Lucene search
K

186 matches found

GithubExploit
GithubExploit
added 2024/10/08 11:22 a.m.1498 views

Exploit for Code Injection in Ispconfig

CVE-2023-46818 exploit This is a python version of the origin...

7.2CVSS7.3AI score0.13894EPSS
Exploits14
Packet Storm
Packet Storm
added 2024/07/17 12:0 a.m.1048 views

XenForo 2.2.15 Cross Site Request Forgery

------------------------------------------------------------------------------- XenForo = 2.2.15 Widget::actionSave Cross-Site Request Forgery Vulnerability ------------------------------------------------------------------------------- - Software Link: https://xenforo.com - Affected Versions:...

7.1AI score0.07409EPSS
Exploits3
Packet Storm
Packet Storm
added 2024/07/17 12:0 a.m.1628 views

Xenforo 2.2.15 Remote Code Execution

----------------------------------------------------------------------- XenForo = 2.2.15 Template System Remote Code Execution Vulnerability ----------------------------------------------------------------------- - Software Link: https://xenforo.com - Affected Versions: Version 2.2.15 and prior...

7.1AI score0.00885EPSS
Exploits3
0day.today
0day.today
added 2024/05/15 12:0 a.m.782 views

Cacti 1.2.26 Remote Code Execution Vulnerability

---------------------------------------------------------------- Cacti = 1.2.26 import.php Remote Code Execution Vulnerability ---------------------------------------------------------------- - Software Link: https://cacti.net - Affected Versions: Version 1.2.26 and prior versions. - Vulnerabilit...

9.1CVSS7.1AI score0.86303EPSS
Exploits17
Packet Storm
Packet Storm
added 2024/04/08 12:0 a.m.909 views

Invision Community 4.7.15 SQL Injection

-------------------------------------------------------------------- Invision Community filter and \isarray \IPS\Request::i-filter 128 129 $url = $url-setQueryString 'filter', \IPS\Request::i-filter ; 130 foreach \IPS\Request::i-filter as $filterId = $allowedValues 131 132 $where = array...

7.4AI score0.08676EPSS
Exploits3
Packet Storm
Packet Storm
added 2024/01/31 12:0 a.m.507 views

XenForo 2.2.13 ArchiveImport.php Zip Slip

------------------------------------------------------------ XenForo zip; 201. $DS = \XF::$DS; 202. 203. if $this-extracted 204. 205. return; 206. 207. 208. for $i = 0; $i numFiles; $i++ 209. 210. $zipFileName = $zip-getNameIndex$i; 211. $fsFileName = $this-getFsFileNameFromZipName$zipFileName;...

7.4AI score
Exploits0
0day.today
0day.today
added 2024/01/31 12:0 a.m.426 views

XenForo 2.2.13 ArchiveImport.php Zip Slip Vulnerability

------------------------------------------------------------ XenForo zip; 201. $DS = \XF::$DS; 202. 203. if $this-extracted 204. 205. return; 206. 207. 208. for $i = 0; $i numFiles; $i++ 209. 210. $zipFileName = $zip-getNameIndex$i; 211. $fsFileName = $this-getFsFileNameFromZipName$zipFileName;...

7.4AI score
Exploits0
0day.today
0day.today
added 2023/12/18 12:0 a.m.564 views

PKP-WAL 3.4.0-3 Remote Code Execution Exploit

PKP Web Application Library PKP-WAL versions 3.4.0-3 and below, as used in Open Journal Systems OJS, Open Monograph Press OMP, and Open Preprint Systems OPS before versions 3.4.0-4 or 3.3.0-16, suffer from a NativeImportExportPlugin related remote code execution vulnerability...

5.3CVSS8.2AI score0.00618EPSS
Exploits2
Packet Storm
Packet Storm
added 2023/12/15 12:0 a.m.990 views

PKP-WAL 3.4.0-3 Remote Code Execution

--------------------------------------------------------------------------------- PKP-WAL getDeployment; 103. 104. $context = $deployment-getContext; 105. 106. $locale = $node-getAttribute'locale'; 107. if empty$locale 108. $locale = $context-getPrimaryLocale; 109. 110. 111. $coverImagelocale = ;...

5.3CVSS7.4AI score0.00618EPSS
Exploits2
Packet Storm
Packet Storm
added 2023/12/08 12:0 a.m.893 views

ISPConfig 3.2.11 PHP Code Injection

------------------------------------------------------------------------ ISPConfig = 3.2.11 languageedit.php PHP Code Injection Vulnerability ------------------------------------------------------------------------ - Software Link: https://www.ispconfig.org - Affected Versions: Version 3.2.11 and...

