webray.com.cn

Namewebray.com.cn
Registration03/14/2022
Community Points1400
Submits96
Commits6
Posts0
Votes0
Community RankSenior Expert
Activity Badges
👴 Long-time User (3x)
🔁 Returning User
💻 Digital Nomad (4x)
🔬 Researcher (4x)
🐘 Heavy User
🖖 Community Member (28x)
👋 Regular Visitor (7x)
📤 Submitter (14x)

Submits (96)

Timeline

The analysis of the timeline helps to identify the required approach and handling of single items and item collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Prioritizing items becomes possible.

IDTitleSubmissionModerationEntryPStatus
498432mayuri_k Best employee management system 1.0 Exposure of Access Control List Files to an Unauthorized Control02/11/202502/23/202529659720Accepted
498421mayuri_k Best employee management system 1.0 Information Disclosure02/11/202502/23/202529659620Accepted
498188mayuri_k Best church management software 1.0 Delete any file02/11/202502/22/202529659420Accepted
497891mayuri_k Best church management software 1.0 Unrestricted Upload02/11/202502/22/202529659320Accepted
497883mayuri_k Best church management software 1.0 Doubled Character XSS Manipulations02/11/202502/22/202529659220Accepted
497868mayuri_k Best church management software 1.0 SQL Injection02/11/202502/22/202529659120Accepted
411502SourceCodester Best house rental management system project in php admin_class.php update_account​ function 4/15 SQL Injection09/20/202409/20/202427821216Accepted
411471SourceCodester Best house rental management system signup time-based SQL injection Vulnerability. 4/15 SQL Injection09/20/202409/20/202427821016Accepted
411113SourceCodester Best house rental management system project in php 4/15 SQL Injection09/19/202409/21/20242662770Duplicate
410977SourceCodester Best house rental management system project in php 4/15 XSS09/19/202409/20/202427820319Accepted
410397SourceCodester Best house rental management system project in php 4/15 SQL Injection09/18/202409/19/20242687670Duplicate
389263Xxxxxxxxxxxxxx Xxxxxxxx Xxxxxxx Xxx X.x Xxxxxx Xxxxx-xxxx Xxxxxxxxx08/12/202408/13/2024
 
0Rejected
389255Leads Manager Tool 1.0 Stored Cross-Site Scripting08/12/202408/13/20242740650Duplicate
290299Computer Inventory System SQL Injection Computer Inventory System SQL Injection 1 SQL Injection02/29/202403/01/20242553820Duplicate
290298Computer Inventory System Computer Inventory System 1 Stored Cross-Site Scripting(XSS)02/29/202403/01/20242553830Duplicate
290274FAQ Management System SQL Injection FAQ Management System SQL Injection 1 SQL Injection02/29/202403/01/20242553840Duplicate
290273FAQ Management System FAQ Management System 1 Stored Cross-Site Scripting(XSS)02/29/202403/01/202425538613Accepted
288852oretnom23 Online Learning System V2 v1.0 XSS02/27/202402/28/202425512619Accepted
288057Walterjnr1 Web-Based Student Clearance System v1.0 XSS02/26/202402/27/202425486419Accepted
288037Walterjnr1 Web-Based Student Clearance System v1.0 Arbitrary File Upload02/26/202402/27/202425486319Accepted
288029Walterjnr1 Web-Based Student Clearance System v1.0 Arbitrary File Upload02/26/202402/28/20242103670Duplicate
287953mayuri_k Free and Open Source inventory management system v1.0 SQL injections02/26/202402/27/202425486120Accepted
286693Xxxxxx_x Xxxx Xxxxxxx Xxxxxxxxxx Xxxxxx / Xxx02/23/202402/23/2024
 
0Rejected
286692Xxxxxx_x Xxxx Xxxxxxx Xxxxxxxxxx Xxxxxx / Xxx Xxxxxxxxxx02/23/202402/23/2024
 
0Rejected
286687oretnom23 Simple Student Attendance System / XSS02/23/202402/23/202425462519Accepted
286686oretnom23 Simple Student Attendance System / SQL injections02/23/202402/23/20242472540Duplicate
286680Walterjnr1 Employee Management System / SQL injections02/23/202402/23/202425462420Accepted
286679Walterjnr1 Employee Management System / SQL injections02/23/202402/23/20242522780Duplicate
257905SourceCodester Simple Student Attendance System 1.0 SQLI12/25/202312/27/20232472560Duplicate
256155School Visitor Log e-Book School Visitor Log e-Book 1 Stored Cross-Site Scripting(XSS)12/21/202312/21/202324875013Accepted
254434SourceCodester Online student management system 1.0 XSS12/18/202312/19/20232483770Duplicate
254433SourceCodester Online student management system 1.0 XSS12/18/202312/19/202324837719Accepted
254432SourceCodester Online student management system 1.0 SQLI12/18/202312/19/20232226650Duplicate
250859Xxxxxxxxx Xxxxxxxx Xxxxxxxxx Xxxx Xxxxxxxxx Xxxx Xxx.xx.xxxxxx Xxxxxxx Xxxxxxxxx12/12/202312/13/2023
 
