Exploits & CVE's

Authored by Jake Murphy Genesys PureConnect as of their build on 08-October-2020 suffers from a cross site scripting vulnerability. advisories | CVE-2022-37775 Change Mirror Download Product: Genesys PureConnect - Interaction Web Tools Chat...

Authored by Mariam Tariq WordPress GetYourGuide Ticketing plugin version 1.0.1 suffers from a persistent cross site scripting vulnerability. Change Mirror Download # *Exploit Title*: WordPress Plugin ‘GetYourGuide Ticketing’ - StoredCross-Site Scripting#...

Authored by Saud Alenazi OpenCart 3.x Newsletter Custom Popup module version 4.0 suffers from a remote blind SQL injection vulnerability. Change Mirror Download # Exploit Title: OpenCart v3.x So Newsletter Custom Popup...

Authored by Chokri Hammedi Owlfiles File Manager version 12.0.1 suffers from local file inclusion and path traversal vulnerabilities. Change Mirror Download # Exploit Title: Owlfiles File Manager 12.0.1 - multi vulnerabilities# Date:...

Authored by Chokri Hammedi PhotoSync version 4.7 suffers from a local file inclusion vulnerability. Change Mirror Download # Exploit Title: PhotoSync 4.7 IOS APP Local file inclusion# Date: Sep 19, 2022# Exploit...

Authored by LiquidWorm | Site zeroscience.mk SoX versions 14.4.2 and below suffer from a division by zero attack when handling WAV files, resulting in denial of service vulnerability and possibly...

Authored by Edd13Mora VIAVIWEB Wallpaper Admin suffers from remote shell upload and remote SQL injection vulnerabilities. Change Mirror Download ```# Exploit Title: # Google Dork: intext:"Wallpaper Admin" "LOGIN" "password" "Username"#...

Authored by Moritz Bechler | Site syss.de Due to JMX/RMI services in TIBCO JasperReports Server version 8.0.2 Community Edition performing unsafe deserialization, it is possible to execute arbitrary code and...

Authored by Chloe Chamberland | Site wordfence.com WordPress WPGateway plugin versions 3.5 and below suffer from an unauthenticated privilege escalation vulnerability. advisories | CVE-2022-3180 Change Mirror Download Description: Unauthenticated Privilege EscalationAffected Plugin: WPGatewayPlugin...

Authored by krastanoel, wuhan005, li4n0 | Site metasploit.com This Metasploit module exploits the Git fetch command in Gitea repository migration process that leads to a remote command execution on the...