Exploits & CVE's

Authored by h4ck3r WBiz Desk version 1.2 suffers from a remote SQL injection vulnerability. Change Mirror Download Exploit Title: WBiz Desk 1.2 - SQL Injection Exploit Date: May 12, 2023. CVSS...

Authored by Steeven Rodriguez In eBankIT 6, the public endpoints /public/token/Email/generate and /public/token/SMS/generate allow generation of OTP messages to any email address or phone number without validation. advisories | CVE-2023-33291 Change Mirror...

Authored by Lana Codes | Site wordfence.com W3 Eden Download Manager versions 3.2.70 and below suffer from a persistent cross site scripting vulnerability via ShortCode. advisories | CVE-2023-2305 Change Mirror Download W3 Eden...

Authored by h4ck3r Affiliate Me version 5.0.1 suffers from a remote SQL injection vulnerability. Change Mirror Download Exploit Title: Affiliate Me Version 5.0.1 - SQL Injection Exploit Date: May 16, 2023....

Authored by CraCkEr WBiz Desk version 1.2 suffers from a cross site scripting vulnerability. Change Mirror Download ┌┌───────────────────────────────────────────────────────────────────────────────────────┐││ ...

Authored by h00die, Matthieu Barjole, Victor Cutillas | Site metasploit.com This exploit takes advantage of a vulnerability in sudoedit, part of the sudo package. The sudoedit (aka sudo -e) feature...

Authored by Thurein Soe Filmora version 12 Build 1.0.0.7 suffers from an unquoted service path vulnerability. advisories | CVE-2023-31747 Change Mirror Download Vendor Name: FilmoraProduct Name: Filmora 12 version ( Build 1.0.0.7 )Vendor...

Authored by Thurein Soe MobileTrans version 4.0.11 suffers from having a weak service permission vulnerability. advisories | CVE-2023-31748 Change Mirror Download Vendor Name: MobileTransProduct Name: MobileTransVendor Home Page: https://mobiletrans.wondershare.com/Affected Version(s): MobileTrans version...

Authored by Rahad Chowdhury ChurchCRM version 4.5.4 suffers from a cross site scripting vulnerability. Related CVE number: CVE-2023-31699. Change Mirror Download # Exploit Title: ChurchCRM v4.5.4 - Reflected XSS via Image (Authenticated)#...

Authored by Andrea Intilangelo CiviCRM version 5.59.alpha1 suffers from a persistent cross site scripting vulnerability. advisories | CVE-2023-25440 Change Mirror Download # Exploit Title: CiviCRM 5.59.alpha1 - Stored XSS (Cross-Site Scripting)# Date: 2023-02-02#...