0Rejected
250858Xxxxxxxxx Xxxxxxxx Xxxxxxxxx Xxxx Xxxxxxxxx Xxxx Xxx.xx.xxxxxx Xxxxxxx Xxxxxxxxx12/12/202312/13/2023
 
0Rejected
250857Xxxxxxxxx Xxxxxxxx Xxxxxxxxx Xxxx Xxxxxxxxx Xxxx Xxx.xx.xxxxxx Xxxxxxx Xxxxxxxxx12/12/202312/13/2023
 
0Rejected
245188SourceCodester Book Borrower System 1.0 Cross site scripting11/30/202311/30/202324644316Accepted
245172Sticky Notes App Sticky Notes App 1 Stored Cross-Site Scripting(XSS)11/30/202311/30/20232435970Duplicate
243086URL Shortener URL Shortener 1 Stored Cross-Site Scripting(XSS)11/24/202311/26/202324613913Accepted
163002VIP-video-analysis system exists in XSS vulnerability unauthorized in admin/admincore.php05/31/202305/31/202323036019Accepted
163001VIP-video-analysis system exists in SSRF vulnerability unauthorized in data/title.php05/31/202305/31/202323035919Accepted
163000BeipyVideoResolution system exists in XSS vulnerability unauthorized in admin/admincore.php05/31/202305/31/202323035819Accepted
162999student-management-system login.php user SQL inject05/31/202305/31/202323035520Accepted
162998student-management-system resetPassword.php user password reset05/31/202305/31/202323035419Accepted
155091NFine Rapid development platform has weak password vulnerability05/11/202305/25/202322997419Accepted
155087Online Computer and Laptop Store SQL injection vulnerability in ./classes/Master.php05/11/202305/11/202322880320Accepted
155086Online Computer and Laptop Store SQL injection vulnerability in view_categories.php05/11/202305/11/202322880220Accepted
155085Online Computer and Laptop Store SQL injection vulnerability in view_product.php05/11/202305/11/202322880120Accepted
155084Online Computer and Laptop Store SQL injection vulnerability in products.php05/11/202305/11/202322880020Accepted
155083Online Computer and Laptop Store Xss vulnerability in products.php05/11/202305/11/202322879920Accepted
155081The default password vulnerability exists in the intelligent cooperative office system05/11/202305/18/202322937620Accepted
155073Service Provider Management System - SQL injections05/11/202305/17/202322927520Accepted
155065AC Repair and Services System - SQL injections05/11/202305/11/202322879820Accepted
155060Lost and Found Information System /classes/Master.php?f=delete_item SQL injection05/11/202305/11/202322878020Accepted
155059Lost and Found Information System items/index.php SQL injection05/11/202305/11/202322878120Accepted
61270Modbus Poll (version 9.10.0 and earlier) mbp file has a buffer overflow vulnerability12/30/202212/30/202221702217Accepted
61263Modbus Slave (version 7.5.1 and earlier) mbs file has a buffer overflow vulnerability12/30/202212/30/202221702117Accepted
43294Company Website CMS - /dashboard/contact 'phone' Stored Cross-Site Scripting(XSS)08/10/202208/11/202220616519Accepted
43293Company Website CMS - site-settings Identification and Authentication Failures08/10/202208/11/202220616120Accepted
42537Garage Management System - create new user Unauthorized07/29/202207/29/202220530120Accepted
42536Garage Management System - user_info 'userName' Stored Cross-Site Scripting(XSS)07/29/202207/29/202220530219Accepted
42535Garage Management System - Inmates/view_inmate 'id' SQL inject(SQLI)07/29/202207/29/202220530020Accepted
41841Library Management System with QR code Attendance and Auto Generate Library Card index.php SQL injection07/20/202207/20/202220457520Accepted
41840Library Management System with QR code Attendance and Auto Generate Library Card lab.php SQL injection07/20/202207/20/202220457420Accepted
41839Simple E-Learning System search.php SQL injection exists for parameter classCode07/20/202207/20/202220455219Accepted
41838Simple E-Learning System classRoom.php SQL injection exists for parameter classCode07/20/202207/20/202220455118Accepted
41746Wavlink touchlist_sync.cgicommand execution07/20/202207/20/202220453920Accepted
41745Wavlink nightled.cgi command execution07/20/202207/20/202220453820Accepted
41744Wavlink mesh.cgi command execution07/20/202207/20/202220453720Accepted
41683Garage Management System editbrand.php id SQL injections07/19/202207/19/20222041610Duplicate
41682Garage Management System login.php username SQL injections07/19/202207/19/202220416019Accepted
41410URVE Web Manager uploader.php File upload vulnerability07/15/202207/15/202220390320Accepted
41409URVE Web Manager upload.php File upload vulnerability07/15/202207/15/202220390219Accepted
41408URVE Web Manager img_upload.php File upload vulnerability07/15/202207/15/202220390120Accepted
40278Online Hotel Booking System edit_room_cat.php id SQL inject06/30/202206/30/202220298220Accepted
40277Online Hotel Booking System edit_all_room.php id SQL inject06/30/202206/30/202220298120Accepted
38474Prison Management System -create_new user Identification and Authentication Failures06/07/202206/07/202220136720Accepted
38473Prison Management System - system_info 'name' Stored Cross-Site Scripting(XSS)06/07/202206/07/202220136819Accepted
38472Prison Management System - /pms/admin/visits/view_visit.php 'id' SQL inject(SQLI)06/07/202206/07/202220136520Accepted
38471Prison Management System - Inmates/view_inmate 'id' SQL inject(SQLI)06/07/202206/07/202220136620Accepted
38056Product Show Room Site System - 'Telephone' Stored Cross-Site Scripting(XSS)06/02/202206/02/202220095119Accepted
38055Product Show Room Site System - 'Message' Stored Cross-Site Scripting(XSS)06/02/202206/02/202220095019Accepted
37668Student Information System Authenticated 'Student Roll' Stored Cross-Site Scripting(XSS)05/24/202205/24/202220058619Accepted
37667Home Clean Services Management System Authenticated Stored Cross-Site Scripting(XSS)05/24/202205/24/202220058519Accepted
37666Home Clean Services Management System login.php email SQL injection05/24/202205/24/202220058420Accepted
37665Home Clean Services Management System admin/login.php username SQL inject05/24/202205/24/202220058320Accepted
37664Home Clean Services Management System add_register.php File Upload Getshell05/24/202205/24/202220058220Accepted
37616Xxxxxx Xxxx Xxxxxxxxx Xxxxxx - 'xxxxxxxx' Xxxxxx Xxxxx-xxxx Xxxxxxxxx(xxx)05/23/202205/23/2022
 
