Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

932 matches found

0day.today
0day.todayadded 2019/11/06 12:0 a.m.76 views

thejshen Globitek CMS 1.4 - (id) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: thejshen Globitek CMS 1.4 - 'id' SQL Injection Exploit Author: Cakes Vendor Homepage: https://github.com/thejshen/contentManagementSystem Software Link: https://github.com/thejshen/contentManagementSystem.git Version: 1.4 Tested...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2019/11/05 12:0 a.m.23 views

rimbalinux AhadPOS 1.11 - alamatCustomer SQL Injection

rimbalinux AhadPOS 1.11 - alamatCustomer SQL Injection Exploit Title: rimbalinux AhadPOS 1.11 - 'alamatCustomer' SQL Injection Date: 2019-11-01 Exploit Author: Cakes Vendor Homepage: https://github.com/rimbalinux/AhadPOS Software Link: https://github.com/rimbalinux/AhadPOS.git Version: 1.11 Teste...

0.3AI score
Exploits0
Exploit DB
Exploit DBadded 2019/11/05 12:0 a.m.178 views

html5_snmp 1.11 - 'Router_ID' SQL Injection

Exploit Title: html5snmp 1.11 - 'RouterID' SQL Injection Date: 2019-11-01 Exploit Author: Cakes Vendor Homepage: https://github.com/lolypop55/html5snmp Software Link: https://github.com/lolypop55/html5snmp.git Version: 1.11 Tested on: CentOS 7 CVE: N/A PoC for error, time, boolean and Union based...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2019/11/05 12:0 a.m.525 views

html5_snmp 1.11 SQL Injection

Exploit Title: html5snmp 1.11 - 'RouterID' SQL Injection Date: 2019-11-01 Exploit Author: Cakes Vendor Homepage: https://github.com/lolypop55/html5snmp Software Link: https://github.com/lolypop55/html5snmp.git Version: 1.11 Tested on: CentOS 7 CVE: N/A PoC for error, time, boolean and Union based...

Exploits0
exploitpack
exploitpackadded 2019/11/05 12:0 a.m.17 views

html5_snmp 1.11 - Router_ID SQL Injection

html5snmp 1.11 - RouterID SQL Injection Exploit Title: html5snmp 1.11 - 'RouterID' SQL Injection Date: 2019-11-01 Exploit Author: Cakes Vendor Homepage: https://github.com/lolypop55/html5snmp Software Link: https://github.com/lolypop55/html5snmp.git Version: 1.11 Tested on: CentOS 7 CVE: N/A PoC...

Exploits0
exploitpack
exploitpackadded 2019/11/05 12:0 a.m.20 views

thejshen Globitek CMS 1.4 - id SQL Injection

thejshen Globitek CMS 1.4 - id SQL Injection Exploit Title: thejshen Globitek CMS 1.4 - 'id' SQL Injection Date: 2019-11-01 Exploit Author: Cakes Vendor Homepage: https://github.com/thejshen/contentManagementSystem Software Link: https://github.com/thejshen/contentManagementSystem.git Version: 1....

8.7AI score
Exploits0
Packet Storm
Packet Stormadded 2019/11/05 12:0 a.m.122 views

thejshen Globitek CMS 1.4 SQL Injection

Exploit Title: thejshen Globitek CMS 1.4 - 'id' SQL Injection Date: 2019-11-01 Exploit Author: Cakes Vendor Homepage: https://github.com/thejshen/contentManagementSystem Software Link: https://github.com/thejshen/contentManagementSystem.git Version: 1.4 Tested on: CentOS 7 CVE: N/A The GET reques...

7.4AI score
Exploits0
0day.today
0day.todayadded 2019/11/01 12:0 a.m.145 views

TheJshen contentManagementSystem 1.04 - (id) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: TheJshen contentManagementSystem 1.04 - 'id' SQL Injection Exploit Author: Cakes Vendor Homepage: https://github.com/thejshen/contentManagementSystem Version: 1.04 Software Link:...

7.1AI score
Exploits0
Exploit DB
Exploit DBadded 2019/11/01 12:0 a.m.331 views

TheJshen contentManagementSystem 1.04 - 'id' SQL Injection

Exploit Title: TheJshen contentManagementSystem 1.04 - 'id' SQL Injection Date: 2019-11-01 Exploit Author: Cakes Vendor Homepage: https://github.com/thejshen/contentManagementSystem Version: 1.04 Software Link: https://github.com/thejshen/contentManagementSystem.git Tested on: CentOS7 GET paramet...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2019/10/28 12:0 a.m.169 views

waldronmatt FullCalendar-BS4-PHP-MySQL-JSON 1.21 - 'start' SQL Injection

Exploit Title: waldronmatt FullCalendar-BS4-PHP-MySQL-JSON 1.21 - 'start' SQL Injection Date: 2019-10-28 Exploit Author: Cakes Vendor Homepage: waldronmatt/FullCalendar-BS4-PHP-MySQL-JSON Software Link: https://github.com/waldronmatt/FullCalendar-BS4-PHP-MySQL-JSON.git Version: 1.21 Tested on:...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2019/10/28 12:0 a.m.21 views

delpino73 Blue-Smiley-Organizer 1.32 - datetime SQL Injection

delpino73 Blue-Smiley-Organizer 1.32 - datetime SQL Injection Exploit Title: delpino73 Blue-Smiley-Organizer 1.32 - 'datetime' SQL Injection Date: 2019-10-28 Exploit Author: Cakes Vendor Homepage: https://github.com/delpino73/Blue-Smiley-Organizer Software Link:...

