Security Vulnerabilities & Exploits

[webapps] PHPGurukul Online Birth Certificate System V 1.2 - Blind XSS

The Exploit Database - 25 Březen, 2023 - 02:00
PHPGurukul Online Birth Certificate System V 1.2 - Blind XSS

[webapps] Composr-CMS Version <=10.0.39 - Authenticated Remote Code Execution

The Exploit Database - 25 Březen, 2023 - 02:00
Composr-CMS Version <=10.0.39 - Authenticated Remote Code Execution

[webapps] MODX Revolution v2.8.3-pl - Authenticated Remote Code Execution

The Exploit Database - 25 Březen, 2023 - 02:00
MODX Revolution v2.8.3-pl - Authenticated Remote Code Execution

[webapps] Abantecart v1.3.2 - Authenticated Remote Code Execution

The Exploit Database - 25 Březen, 2023 - 02:00
Abantecart v1.3.2 - Authenticated Remote Code Execution

[webapps] SimpleMachinesForum v2.1.1 - Authenticated Remote Code Execution

The Exploit Database - 25 Březen, 2023 - 02:00
SimpleMachinesForum v2.1.1 - Authenticated Remote Code Execution

[webapps] ImpressCMS v1.4.3 - Authenticated SQL Injection

The Exploit Database - 25 Březen, 2023 - 02:00
ImpressCMS v1.4.3 - Authenticated SQL Injection

[webapps] Password Manager for IIS v2.0 - XSS

The Exploit Database - 25 Březen, 2023 - 02:00
Password Manager for IIS v2.0 - XSS

[webapps] Bus Pass Management System 1.0 - Cross-Site Scripting (XSS)

The Exploit Database - 25 Březen, 2023 - 02:00
Bus Pass Management System 1.0 - Cross-Site Scripting (XSS)

[dos] DLink DIR 819 A1 - Denial of Service

The Exploit Database - 25 Březen, 2023 - 02:00
DLink DIR 819 A1 - Denial of Service

[webapps] GuppY CMS v6.00.10 - Remote Code Execution

The Exploit Database - 25 Březen, 2023 - 02:00
GuppY CMS v6.00.10 - Remote Code Execution

[remote] NVFLARE < 2.1.4 - Unsafe Deserialization due to Pickle

The Exploit Database - 25 Březen, 2023 - 02:00
NVFLARE < 2.1.4 - Unsafe Deserialization due to Pickle

[webapps] Lavalite v9.0.0 - XSRF-TOKEN cookie File path traversal

The Exploit Database - 25 Březen, 2023 - 02:00
Lavalite v9.0.0 - XSRF-TOKEN cookie File path traversal

[webapps] Employee Performance Evaluation System v1.0 - File Inclusion and RCE

The Exploit Database - 25 Březen, 2023 - 02:00
Employee Performance Evaluation System v1.0 - File Inclusion and RCE

[webapps] Yoga Class Registration System v1.0 - Multiple SQLi

The Exploit Database - 25 Březen, 2023 - 02:00
Yoga Class Registration System v1.0 - Multiple SQLi

[webapps] Human Resources Management System v1.0 - Multiple SQLi

The Exploit Database - 25 Březen, 2023 - 02:00
Human Resources Management System v1.0 - Multiple SQLi

[remote] D-Link DNR-322L <=2.60B15 - Authenticated Remote Code Execution

The Exploit Database - 25 Březen, 2023 - 02:00
D-Link DNR-322L <=2.60B15 - Authenticated Remote Code Execution

[webapps] Online Diagnostic Lab Management System v1.0 - Remote Code Execution (RCE) (Unauthenticated)

The Exploit Database - 25 Březen, 2023 - 02:00
Online Diagnostic Lab Management System v1.0 - Remote Code Execution (RCE) (Unauthenticated)

[local] System Mechanic v15.5.0.61 - Arbitrary Read/Write

The Exploit Database - 25 Březen, 2023 - 02:00
System Mechanic v15.5.0.61 - Arbitrary Read/Write

[webapps] Translatepress Multilinugal WordPress plugin < 2.3.3 - Authenticated SQL Injection

The Exploit Database - 25 Březen, 2023 - 02:00
Translatepress Multilinugal WordPress plugin < 2.3.3 - Authenticated SQL Injection

[webapps] NEX-Forms WordPress plugin < 7.9.7 - Authenticated SQLi

The Exploit Database - 25 Březen, 2023 - 02:00
NEX-Forms WordPress plugin < 7.9.7 - Authenticated SQLi
Syndikovat obsah