NorthStar C2 Cross Site Scripting / Code Execution
Authored by h00die, chebuya | Site metasploit.com
NorthStar C2, prior to commit 7674a44 on March 11 2024, contains a vulnerability where the logs page is vulnerable to a stored cross...
FleetCart 4.1.1 Information Disclosure
Authored by CraCkEr
FleetCart version 4.1.1 suffers from an information leakage vulnerability.
advisories | CVE-2024-5230
Change Mirror Download
# Exploit Title: FleetCart 4.1.1 - WebPage Content Information Disclosure# Exploit Author: CraCkEr# Date: 13/05/2024#...
Debezium UI 2.5 Credential Disclosure
Authored by Ihsan Cetin, Hamza Kaya Toprak
Debezium UI version 2.5 suffers from a credential disclosure vulnerability.
advisories | CVE-2024-28736
Change Mirror Download
# Exploit Title: Debezium UI - Credential Leakage# Google Dork:...
4BRO Insecure Direct Object Reference / API Information Exposure
Authored by Max Rull | Site sec-consult.com
4BRO versions prior to 2024-04-17 suffer from insecure direct object reference and API information disclosure vulnerabilities.
Change Mirror Download
SEC Consult Vulnerability Lab Security Advisory...
Jcow Social Network Cross Site Scripting
Authored by tmrswrr
Jcow Social Networking versions 14.2 up to 16.2.1 suffer from a persistent cross site scripting vulnerability.
Change Mirror Download
# Exploit Title: Jcow Social Networking 14.2 < 16.2.1 |...
Joomla 4.2.8 Information Disclosure
Authored by d4t4s3c
Joomla versions 4.2.8 and below remote unauthenticated information disclosure exploit.
advisories | CVE-2023-23752
Change Mirror Download
#!/bin/bash# Exploit Title: Joomla! <= 4.2.8 - Unauthenticated Information Disclosure# Date: 2024-05-21# CVE: CVE-2023-23752#...
CHAOS 5.0.8 Cross Site Scripting / Remote Command Execution
Authored by h00die, chebuya | Site metasploit.com
CHAOS version 5.0.8 is a free and open-source Remote Administration Tool that allows generated binaries to control remote operating systems. The web application...
Chat Bot 1.0 SQL Injection
Authored by nu11secur1ty
Chat Bot version 1.0 suffers from a remote SQL injection vulnerability.
Change Mirror Download
## Titles: Chat Bot - PHP (by: oretnom23 ) v1.0 Multiple SQLi## Author: nu11secur1ty## Date:...
AVideo WWBNIndex Plugin Unauthenticated Remote Code Execution
Authored by Valentin Lobstein | Site metasploit.com
This Metasploit module exploits an unauthenticated remote code execution vulnerability in the WWBNIndex plugin of the AVideo platform. The vulnerability exists within the...
Nethserver 7 / 8 Cross Site Scripting
Authored by Andrea Intilangelo
The NethServer module installed as WebTop, produced by Sonicle, is affected by a stored cross site scripting vulnerability due to insufficient input sanitization and output escaping...
