owaspbwa tickets
owaspbwa tickets
来源 https://sourceforge.net/p/owaspbwa/tickets/
192 SQL Injection in pic_id parameter Peruggia High
191 1 AWStats Medium
190 GetBoo reflected XSS in http://owaspbwa/getboo/psearch.php GetBoo Medium
34 CSRF to change password and e-mail CSRF Yazd Medium
33 Lack of access controls Peruggia Medium
32 Reflected XSS Peruggia Medium
31 Local File Inclusion Peruggia Medium
30 SQL Injection Login Bypass Peruggia High
29 Directory Traversal Peruggia Medium
28 INSERT SQL Inection OWASP Vicnum High
27 AppSensor viewProfile lack of access control OWASP AppSensor Demo Application Medium
26 GetBoo Email Forgotten Password SQL injection GetBoo High
25 GetBoo Email Forgotten Password SQL injection GetBoo High
24 GetBoo stored XSS XSS, stored, cross, site, scripting GetBoo Medium
23 Vanilla SQL Injection OWASP Vicnum Medium
22 Remote PHP Injection (CVE-2007-5423) TikiWiki High
21 Cross-site scripting (XSS) vulnerability in tiki-featured_link.php (CVE-2006-5703) XSS TikiWiki Medium
20 Directory traversal in tiki-listmovies.php (CVE-2007-6528) TikiWiki Medium
19 XSS vulnerability in tiki-special_chars.php (CVE-2007-6526) XSS TikiWiki Medium
18 CVE-2008-1047 XSS TikiWiki Medium
15 Reflected XSS in http://owaspbwa/yazd/bay/account.jsp Yazd Medium
14 Reflected XSS in http://owaspbwa/yazd/bay/post.jsp Yazd Medium
13 Reflected XSS in http://owaspbwa/gtd-php/editList.php GTD-PHP Medium
12 Reflected XSS in http://owaspbwa/gtd-php/editChecklist.php GTD-PHP Medium
11 Internal Path Disclosure AWStats _Low
10 Open Redirect AWStats _Low
9 Malicious File Execution WordPress High
8 SQL Injection WordPress High
7 SQL Injection WordPress High
6 Command Injection WordPress High
5 Reflected XSS in http://owaspbwa/mono/simple-reflected-xss.aspx Simple ASP.NET Forms Medium
4 Reflected XSS in http://owaspbwa/vicnum/vicnum5.php OWASP Vicnum Medium
3 State Manipulation OWASP Vicnum High
2 Reflected XSS in http://owaspbwa/mandiant-struts-form-vulnerable/submitname.do Mandiant Struts Forms Medium
1 Reflected XSS in http://owaspbwa/vicnum/cgi-bin/vicnum1.pl
【推荐】国内首个AI IDE,深度理解中文开发场景,立即下载体验Trae
【推荐】编程新体验,更懂你的AI,立即体验豆包MarsCode编程助手
【推荐】抖音旗下AI助手豆包,你的智能百科全书,全免费不限次数
【推荐】轻量又高性能的 SSH 工具 IShell:AI 加持,快人一步
· SQL Server 2025 AI相关能力初探
· Linux系列:如何用 C#调用 C方法造成内存泄露
· AI与.NET技术实操系列(二):开始使用ML.NET
· 记一次.NET内存居高不下排查解决与启示
· 探究高空视频全景AR技术的实现原理
· 阿里最新开源QwQ-32B,效果媲美deepseek-r1满血版,部署成本又又又降低了!
· SQL Server 2025 AI相关能力初探
· AI编程工具终极对决:字节Trae VS Cursor,谁才是开发者新宠?
· 开源Multi-agent AI智能体框架aevatar.ai,欢迎大家贡献代码
· Manus重磅发布:全球首款通用AI代理技术深度解析与实战指南