2021-01-15 |
php-fusion cms 9.03.90 - cross-site request forgery (delete admin shoutbox message)
|
webapps exploit |
php vulnerability |
2021-01-14 |
cisco rv110w 1.2.1.7 - 'vpn_account' denial of service (poc)
|
webapps exploit |
hardware vulnerability |
2021-01-14 |
laravel 8.4.2 debug mode - remote code execution
|
webapps exploit |
php vulnerability |
2021-01-14 |
online shopping cart system 1.0 - 'id' sql injection
|
webapps exploit |
php vulnerability |
2021-01-14 |
nagios xi 5.7.x - remote code exection rce (authenticated)
|
webapps exploit |
php vulnerability |
2021-01-14 |
online movie streaming 1.0 - admin authentication bypass
|
webapps exploit |
php vulnerability |
2021-01-13 |
online hotel reservation system 1.0 - admin authentication bypass
|
webapps exploit |
php vulnerability |
2021-01-13 |
deep insight into social engineering - paper
|
papers exploit |
multiple vulnerability |
2021-01-13 |
erlang cookie - remote code execution
|
remote exploit |
multiple vulnerability |
2021-01-13 |
practical insight into injections - paper
|
papers exploit |
multiple vulnerability |
2021-01-12 |
linux/x86 - bind (0.0.0.0:13377/tcp) shell (/bin/sh) shellcode (65 bytes)
|
shellcode exploit |
linux vulnerability |
2021-01-12 |
smartagent 3.1.0 - privilege escalation
|
webapps exploit |
multiple vulnerability |
2021-01-12 |
cemetry mapping and information system 1.0 - multiple sql injections
|
webapps exploit |
php vulnerability |
2021-01-12 |
gila cms 2.0.0 - remote code execution (unauthenticated)
|
webapps exploit |
php vulnerability |
2021-01-11 |
prestashop 1.7.7.0 - 'id_product' time based blind sql injection
|
webapps exploit |
php vulnerability |
2021-01-11 |
portablekanban 4.3.6578.38136 - encrypted password retrieval
|
local exploit |
windows vulnerability |
2021-01-11 |
opencart 3.0.36 - ato via cross site request forgery
|
webapps exploit |
php vulnerability |
2021-01-11 |
wordpress plugin custom global variables 1.0.5 - 'name' stored cross-site scripting (xss)
|
webapps exploit |
php vulnerability |
2021-01-11 |
cemetry mapping and information system 1.0 - multiple stored cross-site scripting
|
webapps exploit |
php vulnerability |
2021-01-11 |
eyesofnetwork 5.3 - lfi
|
webapps exploit |
multiple vulnerability |
2021-01-11 |
anchor cms 0.12.7 - 'markdown' stored cross-site scripting
|
webapps exploit |
multiple vulnerability |
2021-01-11 |
eyesofnetwork 5.3 - rce & privesc
|
webapps exploit |
multiple vulnerability |
2021-01-08 |
wordpress plugin wpdiscuz 7.0.4 - unauthenticated arbitrary file upload (metasploit)
|
webapps exploit |
php vulnerability |
2021-01-08 |
wordpress plugin autoptimize 2.7.6 - authenticated arbitrary file upload (metasploit)
|
webapps exploit |
php vulnerability |
2021-01-08 |
apache flink 1.11.0 - unauthenticated arbitrary file read (metasploit)
|
webapps exploit |
java vulnerability |
2021-01-08 |
cockpit version 234 - server-side request forgery (unauthenticated)
|
webapps exploit |
multiple vulnerability |
2021-01-08 |
online doctor appointment system 1.0 - multiple stored xss
|
webapps exploit |
php vulnerability |
2021-01-08 |
life insurance management system 1.0 - multiple stored xss
|
webapps exploit |
php vulnerability |
2021-01-08 |
dnsrecon 0.10.0 - csv injection
|
local exploit |
python vulnerability |
2021-01-07 |
crud operation 1.0 - multiple stored xss
|
webapps exploit |
php vulnerability |
2021-01-07 |
ecsimaging pacs 6.21.5 - sql injection
|
webapps exploit |
php vulnerability |
2021-01-07 |
curfew e-pass management system 1.0 - stored xss
|
webapps exploit |
php vulnerability |
2021-01-07 |
cockpit cms 0.6.1 - remote code execution
|
webapps exploit |
php vulnerability |
2021-01-07 |
employee record system 1.0 - unrestricted file upload to remote code execution
|
webapps exploit |
php vulnerability |
2021-01-07 |
ecsimaging pacs 6.21.5 - remote code execution
|
webapps exploit |
php vulnerability |
2021-01-07 |
iball-baton wra150n rom-0 backup - file disclosure (sensitive information)
|
webapps exploit |
hardware vulnerability |
2021-01-06 |
sonatype nexus 3.21.1 - remote code execution (authenticated)
|
webapps exploit |
java vulnerability |
2021-01-06 |
h2 database 1.4.199 - jni code execution
|
local exploit |
java vulnerability |
2021-01-06 |
gitea 1.7.5 - remote code execution
|
webapps exploit |
multiple vulnerability |
2021-01-06 |
paperstream ip (twain) 1.42.0.5685 - local privilege escalation
|
local exploit |
windows vulnerability |
2021-01-06 |
resumes management and job application website 1.0 - multiple stored xss
|
webapps exploit |
php vulnerability |
2021-01-06 |
resumes management and job application website 1.0 - rce (unauthenticated)
|
webapps exploit |
php vulnerability |
2021-01-06 |
winavr version 20100110 - insecure folder permissions
|
local exploit |
windows vulnerability |
2021-01-06 |
newgen correspondence management system (corms) egov 12.0 - idor
|
webapps exploit |
multiple vulnerability |
2021-01-06 |
wordpress plugin wp24 domain check 1.6.2 - 'fieldnamedomain' stored cross site scripting
|
webapps exploit |
php vulnerability |
2021-01-06 |
responsive e-learning system 1.0 - stored cross site scripting
|
webapps exploit |
php vulnerability |
2021-01-06 |
responsive e-learning system 1.0 - unrestricted file upload to rce
|
webapps exploit |
php vulnerability |
2021-01-06 |
wordpress plugin litespeed cache 3.6 - 'server_ip' cross-site scripting
|
webapps exploit |
php vulnerability |
2021-01-06 |
expense tracker 1.0 - 'expense name' stored cross-site scripting
|
webapps exploit |
php vulnerability |
2021-01-06 |
ipeakcms 3.5 - boolean-based blind sqli
|
webapps exploit |
multiple vulnerability |