Flowise 1.6.5 Exploit, Authentication Bypass WEBAPPS Author: Maerifat Majeed | 2024/04/21 |
Laravel Framework 11 Exploit, Credential Leakage WEBAPPS Author: Huseein Amer | 2024/04/21 |
SofaWiki 3.9.2 Exploit, Remote Command Execution (RCE) (Authenticated) WEBAPPS Author: Ahmet Ümit BAYRAM | 2024/04/21 |
Wordpress Plugin Background Image Cropper v1.2 Exploit, Remote Code Execution WEBAPPS Author: Milad karimi | 2024/04/21 |
FlatPress v1.3 Exploit, Remote Command Execution WEBAPPS Author: Ahmet Ümit BAYRAM | 2024/04/21 |
Palo Alto PAN-OS < v11.1.2-h3 Exploit, Command Injection and Arbitrary File Creation REMOTE Author: r0f | 2024/04/21 |
OpenClinic GA 5.247.01 Exploit, Path Traversal (Authenticated) WEBAPPS Author: | 2024/04/15 |
OpenClinic GA 5.247.01 Exploit, Information Disclosure WEBAPPS Author: | 2024/04/15 |
Jenkins 2.441 Exploit, Local File Inclusion WEBAPPS Author: Matisse Beckandt | 2024/04/15 |
djangorestframework-simplejwt 5.3.1 Exploit, Information Disclosure WEBAPPS Author: Dhrumil Mistry | 2024/04/15 |
BMC Compuware iStrobe Web Exploit, 20.13 Exploit, Pre-auth RCE WEBAPPS Author: ranca | 2024/04/13 |
Stock Management System v1.0 Exploit, Unauthenticated SQL Injection WEBAPPS Author: lu3min | 2024/04/13 |
Online Fire Reporting System OFRS Exploit, SQL Injection Authentication Bypass WEBAPPS Author: Diyar Saadi | 2024/04/13 |
Savsoft Quiz v6.0 Enterprise Exploit, Stored XSS WEBAPPS Author: Eren Sen | 2024/04/13 |
Wordpress Plugin WP Video Playlist 1.1.1 Exploit, Stored Cross-Site Scripting (XSS) WEBAPPS Author: rdemsta | 2024/04/12 |
WBCE CMS Version 1.6.1 Exploit, Remote Command Execution (Authenticated) WEBAPPS Author: mrswr | 2024/04/12 |
WBCE 1.6.0 Exploit, Unauthenticated SQL injection WEBAPPS Author: young pope | 2024/04/12 |
Moodle 3.10.1 Exploit, Authenticated Blind Time-Based SQL Injection Exploit, _sort_ parameter WEBAPPS Author: Julio Ángel Ferrari | 2024/04/12 |
PrusaSlicer 2.6.1 Exploit, Arbitrary code execution LOCAL Author: Kamil Breński | 2024/04/12 |
PopojiCMS Version 2.0.1 Exploit, Remote Command Execution WEBAPPS Author: mrswr | 2024/04/12 |
Wordpress Plugin Playlist for Youtube 1.32 Exploit, Stored Cross-Site Scripting (XSS) WEBAPPS Author: rdemsta | 2024/04/12 |
HTMLy Version v2.9.6 Exploit, Stored XSS WEBAPPS Author: mrswr | 2024/04/12 |
Ray OS v2.6.3 Exploit, Command Injection RCE(Unauthorized) WEBAPPS Author: ire_Wol | 2024/04/12 |
Terratec dmx_6fire USB Exploit, Unquoted Service Path LOCAL Author: Joseph Kwabena Fiagbor | 2024/04/12 |
MinIO < 2024-01-31T20-20-33Z Exploit, Privilege Escalation REMOTE Author: Jenson Zhao | 2024/04/12 |
GUnet OpenEclass E-learning platform 3.15 Exploit, 'certbadge.php' Unrestricted File Upload WEBAPPS Author: George Tsimpidas | 2024/04/12 |
Open Source Medicine Ordering System v1.0 Exploit, SQLi WEBAPPS Author: Onur Karasalihoğlu | 2024/04/08 |
Daily Expense Manager 1.0 Exploit, 'term' SQLi WEBAPPS Author: Stefan Hesselman | 2024/04/08 |
Best Student Result Management System v1.0 Exploit, Multiple SQLi WEBAPPS Author: u11secur1t | 2024/04/08 |
Human Resource Management System v1.0 Exploit, Multiple SQLi WEBAPPS Author: u11secur1t | 2024/04/08 |
Positron Broadcast Signal Processor TRA7005 v1.20 Exploit, Authentication Bypass REMOTE Author: iquidWor | 2024/04/08 |
Wordpress Theme Travelscape v1.0.3 Exploit, Arbitrary File Upload WEBAPPS Author: Milad karimi | 2024/04/08 |
AnyDesk 7.0.15 Exploit, Unquoted Service Path LOCAL Author: Milad karimi | 2024/04/08 |
