Exploits & CVE's

Authored by Ashutosh Singh Umath User Registration and Login and User Management System version 3.0 suffers from a persistent cross site scripting vulnerability. Change Mirror Download # Exploit Title: User Registration &...

Authored by indoushka GraceHRM version 1.0.3 suffers from a directory traversal vulnerability. Change Mirror Download ====================================================================================================================================| # Title : GraceHRM v1.0.3 Directory traversal Vulnerability ...

Authored by indoushka Geeklog version 2.1.0b1 suffers from a remote SQL injection vulnerability. Change Mirror Download ====================================================================================================================================| # Title : Geeklog v2.1.0b1 Sql Injection Vulnerability ...

Authored by EgiX | Site karmainsecurity.com SugarCRM versions 12.2.0 and below suffers from a multiple step remote shell upload vulnerability. advisories | CVE-2023-35808 Change Mirror Download -----------------------------------------------------------------SugarCRM <= 12.2.0 (Notes) Unrestricted File Upload...

Authored by EgiX | Site karmainsecurity.com SugarCRM versions 12.2.0 suffer from a bean manipulation vulnerability that can allow for privilege escalation. advisories | CVE-2023-35809 Change Mirror Download ------------------------------------------------------------------------SugarCRM <= 12.2.0 (updateGeocodeStatus) Bean Manipulation...

Authored by EgiX | Site karmainsecurity.com SugarCRM versions 12.2.0 and below suffer from a PHP object injection vulnerability. advisories | CVE-2023-35810 Change Mirror Download -------------------------------------------------------------------------------SugarCRM <= 12.2.0 (Docusign_GlobalSettings) PHP Object Injection Vulnerability------------------------------------------------------------------------------- Software...

Authored by EgiX | Site karmainsecurity.com SugarCRM versions 12.2.0 and below suffer from multiple remote SQL injection vulnerabilities. advisories | CVE-2023-35811 Change Mirror Download ----------------------------------------------------SugarCRM <= 12.2.0 Two SQL Injection Vulnerabilities---------------------------------------------------- Software Link:https://www.sugarcrm.com...

Authored by EgiX | Site karmainsecurity.com CrafterCMS versions 4.0.2 and below suffer from multiple cross site scripting vulnerabilities. advisories | CVE-2023-4136 Change Mirror Download ---------------------------------------------------------------------------CrafterCMS <= 4.0.2 Multiple Reflected Cross-Site Scripting Vulnerabilities--------------------------------------------------------------------------- Software...

Authored by Carlo Di Dato TSPlus version 16.0.2.14 suffers from an insecure permissions vulnerability. advisories | CVE-2023-31067 Change Mirror Download # Exploit Title: TSplus 16.0.2.14 - Remote Access Insecure Files and Folders Permissions#...

Authored by Lana Codes | Site wordfence.com WordPress Charitable Donations Plugin and Fundraising Platform versions 1.7.0.12 and below suffer from a privilege escalation vulnerability. advisories | CVE-2023-4404 Change Mirror Download Description: Donation Forms...