Lucene search
K

1599 matches found

Packet Storm
Packet Storm
added 2024/06/17 12:0 a.m.574 views

Payroll Management System 1.0 Remote Code Execution

Exploit Title: Payroll Management System v1.0 RCE Unauthenticated Google Dork: intitle:"Employee's Payroll Management System" Date: 16/06/2024 Exploit Author: ShellUnease Vendor Homepage: https://www.sourcecodester.com/ Software Link:...

7.4AI score0.01923EPSS
Exploits4
Packet Storm
Packet Storm
added 2024/06/13 12:0 a.m.305 views

Lost And Found Information System 1.0 SQL Injection

Exploit Title: Unauthenticated Blind Boolean-Based SQL Injection Exploit - Lost and Found Information System Exploit Author: Amit Roy Rezur / AR0x7 Date: June 07, 2024 Vendor Homepage:...

7.4AI score0.00804EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/06/13 12:0 a.m.227 views

Lost And Found Information System 1.0 SQL Injection

Exploit Title: Unauthenticated Blind Time-Based SQL Injection Exploit - Lost and Found Information System Exploit Author: Amit Roy Rezur / AR0x7 Date: June 07, 2024 Vendor Homepage:...

7.4AI score0.0078EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/06/06 12:0 a.m.336 views

Small CRM 1.0 Cross Site Scripting

Exploit Title: Small CRM Developed using PHP and MySQL - Cross-Site Scripting Reflected Date: 05.06.2024 Exploit Author: Furkan Eren Tetik Vendor Homepage: https://phpgurukul.com/php-projects-free-downloads Software Link: https://phpgurukul.com/small-crm-php Version: 1.0 Tested on: Windows 11, Ka...

7.4AI score
Exploits0
0day.today
0day.today
added 2024/06/04 12:0 a.m.362 views

Employee And Visitor Gate Pass Logging System 1.0 SQL Injection Vulnerability

Employee and Visitor Gate Pass Logging System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass. Exploit Title: Employee and Visitor Gate Pass Logging System - SQLi Authentication Bypass Exploit Author: Furkan Eren Tetik Vendor Homepage:...

8.7AI score
Exploits0
Packet Storm
Packet Storm
added 2024/06/03 12:0 a.m.286 views

Employee And Visitor Gate Pass Logging System 1.0 SQL Injection

Exploit Title: Employee and Visitor Gate Pass Logging System - SQLi Authentication Bypass Date: 29.05.2024 Exploit Author: Furkan Eren Tetik Vendor Homepage: https://www.sourcecodester.com/php/15026/employee-and-visitor-gate-pass-logging-system-php-source-code.html Software Link:...

7.4AI score
Exploits0
0day.today
0day.today
added 2024/06/02 12:0 a.m.166 views

Online Payment Hub System 1.0 SQL Injection Vulnerability

Online Payment Hub System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass. Exploit Title: Online Payment Hub System - SQLi Authentication Bypass Exploit Author: Hamit Avşar Vendor Homepage:...

8.7AI score
Exploits0
Kitploit
Kitploit
added 2024/05/31 12:30 p.m.78 views

Ars0N-Framework - A Modern Framework For Bug Bounty Hunting

Howdy! My name is Harrison Richardson, or rs0n arson when I want to feel cooler than I really am. The code in this repository started as a small collection of scripts to help automate many of the common Bug Bounty hunting processes I found myself repeating. Over time, I built a simple web...

7AI score
Exploits0References4
Packet Storm
Packet Storm
added 2024/05/31 12:0 a.m.264 views

Online Payment Hub System 1.0 SQL Injection

Exploit Title: Online Payment Hub System - SQLi Authentication Bypass Date: 29.05.2024 Exploit Author: Hamit Avşar Vendor Homepage: https://www.sourcecodester.com/php/15018/online-payment-hub-using-php-and-paypal-free-source-code.html Software Link:...

