SQL injection in some Admin Sort functions

Description SQL injection due to unsanitized concatenating strings into ORDER BY clause, 'sort' parameter Proof of Concept Log in as an admin, go to Admin Translations or Application Logger functions, and perform a sort action Observer the request on Burpsuite and injection point is the 'sort'...

XSS Stored in the email address

Description Hello, I have located an xss stored by performing the following step: 1 - Go to tools 2 - GDPR Data Extractor 3 - Insert the payload into the email address 4 - click in send emails Proof of Concept...

llvm/llvm-dwarfdump-fuzzer: Heap-buffer-overflow in llvm::DataExtractor::getU32

Project: https://github.com/llvm/llvm-project.git Detailed report: https://oss-fuzz.com/testcase?key=4561877290975232 Project: llvm Fuzzer: libFuzzerllvmllvm-dwarfdump-fuzzer Fuzz target binary: llvm-dwarfdump-fuzzer Job Type: libfuzzerasanllvm Platform Id: linux Crash Type: Heap-buffer-overflow...

Entry Level CMS SQL Injection Vulnerability

Exploit for php platform in category web applications =========================================== Entry Level CMS SQL Injection Vulnerability =========================================== +Title : SQL Injection Entry Level Content Management System EL CMS with schemafuzz.py --== Author ==-- + Autho...

Entry Level Content Management System (EL CMS) - SQL Injection

Entry Level Content Management System EL CMS - SQL Injection + Contact : vir0e5athackermaildotcom + Group : TECON The Eye COnference Indonesia + Site : http://tecon-crew.org Software Information +SOftware : Entry Level Content Management System EL CMS +vendor : http://www.entrylevelcms.com/...

Entry Level CMS SQL Injection

+Title : SQL Injection Entry Level Content Management System EL CMS with schemafuzz.py --== Author ==-- + Author : + HaMaDa SCoOoRPioN NEWBIE + Contact : [email protected] + Group : The ISLAM OF DEFENDERS AND ATTACK + Site : www.islam-defenders.com Software Information +SOftware : Entry Level...