1599 matches found
Exploit for Use After Free in Apple Ipados
CVE-2025-24252 iOS "Airborne" Vulnerabilities - Log Artifact E...
Exploit for Improper Input Validation in Microsoft
Explotación de CVE-2024-21413 Outlook Estado del proyecto:...
Blood Bank & Donor Management System 2.4 - CSRF Improper Input Validation
Exploit Title: Blood Bank & Donor Management System 2.4 - CSRF Improper Input Validation Google Dork: N/A Date: 2024-12-26 Exploit Author: Kwangyun Keum Vendor Homepage: https://phpgurukul.com/ Software Link: https://phpgurukul.com/blood-bank-donor-management-system/ Version: 2.4 Tested on: Windo...
📄 Zabbix 7.0.0 SQL Injection
Zabbix version 7.0.0 suffers from a remote SQL injection vulnerability. Exploit Title: Zabbix 7.0.0 - SQL Injection Date: 06/12/2024 Exploit Author: Leandro Dias Barata @m4nb4 Vendor Homepage: https://www.zabbix.com/ Software Link: https://support.zabbix.com/browse/ZBX-25623 Version: 6.0.0 - 6.0....
Zabbix 7.0.0 - SQL Injection
Exploit Title: Zabbix 7.0.0 - SQL Injection Date: 06/12/2024 Exploit Author: Leandro Dias Barata @m4nb4 Vendor Homepage: https://www.zabbix.com/ Software Link: https://support.zabbix.com/browse/ZBX-25623 Version: 6.0.0 - 6.0.31 / 6.0.32rc1 6.4.0 - 6.4.16 / 6.4.17rc1 7.0.0 Tested on: Kali Linux...
📄 DocsGPT 0.12.0 Remote Code Execution
DocsGPT version 0.12.0 suffers from a remote code execution vulnerability. Exploit Title: DocsGPT 0.12.0 - Remote Code Execution Date: 09/04/2025 Exploit Author: Shreyas Malhotra OSMSEC Vendor Homepage: https://github.com/arc53/docsgpt Software Link:...
📄 Blood Bank and Donor Management System 2.4 Cross Site Scripting
Blood Bank and Donor Management System version 2.4 suffers from a cross site scripting vulnerability. Exploit Title: Blood Bank & Donor Management System v2.4 - Cross Site Scripting XSS Date: 2025-04-07 Exploit Author: Mehmet Can Kadıoğlu a.k.a mao7un Vendor:...
Exploit for CVE-2024-46507
The script was tested and built on Ubuntu Server 20.04 LTS, w...
Teachers Record Management System 2.1 SQL Injection Vulnerability
Exploit Title: Teachers Record Management System v2.1 | Authenticated Time-Based SQLi Exploit Author: Mehmet Can Kadıoğlu a.k.a mao7un Vendor: https://phpgurukul.com/teachers-record-management-system-using-php-and-mysql/ Demo Site: https://phpgurukul.com/?sdmprocessdownload=1&downloadid=10739...
Exploit for CVE-2022-30190
ICT287CVE-2022-30190Exploit Project on CVE-2022-30190 exploi...
Netwave IP Camera Secret Disclosure Exploit
!/bin/bash Exploit Title: Netwave Google Dork: "Netwave security camera" "Live feed" Exploit Author: Jeremie Amsellem Version: No version specified by the vendor Tested on: Kali Linux Written by lp1 Run this exploit on a vulnerable Netwave Camera in order To dump the camera's network configuratio...
SmartAgent 1.1.0 Server-Side Request Forgery Vulnerability
Exploit Title: SmartAgent v1.1.0 - Server-Side Request Forgery SSRF Exploit Author: Alter Prime Vendor Homepage: https://smarts-srlcom.com/, https://smartagent.com Version: Build v1.1.0 Tested on: Kali Linux An unauthenticated user can trigger the web server to perform web requests to the localho...
SmartAgent 1.1.0 SQL Injection Vulnerability
Exploit Title: SmartAgent v1.1.0 - Unauthenticated SQL Injection SQLi Exploit Author: Alter Prime Vendor Homepage: https://smarts-srlcom.com/, https://smartagent.com Version: Build v1.1.0 Tested on: Kali Linux An unauthenticated user can inject SQL queries through a POST request to the vulnerable...
SmartAgent 1.1.0 Server-Side Request Forgery
Exploit Title: SmartAgent v1.1.0 - Server-Side Request Forgery SSRF Date: 01-10-2024 Exploit Author: Alter Prime Vendor Homepage: https://smarts-srlcom.com/, https://smartagent.com Version: Build v1.1.0 Tested on: Kali Linux An unauthenticated user can trigger the web server to perform web reques...
SmartAgent 1.1.0 SQL Injection
Exploit Title: SmartAgent v1.1.0 - Unauthenticated SQL Injection SQLi Date: 01-10-2024 Exploit Author: Alter Prime Vendor Homepage: https://smarts-srlcom.com/, https://smartagent.com Version: Build v1.1.0 Tested on: Kali Linux An unauthenticated user can inject SQL queries through a POST request ...
SmartAgent 1.1.0 Remote Code Execution
Exploit Title: SmartAgent v1.1.0 - Unauthenticated Remote Code Execution Date: 01-10-2024 Exploit Author: Alter Prime Vendor Homepage: https://smarts-srlcom.com/, https://smartagent.com Version: Build v1.1.0 Tested on: Kali Linux An unauthenticated user can access a php script called...
Exploit for Insufficient Verification of Data Authenticity in Rarlab Winrar
CVE-2023-38831 WinRAR Exploit Generator Created by: tech...
Helpdeskz 2.0.2 Cross Site Scripting
Exploit Title: Stored XSS Vulnerability via File Name Google Dork: N/A Date: 08 Aug 2024 Exploit Author: Md. Sadikul Islam Vendor Homepage: https://www.helpdeskz.com/ Software Link: https://github.com/helpdesk-z/helpdeskz-dev/archive/2.0.2.zip Version: v2.0.2 Tested on: Kali Linux / Firefox...
Exploit for Cross-site Scripting in Getshieldsecurity Shield_Security
Shield Security Plugin Vulnerability Exploit CVE-2024-7313...
Exploit for Race Condition in Openbsd Openssh
CVE-2024-6387 - PoC...