554 matches found
Exploit for External Control of Assumed-Immutable Web Parameter in Fortra Filecatalyst_Workflow
CVE-2024-25153 This is a proof of concept for CVE-2024-25153,...
BIT-ODOO-2021-45111
Improper access control in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to trigger the creation of demonstration data, including user accounts with known credentials...
Exploit for Path Traversal in Aiohttp
CVE-2024-23334 :; 남의 exploit 리뷰 Review an exploit publis...
PHPJabbers Hotel Booking System 4.0 CSV Injection
Exploit Title: PHPJabbers Hotel Booking System v4.0 - CSV Injection Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/hotel-booking-system/sectionDemo Version: v4.0 Tested on: Windows...
Exploit for Improper Access Control in Pnpm
pnpm vs npm exploit This repo showcases how a difference...
AN_GradeBook <= 5.0.1 - Subscriber+ SQLi
The plugin does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as subscriber Access the following URL to demonstrate SQLi:...
Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Imagemagick
ImageMagick Arbitrary Read Files - CVE-2022-44268 This reposi...
Exploit for Improper Initialization in Linux Linux_Kernel
POC Exploit to add user to Sudo for CVE-2022-0847 Dirty Pipe V...
CVE-2021-45111
Improper access control in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to trigger the creation of demonstration data, including user accounts with known credentials...
CVE-2021-45111
Improper access control in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to trigger the creation of demonstration data, including user accounts with known credentials...
Improper access control
Improper access control in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to trigger the creation of demonstration data, including user accounts with known credentials...
CVE-2021-45111
Improper access control in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to trigger the creation of demonstration data, including user accounts with known credentials...
CVE-2021-45111
CVE-2021-45111 affects Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier, due to improper access control that lets remote authenticated users trigger demonstration data creation, including user accounts with known credentials. Multiple connected sources (Debian DSA-5399-1, OSV ...
CVE-2021-45111
Improper access control in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to trigger the creation of demonstration data, including user accounts with known credentials...
CVE-2021-45111
Improper access control in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to trigger the creation of demonstration data, including user accounts with known credentials...
CVE-2021-45111
Improper access control in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to trigger the creation of demonstration data, including user accounts with known credentials...
Stored cross site scripting vulnerability in thorsten/phpmyfaq
Description Stored cross site scripting vulnerability in "name" field in add question module. This allows attacker to stolen user cookies. Proof of Concept 1 . Login to the demo account https://roy.demo.phpmyfaq.de/ 2 . Login as demo user 3 . Click add question 4 . Add payload in "Your Name"...
Bangresto 1.0 - SQL Injection Vulnerability
Exploit Title: Bangresto 1.0 - SQL Injection Exploit Author: nu11secur1ty Vendor: https://axcora.com/, https://www.hockeycomputindo.com/2021/05/restaurant-pos-source-code-free.html Demo: https://axcora.my.id/bangrestoapp/start.php Software: https://github.com/mesinkasir/bangresto Reference:...
Google Pixel: Cropped or edited images can be recovered
Most of us have a camera on us at all times, and so photo taking and image sharing has become almost ubiquitous. But when sharing an image, you want to have control over what you share. And that might lead you to crop images, or redact parts of them. Maybe you cropped out a person that didn't wan...
Intel® Glorp Advisory
Summary: A potential security vulnerability in the Intel® Glorp software may allow escalation of privilege. Intel is not releasing updates to mitigate this potential vulnerability and has issued a Product Discontinuation Notice for the Intel® Glorp software. Vulnerability Details: CVEID:...