CVE-2023-29808

Cross Site Scripting XSS vulnerability in vogtmh cmaps companymaps 8.0 allows attackers to execute arbitrary code...

EUVD-2023-33347

Malicious code in bioql PyPI...

CVE-2023-29809

SQL injection vulnerability found in Maximilian Vogt companymaps cmaps v.8.0 allows a remote attacker to execute arbitrary code via a crafted script in the request...

CVE-2023-29808

Cross Site Scripting XSS vulnerability in vogtmh cmaps companymaps 8.0 allows attackers to execute arbitrary code...

CVE-2023-29809

SQL injection vulnerability found in Maximilian Vogt companymaps cmaps v.8.0 allows a remote attacker to execute arbitrary code via a crafted script in the request...

Sql injection

SQL injection vulnerability found in Maximilian Vogt companymaps cmaps v.8.0 allows a remote attacker to execute arbitrary code via a crafted script in the request...

CVE-2023-29809

CVE-2023-29809 affects Maximilian Vogt companymaps (cmaps) version 8.0. The vulnerability is a SQL injection in the bookmap parameter that enables a remote attacker to alter the query and potentially execute arbitrary code. Exploits are publicly available (e.g., Exploit-DB, PacketStorm) and the i...

CVE-2023-29808

Cross Site Scripting XSS vulnerability in vogtmh cmaps companymaps 8.0 allows attackers to execute arbitrary code...

CVE-2023-29808

CVE-2023-29808 affects vogtmh cmaps (Companymaps) 8.0. The vulnerability is Cross-Site Scripting (XSS) in which user-supplied input can be reflected back and cause arbitrary code execution. Public details include a reflected XSS scenario via the findme parameter (example endpoint: /index.php?map=...

CVE-2023-29809

SQL injection vulnerability found in Maximilian Vogt companymaps cmaps v.8.0 allows a remote attacker to execute arbitrary code via a crafted script in the request...

CVE-2023-29809

SQL injection vulnerability found in Maximilian Vogt companymaps cmaps v.8.0 allows a remote attacker to execute arbitrary code via a crafted script in the request...

PT-2023-22427 · Maximilian Vogt · Companymaps

Name of the Vulnerable Software and Affected Versions: Maximilian Vogt companymaps cmaps version 8.0 Description: A SQL injection issue allows a remote attacker to execute arbitrary code via a crafted script in the request. This enables the attacker to potentially access or manipulate sensitive...

Companymaps 跨站脚本漏洞

Companymaps is a display of a company map containing all desks and employees by Maximilian Vogt Personal Developer. A security vulnerability exists in Companymaps version 8.0, which stems from the presence of a cross-site scripting XSS vulnerability that allows attackers to execute arbitrary code...

Companymaps SQL注入漏洞

Companymaps is a display by Maximilian Vogt personal developer of a company map containing all desks and employees. A security vulnerability exists in Companymaps version v8.0. An attacker exploited the vulnerability to perform a SQL injection attack...

Companymaps 8.0 SQL Injection Vulnerability

Exploit Title: Unauthenticated SQL injection - Exploit Author: Lucas Noki 0xPrototype - Vendor Homepage: https://github.com/vogtmh - Software Link: https://github.com/vogtmh/cmaps - Version: 8.0 - Tested on: Mac, Windows, Linux - CVE : CVE-2023-29809 Description: The vulnerability found is an SQL...

Companymaps 8.0 Cross Site Scripting Vulnerability

Exploit Title: Reflected Cross Site Scripting - Exploit Author: Lucas Noki 0xPrototype - Vendor Homepage: https://github.com/vogtmh - Software Link: https://github.com/vogtmh/cmaps - Version: 8.0 - Tested on: Mac, Windows, Linux - CVE : CVE-2023-29808 Description: The vulnerability found is...

Companymaps v8.0 - Stored Cross Site Scripting Vulnerability

Exploit Title: Companymaps V8.0 - Stored Cross Site Scripting XSS Exploit Author: Lucas Noki 0xPrototype Vendor Homepage: https://github.com/vogtmh Software Link: https://github.com/vogtmh/cmaps Version: 8.0 Tested on: Mac, Windows, Linux CVE : CVE-2023-29983 Steps to reproduce: 1. Clone the...

Companymaps 跨站脚本漏洞

Companymaps is a display of a company map containing all desks and employees by Maximilian Vogt, an individual developer. A cross-site scripting vulnerability exists in Companymaps version V8.0, which stems from the presence of a stored cross-site scripting XSS vulnerability...

Companymaps v8.0 - Stored Cross Site Scripting (XSS)

Exploit Title: Companymaps V8.0 - Stored Cross Site Scripting XSS Date: 27.04.2023 Exploit Author: Lucas Noki 0xPrototype Vendor Homepage: https://github.com/vogtmh Software Link: https://github.com/vogtmh/cmaps Version: 8.0 Tested on: Mac, Windows, Linux CVE : CVE-2023-29983 Steps to reproduce: ...