Exploits & CVE's

Authored by nu11secur1ty Orange Station version 1.0 suffers from a remote shell upload vulnerability. Change Mirror Download ## Title: ORANGE STATION-1.0 File Upload Remote Code Execution Vulnerability## Author: nu11secur1ty## Date: 03/26/2024## Vendor:...

Authored by Subhankar Singh LimeSurvey Community version 5.3.32 suffers from a persistent cross site scripting vulnerability. advisories | CVE-2024-24506 Change Mirror Download # Exploit Title: Stored Cross-Site Scripting (XSS) in LimeSurvey CommunityEdition Version...

Authored by Olivier Lasne Craft CMS version 4.4.14 suffers from an unauthenticated remote code execution vulnerability. advisories | CVE-2023-41892 Change Mirror Download #!/usr/bin/env python3#coding: utf-8# Exploit Title: Craft CMS unauthenticated Remote Code Execution...

Authored by Hakki Toklu Insurance Management System PHP and MySQL version 1.0 suffers from multiple persistent cross site scripting vulnerabilities. Change Mirror Download # Exploit Title:Insurance Management System PHP and MySQL 1.0...

Authored by Gokhan Sensukur Bludit version 3.13.0 suffers from a cross site scripting vulnerability. Change Mirror Download # Exploit Title: Bludit 3.13.0 - Cross Site Scripting (XSS)#Exploit Author: Gökhan ŞENŞÜKÜR# Date: 29/02/2024#...

Authored by Arslan Masood Hitachi NAS (HNAS) System Management Unit (SMU) version 14.8.7825 suffers from an information disclosure vulnerability. advisories | CVE-2023-6538 Change Mirror Download # Exploit Title: Hitachi NAS (HNAS) System Management...

Authored by Ersin Erenler Teacher Subject Allocation Management System version 1.0 suffers from a remote SQL injection vulnerability. advisories | CVE-2023-46024 Change Mirror Download # Exploit Title: Teacher Subject Allocation Management System 1.0...

Authored by Ersin Erenler Simple Task List version 1.0 suffers from a remote SQL injection vulnerability. advisories | CVE-2023-46023 Change Mirror Download # Exploit Title: Simple Task List 1.0 - 'status' SQLi# Date:...

Authored by Ersin Erenler Blood Bank version 1.0 suffers from suffers from a remote SQL injection vulnerability. Original discovery of SQL injection in this version is attributed to Nitin Sharma...

Authored by Shubham Pandey Employee Management System version 1.0 suffers from a remote SQL injection vulnerability. Original discovery of this finding is attributed to Ozlem Balci in January of 2024. advisories...