PT-2025-28094 · Boyuncms · Boyuncms

Name of the Vulnerable Software and Affected Versions: BoyunCMS versions up to 1.21 Description: A critical issue has been found in the Installation Handler component, specifically in the file install/install2.php. The manipulation of the db host argument leads to deserialization. This issue can ...

PT-2025-25762 · Unknown · Conda-Smithy

Name of the Vulnerable Software and Affected Versions: conda-smithy versions prior to 3.47.1 Description: The issue results from the use of an outdated and insecure padding scheme during RSA encryption in the travis encrypt binstar token implementation. A malicious actor with access to an oracle...

CVE-2019-5231

P30 smartphones with versions earlier than ELLE-AL00B 9.1.0.186C00E180R2P1 have an improper authorization vulnerability. The software incorrectly performs an authorization check when a user attempts to perform certain action. Successful exploit could allow the attacker to update a crafted package...

Sitetweet <= 0.2 - Stored XSS via CSRF

Description The plugin does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack The PoC will be displayed on June 25, 2024, to give users the time to update...

Search & Replace < 3.2.2 - Admin+ SQL injection

Description The plugin does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks such as within a multi-site network. 1. Go to the Tools parameter 2. Select Search & Replace 3. Click "Do Search & Replace" 4. Change the parameters...

KKProgressbar2 Free <= 1.1.4.2 - Admin+ SQL Injection

Description The plugin does not sanitize and escape a parameter before using it in a SQL statement, allowing admin users to perform SQL injection attacks 1. Send a POST request to /wp-admin/admin.php?page=kkpb-add-project with the BODY action=edit-project&id=sleep5 2. Observe the delay in respons...

SRC-2022-0008 : VMware Workspace ONE Access ApplicationSetupController dbTestConnection JDBC Injection Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on affected installations of VMware Workspace ONE Access. Authentication is required to exploit this vulnerability. The specific flaw exists within ApplicationSetupController class. The issue results from...

PT-2019-6019 · Proclima · Proclima

Name of the Vulnerable Software and Affected Versions: ProClima versions prior to 8.0.0 Description: The issue is related to incorrect code generation management, allowing a remote attacker to execute arbitrary code on the targeted system. This can be exploited by an unauthenticated, remote...

Exploit for CVE-2018-11776

CVE-2018-11776 On August 23, 2018, Apache Struts2 released a...

Linux Kernel 2.4/2.6 - bluez Local Root Privilege Escalation Exploit (Update 3)

No description provided by source. / Due to many responses i've improved the exploit to cover more systems! ONGBAK v0.9 october 24th 05 o universal shellcode added o try to use all possible memory regions o bugfixes qobaiashi@voyager:/w00nf/kernelsploit ./ongbak -100222 -|-bluez local root exploi...

PT-2014-1891 · Libpng +2 · Libpng +2

Name of the Vulnerable Software and Affected Versions: libpng versions prior to 1.6.10 libpng versions prior to 1.5.14rc03 Description: The issue concerns multiple integer overflows in libpng that can be exploited remotely, leading to a denial of service crash due to a heap-based buffer overflow...

Booking Calendar Lite CSRF (change password)

Exploit for php platform in category web applications Exploit Title: Booking Calendar Lite CSRF change password Author: Jonturk75 Vendor or Software Link: http://www.scripts.com/viewscript/booking-calendar-lite/27644/ Category:: webapps Demo : http://dev.kreci.net/calendar/admin.php Greetz:...

WordPress Theme Tuner Plugin 'tt-abspath' Parameter Remote File Inclusion Vulnerability

WordPress is prone to a remote file inclusion vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wordpress:wordpress"...

Linux Kernel 2.4.1 2.4.37 2.6.1 2.6.32-rc5 - pipe.c Local Privilege Escalation (3)

Linux Kernel 2.4.1 2.4.37 2.6.1 2.6.32-rc5 - pipe.c Local Privilege Escalation 3 This is a PoC based off the PoC release by Earl Chew Updated by Brian Peters Linux Kernel 'pipe.c' Local Privilege Escalation Vulnerability PoC by Matthew Bergin Bugtraq ID: 36901 E-DB Note: Exploit Update v2...

Joomla Component com_dtregister SQL injection Vulnerability

Exploit for php platform in category web applications =============================================================== Joomla Component DT Register Remote SQL injection Vulnerability ===============================================================...

[SECURITY] New version of splitvt released

---------------------------------------------------------------------------- Debian Security Advisory [email protected] http://www.debian.org/security/ Daniel Jacobowitz June 5, 2000 - ---------------------------------------------------------------------------- Package: splitvt Vulnerability:...