CVE-2026-34324

Vulnerability in the Oracle Life Sciences InForm product of Oracle Life Science Applications component: App Server. Supported versions that are affected are 7.0.1.0 and 7.0.1.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Life...

SECURING-AGAINST-XSS

No d...

Xss-finder

...

XSS

No d...

CVE-2026-30556

A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the index.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML via...

XSS-CSRF

No d...

jun.github.io

j...

Exploit for CVE-2025-69985

FUXA ≤ 1.2.8 Auth Bypass + RCE CVE-2025-69985...

Advanced-Web-Exploit

...

Web-Exploit-Engine

No d...

ASPXsploit

No d...

CVE-2026-1702

A vulnerability was detected in SourceCodester Pet Grooming Management Software 1.0. Impacted is an unknown function of the file /admin/operation/user.php of the component User Management. Performing a manipulation of the argument groupid results in improper authorization. The attack can be...

📄 flatCore 1.5 Shell Upload

flatCore version 1.5 proof of concept remote shell upload exploit. ============================================================================================================================================= | Title : flatCore 1.5 Advanced File Upload Exploit | | Author : indoushka | | Tested on...

CVE_2020_35489_EnhancedExploit.php

...

EUVD-2017-0557

Malware in sbrugna...

Pet-grooming-management-print1.php-v.1.0-sql-injection

Pet-grooming-managem...

Exploit for Cross-site Scripting in Livehelperchat Live_Helper_Chat

Exploit Title: LiveHelperChat...

CVE-2025-6456

A vulnerability, which was classified as critical, has been found in code-projects Online Hotel Reservation System 1.0. Affected by this issue is some unknown functionality of the file /reservation/order.php. The manipulation of the argument Start leads to sql injection. The attack may be launche...

CVE-2023-21974

Vulnerability in the Application Express Team Calendar Plugin product of Oracle Application Express component: User Account. Supported versions that are affected are Application Express Team Calendar Plugin: 18.2-22.1. Easily exploitable vulnerability allows low privileged attacker with network...

Juniper Junos OS Authentication for Critical Function (CVE-2024-21619)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA76390 advisory. - A Missing Authentication for Critical Function vulnerability combined with a Generation of Error Message Containing Sensitive Information vulnerability in J-Web of Juniper...