Exploits & CVE's

Authored by Rasmus Sten | Site labs.f-secure.com This script will create a zip file exploiting CVE-2021-1810 by creating a directory hierarchy deep enough for Archive Utility to fail setting quarantine...

Authored by Abdulrahman College Management System version 1.0 suffers from a persistent cross site scripting vulnerability. Change Mirror Download # Exploit Title: college management system - Stored Cross-Site Scripting (XSS) Unauthenticated# Date:...

Authored by Abdulrahman College Management System 1.0 suffers from an insecure direct object reference that allows a user to add an administrator without any authentication. Change Mirror Download # Exploit Title: college...

Authored by nu11secur1ty Local Offices Contact Directory Site using PHP and SQLite Free Source Code suffers from a remote SQL injection vulnerability. Change Mirror Download https://www.sourcecodester.com/php/14973/local-offices-contact-directory-site-using-php-and-sqlite-free-source-code.html## Vendor:(https://www.sourcecodester.com/php/14973/local-offices-contact-directory-site-using-php-and-sqlite-free-source-code.html)## Description:The `search` parameter appears to...

Authored by nu11secur1ty Company's Recruitment Management System in PHP and SQLite Free Source Code suffers from a remote SQL injection vulnerability. Change Mirror Download Description of vulnerability:The Company's Recruitment Management System (by:...

Authored by Oscar Gutierrez Pet Shop Management System version 1.0 suffers from privilege escalation and remote shell upload vulnerabilities. Change Mirror Download #!/usr/bin/python3# Exploit Title: Pet Shop Management System v1.0 - Authenticated...

Authored by prey Open Game Panel suffers from an authenticated remote code execution vulnerability. Change Mirror Download # Exploit Title: Open Game Panel - Remote Code Execution (RCE) (Authenticated)# Google Dork: intext:"Open...

Authored by Richard Jones Vehicle Service Management System version 1.0 suffers from multiple remote SQL injection vulnerabilities one of which allows for authentication bypass. Change Mirror Download # Exploit Title: Vehicle Service...

Authored by pussycat0x Cmsimple version 5.4 authenticated remote code execution exploit. Change Mirror Download # Exploit Title: Cmsimple 5.4 - Remote Code Execution (RCE) (Authenticated)# Date: 29.09.2021# Exploit Author: pussycat0x# Vendor Homepage:...

Authored by Hamza Khedr PlaceOS version 1.2109.1 suffers from an open redirection vulnerability. advisories | CVE-2021-41826 Change Mirror Download # Exploit Title: PlaceOS 1.2109.1 - Open Redirection# Date: 29-09-2021# Exploit Author: Hamza Khedr...