Quick CMS v6.7 en 2023 Exploit, 'password' SQLi WEBAPPS Author: u11secur1t | 2024/04/03 |
Wordpress Plugin Alemha Watermarker 1.3.1 Exploit, Stored Cross-Site Scripting (XSS) WEBAPPS Author: rdemsta | 2024/04/03 |
Computer Laboratory Management System v1.0 Exploit, Multiple-SQLi WEBAPPS Author: u11secur1t | 2024/04/03 |
ESET NOD32 Antivirus 17.0.16.0 Exploit, Unquoted Service Path LOCAL Author: Milad karimi | 2024/04/03 |
Axigen < 10.5.7 Exploit, Persistent Cross-Site Scripting WEBAPPS Author: Vincent McRae_ Mesut Cetin | 2024/04/02 |
Gibbon LMS v26.0.00 Exploit, SSTI vulnerability WEBAPPS Author: Ali Maharramli_Fikrat Guliev_Islam Rzayev | 2024/04/02 |
Casdoor < v1.331.0 Exploit, '/api/set-password' CSRF WEBAPPS Author: Van Lam Nguyen | 2024/04/02 |
Microsoft Windows Defender Exploit, Detection Mitigation Bypass TrojanWin32Powessere.G LOCAL Author: yp3rlin | 2024/04/02 |
Wordpress Plugin Exploit, Membership For WooCommerce < v2.1.7 Exploit, Arbitrary File Upload to Shell (Unauthenticated) WEBAPPS Author: Milad karimi | 2024/04/02 |
Smart School 6.4.1 Exploit, SQL Injection WEBAPPS Author: raCkE | 2024/04/02 |
CE Phoenix v1.0.8.20 Exploit, Remote Code Execution WEBAPPS Author: mrswr | 2024/04/02 |
Elementor Website Builder < 3.12.2 Exploit, Admin+ SQLi WEBAPPS Author: E1 Coders | 2024/04/02 |
Blood Bank v1.0 Exploit, Stored Cross Site Scripting (XSS) WEBAPPS Author: Ersin Erenler | 2024/04/02 |
Daily Habit Tracker 1.0 Exploit, Broken Access Control WEBAPPS Author: Yevhenii Butenko | 2024/04/02 |
Daily Habit Tracker 1.0 Exploit, SQL Injection WEBAPPS Author: Yevhenii Butenko | 2024/04/02 |
Daily Habit Tracker 1.0 Exploit, Stored Cross-Site Scripting (XSS) WEBAPPS Author: Yevhenii Butenko | 2024/04/02 |
Employee Management System 1.0 Exploit, _txtusername_ and _txtpassword_ SQL Injection (Admin Login) WEBAPPS Author: Yevhenii Butenko | 2024/04/02 |
Employee Management System 1.0 Exploit, _txtfullname_ and _txtphone_ SQL Injection WEBAPPS Author: Yevhenii Butenko | 2024/04/02 |
LeptonCMS 7.0.0 Exploit, Remote Code Execution (RCE) (Authenticated) WEBAPPS Author: mrswr | 2024/04/02 |
FoF Pretty Mail 1.1.2 Exploit, Server Side Template Injection (SSTI) WEBAPPS Author: Chokri Hammedi | 2024/04/02 |
FoF Pretty Mail 1.1.2 Exploit, Local File Inclusion (LFI) WEBAPPS Author: Chokri Hammedi | 2024/04/02 |
Microsoft Windows 10.0.17763.5458 Exploit, Kernel Privilege Escalation LOCAL Author: E1 Coders | 2024/04/02 |
Hospital Management System v1.0 Exploit, Stored Cross Site Scripting (XSS) WEBAPPS Author: Sandeep Vishwakarma | 2024/04/02 |
E-INSUARANCE v1.0 Exploit, Stored Cross Site Scripting (XSS) WEBAPPS Author: Sandeep Vishwakarma | 2024/04/02 |
Petrol Pump Management Software v1.0 Exploit, Remote Code Execution (RCE) WEBAPPS Author: Sandeep Vishwakarma | 2024/04/02 |
GL-iNet MT6000 4.5.5 Exploit, Arbitrary File Download REMOTE Author: Bandar Alharbi | 2024/04/02 |
Rapid7 nexpose Exploit, 'nexposeconsole' Unquoted Service Path LOCAL Author: Saud Alenazi | 2024/04/02 |
OpenCart Core 4.0.2.3 Exploit, 'search' SQLi WEBAPPS Author: Saud Alenazi | 2024/04/02 |
ASUS Control Center Express 01.06.15 Exploit, Unquoted Service Path LOCAL Author: Alaa Kachouh | 2024/04/02 |
Online Hotel Booking In PHP 1.0 Exploit, Blind SQL Injection (Unauthenticated) WEBAPPS Author: Gian Paris C. Agsam | 2024/04/02 |
Simple Backup Plugin Python Exploit 2.7.10 Exploit, Path Traversal WEBAPPS Author: en3x | 2024/04/02 |
liveSite Version 2019.1 Exploit, Remote Code Execution WEBAPPS Author: mrswr | 2024/03/28 |
