DerbyNet 9.0 playlist.php Cross Site Scripting
Authored by Valentin Lobstein
DerbyNet version 9.0 suffers from a cross site scripting vulnerability in playlist.php.
advisories | CVE-2024-30929
Change Mirror Download
CVE ID: CVE-2024-30929Description:A Cross-Site Scripting (XSS) vulnerability has been found in...
DerbyNet 9.0 ajax/query.slide.next.inc SQL Injection
Authored by Valentin Lobstein
DerbyNet 9.0 suffers from a remote SQL injection vulnerability in ajax/query.slide.next.inc.
advisories | CVE-2024-30928
Change Mirror Download
CVE ID: CVE-2024-30928Description:An SQL Injection vulnerability has been discovered in DerbyNet version...
DerbyNet 9.0 print/render/award.inc SQL Injection
Authored by Valentin Lobstein
DerbyNet 9.0 suffers from a remote SQL injection vulnerability in print/render/award.inc.
advisories | CVE-2024-30922
Change Mirror Download
CVE ID: CVE-2024-30922Description:A SQL Injection vulnerability has been identified in DerbyNet version...
DerbyNet 9.0 print/render/racer.inc SQL Injection
Authored by Valentin Lobstein
DerbyNet 9.0 suffers from a remote SQL injection vulnerability in print/render/racer.inc.
advisories | CVE-2024-30923
Change Mirror Download
CVE ID: CVE-2024-30923Description:An SQL Injection vulnerability has been discovered in DerbyNet version...
Feng Office 3.10.8.21 Cross Site Scripting
Authored by tmrswrr
Feng Office version 3.10.8.21 suffers from a persistent cross site scripting vulnerability.
Change Mirror Download
# Exploit Title: Feng Office version 3.10.8.21 - Stored XSS# Exploit Author: tmrswrr...
Visual Planning REST API 2.0 Authentication Bypass
Authored by Lennert Preuth | Site schutzwerk.com
A wildcard injection inside a prepared SQL statement was found in an undocumented Visual Planning 8 REST API route. The combination of fuzzy...
Visual Planning 8 Authentication Bypass
Authored by David Brown, Lennert Preuth | Site schutzwerk.com
Unauthenticated attackers can exploit a weakness in the password reset functionality of the Visual Planning application in order to obtain access...
Visual Planning 8 Arbitrary File Read
Authored by David Brown, Lennert Preuth | Site schutzwerk.com
Authenticated attackers can exploit a weakness in the XML parser functionality of the Visual Planning application in order to obtain read...
Computer Laboratory Management System 1.0 Insecure Direct Object Reference
Authored by SoSPiro
Computer Laboratory Management System version 1.0 suffers from an insecure direct object reference vulnerability.
advisories | CVE-2024-3139
Change Mirror Download
#Vulnerability Details:#Application Name: Computer Laboratory Management System#Software Link: https://www.sourcecodester.com/php/17268/computer-laboratory-management-system-using-php-and-mysql.html#Vendor Homepage:...
Computer Laboratory Management System 1.0 Cross Site Scripting
Authored by SoSPiro
Computer Laboratory Management System version 1.0 suffers from a persistent cross site scripting vulnerability.
advisories | CVE-2024-3140
Change Mirror Download
#Vulnerability Details:#Application Name: Computer Laboratory Management System#Software Link: https://www.sourcecodester.com/php/17268/computer-laboratory-management-system-using-php-and-mysql.html#Vendor Homepage:...
