Exploits & CVE's

Authored by Jyotsna Adhana School Faculty Scheduling System version 1.0 suffers from a persistent cross site scripting vulnerability. Change Mirror Download # Exploit Title: School Faculty Scheduling System 1.0 - Stored Cross...

Authored by Jyotsna Adhana School Faculty Scheduling System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass. Change Mirror Download # Exploit Title: School Faculty Scheduling System...

Authored by Balzabu GOautodial version 4.0 suffers from a remote shell upload vulnerability. Change Mirror Download # Exploit Title: GOautodial 4.0 - Authenticated Shell Upload# Author: Balzabu# Discovery Date: 07-23-2020# Vendor Homepage:...

Authored by Owais Mehtab, Vijay Kota Libtaxii versions 1.1.117 and below and OpenTaxi versions 0.2.0 and below suffer from a server-side request forgery vulnerability. advisories | CVE-2020-27197 Change Mirror Download Libtaxii version <=...

Authored by Maximilian Barz Tiki Wiki CMS Groupware version 21.1 suffers from an authentication bypass vulnerability. advisories | CVE-2020-15906 Change Mirror Download # Exploit Title: Tiki Wiki CMS Groupware 21.1 - Authentication Bypass#...

Authored by ColdFusionX | Site github.com Bludit versions 3.9.2 and below bruteforce mitigation bypass exploit. Please visit the related homepage for deep dive details on usage. advisories | CVE-2019-17240 Change Mirror Download #!/usr/bin/python3#...

Authored by Joe Iz WordPress SuperStoreFinder plugin version 6.1 suffers from cross site request forgery and remote shell upload vulnerabilities. Change Mirror Download ################################################################################################################################ Exploit Title : SuperStoreFinder Wordpress Plugins CSRF File...

Authored by Jonatas Fil Apache Struts 2 DefaultActionMapper Prefixes OGNL remote code execution exploit. advisories | CVE-2013-2251 Change Mirror Download # Exploit Title: Apache Struts 2 - DefaultActionMapper Prefixes OGNL Code Execution# Google...

Authored by nag0mez Ultimate Project Manager CRM PRO versions 2.0.5 and below suffer from a remote SQL injection vulnerability. Change Mirror Download # Exploit Title: Ultimate Project Manager CRM PRO 2.0.5 -...

Authored by Net-Hunter WordPress HS Brand Logo Slider plugin version 2.1 suffers from a remote shell upload vulnerability. Change Mirror Download # Exploit Title: WordPress Plugin HS Brand Logo Slider 2.1 -...