Exploits & CVE's

Authored by Jim Becher | Site korelogic.com The Rich Filemanager feature of Artica Proxy versions 4.40 and 4.50 provides a web-based interface for file management capabilities. When the feature is...

Authored by Jim Becher, Jaggar Henry | Site korelogic.com Services that are running and bound to the loopback interface on the Artica Proxy version 4.50 are accessible through the proxy...

Authored by Daniele Linguaglossa GliNet with firmware version 4.x suffers from an authentication bypass vulnerability. Other firmware versions may also be affected. advisories | CVE-2023-46453 Change Mirror Download DZONERZY Security ResearchGLiNet: Router Authentication...

Authored by nu11secur1ty NDtaskmatic version 1.0 suffers from a remote SQL injection vulnerability. Change Mirror Download ## Title: NDtaskmatic-1.0-by-Mayuri.K Multiple-SQLi## Author: nu11secur1ty## Date: 03/07/2024## Vendor: https://www.mayurik.com/## Software: https://www.sourcecodester.com/php/17217/employee-management-system-php-and-mysql-free-download.html## Reference: https://portswigger.net/web-security/sql-injection## Description:Potential SQLi...

Authored by Omar Sabagh FullCourt Enterprise version 8.2 suffers from multiple cross site scripting vulnerabilities. advisories | CVE-2024-25327 Change Mirror Download # Exploit Title: FullCourt enterprise XSS# Date: 2023-28-12# Exploit Author: Omar Sabagh#...

Authored by Eren Car WordPress Neon Text plugin versions 1.1 and below suffer from a persistent cross site scripting vulnerability. advisories | CVE-2023-5817 Change Mirror Download # Exploit Title: Wordpress Plugin Neon Text...

Authored by Mesut Cetin, Vincent McRae Solar-Log 200 PM+ version 3.6.0 suffers from a persistent cross site scripting vulnerability. advisories | CVE-2023-46344 Change Mirror Download # Exploit Title: Stored XSS in Solar-Log 200...

Authored by Branko Milicevic RAD SecFlow-2 devices with Hardware 0202, Firmware 4.1.01.63, and U-Boot 2010.12 suffer from a directory traversal vulnerability. advisories | CVE-2019-6268 Change Mirror Download # Exploit Title: Path traversal in...

Authored by Geraldo Alcantara Customer Support System version 1.0 suffers from a remote SQL injection vulnerability in /customer_support/ajax.php. Original discovery of SQL injection in this version is attributed to Ahmed...

Authored by W01fh4cker | Site github.com F5 BIG-IP remote user addition exploit that leverages the authorization bypass vulnerability as called out in CVE-2023-46747. advisories | CVE-2023-46747