Exploits & CVE's

Authored by Prunier Charles-Yves Budget and Expense Tracker System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass. Change Mirror Download # Exploit Title: Budget and Expense...

Authored by Erwin Krazek Church Management System version 1.0 suffers from a remote SQL injection vulnerability. Original discovery of SQL injection in this version is attributed to Murat Demirci in...

Authored by Alperen Ergel T-Soft E-Commerce version 4 suffers from a cross site request forgery vulnerability. Change Mirror Download # Exploit Title: T-Soft E-Commerce 4 - change 'admin credentials' Cross-Site Request Forgery...

Authored by John Jefferson Li Support Board version 3.3.3 suffers from a remote SQL injection vulnerability. Change Mirror Download # Exploit Title: Support Board 3.3.3 - 'Multiple' SQL Injection (Unauthenticated)# Date: 29.08.2021#...

Authored by Shelby Pace, Thomas Chauchefoin | Site metasploit.com elFinder versions below 2.1.59 are vulnerable to a command injection vulnerability via its archive functionality. When creating a new zip archive,...

Authored by Halit Akaydin Impress CMS version 1.4.2 suffers from a remote code execution vulnerability. Change Mirror Download # Exploit Title: ImpressCMS 1.4.2 - Remote Code Execution (RCE) (Authenticated)# Date: 15-09-2021# Exploit...

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org Microsoft Windows cmd.exe suffers from a stack buffer overflow vulnerability. Change Mirror Download Credits: John Page (aka hyp3rlinx, malvuln) Website: hyp3rlinx.altervista.org...

Authored by Dawid Golunski, jheysel-r7, space-r7 | Site metasploit.com This Metasploit modules exploits a critical vulnerability in Git Large File Storage (Git LFS), an open source Git extension for versioning...

Authored by Abdullah Khawaja Simple Attendance System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass. Change Mirror Download # Exploit Title: Simple Attendance System 1.0 -...

Authored by Akiner Kisa Cloudron version 6.2 suffers from a cross site scripting vulnerability. advisories | CVE-2021-31721 Change Mirror Download # Exploit Title: Cloudron 6.2 - Cross Site Scripting (Reflected)# Google Dork: N/A#...