Invoice System 1.0 Cross Site Scripting
Authored by Subhadip Nag
Invoice System version 1.0 suffers from a persistent cross site scripting vulnerability.
Change Mirror Download
# Exploit Title: Invoice System 1.0 - 'Multiple' Stored Cross-Site Scripting (XSS)# Date:...
WordPress Plainview Activity Monitor 20161228 Remote Code Execution
Authored by Beren Kuday Gorun
WordPress Plainview Activity Monitor plugin version 20161228 authenticated remote code execution exploit.
advisories | CVE-2018-15877
Change Mirror Download
# Exploit Title: WordPress Plugin Plainview Activity Monitor 20161228 -...
Okta Access Gateway 2020.5.5 Authenticated Remote Root
Authored by Jeremy Brown
Okta Access Gateway version 2020.5.5 suffers from multiple authenticated remote root command injection vulnerabilities.
advisories | CVE-2021-28113
Change Mirror Download
Okta Access Gateway v2020.5.5 Post-Auth Remote Root RCECVE-2021-28113=======Details=======There are...
WordPress SP Project And Document Manager 4.21 Shell Upload
Authored by Ron Jost
WordPress SP Project and Document Manager plugin version 4.21 suffers from a remote shell upload vulnerability.
advisories | CVE-2021-24347
Change Mirror Download
# Exploit Title: Wordpress Plugin SP Project...
Employee Record Management System 1.2 Cross Site Scripting
Authored by Subhadip Nag
Employee Record Management System version 1.2 suffers from a persistent cross site scripting vulnerability.
Change Mirror Download
# Exploit Title: Employee Record Management System 1.2 - Stored Cross-Site...
Online Covid Vaccination Scheduler System 1.0 Shell Upload
Authored by faisalfs10x
Online Covid Vaccination Scheduler System version 1.0 suffers from a remote shell upload vulnerability.
Change Mirror Download
# Exploit Title: Online Covid Vaccination Scheduler System 1.0 - Arbitrary File...
MpEngine ASProtect Embedded Runtime DLL Memory Corruption
Authored by Tavis Ormandy, Google Security Research
ASProtect embeds a runtime DLL that is susceptible to memory corruption. Crash testcase provided.
advisories | CVE-2021-31985
Wyomind Help Desk 1.3.6 XSS / Traversal / Shell Upload
Authored by Patrik Lantz
Wyomind Help Desk version 1.3.6 suffers from remote shell upload, cross site scripting, and directory traversal vulnerabilities.
Change Mirror Download
# Exploit Title: Wyomind Help Desk 1.3.6 -...
Church Management System 1.0 Shell Upload / SQL Injection
Authored by Eleonora Guardini
Church Management System version 1.0 shell upload exploit that leverages SQL injection.
Change Mirror Download
# Exploit Title: Church Management System 1.0 - SQL Injection (Authentication Bypass) +...
Polkit D-Bus Authentication Bypass
Authored by Spencer McIntyre, jheysel-r7, Kevin Backhouse | Site metasploit.com
A vulnerability exists within the polkit system service that can be leveraged by a local, unprivileged attacker to perform privileged...