8 matches found
Laravel Framework 11 Credential Disclosure
Exploit Title: Laravel Framework 11 - Credential Leakage Google Dork: N/A Date: 2024-04-19 Exploit Author: Huseein Amer Vendor Homepage: https://laravel.com/ Software Link: N/A Version: 8. - 11. REQUIRED Tested on: N/A CVE : CVE-2024-29291 Proof of concept: Go to any Laravel-based website and...
CVE-2024-25847
SQL Injection vulnerability in MyPrestaModules "Product Catalog CSV, Excel Import" simpleimportproduct modules for PrestaShop versions 6.5.0 and before, allows attackers to escalate privileges and obtain sensitive information via Send::construct and importProducts::addDataToDb methods...
CVE-2024-25847
SQL Injection vulnerability in MyPrestaModules "Product Catalog CSV, Excel Import" simpleimportproduct modules for PrestaShop versions 6.5.0 and before, allows attackers to escalate privileges and obtain sensitive information via Send::construct and importProducts::addDataToDb methods...
SQL Injection
helloxz/imgurl is vulnerable to SQL Injection attacks. A attacker is able to send malicious script through the query parameter in construct to execute SQL queries on the target system via /upload/localhost...
CVE-2016-1000006
hhvm before 3.12.11 has a use-after-free in the serializememoizeparam and ResourceBundle::construct functions...
CVE-2016-1000006
hhvm before 3.12.11 has a use-after-free in the serializememoizeparam and ResourceBundle::construct functions...
Design/Logic Flaw
hhvm before 3.12.11 has a use-after-free in the serializememoizeparam and ResourceBundle::construct functions...
CVE-2016-1000006
hhvm before 3.12.11 has a use-after-free in the serializememoizeparam and ResourceBundle::construct functions...