0Rejected
37615Badminton Center Management System - 'username' Stored Cross-Site Scripting(XSS)05/23/202205/23/202220055919Accepted
37614Xxxxx://xxxxxx.xxx/xxxxxx/xxx/xxxx/xxxx/xxxxxx.xxx.xx/xxxxxxx-xxx-xxxxxxxxxx(xxx05/23/202205/23/2022
 
0Rejected
37613Zoo Management System - 'admin_name' Stored Cross-Site Scripting(XSS)05/23/202205/23/202220055819Accepted
35906automad<=1.10.9 Stored Cross-Site Scripting(XSS)04/29/202204/29/202219870620Accepted
35905emlog<=pro-1.2.2 Stored Cross-Site Scripting(XSS)04/29/202204/29/202219870520Accepted
32889DolphinPHP<=1.5.0 Authenticated Stored Cross-Site Scripting(XSS)03/17/202203/17/202219536820Accepted
32637CVE-2022-25022 | htmly<=v2.8.2 Authenticated Stored Cross-Site Scripting(XSS)03/15/202203/15/20221940090Duplicate
32547CLTPHP<=6.0 Authenticated Stored Cross-Site Scripting(XSS)03/14/202203/14/202219485719Accepted

Commits (6)

Timeline

The analysis of the timeline helps to identify the required approach and handling of single items and item collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Prioritizing items becomes possible.

IDEntryCVEUpdatedModerationCP
12755982-5WAVLINK WN535K2/WN535K3 touchlist_sync.cgi os command injectionCVE-2022-248807/20/202207/20/202243
12310850-1CLTPHP POST Parameter cross site scriptingCVE-2022-108503/25/202203/25/202222

PreviousOverviewNext

Want to stay up to date on a daily basis?

Enable the mail alert feature now!