Exploits & CVE's

Authored by Ramon Vila Ferreres WordPress Contact Form 7 plugin version 5.3.1 suffers from a remote shell upload vulnerability. Change Mirror Download # Exploit Title: Wordpress Plugin Contact Form 7 5.3.1 -...

Authored by BouSalman Spotweb version 1.4.9 suffers from a remote SQL injection vulnerability. Related CVE number: CVE-2020-35545. Change Mirror Download # Exploit Title: Spotweb 1.4.9 - 'search' SQL Injection# Google Dork: N/A#...

Authored by Ramikan SCO Openserver version 5.0.7 suffers from a cross site scripting vulnerability. advisories | CVE-2020-25495 Change Mirror Download # Exploit Title: SCO Openserver 5.0.7 - 'section' Reflected XSS# Google Dork: inurl:/cgi-bin/manlist?section#...

Authored by Ramikan SCO Openserver version 5.0.7 suffers from a command injection vulnerability. advisories | CVE-2020-25494 Change Mirror Download # Exploit Title: SCO Openserver 5.0.7 - 'outputform' Command Injection# Google Dork: inurl:/cgi-bin/manlist?section# Discovered...

Authored by Kislay Kumar Queue Management System version 4.0.0 suffers from a persistent cross site scripting vulnerability. Change Mirror Download # Exploit Title: Queue Management System 4.0.0 - "Add User" Stored XSS#...

Authored by Saeed Bala Ahmed Point of Sale System version 1.0 suffers from multiple persistent cross site scripting vulnerabilities. Change Mirror Download # Exploit Title: Point of Sale System 1.0 - Multiple...

Authored by Chendochap Sony Playstation 4 versions prior to 7.02 ValidationMessage::buildBubbleTree() use-after-free webkit code execution proof of concept exploit. Change Mirror Download const OFFSET_ELEMENT_REFCOUNT = 0x10;const OFFSET_JSAB_VIEW_VECTOR = 0x10;const OFFSET_JSAB_VIEW_LENGTH = 0x18;const...

Authored by Raffaele Sabato, Andrea Bruschi Online Marriage Registration System version 1.0 suffers from a remote SQL injection vulnerability. Change Mirror Download # Exploit Title: Online Marriage Registration System 1.0 - 'searchdata'...

Authored by Jeremy Brown Stratodesk NoTouch Center virtual appliance suffers from a privilege escalation vulnerability. This was addressed in version 4.4.68. advisories | CVE-2020-25917 Change Mirror Download Stratodesk NoTouch Center Virtual Appliance is...

Authored by Saeed Bala Ahmed Point of Sale System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass. Change Mirror Download # Exploit Title: Point of Sale...