Flightio.com SQL Injection
Authored by E1.Coders
Flightio.com suffers from a remote SQL injection vulnerability. The researchers reporting this claimed the site has not responded to their reports so we are posting this to...
Open eShop 2.7.0 Cross Site Scripting
Authored by tmrswrr
Open eShop version 2.7.0 suffers from a cross site scripting vulnerability.
Change Mirror Download
# Exploit Title: Open eShop Version : 2.7.0 - Reflected XSS# Exploit Author: tmrswrr...
Invision Community 4.7.15 SQL Injection
Authored by EgiX | Site karmainsecurity.com
Invision Community versions 4.4.0 through 4.7.15 suffer from a remote SQL injection vulnerability in store.php.
advisories | CVE-2024-30163
Change Mirror Download
--------------------------------------------------------------------Invision Community <= 4.7.15 (store.php) SQL...
Invision Community 4.7.16 Remote Code Execution
Authored by EgiX | Site karmainsecurity.com
Invision Community versions 4.7.16 and below suffer from a remote code execution vulnerability in toolbar.php.
advisories | CVE-2024-30162
Change Mirror Download
------------------------------------------------------------------------------Invision Community <= 4.7.16 (toolbar.php) Remote...
ZenML Remote Privilege Escalation
Authored by David Botelho Mariano | Site github.com
ZenML allows for remote privilege escalation because the /api/v1/users/{user_name_or_id}/activate REST API endpoint allows access on the basis of a valid username along...
UP-RESULT 0.1 2024 SQL Injection
Authored by nu11secur1ty
UP-RESULT version 0.1 2024 suffers from a remote SQL injection vulnerability.
Change Mirror Download
## Title: upresult_0.1-2024 Multiple-SQLi## Author: nu11secur1ty## Date: 04/08/2024## Vendor: https://www.mayurik.com/## Software: https://www.sourcecodester.com/php/15653/best-student-result-management-system-project-source-code-php-and-mysql-free-download## Reference: https://portswigger.net/web-security/sql-injection## Description:The...
HTMLy 2.9.6 Cross Site Scripting
Authored by tmrswrr
HTMLy version 2.9.6 suffers from a persistent cross site scripting vulnerability.
Change Mirror Download
# Exploit Title: HTMLy Version : 2.9.6 - Stored XSS# Exploit Author: tmrswrr #...
Trojan.Win32.Razy.abc MVID-2024-0678 Insecure Permissions
Authored by malvuln | Site malvuln.com
Trojan.Win32.Razy.abc malware suffers from an insecure permissions vulnerability.
Change Mirror Download
Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2024Original source: https://malvuln.com/advisory/0eb4a9089d3f7cf431d6547db3b9484d.txtContact: [email protected]: twitter.com/malvulnThreat: Trojan.Win32.Razy.abcVulnerability:...
DerbyNet 9.0 inc/kisosks.inc Cross Site Scripting
Authored by Valentin Lobstein
DerbyNet version 9.0 suffers from a cross site scripting vulnerability in inc/kiosks.inc.
advisories | CVE-2024-30926
Change Mirror Download
CVE ID: CVE-2024-30926Description:A Cross-Site Scripting (XSS) vulnerability has been identified in...
DerbyNet 9.0 racer-results.php Cross Site Scripting
Authored by Valentin Lobstein
DerbyNet version 9.0 suffers from a cross site scripting vulnerability in racer-results.php.
advisories | CVE-2024-30927
Change Mirror Download
CVE ID: CVE-2024-30927Description:A Cross-Site Scripting (XSS) vulnerability is present in DerbyNet...
