SolarWinds Kiwi CatTools 3.11.8 Unquoted Service Path
Authored by Mert Das
SolarWinds Kiwi CatTools version 3.11.8 suffers from an unquoted service path vulnerability.
Change Mirror Download
# Exploit Title: SolarWinds Kiwi CatTools 3.11.8 - Unquoted Service Path# Exploit Author:...
TextPattern CMS 4.8.7 Shell Upload
Authored by Mert Das
TextPattern CMS version 4.8.7 suffers from an authenticated remote shell upload vulnerability.
Change Mirror Download
# Exploit Title: TextPattern CMS 4.8.7 - Remote Command Execution (RCE) (Authenticated)# Date:...
IFSC Code Finder Project 1.0 SQL Injection
Authored by nu11secur1ty
IFSC Code Finder Project version 1.0 suffers from a remote SQL injection vulnerability.
advisories | CVE-2021-42224
Change Mirror Download
Hello, dear friends.KR## (https://phpgurukul.com/ifsc-code-finder-project-using-php/)## (https://phpgurukul.com/author/admin/)!(https://github.com/nu11secur1ty/CVE-mitre/blob/main/CVE-2021-42224/docs/Screenshot%202021-10-14%20104403.png)## Description:- vulnerability: `all or nothing`SQL Injection...
Yellowfin Cross Site Scripting / Insecure Direct Object Reference
Authored by Michele Di Bonaventura
Yellowfin versions prior to 9.6.1 suffer from persistent cross site scripting and insecure direct object reference vulnerabilities.
advisories | CVE-2021-36387, CVE-2021-36388, CVE-2021-36389
Change Mirror Download
YELLOWFIN < 9.6.1...
WebKit PointerCaptureController::processPendingPointerCapture Heap Use-After-Free
Authored by Google Security Research, Glazvunov
WebKit suffers from a heap use-after-free vulnerability in PointerCaptureController::processPendingPointerCapture.
advisories | CVE-2021-30846
WebKit EventHandler::keyEvent Heap Use-After-Free
Authored by Google Security Research, Glazvunov
WebKit suffers from a heap use-after-free vulnerability in EventHandler::keyEvent.
advisories | CVE-2021-30848
WebKit DOMWindow::open Heap Use-After-Free
Authored by Google Security Research, Glazvunov
WebKit suffers from a heap use-after-free vulnerability in DOMWindow::open.
advisories | CVE-2021-30849
i-Panel Administration System 2.0 Cross Site Scripting
Authored by Forster Chiu
i-Panel Administration System version 2.0 suffers from a cross site scripting vulnerability.
advisories | CVE-2021-41878
Change Mirror Download
# Exploit Title: i-Panel Administration System 2.0 - Reflected Cross-site Scripting...
Apache HTTP Server 2.4.50 Path Traversal / Code Execution
Authored by Lucas Souza
Apache HTTP Server version 2.4.50 suffers from path traversal and code execution vulnerabilities.
advisories | CVE-2021-42013
Change Mirror Download
# Exploit: Apache HTTP Server 2.4.50 - Path Traversal &...
Simple Issue Tracker System 1.0 SQL Injection
Authored by Bekir Bugra Turkoglu
Simple Issue Tracker System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Change Mirror Download
# Exploit Title: Simple Issue Tracker...
