📄 WordPress WWLC 2.0.3.1 File Upload Scanner

This Python tool is a multi‑threaded scanner designed to detect an arbitrary file upload vulnerability in the WWLC WordPress plugin version 2.0.3.1. The script loads a list of target websites from a file and attempts to upload a crafted PHP payload through the vulnerable admin-ajax.php endpoint...

UBUNTU-CVE-2025-38451

In the Linux kernel, the following vulnerability has been resolved: md/md-bitmap: fix GPF in bitmapgetstats The commit message of commit 6ec1f0239485 "md/md-bitmap: fix stats collection for external bitmaps" states: Remove the external bitmap check as the statistics should be available regardless...

PT-2022-28210 · Ckb · Ckb

Name of the Vulnerable Software and Affected Versions: ckb versions prior to 0.101.1 Description: The issue arises from the HeaderCheckercheck valid function skipping main chain checking, which can lead to network forking if a transaction uses a forked block header not present in the local node's...

Upgraded Q -> M from 169 [1661180702678]

Judge has assessed an item in Issue 169 as Medium risk. The relevant finding follows: Issue 2 Storage check in execute from Vault.sol is obselete Currently execute contains the line: if owner != owner revert OwnerChangedowner, owner; to make sure that the owner storage variable is not modified...

Anti-injection program to get a shell and fix-vulnerability warning-the black bar safety net

When you use single quotes“’”to test a website there may be injection vulnerability in the address, assuming the URL is“www.xxxx/news.asp?id=6”pop“your operation has been recorded!” Such information, and we can't go to bypass anti-injection system, you can try to submit http://www. xxxx/sqlin. as...