CVE-2025-13123

A flaw has been found in AMTT Hotel Broadband Operation System 1.0. The impacted element is an unknown function of the file /user/portal/getfirstdate.php. Executing manipulation of the argument uid can lead to sql injection. It is possible to launch the attack remotely. The exploit has been...

CVE-2019-13123

Foxit Reader 9.6.0.25114 and earlier has two unique RecursiveCall bugs involving 3 functions exhausting available stack memory because of Uncontrolled Recursion in the V8 JavaScript engine issue 1 of 2...

WordPress AFI plugin < 1.100.0 - Admin+ Stored XSS vulnerability

Admin+ Stored XSS vulnerability discovered by Bob Matyas in WordPress Plugin Advanced Form Integration versions 1.100.0...

CVE-2024-13123

The AFI WordPress plugin before 1.100.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2024-13123

The AFI WordPress plugin (versions prior to 1.100.0) is affected. Affected component: plugin settings sanitisation/escaping path in AFI before 1.100.0. Root cause: certain settings are not properly sanitised and escaped, enabling Stored Cross-Site Scripting (Stored XSS) by high-privilege users (e...

CVE-2019-13123

Foxit Reader (Windows) versions 9.6.0.25114 and earlier are affected by a denial-of-service due to two RecursiveCall bugs in the V8 JavaScript engine that exhaust stack memory via uncontrolled recursion (issue 1 of 2). The vulnerability is tied to the V8 engine within Foxit Reader and impacts the...

CVE-2019-13123

Foxit Reader 9.6.0.25114 and earlier has two unique RecursiveCall bugs involving 3 functions exhausting available stack memory because of Uncontrolled Recursion in the V8 JavaScript engine issue 1 of 2...

KLA11566 RCE vulnerability in Foxit Reader

Out-of-bounds reading vulnerabilities was found in Foxit Reader. Malicious users can exploit this vulnerability via specially designed document to execute arbitrary code or cause denial of service. Technical details Potentially vulnerable components are AcroForm, TIF File ConvertToPDF, JPG File...

CVE-2017-13123

...

CVE-2017-13123

CVE-2017-13123 is rejected/not used and not an active vulnerability entry.

CVE-2018-13123

onefilecms.php in OneFileCMS through 2017-10-08 might allow attackers to read arbitrary files via the i and f parameters, as demonstrated by ?i=etc/&f=passwd&p=rawview for the /etc/passwd file...

CVE-2018-13123

CVE-2018-13123 affects OneFileCMS; onefilecms.php from 2017-10-08 and earlier versions allows reading arbitrary files via i and f parameters (e.g., ?i=etc/&f=passwd&p=raw_view for /etc/passwd). Public sources (NVD/CNVD/CVE records) describe the vulnerability and affected version window but do not...

Linux/x86 - Bind TCP (31337/TCP) Shell + Polymorphic Shellcode (125 bytes)

Linux/x86 - Bind TCP 31337/TCP Shell + Polymorphic Shellcode 125 bytes. Shellcode exploit for Linuxx86 platform / 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated...

linux/x86 bindport to 13123 Polymorphic shellcode 125 bytes

Exploit for linux/x86 platform in category shellcode =========================================================== linux/x86 bindport to 13123 Polymorphic shellcode 125 bytes =========================================================== /...