[] NeoSense
E X P L O I T S
title author type platform port cve id
search results for » platform: php
Nikhil Kapoor WordPress Plugin WP Sitemap Page 1.6.4 - Stored Cross-Site Scripting (XSS)
webapps php
a-rey Patient Appointment Scheduler System 1.0 - Persistent Cross-Site Scripting
webapps php
a-rey Patient Appointment Scheduler System 1.0 - Unauthenticated File Upload
webapps php
sudoninja Bus Pass Management System 1.0 - 'viewid' Insecure direct object references (IDOR)
webapps php
Mason Soroka-Gill FlatCore CMS 2.0.7 - Remote Code Execution (RCE) (Authenticated)
webapps php CVE-2021-39608
Allen Enosh Upputori OpenEMR 6.0.0 - 'noteid' Insecure Direct Object Reference (IDOR)
webapps php CVE-2021-40352
Eric Salario OpenSIS 8.0 'modname' - Directory Traversal
webapps php CVE-2021-40651
Nikhil Kapoor WordPress Plugin Duplicate Page 4.4.1 - Stored Cross-Site Scripting (XSS)
webapps php
Eric Salario OpenSIS Community 8.0 - 'cp_id_miss_attn' SQL Injection
webapps php
Vishwaraj Bhattrai Dolibarr ERP 14.0.1 - Privilege Escalation
webapps php
Niraj Mahajan WordPress Plugin Payments Plugin | GetPaid 2.4.6 - HTML Injection
webapps php
Tagoletta Traffic Offense Management System 1.0 - Remote Code Execution (RCE) (Unauthenticated)
webapps php
Numan Rajkotiya WordPress Plugin ProfilePress 3.1.3 - Privilege Escalation (Unauthenticated)
webapps php CVE-2021-34621
Abdullah Kala Projectsend r1295 - 'name' Stored XSS
webapps php
Aryan Chehreghani Bus Pass Management System 1.0 - 'viewid' SQL Injection
webapps php
Justin White Online Leave Management System 1.0 - Arbitrary File Upload to Shell (Unauthenticated)
webapps php
page: 65/1389 [exploits: 22213]
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.