WinRAR version 6.22 Exploit, Remote Code Execution via ZIP archive REMOTE Author: E1 Coders | 2024/03/28 |
Dell Security Management Server <1.9.0 Exploit, Local Privilege Escalation LOCAL Author: Amirhossein Bahramizadeh | 2024/03/28 |
Siklu MultiHaul TG series < 2.0.0 Exploit, unauthenticated credential disclosure REMOTE Author: emaja | 2024/03/28 |
RouterOS 6.40.5 Exploit, 6.44 and 6.48.1 Exploit, 6.49.10 Exploit, Denial of Service DOS Author: ce-wz | 2024/03/28 |
Broken Access Control Exploit, on NodeBB v3.6.7 WEBAPPS Author: Vibhor Sharma | 2024/03/28 |
Purei CMS 1.0 Exploit, SQL Injection WEBAPPS Author: Number 7 | 2024/03/28 |
Workout Journal App 1.0 Exploit, Stored XSS WEBAPPS Author: MURAT CAGRI ALIS | 2024/03/28 |
Asterisk AMI Exploit, Partial File Content & Path Disclosure (Authenticated) REMOTE Author: Sean Pesce | 2024/03/28 |
LimeSurvey Community 5.3.32 Exploit, Stored XSS WEBAPPS Author: Subhankar Singh | 2024/03/25 |
Nagios XI Version 2024R1.01 Exploit, SQL Injection WEBAPPS Author: Jarod Jaslow (MAWK) | 2024/03/25 |
Wallos < 1.11.2 Exploit, File Upload RCE WEBAPPS Author: m | 2024/03/25 |
Tourism Management System v2.0 Exploit, Arbitrary File Upload WEBAPPS Author: oSPir | 2024/03/25 |
LBT-T300-mini1 Exploit, Remote Buffer Overflow REMOTE Author: Amirhossein Bahramizadeh | 2024/03/25 |
MobileShop master v1.0 Exploit, SQL Injection Vuln. WEBAPPS Author: HAZIM ARBAŞ | 2024/03/25 |
Insurance Management System PHP and MySQL 1.0 Exploit, Multiple Stored XSS WEBAPPS Author: Hakkı TOKLU | 2024/03/25 |
SPA-CART CMS Exploit, Stored XSS WEBAPPS Author: Eren Sen | 2024/03/25 |
Craft CMS 4.4.14 Exploit, Unauthenticated Remote Code Execution WEBAPPS Author: Olivier Lasne | 2024/03/25 |
minaliC 2.0.0 Exploit, Denied of Service REMOTE Author: Fernando Mengali | 2024/03/22 |
CSZCMS v1.3.0 Exploit, SQL Injection (Authenticated) WEBAPPS Author: Abdulaziz Almetairy | 2024/03/20 |
HNAS SMU 14.8.7825 Exploit, Information Disclosure REMOTE Author: Arslan Masood | 2024/03/20 |
Teacher Subject Allocation Management System 1.0 Exploit, 'searchdata' SQLi WEBAPPS Author: Ersin Erenler | 2024/03/20 |
Simple Task List 1.0 Exploit, 'status' SQLi WEBAPPS Author: Ersin Erenler | 2024/03/20 |
Blood Bank 1.0 Exploit, 'bid' SQLi WEBAPPS Author: Ersin Erenler | 2024/03/20 |
Employee Management System 1.0 Exploit, 'admin_id' SQLi WEBAPPS Author: Shubham Pandey | 2024/03/20 |
Quick.CMS 6.7 Exploit, SQL Injection Login Bypass WEBAPPS Author: 4X.Forensic | 2024/03/18 |
xbtitFM 4.1.18 Exploit, Multiple Vulnerabilities WEBAPPS Author: 5kj23kj32io2k | 2024/03/18 |
TELSAT marKoni FM Transmitter 1.9.5 Exploit, Insecure Access Control Change Password REMOTE Author: iquidWor | 2024/03/18 |
TELSAT marKoni FM Transmitter 1.9.5 Exploit, Backdoor Account Information Disclosure REMOTE Author: iquidWor | 2024/03/18 |
TELSAT marKoni FM Transmitter 1.9.5 Exploit, Root Command Injection REMOTE Author: iquidWor | 2024/03/18 |
Backdrop CMS 1.23.0 Exploit, Stored XSS WEBAPPS Author: Sinem Şahin | 2024/03/18 |
Atlassian Confluence < 8.5.3 Exploit, Remote Code Execution WEBAPPS Author: aanVade | 2024/03/18 |
Gibbon LMS < v26.0.00 Exploit, Authenticated RCE WEBAPPS Author: Ali Maharramli_Fikrat Guliev_Islam Rzayev | 2024/03/18 |
ZoneMinder Snapshots < 1.37.33 Exploit, Unauthenticated RCE WEBAPPS Author: Ravindu Wickramasinghe | 2024/03/18 |
TYPO3 11.5.24 Exploit, Path Traversal (Authenticated) WEBAPPS Author: Saeed reza Zamanian | 2024/03/18 |
WEBIGniter v28.7.23 Exploit, Stored XSS WEBAPPS Author: Mesut Cetin | 2024/03/18 |