13 matches found
PT-2026-24980
Jettweb PHP Hazir Haber Sitesi Scripti V1 contains an authentication bypass vulnerability in the administration panel that allows unauthenticated attackers to gain administrative access by exploiting improper SQL query validation. Attackers can submit SQL injection payloads in the username and...
CVE-2024-7593
Incorrect implementation of an authentication algorithm in Ivanti vTM other than versions 22.2R1 or 22.7R2 allows a remote unauthenticated attacker to bypass authentication of the admin panel...
Complaint Management System 2.0 SQL Injection Vulnerability
Exploit Title: Complaint-Management-System Multiple SQL Injection Vulnerabilities Exploit Author: Diyar Saadi Vendor Homepage: https://phpgurukul.com/complaint-management-sytem/ Software Link: https://phpgurukul.com/?sdmprocessdownload=1&downloadid=7259 Version: V 2.0 Tested on: Windows 11 + XAMP...
Complaint Management System 2.0 SQL Injection
Exploit Title: Complaint-Management-System Multiple SQL Injection Vulnerabilities Date: 02/09/2-24 Exploit Author: Diyar Saadi Vendor Homepage: https://phpgurukul.com/complaint-management-sytem/ Software Link: https://phpgurukul.com/?sdmprocessdownload=1&downloadid=7259 Version: V 2.0 Tested on:...
CVE-2023-37627
Code-projects Online Restaurant Management System 1.0 is vulnerable to SQL Injection. Through SQL injection, an attacker can bypass the admin panel and view order records, add items, delete items etc...
CVE-2023-37627
Code-projects Online Restaurant Management System 1.0 is vulnerable to SQL Injection. Through SQL injection, an attacker can bypass the admin panel and view order records, add items, delete items etc...
Online Covid Vaccination Scheduler System 1.0 Shell Upload
Exploit Title: Online Covid Vaccination Scheduler System 1.0 - Arbitrary File Upload to Remote Code Execution Unauthenticated Date: 2021-07-07 Exploit Author: faisalfs10x Vendor Homepage: https://www.sourcecodester.com/ Software Link:...
Mail.ru: By pass admin panel [conference.mail.ru]
An partial information from conference.mail.ru could be obtained due to invalid access restrictions conference.mail.ru is not in Bug Bounty scope, but some reward was issued due to problem significance...
PHP Hosting Directory 2.0 Admin Password Bypass Vulnerability
Exploit for php platform in category web applications ============================================================= PHP Hosting Directory 2.0 Admin Password Bypass Vulnerability ============================================================= Author: ruinerblackhat Version: Versin 2 My Group Web:...
[ECHO_ADV_113$2010] BSI Hotel Booking System Admin Login Bypass Vulnerability
----------------------------------------------------------------------------------------- ECHOADV113$2010 BSI Hotel Booking System Admin Login Bypass Vulnerability ----------------------------------------------------------------------------------------- Author : K-159 Date : September, 22th 2010...
supernet-sql.txt
----------------------------------- SuperNET Shop v1.0 Remote SQL İnjection Vulnerability Discovered By : U238 ugur238 webpage : ugur238.org the end mail : [email protected] From : Turkey - Erzincan Script : http://www.aspindir.com/indir.asp?ID=2 Script alternativ :...
SuperNET Shop 1.0 - SQL Injection
SuperNET Shop 1.0 - SQL Injection ----------------------------------- SuperNET Shop v1.0 Remote SQL İnjection Vulnerability Discovered By : U238 ugur238 webpage : ugur238.org the end mail : [email protected] From : Turkey - Erzincan Script : http://www.aspindir.com/indir.asp?ID=2...
SuperNET Shop 1.0 - SQL Injection
----------------------------------- SuperNET Shop v1.0 Remote SQL İnjection Vulnerability Discovered By : U238 ugur238 webpage : ugur238.org the end mail : [email protected] From : Turkey - Erzincan Script : http://www.aspindir.com/indir.asp?ID=2 Script alternativ :...