CVE-2025-13179

A vulnerability has been found in Bdtask/CodeCanyon Wholesale Inventory Control and Inventory Management System up to 20250320. This issue affects some unknown processing. Such manipulation leads to cross-site request forgery. The attack may be performed from remote. The exploit has been disclose...

PT-2024-39375 · Unknown · Crmgo Saas

Name of the Vulnerable Software and Affected Versions: CodeCanyon CRMGo SaaS versions up to 7.2 Description: A problematic issue has been found in the software, affecting some unknown processing of the file "/project/task/task id/show". The manipulation of the comment argument leads to cross-site...

Quicklancer 1.0 SQL Injection

Exploit Title: Quicklancer v1.0 - SQL Injection Date: 2023-05-17 Exploit Author: Ahmet Ümit BAYRAM Vendor: https://codecanyon.net/item/quicklancer-freelance-marketplace-php-script/39087135 Demo Site: https://quicklancer.bylancer.com Tested on: Kali Linux CVE: N/A Request POST /php/user-ajax.php...

Smart School v1.0 - SQL Injection Vulnerability

Exploit Title: Smart School v1.0 - SQL Injection Exploit Author: Ahmet Ümit BAYRAM Vendor: https://codecanyon.net/item/smart-school-school-management-system/19426018 Demo Site: https://demo.smart-school.in Tested on: Kali Linux CVE: N/A Request POST /course/filterRecords/ HTTP/1.1 Host: localhost...

PHP Dashboards NEW 5.8 - dashID SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: PHP Dashboards NEW 5.8 - SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: http://dataninja.biz Software Link: https://codecanyon.net/item/php-dashboards-v50-brand-new-enterprise-edition/21540104 Version: 5.8 Category:...

Cleanto 5.0 - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Cleanto 5.0 - SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: http://skymoonlabs.com/ Software Link: https://codecanyon.net/item/appointment-booking-software-for-cleaning-maintenance-businesses-cleanto/18397969...

TI Online Examination System v2 - Arbitrary File Download

Exploit Title: TI Online Examination System v2 - Arbitrary File Download Dork: N/A Date: 02.08.2018 Exploit Author: Özkan Mustafa Akkuş AkkuS Vendor Homepage: https://codecanyon.net/item/ti-online-examination-system-v2/11248904 Version: 2.0 Category: Webapps Tested on: Kali linux Description : Th...

NodAPS 4.0 - SQL injection Cross-Site Request Forgery

NodAPS 4.0 - SQL injection Cross-Site Request Forgery Exploit Title: Online Booking system - NodAPS 4.0 - 'search' SQL injection / Cross-Site Request Forgery Date: 2018-05-16 Exploit Author: Borna nematzadeh L0RD Vendor Homepage:...

Advance Loan Management System - id SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Advance Loan Management System - 'id' SQL Injection Exploit Author: 8bitsec Vendor Homepage: https://codecanyon.net/ Software Link:...

Online Hotel Booking System Pro 1.2 - SQL Injection

Exploit Title: Online Hotel Booking System Pro v1.2 - SQL Injection Google Dork: N/A Date: 27.01.2017 Vendor Homepage: http://www.bestsoftinc.com/ Software Buy: https://codecanyon.net/item/online-hotel-booking-system-pro/4606514 Demo: http://envato.bestsoftinc.net/hotel-booking-pro/ Version: 1.2...