Exploits & CVE's

Authored by Mesut Cetin, Vincent McRae Solar-Log 200 PM+ version 3.6.0 suffers from a persistent cross site scripting vulnerability. advisories | CVE-2023-46344 Change Mirror Download # Exploit Title: Stored XSS in Solar-Log 200...

Authored by Branko Milicevic RAD SecFlow-2 devices with Hardware 0202, Firmware 4.1.01.63, and U-Boot 2010.12 suffer from a directory traversal vulnerability. advisories | CVE-2019-6268 Change Mirror Download # Exploit Title: Path traversal in...

Authored by Geraldo Alcantara Customer Support System version 1.0 suffers from a remote SQL injection vulnerability in /customer_support/ajax.php. Original discovery of SQL injection in this version is attributed to Ahmed...

Authored by W01fh4cker | Site github.com F5 BIG-IP remote user addition exploit that leverages the authorization bypass vulnerability as called out in CVE-2023-46747. advisories | CVE-2023-46747

Authored by Michele Di Bonaventura GL.iNet AR300M versions 4.3.7 and below suffer from an arbitrary file writing vulnerability. advisories | CVE-2023-46455 Change Mirror Download #!/usr/bin/env python3# Exploit Title: GL.iNet <= 4.3.7 Arbitrary File...

Authored by Michele Di Bonaventura GL.iNet AR300M versions 4.3.7 and below suffer from an OpenVPN client related remote code execution vulnerability. advisories | CVE-2023-46454 Change Mirror Download #!/usr/bin/env python3# Exploit Title: GL.iNet <=...

Authored by Michele Di Bonaventura GL.iNet AR300M versions 3.216 and below suffer from an OpenVPN client related remote code execution vulnerability. advisories | CVE-2023-46456 Change Mirror Download #!/usr/bin/env python3# Exploit Title: GL.iNet <=...

Authored by Melvin Mejia Easywall version 0.3.1 suffers from an authenticated remote command execution vulnerability. Change Mirror Download # Exploit Title: Easywall 0.3.1 - Authenticated Remote Command Execution# Date: 30-11-2023# Exploit Author:...

Authored by Shubham Pandey Petrol Pump Management Software version 1.0 suffers from multiple cross site scripting vulnerabilities. advisories | CVE-2024-27743, CVE-2024-27744 Change Mirror Download # Exploit Title: Cross Site Scripting vulnerability in Petrol...

Authored by Shubham Pandey Petrol Pump Management Software version 1.0 suffers from a remote SQL injectionvulnerability. Change Mirror Download # Exploit Title: SQL Injection vulnerability in Petrol Pump ManagementSoftware v.1.0.# Date: 01-03-2024#...