7.2CVSS7.2AI score0.13894EPSS
Exploits14
0day.today
0day.today
added 2023/10/30 12:0 a.m.402 views

SugarCRM 13.0.1 Server-Side Template Injection Exploit

SugarCRM versions 13.0.1 and below suffer from a server-side template injection vulnerability in the GetControl action from the Import module. This issue can be leveraged to execute arbitrary php code. ---------------------------------------------------------------------------- SugarCRM = 13.0.1...

8AI score
Exploits0
0day.today
0day.today
added 2023/10/30 12:0 a.m.416 views

SugarCRM 13.0.1 Shell Upload Exploit

SugarCRM versions 13.0.1 and below suffer from a remote shell upload vulnerability in the setnoteattachment SOAP call. ------------------------------------------------------------------------------- SugarCRM = 13.0.1 setnoteattachment Unrestricted File Upload Vulnerability...

7.4AI score
Exploits0
0day.today
0day.today
added 2023/08/24 12:0 a.m.362 views

CrafterCMS 4.0.2 Cross Site Scripting Vulnerability

--------------------------------------------------------------------------- CrafterCMS = 4.0.2 Multiple Reflected Cross-Site Scripting Vulnerabilities --------------------------------------------------------------------------- - Software Link: https://craftercms.org - Affected Versions: Version...

7.4CVSS7.1AI score0.01304EPSS
Exploits2
0day.today
0day.today
added 2023/08/24 12:0 a.m.421 views

SugarCRM 12.2.0 Bean Manipulation Vulnerability

------------------------------------------------------------------------ SugarCRM = 12.2.0 updateGeocodeStatus Bean Manipulation Vulnerability ------------------------------------------------------------------------ - Software Link: https://www.sugarcrm.com - Affected Versions: Version 12.2.0 and...

8.8CVSS7.1AI score0.01256EPSS
Exploits2
0day.today
0day.today
added 2023/08/24 12:0 a.m.551 views

SugarCRM 12.2.0 PHP Object Injection Vulnerability

------------------------------------------------------------------------------- SugarCRM = 12.2.0 DocusignGlobalSettings PHP Object Injection Vulnerability ------------------------------------------------------------------------------- - Software Link: https://www.sugarcrm.com - Affected Versions...

7.2CVSS7.1AI score0.01222EPSS
Exploits2
0day.today
0day.today
added 2023/08/24 12:0 a.m.485 views

SugarCRM 12.2.0 SQL Injection Vulnerability

---------------------------------------------------- SugarCRM = 12.2.0 Two SQL Injection Vulnerabilities ---------------------------------------------------- - Software Link: https://www.sugarcrm.com - Affected Versions: Version 12.2.0 and prior versions. Version 12.0.2 and prior versions. Versio...

8.8CVSS7.1AI score0.00967EPSS
Exploits2
Packet Storm
Packet Storm
added 2023/08/23 12:0 a.m.289 views

SugarCRM 12.2.0 Shell Upload

----------------------------------------------------------------- SugarCRM = 12.2.0 Notes Unrestricted File Upload Vulnerability ----------------------------------------------------------------- - Software Link: https://www.sugarcrm.com - Affected Versions: Version 12.2.0 and prior versions...

8.8CVSS7.1AI score0.01255EPSS
Exploits2
Packet Storm
Packet Storm
added 2023/08/23 12:0 a.m.454 views

SugarCRM 12.2.0 SQL Injection

---------------------------------------------------- SugarCRM = 12.2.0 Two SQL Injection Vulnerabilities ---------------------------------------------------- - Software Link: https://www.sugarcrm.com - Affected Versions: Version 12.2.0 and prior versions. Version 12.0.2 and prior versions. Versio...

8.8CVSS7.1AI score0.00967EPSS
Exploits2
Packet Storm
Packet Storm
added 2023/08/23 12:0 a.m.332 views

CrafterCMS 4.0.2 Cross Site Scripting

--------------------------------------------------------------------------- CrafterCMS = 4.0.2 Multiple Reflected Cross-Site Scripting Vulnerabilities --------------------------------------------------------------------------- - Software Link: https://craftercms.org - Affected Versions: Version...

7.4CVSS7.1AI score0.01304EPSS
Exploits2
Packet Storm
Packet Storm
added 2023/08/23 12:0 a.m.512 views

SugarCRM 12.2.0 Bean Manipulation

------------------------------------------------------------------------ SugarCRM = 12.2.0 updateGeocodeStatus Bean Manipulation Vulnerability ------------------------------------------------------------------------ - Software Link: https://www.sugarcrm.com - Affected Versions: Version 12.2.0 and...

8.8CVSS7.1AI score0.01256EPSS
Exploits2
Rows per page
Query Builder