PHPJabbers Availability Booking Calendar 5.0 Cross Site Scripting
Authored by Orpon
PHPJabbers Availability Booking Calendar version 5.0 suffers from multiple cross site scripting vulnerabilities.
advisories | CVE-2023-48208
Change Mirror Download
# Exploit Title: Multiple Cross Site Scripting in PHPJabbers AvailabilityBooking Calendar...
EzViz Studio 2.2.0 DLL Hijacking
Authored by EAFZ
EzViz Studio version 2.2.0 suffers from a dll hijacking vulnerability.
advisories | CVE-2023-41613
Change Mirror Download
PoC:*DLL Hijacking via EzViz Studio (Reported by EAFZ from Pythongoras)**Author: EAFZ aka myantti3m**CVE: **CVE**-2023-41613.**Test...
Magento 2.4.6 XSLT Server Side Injection / Command Execution
Authored by tmrswrr
Magento version 2.4.6 suffers from an XSLT server side injection vulnerability that allows for remote command execution.
Change Mirror Download
Exploit Title: Magento ver. 2.4.6 - XSLT Server Side...
Shuttle Booking Software 2.0 Cross Site Scripting
Authored by Rahad Chowdhury
Shuttle Booking Software version 2.0 suffers from multiple persistent cross site scripting vulnerabilities.
advisories | CVE-2023-48172
Change Mirror Download
# Exploit Title: Shuttle Booking Software v2.0 - Multiple Stored...
EnBw SENEC Legacy Storage Box Log Disclosure
Authored by Ph0s, R0ckE7
EnBw SENEC Legacy Storage Box versions 1 through 3 suffer from a log disclosure vulnerability.
advisories | CVE-2023-39167
Change Mirror Download
Advisory ID: Ph0s-2023-001Product: EnBw - SENEC legacy storage...
F5 BIG-IP TMUI Directory Traversal / File Upload / Code Execution
Authored by wvu, Mikhail Klyuchnikov | Site metasploit.com
This Metasploit module exploits a directory traversal in F5's BIG-IP Traffic Management User Interface (TMUI) to upload a shell script and execute...
MagnusBilling Remote Command Execution
Authored by h00die-gr3y, Eldstal | Site metasploit.com
This Metasploit module exploits a command injection vulnerability in MagnusBilling application versions 6.x and 7.x that allows remote attackers to run arbitrary commands...
F5 BIG-IP TMUI AJP Smuggling Remote Command Execution
Authored by Spencer McIntyre, Sandeep Singh, Thomas Hendrickson, Michael Weber | Site metasploit.com
This Metasploit module exploits a flaw in F5's BIG-IP Traffic Management User Interface (TMU) that enables an...
Cisco IOX XE Unauthenticated Remote Code Execution
Authored by sfewer-r7 | Site metasploit.com
This Metasploit module leverages both CVE-2023-20198 and CVE-2023-20273 against vulnerable instances of Cisco IOS XE devices which have the web UI exposed. An attacker...
ZoneMinder Snapshots Command Injection
Authored by whotwagner, UnblvR | Site metasploit.com
This Metasploit module exploits an unauthenticated command injection in zoneminder that can be exploited by appending a command to an action of the...
