Lucene search
+L

554 matches found

GithubExploit
GithubExploit
added 2024/03/12 5:26 p.m.480 views

Exploit for External Control of Assumed-Immutable Web Parameter in Fortra Filecatalyst_Workflow

CVE-2024-25153 This is a proof of concept for CVE-2024-25153,...

9.8CVSS9.8AI score0.41741EPSS
Exploits4
OSV
OSV
added 2024/03/06 10:59 a.m.14 views

BIT-ODOO-2021-45111

Improper access control in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to trigger the creation of demonstration data, including user accounts with known credentials...

8.1CVSS7.1AI score0.00844EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2024/02/28 10:30 p.m.510 views

Exploit for Path Traversal in Aiohttp

CVE-2024-23334 :; 남의 exploit 리뷰 Review an exploit publis...

7.5CVSS7.6AI score0.76875EPSS
Exploits15
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.311 views

PHPJabbers Hotel Booking System 4.0 CSV Injection

Exploit Title: PHPJabbers Hotel Booking System v4.0 - CSV Injection Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/hotel-booking-system/sectionDemo Version: v4.0 Tested on: Windows...

7.4AI score0.00556EPSS
Exploits2
GithubExploit
GithubExploit
added 2023/10/24 6:32 p.m.733 views

Exploit for Improper Access Control in Pnpm

pnpm vs npm exploit This repo showcases how a difference...

9.8CVSS8.6AI score0.00941EPSS
Exploits1
wpexploit
wpexploit
added 2023/06/26 12:0 a.m.134 views

AN_GradeBook <= 5.0.1 - Subscriber+ SQLi

The plugin does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as subscriber Access the following URL to demonstrate SQLi:...

8.8CVSS9.8AI score0.0464EPSS
Exploits5
GithubExploit
GithubExploit
added 2023/06/25 8:52 p.m.397 views

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Imagemagick

ImageMagick Arbitrary Read Files - CVE-2022-44268 This reposi...

6.5CVSS7AI score0.89855EPSS
Exploits28
GithubExploit
GithubExploit
added 2023/06/20 11:48 p.m.319 views

Exploit for Improper Initialization in Linux Linux_Kernel

POC Exploit to add user to Sudo for CVE-2022-0847 Dirty Pipe V...

7.8CVSS7.4AI score0.89063EPSS
Exploits100
NVD
NVD
added 2023/04/25 7:15 p.m.23 views

CVE-2021-45111

Improper access control in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to trigger the creation of demonstration data, including user accounts with known credentials...

8.1CVSS7.2AI score0.00844EPSS
Exploits0References2
OSV
OSV
added 2023/04/25 7:15 p.m.8 views

CVE-2021-45111

Improper access control in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to trigger the creation of demonstration data, including user accounts with known credentials...

8.1CVSS8.3AI score
Exploits0References2
Prion
Prion
added 2023/04/25 7:15 p.m.32 views

Improper access control

Improper access control in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to trigger the creation of demonstration data, including user accounts with known credentials...

5.5CVSS7.7AI score0.00844EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCve
added 2023/04/25 7:15 p.m.32 views

CVE-2021-45111

Improper access control in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to trigger the creation of demonstration data, including user accounts with known credentials...

8.1CVSS7.2AI score0.00844EPSS
Exploits0References2
CVE
CVE
added 2023/04/25 6:33 p.m.64 views

CVE-2021-45111

CVE-2021-45111 affects Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier, due to improper access control that lets remote authenticated users trigger demonstration data creation, including user accounts with known credentials. Multiple connected sources (Debian DSA-5399-1, OSV ...

8.1CVSS7.7AI score0.00844EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/04/25 6:33 p.m.39 views

CVE-2021-45111

Improper access control in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to trigger the creation of demonstration data, including user accounts with known credentials...

7.1CVSS8AI score0.00844EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2023/04/25 6:33 p.m.38 views

CVE-2021-45111

Improper access control in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to trigger the creation of demonstration data, including user accounts with known credentials...

8.1CVSS6.9AI score0.00844EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2023/04/25 6:33 p.m.16 views

CVE-2021-45111

Improper access control in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to trigger the creation of demonstration data, including user accounts with known credentials...

7.1CVSS6.5AI score0.00844EPSS
Exploits0References2
Huntr
Huntr
added 2023/04/05 1:47 p.m.23 views

Stored cross site scripting vulnerability in thorsten/phpmyfaq

Description Stored cross site scripting vulnerability in "name" field in add question module. This allows attacker to stolen user cookies. Proof of Concept 1 . Login to the demo account https://roy.demo.phpmyfaq.de/ 2 . Login as demo user 3 . Click add question 4 . Add payload in "Your Name"...

4.9CVSS5.2AI score0.00559EPSS
Exploits0
0day.today
0day.today
added 2023/03/31 12:0 a.m.144 views

Bangresto 1.0 - SQL Injection Vulnerability

Exploit Title: Bangresto 1.0 - SQL Injection Exploit Author: nu11secur1ty Vendor: https://axcora.com/, https://www.hockeycomputindo.com/2021/05/restaurant-pos-source-code-free.html Demo: https://axcora.my.id/bangrestoapp/start.php Software: https://github.com/mesinkasir/bangresto Reference:...

6.8AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/03/22 1:0 a.m.119 views

Google Pixel: Cropped or edited images can be recovered

Most of us have a camera on us at all times, and so photo taking and image sharing has become almost ubiquitous. But when sharing an image, you want to have control over what you share. And that might lead you to crop images, or redact parts of them. Maybe you cropped out a person that didn't wan...

5.2AI score0.00499EPSS
Exploits2
Intel
Intel
added 2023/03/10 12:0 a.m.34 views

Intel® Glorp Advisory

Summary: A potential security vulnerability in the Intel® Glorp software may allow escalation of privilege. Intel is not releasing updates to mitigate this potential vulnerability and has issued a Product Discontinuation Notice for the Intel® Glorp software. Vulnerability Details: CVEID:...

7.8CVSS7AI score0.00157EPSS
Exploits0
Rows per page
Query Builder