Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

OSV
OSVadded 2023/03/21 4:15 p.m.0 views

CVE-2023-27570

The eotags package before 1.4.19 for PrestaShop allows SQL injection via a crafted ga cookie...

9.8CVSS5.8AI score0.0025EPSS
Exploits0References2
0day.today
0day.todayadded 2023/01/19 12:0 a.m.278 views

Ivanti Cloud Services Appliance (CSA) Command Injection Exploit

This Metasploit module exploits a command injection vulnerability in the Ivanti Cloud Services Appliance CSA for Ivanti Endpoint Manager. A cookie based code injection vulnerability in the Cloud Services Appliance before 4.6.0-512 allows an unauthenticated user to execute arbitrary code with...

9.8CVSS0.9AI score0.94461EPSS
Exploits9
Packet Storm
Packet Stormadded 2023/01/18 12:0 a.m.388 views

Ivanti Cloud Services Appliance (CSA) Command Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Ivanti Cloud Services Appliance CSA Command Injection', 'Description' = %q This module exploits a command injection vulnerability in the Ivanti...

9.8CVSS0.7AI score0.94461EPSS
Exploits9
CNNVD
CNNVDadded 2022/11/10 12:0 a.m.1 views

PrestaShop SQL注入漏洞

PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution provides multiple payment methods, SMS alerts and product image zoom. A security vulnerability exists in PrestaShop versions prior to 2.1.3, which stems from the EU Cookie Law GDPR Banner +...

9.1CVSS8.4AI score0.00539EPSS
Exploits1References5
OSV
OSVadded 2018/06/01 3:29 p.m.1 views

CVE-2018-11485

The MULTIDOTS WooCommerce Quick Reports plugin 1.0.6 and earlier for WordPress is vulnerable to Stored XSS. It allows an attacker to inject malicious JavaScript code on the WooCommerce - Orders admin page. The attack is possible by modifying the "referralsite" cookie to have an XSS payload, and...

6.1CVSS5.9AI score0.0021EPSS
Exploits1References1
0day.today
0day.todayadded 2015/02/21 12:0 a.m.25 views

alMnzm 2.3 Cookie Based Injection Exploit

Usage Info a SQL injection in almnzm script This is private exploit. You can buy it at https://0day.today...

8.1AI score
Exploits0
0day.today
0day.todayadded 2015/02/18 12:0 a.m.14 views

Dimofinf 3.0 New Cookie Based Injection Exploit

Exploit for php platform in category web applications This is private exploit. You can buy it at https://0day.today...

7AI score
Exploits0
exploitpack
exploitpackadded 2013/03/25 12:0 a.m.8 views

Free Hosting Manager 2.0.2 - Multiple SQL Injections

Free Hosting Manager 2.0.2 - Multiple SQL Injections ------------------------------------------------------------------------- Software : Free Hosting Manager V2.0.2 Multiple SQLi Author : Saadat Ullah , [email protected] Author home : http://security-geeks.blogspot.com Date : 23/3/13...

0.3AI score
Exploits0
Packet Storm
Packet Stormadded 2013/03/23 12:0 a.m.25 views

Free Hosting Manager 2.0.2 SQL Injection

------------------------------------------------------------------------- Software : Free Hosting Manager V2.0.2 Multiple SQLi Author : Saadat Ullah , [email protected] Author home : http://security-geeks.blogspot.com Date : 23/3/13 Vendors : http://www.fhm-script.com Download Link :...

0.5AI score
Exploits0
Rows per page
Query Builder