Exploits & CVE's

Authored by LiquidWorm | Site zeroscience.mk Electrolink FM/DAB/TV Transmitter suffers from a disclosure of clear-text credentials in controlloLogin.js that can allow security bypass and system access. Change Mirror Download Electrolink FM/DAB/TV Transmitter...

Authored by LiquidWorm | Site zeroscience.mk Electrolink FM/DAB/TV Transmitter suffers from an authentication bypass vulnerability affecting the Login Cookie. An attacker can set an arbitrary value except NO to the...

Authored by LiquidWorm | Site zeroscience.mk Electrolink FM/DAB/TV Transmitter suffers from an unauthenticated parameter manipulation that allows an attacker to set the credentials to blank giving her access to the...

Authored by h00die-gr3y, Kazamayc | Site metasploit.com Multiple TOTOLINK network products contain a command injection vulnerability in setting/setTracerouteCfg. This vulnerability allows an attacker to execute arbitrary commands through the command...

Authored by nu11secur1ty Taskhub version 2.8.8 suffers from a cross site scripting vulnerability. Change Mirror Download ## Title: TASKHUB-2.8.8-XSS-Reflected## Author: nu11secur1ty## Date: 09/22/2023## Vendor: https://codecanyon.net/user/infinitietech## Software: https://codecanyon.net/item/taskhub-project-management-finance-crm-tool/25685874## Reference: https://portswigger.net/web-security/cross-site-scripting## Description:The value of...

Authored by Touhami Kasbaoui Elasticsearch version 8.5.3 stack overflow proof of concept exploit. advisories | CVE-2023-31419 Change Mirror Download # Exploit Author: TOUHAMI KASBAOUI# Vendor Homepage: https://elastic.co/# Version: 8.5.3 / OpenSearch# Tested on:...

Authored by indoushka Lamano LMS version 0.1 suffers from an ignored default credential vulnerability. Change Mirror Download ====================================================================================================================================| # Title : Lamano LMS v0.1 Insecure Settings Vulnerability ...

Authored by indoushka LogoBee CMS version 0.2 suffers from a cross site scripting vulnerability. Change Mirror Download ====================================================================================================================================| # Title : LogoBee CMS v0.2 XSS Vulnerability ...

Authored by Yasar Klawohn, JM | Site x41-dsec.de OPNsense versions 23.1.11_1, 23.7.3, and 23.7.4 suffer from cross site scripting vulnerabilities that can allow for privilege escalation. Change Mirror Download Advisory X41-2023-001: Two...

Authored by LiquidWorm | Site zeroscience.mk RoyalTSX version 6.0.1 suffers from an RTSZ file handling heap memory corruption vulnerability. The application receives SIGABRT after the RAPortCheck.createNWConnection() function is handling the...