Panel Amadey.d.c MVID-2024-0680 Cross Site Scripting
Authored by malvuln | Site malvuln.com
Panel Amadey.d.c malware suffers from cross site scripting vulnerabilities.
Change Mirror Download
Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2024Original source: https://malvuln.com/advisory/50467c891bf7de34d2d65fa93ab8b558.txtContact: [email protected]: twitter.com/malvulnThreat:...
Kemp LoadMaster Unauthenticated Command Injection
Authored by Dave Yesland | Site metasploit.com
This Metasploit module exploits an unauthenticated command injection vulnerability in Progress Kemp LoadMaster in the authorization header after version 7.2.48.1. The following versions...
GhostRace: Exploiting And Mitigating Speculative Race Conditions
Site github.com
This archive is a GhostRace proof of concept exploit exemplifying the concept of a speculative race condition in a step-by-step single-threaded fashion. Coccinelle scripts are used to scan...
Apache OFBiz 18.12.12 Directory Traversal
Authored by Abdualhadi Khalifa
Apache OFBiz versions 18.12.12 and below suffer from a directory traversal vulnerability.
Change Mirror Download
# Exploit Title: Apache OFBiz 18.12.12 - Directory Traversal# Google Dork: N/A# Date:...
Drupal-Wiki 8.31 / 8.30 Cross Site Scripting
Authored by Simon Bieber | Site secuvera.de
Drupal-Wiki versions 8.30 and 8.31 suffer from multiple persistent cross site scripting vulnerabilities.
advisories | CVE-2024-34481
Change Mirror Download
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256secuvera-SA-2024-02: Multiple Persistent...
Online Tours And Travels Management System 1.0 SQL Injection
Authored by nu11secur1ty
Online Tours and Travels Management System version 1.0 suffers from a remote SQL injection vulnerability.
Change Mirror Download
## Titles: Travel-Manager-OTMSP-1.0 Multiple SQLi## Author: nu11secur1ty## Date: 05/01/2024## Vendor: https://mayurik.com/##...
htmlLawed 1.2.5 Remote Command Execution
Authored by d4t4s3c
htmlLawed versions 1.2.5 and below proof of concept remote command execution exploit.
advisories | CVE-2022-35914
Change Mirror Download
#!/bin/bash# Exploit Title: htmlLawed <= 1.2.5 - Remote Code Execution# Date: 2024-05-02#...
Clinic Queuing System 1.0 Remote Code Execution
Authored by Juan Marco Sanchez
Clinic Queuing System version 1.0 suffers from a remote code execution vulnerability.
advisories | CVE-2024-0264, CVE-2024-0265
Change Mirror Download
# Exploit Title: Clinic Queuing System 1.0 RCE #...
SOPlanning 1.52.00 SQL Injection
Authored by liquidsky
SOPlanning version 1.52.00 suffers from a remote SQL injection vulnerability in projects.php.
Change Mirror Download
Exploit Title: SOPlanning v1.52.00 'projets.php' SQLiApplication: SOPlanningVersion: 1.52.00Date: 4/22/24Exploit Author: Joseph McPeters (Liquidsky)Vendor Homepage:...
Elber ESE DVB-S/S2 Satellite Receiver 1.5.x Insecure Direct Object Reference
Authored by LiquidWorm | Site zeroscience.mk
Elber ESE DVB-S/S2 Satellite Receiver version 1.5.x suffers from an unauthenticated device configuration and client-side hidden functionality disclosure vulnerability.
Change Mirror Download
Elber ESE DVB-S/S2 Satellite...