Exploits & CVE's

Authored by tmrswrr SuperCali version 1.1.0 suffers from a cross site scripting vulnerability. Change Mirror Download # Exploit Title: SuperCali Version : 1.1.0 - Reflected XSS# Date: 2024-23-02# Exploit Author: tmrswrr# Vendor...

Authored by sfewer-r7, WatchTowr | Site metasploit.com This Metasploit module exploits an authentication bypass vulnerability that allows an unauthenticated attacker to create a new administrator user account on a vulnerable...

Authored by malvuln | Site malvuln.com Backdoor.Win32.Armageddon.r malware suffers from a hardcoded credential vulnerability. Change Mirror Download Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2024Original source: https://malvuln.com/advisory/68d135936512e88cc0704b90bb3839e0.txtContact: [email protected]: twitter.com/malvulnThreat: Backdoor.Win32.Armageddon.rVulnerability:...

Authored by LiquidWorm | Site zeroscience.mk Tosibox Key Service versions 3.3.0 and below suffer from an unquoted search path issue impacting the service Tosibox Key Service for Windows. This could...

Authored by Eren Sen SPA-CART CMS version 1.9.0.3 suffers from a persistent cross site scripting vulnerability. Change Mirror Download # Exploit Title: SPA-CART CMS - Stored XSS# Date: 2024-01-03# Exploit Author: Eren...

Authored by Eren Sen Savsoft Quiz version 6.0 Enterprise suffers from a persistent cross site scripting vulnerability. Change Mirror Download # Exploit Title: Savsoft Quiz v6.0 Enterprise - Persistent Cross-Site Scripting# Date:...

Authored by h00die-gr3y, BobTheShopLifter, Thingstad | Site metasploit.com A command injection vulnerability exists in Kafka UI versions 0.4.0 through 0.7.1 that allows an attacker to inject and execute arbitrary shell...

Authored by Sagar Banwa WEBIGniter version 28.7.23 suffers from a persistent cross site scripting vulnerability. advisories | CVE-2023-46391 Change Mirror Download # Exploit Title: WEBIGniter v28.7.23 Stored Cross Site Scripting (XSS)# Exploit Author:...

Authored by stehled | Site wp-pomoc.cz ITFlow versions prior to commit 432488eca3998c5be6b6b9e8f8ba01f54bc12378 suffer from a cross site request forgery vulnerability. advisories | CVE-2024-25344 Change Mirror Download # CVE: CVE-2024-25344# CWE: CWE-352# Vendor: ITFlow.org#...

Authored by nu11secur1ty Fuelflow version 1.0 suffers from a remote SQL injection vulnerability. Change Mirror Download ## Title: fuelflow-1.0-Copyright-©-2024-Project-Develop-by-Mayuri-K-Multiple-SQLi## Author: nu11secur1ty## Date: 02/21/24## Vendor: https://www.mayurik.com/## Software: https://www.mayurik.com/source-code/P3584/best-petrol-pump-management-software## Reference: https://portswigger.net/web-security/sql-injection## Description:The email parameter...