0.1AI score
Exploits0
Packet Storm
Packet Stormadded 2019/10/28 12:0 a.m.165 views

delpino73 Blue-Smiley-Organizer 1.32 SQL Injection

Exploit Title: delpino73 Blue-Smiley-Organizer 1.32 - 'datetime' SQL Injection Date: 2019-10-28 Exploit Author: Cakes Vendor Homepage: https://github.com/delpino73/Blue-Smiley-Organizer Software Link: https://github.com/delpino73/Blue-Smiley-Organizer.git Version: 1.32 Tested on: CentOS7 CVE : N/...

7.4AI score
Exploits0
0day.today
0day.todayadded 2019/10/28 12:0 a.m.124 views

delpino73 Blue-Smiley-Organizer 1.32 - (datetime) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: delpino73 Blue-Smiley-Organizer 1.32 - 'datetime' SQL Injection Exploit Author: Cakes Vendor Homepage: https://github.com/delpino73/Blue-Smiley-Organizer Software Link: https://github.com/delpino73/Blue-Smiley-Organizer.git...

Exploits0
CVE
CVEadded 2019/10/09 3:7 p.m.39 views

CVE-2019-17128

CVE-2019-17128 affects Netreo OmniCenter up to version 12.1.1, where unauthenticated SQL Injection (Boolean Based Blind) is possible via redirect parameters and the login-page parameter name in a GET request. This allows reading sensitive data from the application’s database. The connected docume...

7.5CVSS7.8AI score0.01836EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2019/10/09 3:7 p.m.14 views

CVE-2019-17128

Netreo OmniCenter through 12.1.1 allows unauthenticated SQL Injection Boolean Based Blind in the redirect parameters and parameter name of the login page through a GET request. The injection allows an attacker to read sensitive information from the database used by the application...

7.8AI score0.01836EPSS
Exploits0References2
Fedora
Fedoraadded 2019/10/06 12:57 a.m.45 views

[SECURITY] Fedora 30 Update: yara-3.10.0-2.fc30

YARA is a tool aimed at but not limited to helping malware researchers to identify and classify malware samples. With YARA you can create descriptions of malware families or whatever you want to describe based on textual or binary patterns. Each description, a.k.a rule, consists of a set of strin...

7.1CVSS1.3AI score0.01359EPSS
Exploits3
0day.today
0day.todayadded 2019/09/26 12:0 a.m.136 views

citecodecrashers Pic-A-Point 1.1 - (Consignment) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: citecodecrashers Pic-A-Point 1.1 - 'Consignment' SQL Injection Author: Cakes Vendor Homepage: https://github.com/citecodecrashers/Pic-A-Point Software Link: https://github.com/citecodecrashers/Pic-A-Point/archive/master.zip Test...

Exploits0
exploitpack
exploitpackadded 2019/09/26 12:0 a.m.24 views

citecodecrashers Pic-A-Point 1.1 - Consignment SQL Injection

citecodecrashers Pic-A-Point 1.1 - Consignment SQL Injection Exploit Title: citecodecrashers Pic-A-Point 1.1 - 'Consignment' SQL Injection Author: Cakes Discovery Date: 2019-09-26 Vendor Homepage: https://github.com/citecodecrashers/Pic-A-Point Software Link:...

8.6AI score
Exploits0
Packet Storm
Packet Stormadded 2019/09/26 12:0 a.m.152 views

citecodecrashers Pic-A-Point 1.1 SQL Injection

Exploit Title: citecodecrashers Pic-A-Point 1.1 - 'Consignment' SQL Injection Author: Cakes Discovery Date: 2019-09-26 Vendor Homepage: https://github.com/citecodecrashers/Pic-A-Point Software Link: https://github.com/citecodecrashers/Pic-A-Point/archive/master.zip Tested Version: 1.1 Tested on O...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2019/09/26 12:0 a.m.205 views

citecodecrashers Pic-A-Point 1.1 - 'Consignment' SQL Injection

Exploit Title: citecodecrashers Pic-A-Point 1.1 - 'Consignment' SQL Injection Author: Cakes Discovery Date: 2019-09-26 Vendor Homepage: https://github.com/citecodecrashers/Pic-A-Point Software Link: https://github.com/citecodecrashers/Pic-A-Point/archive/master.zip Tested Version: 1.1 Tested on O...

7.4AI score
Exploits0
Rows per page
Query Builder