated)Sphider Search Engine 1.3.6 Remote Code ExecutionWordPress Plugin Rest Google Maps < 7.11.18 SQL InjectionYOURLS Admin Panel bis 1.7.10 PHP Plugin Cross Site ScriptingFruityWifi bis 2.4 page_config_adv.php newSSID/hostapd_wpa_passphrase Cross Site Request ForgerySimple Download Monitor bis 3.8.8 auf WordPress Scripting Cross Site ScriptingEyoucms 1.2.7 login.php Cross Site Request ForgeryTiki bis 21.1 Admin Password tiki-login.php schwache AuthentisierungTESTPHP - SQL Injection vulnerabilityWordPress Colorbox Lightbox 1.1.1 Cross Site ScriptingWordPress HS Brand Logo Slider 2.1 Shell UploadWordPress Rest Google Maps SQL InjectionrConfig bis 3.9.4 GET Request ajaxAddTemplate.php erweiterte RechteTestimonial Rotator Plugin 3.0.2 auf WordPress /wp-admin/post.php cite Cross Site ScriptingMagento bis 2.3.5p1/2.4.0 File Upload Cross Site ScriptingCS-Cart 1.3.3 Local File InclusionCS-Cart 1.3.3 Remote Code ExecutionphpRedisAdmin bis 1.13.1 login.php username Cross Site ScriptingJoomla Component com_jsupport SQL Injection VulnerabilityvBulletin 5.6.3 Cross Site ScriptingphpMyAdmin bis 4.9.5/5.0.2 SearchController SQL InjectionphpMyAdmin bis 4.9.5/5.0.2 Transformation Feature Cross Site Scriptinglaravel - Cross-site Scripting (Reflected)PHP bis 7.2.33/7.3.22/7.4.10 HTTP Cookie Information DisclosurePHP bis 7.2.33/7.3.22/7.4.10 AES-CCM openssl_encrypt() schwache VerschlüsselungGetSimpleCMS 3.3.15 log.php Directory TraversalWebsiteBaker 2.12.2 save.php display_name SQL InjectionCMS Made Simple 2.2.14 Content Manager Persistent Cross Site ScriptingWordPress WP Courses 2.0.29 Information Disclosure / Authorization BypassMobileFrontend Extension bis 1.34.3 auf MediaWiki parseHTML DOM-Based Cross Site ScriptingFileImporter Extension bis 1.34.3 auf MediaWiki Page Creation erweiterte RechteObservium Professional/Enterprise/Community 20.8.10631 device_entities.php device_id[] SQL InjectionObservium Professional/Enterprise/Community 20.8.10631 authenticate.inc.php username[0] SQL Injectionjdownloads 3.2.63 auf Joomla categories.php order filter_order SQL InjectionObservium Professional/Enterprise/Community 20.8.10631 pages/contacts.inc.php Cross Site ScriptingVisitor Management System In PHP 1.0 Cross Site ScriptingVisitor Management System In PHP 1.0 SQL InjectionDrupal bis 8.8.9/8.9.5/9.0.5 File Module erweiterte RechteDrupal bis 8.8.9/8.9.5/9.0.5 Experimental Workspaces erweiterte RechteDrupal bis 8.8.9/8.9.5/9.0.5 CKEditor Reflected Cross Site ScriptingDrupal bis 8.8.9/8.9.5/9.0.5 AJAX API Cross Site ScriptingTiny RSS vor 2020-09-16 Error Message init.php $_REQUEST["url"] unbekannte SchwachstelleD-Link DIR-816L/DIR-803 URL Encoding webinc/js/info.php Referer Header Cross Site ScriptingMantis Bug Tracker 2.3.0 Remote Code ExecutionZoneMinder bis 1.34.20 download.php connkey Cross Site ScriptingMida Solutions eFramework ajaxreq.php Command InjectionSqreen PHP Agent Daemon bis 1.15.x Virtual Machine erweiterte RechteJoomla! paGO Commerce 2.5.9.0 SQL InjectionMike Rooijackers Recall Products 0.8 auf WordPress Manufacturer[] SQL InjectionAccessPress Themes WP Floating Menu 1.3.0 auf WordPress id Cross Site ScriptingSoftradeWeb SNC WP SMART CRM 1.8.7 auf WordPress Cross Site ScriptingMike Rooijackers Recall Products 0.8 auf WordPress admin.php Recall Settings Stored Cross Site ScriptingWordpress file manager 6.7 - Remote Code ExecutionGazie 7.29 admin_utente.php Cross Site ScriptingPligg 2.0.3 admin/admin_editor.php the_file Command erweiterte RechteWordPress bis 5.4.1 comment-template.php Comment Information Disclosure
