Lucene search
K

7 matches found

0day.today
0day.today
added 2018/09/06 12:0 a.m.46 views

Jorani Leave Management 0.6.5 - startdate SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Jorani Leave Management 0.6.5 – 'startdate' SQL Injection Exploit Author: Javier Olmedo Website: https://hackpuntes.com Vendor: Benjamin BALET Software Link: https://jorani.org/download.html Affected Version: 0.6.5 and possibly...

0.1AI score0.02871EPSS
Exploits5
exploitpack
exploitpack
added 2018/09/06 12:0 a.m.58 views

Jorani Leave Management 0.6.5 - (Authenticated) startdate SQL Injection

Jorani Leave Management 0.6.5 - Authenticated startdate SQL Injection Exploit Title: Jorani Leave Management 0.6.5 – 'startdate' SQL Injection Exploit Author: Javier Olmedo Website: https://hackpuntes.com Date: 2018-09-06 Google Dork: N/A Vendor: Benjamin BALET Software Link:...

5.5CVSS0.7AI score0.02871EPSS
Exploits5
Packet Storm
Packet Storm
added 2018/09/06 12:0 a.m.35 views

Jorani Leave Management System 0.6.5 SQL Injection

Exploit Title: Jorani Leave Management 0.6.5 a 'startdate' SQL Injection Exploit Author: Javier Olmedo Website: https://hackpuntes.com Date: 2018-09-06 Google Dork: N/A Vendor: Benjamin BALET Software Link: https://jorani.org/download.html Affected Version: 0.6.5 and possibly before Patched...

0.02871EPSS
Exploits5
Exploit DB
Exploit DB
added 2018/09/06 12:0 a.m.29 views

Jorani Leave Management 0.6.5 - (Authenticated) 'startdate' SQL Injection

Exploit Title: Jorani Leave Management 0.6.5 – 'startdate' SQL Injection Exploit Author: Javier Olmedo Website: https://hackpuntes.com Date: 2018-09-06 Google Dork: N/A Vendor: Benjamin BALET Software Link: https://jorani.org/download.html Affected Version: 0.6.5 and possibly before Patched...

5.5CVSS5.8AI score0.02871EPSS
Exploits5
Circl
Circl
added 2018/09/06 12:0 a.m.25 views

CVE-2018-15918

creationtimestamp| type| source ---|---|--- 2018-09-06 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/45340...

5.5CVSS5.1AI score0.02871EPSS
Exploits5References1
OSV
OSV
added 2018/09/05 9:29 p.m.26 views

CVE-2018-15918

An issue was discovered in Jorani 0.6.5. SQL Injection error-based allows a user of the application without permissions to read and modify sensitive information from the database used by the application via the startdate or enddate parameter to leaves/validate...

5.4CVSS7.4AI score0.02871EPSS
Exploits5References3
CVE
CVE
added 2018/09/05 9:0 p.m.64 views

CVE-2018-15918

CVE-2018-15918 affects Jorani Leave Management System 0.6.5 (and possibly earlier). A SQL Injection (error-based) flaw exists in the startdate and enddate parameters of the POST /leaves/validate endpoint, allowing an attacker to read and modify sensitive data in the application’s database. Public...

5.5CVSS5.7AI score0.02871EPSS
Exploits5References3Affected Software1
Rows per page
Query Builder