Exploits & CVE's

Authored by Ankita Pal Lot Reservation Management System version 1.0 suffers from a persistent cross site scripting vulnerability. Change Mirror Download #Exploit Title: lot reservation management system 1.0 - Stored Cross Site...

Authored by Mohammed Farhan Genexis Platinum-4410 version P4410-V2-1.28 suffers from a cross site request forgery vulnerability. Change Mirror Download # Exploit Title: Genexis Platinum-4410 P4410-V2-1.28 - Cross Site Request Forgery to Reboot#...

Authored by Nguyen Jang Oracle WebLogic Server versions 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0, and 14.1.1.0.0 remote code execution exploit. advisories | CVE-2020-14882 Change Mirror Download #!/usr/bin/python3# Exploit Title: Oracle WebLogic Server 10.3.6.0.0 / 12.1.3.0.0...

Authored by Vyshnav NK CSE Bookstore version 1.0 suffers from a persistent cross site scripting vulnerability. Change Mirror Download # Exploit Title: CSE Bookstore 1.0 - 'quantity' Persistent Cross-site Scripting# Date: 30/10/2020#...

Authored by Noth DedeCMS version 5.8 suffers from a cross site scripting vulnerability. advisories | CVE-2020-27533 Change Mirror Download # Exploit Title: DedeCMS v.5.8 - "keyword" Cross-Site Scripting# Date: 2020-07-27# Exploit Author:...

Authored by n4pst3r Agent Tesla Botnet suffers from a cross site scripting vulnerability. Change Mirror Download ################################# Exploit Title: Agent Tesla Botnet - Cross Site Scripting Vulnerability# Google Dork: n/a# Date: 29/10/2020#...

Authored by Simone Quatrini Citadel WebCit versions prior to 926 suffer from a session hijacking vulnerability. Change Mirror Download # Exploit Title: Citadel WebCit < 926 - Session Hijacking Exploit# Exploit Author:...

Authored by Andrea Intilangelo Wondershare Dr.Fone version 3.0.0 suffers from an unquoted service path vulnerability. advisories | CVE-2020-27992 Change Mirror Download # Exploit Title: Wondershare Dr.Fone DriverInstall.exe - "WsDrvInst" Unquoted Service Path# Date:...

Authored by yunaranyancat Simple College Website version 1.0 suffers from code execution and remote SQL injection vulnerabilities. Change Mirror Download # Exploit Title: Simple College Website 1.0 - SQL Injection / Remote...

Authored by Mateusz Jurczyk, Google Security Research, hawkes The Microsoft Windows Kernel Cryptography Driver (cng.sys) exposes a DeviceCNG device to user-mode programs and supports a variety of IOCTLs with non-trivial...