7.4AI score
Exploits0
0day.today
0day.today
added 2024/04/15 12:0 a.m.255 views

Savsoft Quiz v6.0 Enterprise - Stored XSS Vulnerability

Exploit Title: Savsoft Quiz v6.0 Enterprise - Persistent Cross-Site Scripting Exploit Author: Eren Sen Vendor: SAVSOFT QUIZ Vendor Homepage: https://savsoftquiz.com Software Link: https://savsoftquiz.com/web/index.php/online-demo/ Version: 6.0 CVE-ID: N/A Tested on: Kali Linux / Windows 10...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2024/04/08 12:0 a.m.339 views

Daily Expense Manager 1.0 - 'term' SQLi

Exploit Title: Daily Expense Manager 1.0 - 'term' SQLi Date: February 25th, 2024 Exploit Author: Stefan Hesselman Vendor Homepage: https://code-projects.org/daily-expense-manager-in-php-with-source-code/ Software Link:...

7.4AI score
Exploits0
GithubExploit
GithubExploit
added 2024/04/03 1:9 p.m.202 views

Exploit for Embedded Malicious Code in Tukaani Xz

xz-backdoor-CVE-2024-3094-Check Verify if your installed versi...

10CVSS9.8AI score0.85974EPSS
Exploits40
Rapid7 Blog
Rapid7 Blog
added 2024/04/01 5:13 p.m.73 views

Backdoored XZ Utils (CVE-2024-3094)

On Friday, March 29, after investigating anomalous behavior in his Debian sid environment, developer Andres Freund contacted an open-source security mailing list to share that he had discovered an upstream backdoor in widely used command line tool XZ Utils liblzma. The backdoor, added by an...

7.5CVSS9.8AI score0.85974EPSS
Exploits40
Qualys Blog
Qualys Blog
added 2024/03/30 4:6 a.m.98 views

XZ Utils SSHd Backdoor

On March 29th, 2024, security researcher Andres Freund discovered a backdoor in XZ Utils versions 5.6.0 and 5.6.1. Under certain conditions, this backdoor may allow remote access to the targeted system. This disclosure was posted to the Openwall mailing list. The security researcher mentions that...

7.5CVSS9.9AI score0.85974EPSS
Exploits40
GithubExploit
GithubExploit
added 2024/03/29 11:21 p.m.342 views

Exploit for Embedded Malicious Code in Tukaani Xz

CVE-2024-3094 xz Check Script This repository contains a Bash...

10CVSS10AI score0.85974EPSS
Exploits40
0day.today
0day.today
added 2024/03/27 12:0 a.m.269 views

SPA-CART CMS - Stored XSS Vulnerability

Exploit Title: SPA-CART CMS - Stored XSS Exploit Author: Eren Sen Vendor: SPA-Cart Vendor Homepage: https://spa-cart.com/ Software Link: https://demo.spa-cart.com/ Version: 1.9.0.3 CVE-ID: N/A Tested on: Kali Linux / Windows 10 Vulnerabilities Discovered Date : 2024/01/03 Vulnerability Type: Stor...

7.4AI score
Exploits0
GithubExploit
GithubExploit
added 2024/03/20 1:48 p.m.882 views

Exploit for CVE-2023-22622

DoS WP-Cron - CVE-2023-22622 Exploit PoC Overview This re...

5.3CVSS6.9AI score0.01659EPSS
Exploits1
0day.today
0day.today
added 2024/03/18 12:0 a.m.257 views

UPS Network Management Card 4 - Path Traversal Vulnerability

Exploit Title: UPS Network Management Card 4 - Path Traversal Google Dork: inurl:nmc inurl:logon.htm Exploit Author: Víctor García Vendor Homepage: https://www.apc.com/ Version: 4 Tested on: Kali Linux CVE: N/A PoC: curl -k...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2024/03/16 12:0 a.m.312 views

UPS Network Management Card 4 - Path Traversal

Exploit Title: UPS Network Management Card 4 - Path Traversal Google Dork: inurl:nmc inurl:logon.htm Date: 2023-12-19 Exploit Author: Víctor García Vendor Homepage: https://www.apc.com/ Version: 4 Tested on: Kali Linux CVE: N/A PoC: curl -k...

7.4AI score
Exploits0
Kitploit
Kitploit
added 2024/03/03 1:1 a.m.96 views

Kali Linux 2024.1 - Penetration Testing and Ethical Hacking Linux Distribution

Time for another Kali Linux release! – Kali Linux 2024.1. This release has various impressive updates. The summary of the changelog since the 2023.4 release from December is: Micro Mirror Free Software CDN - FCIX Software Mirror reached out offering to host our images, and we said yes 2024 Theme...

7.3AI score
Exploits0
Rows per page
Query Builder