5 matches found
GHSA-8FXG-MR34-JQR8 NocoDB SQL Injection vulnerability
Summary --- An authenticated attacker with create access could conduct a SQL Injection attack on MySQL DB using unescaped tablename. Details --- SQL Injection vulnerability occurs in VitessClient.ts. javascript async columnListargs: any = const func = this.columnList.name; const result = new...
Ispirithalaya Hospital Management System 0.1.2 Database Configuration Disclosure
Exploit Title : Ispirithalaya Hospital Management System 0.1.2 Database Config Disclosure Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 14/02/2019 Vendor Homepage : freeehospital.com Software Download Link :...
GIU Gallery File 1.0.2 SQL Injection
GIU Gallery File 1.0.2 Upload SQL Injection Vulnerability ========================================================== Discovered by NA , NAattutanota.com ======================================== Description ============ Output and stored data will be path to image, title of link, link to image,...
VFront 0.99.2 - Cross-Site Request Forgery Persistent Cross-Site Scripting
VFront 0.99.2 - Cross-Site Request Forgery Persistent Cross-Site Scripting Exploit Title: CSRF & Persistent XSS Google Dork: intitle: CSRF & Persistent XSS Date: 2015-06-02 Exploit Author: John Page hyp3rlinx Website: hyp3rlinx.altervista.org/ Vendor Homepage: www.vfront.org Software Link:...
WordPress-2.0.2.txt
!/usr/bin/php -q -d shortopentag=on ? echo "--------------------------------------------------------------------\r\n"; echo "| WordPress = 2.0.2 'cache' shell injection exploit |\r\n"; echo "| by rgod [email protected] |\r\n"; echo "| site: http://retrogod.altervista.org |\r\n"; echo "| dork:...