Artica Proxy 4.40 / 4.50 Authentication Bypass / Privilege Escalation
Authored by Jim Becher | Site korelogic.com
The Rich Filemanager feature of Artica Proxy versions 4.40 and 4.50 provides a web-based interface for file management capabilities. When the feature is...
Artica Proxy 4.50 Loopback Service Disclosure
Authored by Jim Becher, Jaggar Henry | Site korelogic.com
Services that are running and bound to the loopback interface on the Artica Proxy version 4.50 are accessible through the proxy...
GliNet 4.x Authentication Bypass
Authored by Daniele Linguaglossa
GliNet with firmware version 4.x suffers from an authentication bypass vulnerability. Other firmware versions may also be affected.
advisories | CVE-2023-46453
Change Mirror Download
DZONERZY Security ResearchGLiNet: Router Authentication...
NDtaskmatic 1.0 SQL Injection
Authored by nu11secur1ty
NDtaskmatic version 1.0 suffers from a remote SQL injection vulnerability.
Change Mirror Download
## Title: NDtaskmatic-1.0-by-Mayuri.K Multiple-SQLi## Author: nu11secur1ty## Date: 03/07/2024## Vendor: https://www.mayurik.com/## Software: https://www.sourcecodester.com/php/17217/employee-management-system-php-and-mysql-free-download.html## Reference: https://portswigger.net/web-security/sql-injection## Description:Potential SQLi...
FullCourt Enterprise 8.2 Cross Site Scripting
Authored by Omar Sabagh
FullCourt Enterprise version 8.2 suffers from multiple cross site scripting vulnerabilities.
advisories | CVE-2024-25327
Change Mirror Download
# Exploit Title: FullCourt enterprise XSS# Date: 2023-28-12# Exploit Author: Omar Sabagh#...
WordPress Neon Text 1.1 Cross Site Scripting
Authored by Eren Car
WordPress Neon Text plugin versions 1.1 and below suffer from a persistent cross site scripting vulnerability.
advisories | CVE-2023-5817
Change Mirror Download
# Exploit Title: Wordpress Plugin Neon Text...
Solar-Log 200 PM+ 3.6.0 Cross Site Scripting
Authored by Mesut Cetin, Vincent McRae
Solar-Log 200 PM+ version 3.6.0 suffers from a persistent cross site scripting vulnerability.
advisories | CVE-2023-46344
Change Mirror Download
# Exploit Title: Stored XSS in Solar-Log 200...
RAD SecFlow-2 Path Traversal
Authored by Branko Milicevic
RAD SecFlow-2 devices with Hardware 0202, Firmware 4.1.01.63, and U-Boot 2010.12 suffer from a directory traversal vulnerability.
advisories | CVE-2019-6268
Change Mirror Download
# Exploit Title: Path traversal in...
Customer Support System 1.0 SQL Injection
Authored by Geraldo Alcantara
Customer Support System version 1.0 suffers from a remote SQL injection vulnerability in /customer_support/ajax.php. Original discovery of SQL injection in this version is attributed to Ahmed...
F5 BIG-IP Authorization Bypass / User Creation
Authored by W01fh4cker | Site github.com
F5 BIG-IP remote user addition exploit that leverages the authorization bypass vulnerability as called out in CVE-2023-46747.
advisories | CVE-2023-46747
