Lucene search
+L

11 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.3 views

EUVD-2021-28251

Malicious code in bioql PyPI...

5.3CVSS5.6AI score0.00852EPSS
Exploits0References2
cnvd
cnvd
added 2021/10/09 12:0 a.m.13 views

Survey Solutions Information Breach Vulnerability

Survey Solutions is a survey management and data collection system. survey Solutions is vulnerable to an information disclosure vulnerability that stems from a configuration or other error in the operation of the network system or product. An attacker could exploit the vulnerability to obtain...

5.3CVSS2.1AI score0.00852EPSS
Exploits0References1
zdt
zdt
added 2021/07/30 12:0 a.m.131 views

ObjectPlanet Opinio 7.13 Expression Language Injection Vulnerability

Exploit Authors: Timothy Tan , Daniel Tan, Yu EnHui, Khor Yong Heng CVE: CVE-2020-26565 Exploit Title: ObjectPlanet Opinio version 7.13 allows expression language injection Vendor Homepage: https://www.objectplanet.com/opinio/ Software Link: https://www.objectplanet.com/opinio/ Exploit Authors:...

7.5CVSS0.1AI score0.01724EPSS
Exploits3
packetstorm
packetstorm
added 2021/07/30 12:0 a.m.233 views

ObjectPlanet Opinio 7.13 Shell Upload

Exploit Authors: Timothy Tan , Daniel Tan, Yu EnHui, Khor Yong Heng CVE: CVE-2020-26806 Exploit Title: ObjectPlanet Opinio version 7.13 allows unrestricted file upload Vendor Homepage: https://www.objectplanet.com/opinio/ Software Link: https://www.objectplanet.com/opinio/ Exploit Authors: Timoth...

7.2AI score0.05967EPSS
Exploits6
packetstorm
packetstorm
added 2021/07/30 12:0 a.m.247 views

ObjectPlanet Opinio 7.13 Expression Language Injection

Exploit Authors: Timothy Tan , Daniel Tan, Yu EnHui, Khor Yong Heng CVE: CVE-2020-26565 Exploit Title: ObjectPlanet Opinio version 7.13 allows expression language injection Vendor Homepage: https://www.objectplanet.com/opinio/ Software Link: https://www.objectplanet.com/opinio/ Exploit Authors:...

7.7AI score0.01724EPSS
Exploits3
packetstorm
packetstorm
added 2021/07/30 12:0 a.m.254 views

ObjectPlanet Opinio 7.13 / 7.14 XML Injection

Exploit Authors: Timothy Tan , Daniel Tan, Yu EnHui, Khor Yong Heng CVE: CVE-2020-26564 Exploit Title: ObjectPlanet Opinio version 7.13/7.14 allows XXE injection Vendor Homepage: https://www.objectplanet.com/opinio/ Software Link: https://www.objectplanet.com/opinio/ Exploit Authors: Timothy Tan ...

6.9AI score0.01121EPSS
Exploits5
packetstorm
packetstorm
added 2021/07/29 12:0 a.m.248 views

ObjectPlanet Opinio 7.12 Cross Site Scripting

Exploit Title: ObjectPlanet Opinio 7.12 allows Cross-Site Scripting Vendor Homepage: https://www.objectplanet.com/opinio/ Software Link: https://www.objectplanet.com/opinio/ Exploit Authors: Ang Kar Min https://www.linkedin.com/in/karmin-ang CVE: CVE-2020-26563 Timeline - September 2019: Initial...

6.4AI score0.00984EPSS
Exploits2
threatpost
threatpost
added 2021/01/12 3:0 p.m.25 views

Ethical Hackers Breach U.N., Access 100,000 Private Records

Security researchers successfully hacked the United Nations, accessing user credentials and personally identifiable information PII–including more than 100,000 private employee and project records—before informing the U.N. about the problem through the organization’s vulnerability disclosure...

0.3AI score
Exploits0References11
exploitpack
exploitpack
added 2019/07/19 12:0 a.m.48 views

REDCap 9.1.2 - Cross-Site Scripting

REDCap 9.1.2 - Cross-Site Scripting Exploit Title: REDCap - Details: Since it is an onkeypress event, it is triggered whenever the user touch any key and since the XSS payload is stored in the project name it appears in several pages. - Privileges: It requires admin privileges to store it. -...

3.5CVSS5AI score0.02469EPSS
Exploits4
packetstorm
packetstorm
added 2019/07/19 12:0 a.m.222 views

REDCap Cross Site Scripting

Exploit Title: REDCap - Details: Since it is an onkeypress event, it is triggered whenever the user touch any key and since the XSS payload is stored in the project name it appears in several pages. - Privileges: It requires admin privileges to store it. - Location example:...

4.3CVSS5.2AI score0.02469EPSS
Exploits4
zdt
zdt
added 2019/07/19 12:0 a.m.46 views

REDCap < 9.1.2 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: REDCap - Details: Since it is an onkeypress event, it is triggered whenever the user touch any key and since the XSS payload is stored in the project name it appears in several pages. - Privileges: It requires admin privileges t...

3.5CVSS0.1AI score0.02469EPSS
Exploits4
Rows per page
Query Builder