CVE-2024-10433

The CVE-2024-10433 issue affects Project Worlds Simple Web-Based Chat Application 1.0. The vulnerability is a cross-site scripting flaw in the /index.php page, triggered by manipulating the Name/Comment parameter. It is described as exploitable remotely, with public disclosure of exploits. The av...

Twilio WEB To Fax Machine System Application 1.0 - SQL Injection

Twilio WEB To Fax Machine System Application 1.0 - SQL Injection Exploit Title: Fax Machine System Application 1.0 - SQL Injection Dork: N/A Date: 2019-01-13 Exploit Author: Ihsan Sencan Vendor Homepage: http://ranksol.com/ Software Link:...

Design/Logic Flaw

The Chemssou Blink aka com.chemssou.blink application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-7055

The CVE-2014-7055 entry describes the NCCI Annual Issues Symposium Android app (1.0) not verifying X.509 certificates from SSL servers, enabling man-in-the-middle attackers to spoof servers and access sensitive data via a crafted certificate. Root cause: missing SSL certificate verification in th...

Links Management Application 1.0 - 'lcnt' SQL Injection

!/usr/bin/perl Script Name: Links Management Application V1.0 lcnt Remote BLIND SQL Injection Exploit Coded by : ajann Author : ajann Contact : : S.Page : http://www.monitor-line.com $$ : $34.99 .. : ajann,Turkey use IO::Socket; if@ARGV : "; $dir = ; chop $dir; if $dir = /exit/ print "-- Exploit...

Links Management Application 1.0 (lcnt) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ==================================================================== Links Management Application 1.0 lcnt Remote SQL Injection Exploit ==================================================================== !/usr/bin/perl Script Name: Links...