Exploits & CVE's

Authored by Zeyad Azima | Site github.com Apache HugeGraph versions 1.0.0 and up to 1.3.0 suffer from a remote command execution vulnerability. This is a scanner to test for the...

Authored by nu11secur1ty Online Pizza Ordering System version 1.0 suffers from a remote SQL injection vulnerability. Change Mirror Download ## Titles: opos-1.0 Multiple SQLi## Author: nu11secur1ty## Date: 06/07/2024## Vendor: https://github.com/oretnom23## Software:https://www.sourcecodester.com/php/16166/online-pizza-ordering-system-php-free-source-code.html## Reference:...

Authored by Andrey Stoykov FengOffice version 3.11.1.2 suffers from a remote blind SQL injection vulnerability. Change Mirror Download # Exploit Title: FengOffice - Blind SQL Injection# Date: 06/2024# Exploit Author: Andrey Stoykov#...

Authored by T. Weber | Site cyberdanube.com SEH utnserver Pro/ProMAX and INU-100 version 20.1.22 suffers from cross site scripting, denial of service, and file disclosure vulnerabilities. advisories | CVE-2024-5420, CVE-2024-5421, CVE-2024-5422 Change...

Authored by C. Schwarz | Site sec-consult.com Kiuwan SAST versions prior to 2.8.2402.3, Kiuwan Local Analyzer versions prior to master.1808.p685.q13371, and Kiuwan SaaS versions prior to 2024-02-05 suffer from XML...

Authored by Emad Al-Mousa Oracle Database versions 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c, and 19c allows for unauthorized access to password hashes by an account with the DBA role. advisories | CVE-2020-2969 Change Mirror...

Authored by h00die, Zemnmez | Site metasploit.com VSCode when opening a Jupyter notebook (.ipynb) file bypasses the trust model. On versions v1.4.0 through v1.71.1, its possible for the Jupyter notebook...

Authored by Chokri Hammedi XMB version 1.9.12.06 suffers from a persistent cross site scripting vulnerability. Change Mirror Download # Exploit Title: Persistent XSS in XMB 1.9.12.06# Date: 06/12/2024# Exploit Author: Chokri Hammedi#...

Authored by malvuln | Site malvuln.com Multiple variants of Trojan.Win32.DarkGateLoader malware suffer from a code execution vulnerability. Change Mirror Download Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2024Original source: https://malvuln.com/advisory/afe012ed0d96abfe869b9e26ea375824.txtContact:...

Authored by Furkan Eren Tetik Northwind Demo version 1.0 suffers from persistent cross site scripting vulnerability. Change Mirror Download # Exploit Title: Northwind, company operations database - Cross-Site Scripting (Reflected)# Date: 04.06.2024#...