Carel pCOWeb HVAC BACnet Gateway 2.1.0 Unauthenticated Directory Traversal
Authored by LiquidWorm | Site zeroscience.mk
Carel pCOWeb HVAC BACnet Gateway version 2.1.0 suffers from an unauthenticated arbitrary file disclosure vulnerability. Input passed through the file GET parameter through the...
Packet Storm New Exploits For June, 2022
Authored by Todd J. | Site packetstormsecurity.com
This archive contains all of the 92 exploits added to Packet Storm in June, 2022.
Stock Management System 2020 SQL Injection
Authored by nu11secur1ty
Stock Management System 2020 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Change Mirror Download
## Title: Stock-Management-System-2020 SQLi## Author: nu11secur1ty## Date: 07.02.2022## Vendor: https://github.com/Dav-ee##...
TypeORM SQL Injection
Authored by lixts
TypeORM versions prior to 0.3.0 suffer from a remote SQL injection vulnerability in the findOne function.
advisories | CVE-2022-33171
Change Mirror Download
typeorm CVE-2022-33171findOne(id), findOneOrFail(id)The findOne function in TypeORM before...
Classified Listing 2.2.9 Cross Site Scripting
Authored by AsCiI
Classified Listing version 2.2.9 suffers from a cross site scripting vulnerability.
Change Mirror Download
# Exploit Title: Classified Listing – Classified ads & BusinessDirectory Plugin - Cross site scripting#...
BigBlueButton 2.3 / 2.4.7 Cross Site Scripting
Authored by Rick Verdoes, Danny de Weille | Site pentests.nl
BigBlueButton versions 2.3, prior to 2.4.8, and prior to 2.5.0 suffer from a persistent cross site scripting vulnerability.
advisories | CVE-2022-31064
Change...
Fruits-Bazar 2021 1.0 SQL Injection
Authored by nu11secur1ty
Fruits-Bazar 2021 version 1.0 suffers from a remote SQL injection vulnerability.
Change Mirror Download
## Title: Fruits-Bazar 2021 v1.0 SQLi## Author: nu11secur1ty## Date: 06.29.2022## Vendor: https://github.com/creativesaiful## Software: https://github.com/creativesaiful/Ecommerce-project-with-php-and-mysqli-Fruits-Bazar-## Reference:...
Backdoor.Win32.Cafeini.b MVID-2022-0617 Hardcoded Credential
Authored by malvuln | Site malvuln.com
Backdoor.Win32.Cafeini.b malware suffers from a hardcoded credential vulnerability.
Change Mirror Download
Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022Original source: https://malvuln.com/advisory/a8fc1b3f7a605dc06a319bf0e14ca68b.txtContact: [email protected]: twitter.com/malvulnThreat: Backdoor.Win32.Cafeini.bVulnerability:...
Backdoor.Win32.EvilGoat.b MVID-2022-0619 Hardcoded Credential
Authored by malvuln | Site malvuln.com
Backdoor.Win32.EvilGoat.b malware suffers from a hardcoded credential vulnerability.
Change Mirror Download
Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022Original source: https://malvuln.com/advisory/20daf01e941f966b21a7ae431faefc65.txtContact: [email protected]: twitter.com/malvulnThreat: Backdoor.Win32.EvilGoat.bVulnerability:...
Backdoor.Win32.Coredoor.10.a MVID-2022-0618 Authentication Bypass
Authored by malvuln | Site malvuln.com
Backdoor.Win32.Coredoor.10.a malware suffers from an authentication bypass vulnerability.
Change Mirror Download
Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022Original source: https://malvuln.com/advisory/49da40a2ac819103da9dc5ed10d08ddb.txtContact: [email protected]: twitter.com/malvulnThreat: Backdoor.Win32.Coredoor.10.aVulnerability:...





