Exploits & CVE's

Authored by indoushka K-LOANS version 1.4.5 suffers from an ignored default credential vulnerability. Change Mirror Download ====================================================================================================================================| # Title : K-LOANS v1.4.5 Insecure Settings Vulnerability ...

Authored by indoushka Kleeja version 1.5.4 suffers from a cross site scripting vulnerability. Change Mirror Download ====================================================================================================================================| # Title : Kleeja v1.5.4 XSS Vulnerability ...

Authored by nu11secur1ty PHP Shopping Cart version 4.2 suffers from a remote SQL injection vulnerability. Change Mirror Download ## Title: PHP Shopping Cart-4.2 Multiple-SQLi## Author: nu11secur1ty## Date: 09/13/2023## Vendor: https://www.phpjabbers.com/## Software:https://www.phpjabbers.com/php-shopping-cart-script/#sectionPricing## Reference:...

Authored by jheysel-r7, James Horseman, Zach Hanley | Site metasploit.com This Metasploit module exploits an authentication bypass in Ivanti Sentry which exposes API functionality which allows for code execution in...

Authored by Kai Feng A buffer overflow vulnerability in OpenPLC Runtime's webserver version 3 allows attackers to inject malicious code, leading to an internal server error that is irrecoverable. This...

Authored by Jann Horn, Google Security Research The Linux 6.4 kernel suffers from a use-after-free condition due to per-VMA locks that introduce a race between page fault and MREMAP_DONTUNMAP.

Authored by RedWay Security, Santiago Lopez Splunk Enterprise versions below 9.0.5, 8.2.11, and 8.1.14 allows low-privileged users who hold a role with edit_user capability assigned to it the ability to...

Authored by Ege Balci, Horizon3.ai Attack Team | Site metasploit.com VMware vRealize Log Insights versions 8.x contain multiple vulnerabilities, such as directory traversal, broken access control, deserialization, and information disclosure....

Authored by Lana Codes | Site wordfence.com WordPress Slimstat Analytics plugin versions 5.0.9 and below suffer from cross site scripting and remote SQL injection vulnerabilities. advisories | CVE-2023-4597, CVE-2023-4598 Change Mirror Download Vulnerability...

Authored by indoushka Kaledo RD CMS version 1.0 suffers from a remote SQL injection vulnerability. Change Mirror Download ====================================================================================================================================| # Title : Kalédo RD CMS va1.0 SQL Injection...