Exploits & CVE's

Authored by Ankita Pal Lot Reservation Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass. Change Mirror Download #Exploit Title: lot reservation management system 1.0...

Authored by Chokri Hammedi Millhouse-Project version 1.414 suffers from a cross site scripting vulnerability. Change Mirror Download <?php/*Exploit Title: thrsrossi Millhouse-Project 1.414 - register - Reflected xssDate: 12/05/2023Exploit Author: Chokri HammediVendor Homepage:...

Authored by Akash Rajendra Patil WordPress Media-Tags plugin version 3.2.0.2 suffers from a persistent cross site scripting vulnerability. Change Mirror Download # Exploit Title: WordPress Plugin Media-Tags 3.2.0.2 - Stored Cross-Site Scripting...

Authored by Daniel Gonzalez CSZ CMS version 1.3.0 suffers from multiple persistent cross site scripting vulnerabilities. Change Mirror Download # Exploit Title: CSZ CMS 1.3.0 - Stored Cross-Site Scripting (Plugin 'Gallery')# Date:...

Authored by Google Security Research, Seth Jenkins The MediaTek WLAN driver has VFS read handlers that do not check buffer size leading to userland memory corruption.

Authored by indoushka Acon Architecture and Construction Website CMS version 1.2 appears to leave default credentials installed after installation. Change Mirror Download ====================================================================================================================================| # Title : Acon -...

Authored by Chokri Hammedi PhotoSync version 4.7 suffers from a local file inclusion vulnerability. Change Mirror Download # Exploit Title: PhotoSync 4.7 IOS APP Local file inclusion# Date: Sep 19, 2022# Exploit...

Authored by Balzabu GOautodial version 4.0 suffers from a remote shell upload vulnerability. Change Mirror Download # Exploit Title: GOautodial 4.0 - Authenticated Shell Upload# Author: Balzabu# Discovery Date: 07-23-2020# Vendor Homepage:...

Authored by malvuln | Site malvuln.com Radamant ransomware tries to load a DLL named "PROPSYS.dll" and execute a hidden PE file "DirectX.exe" from the AppDataRoaming directory. Therefore, we can drop...

Authored by indoushka CMS Global-PC Technology version 1.0 appears to leave a default administrative account in place post installation. Change Mirror Download ====================================================================================================================================| # Title : CMS Global-PC...