Sitemakin SLAC 1.0 - my_item_search SQL Injection Vulnerability

CVE-2018-11535 Exploit Title: SLAC v1.0: Blind SQL Injection / XPath Injection Vendor Homepage: https://sitemakin.com/login-script-demo Exploit Author: Divya Jain Version: v1.0 CVE: CVE-2018-11535 Category: Webapps Severity: High Tested on: KaLi LinuXx64 Proof of Concept:...

Sitemakin SLAC 1.0 SQL Injection

Exploit Title: SLAC v1.0: Blind SQL Injection / XPath Injection Date: 29-05-2018 Vendor Homepage: https://sitemakin.com/login-script-demo Exploit Author: Divya Jain Version: v1.0 CVE: CVE-2018-11535 Category: Webapps Severity: High Tested on: KaLi LinuXx64 Proof of Concept:...

apptha-demo.com XSS vulnerability

Open Bug Bounty ID: OBB-300264 Description| Value ---|--- Affected Website:| apptha-demo.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat...

DirectAdmin 1.491 - Cross-Site Request Forgery

Exploit for php platform in category web applications ============================================================================= Title : DirectAdmin 1.491 CSRF Vulnerability Date : 27-10-2014 updated 18-02-2016 Version : =1.491 Author : Necmettin COSKUN =@babayarisi Blog :http://ha.cker.io...

AdManagerPro - Cross-Site Request Forgery (Add Admin)

AdManagerPro - Cross-Site Request Forgery Add Admin /\ == \ /\ \ /\ \ \ \ input type="...