CVE-2025-49653

CVE-2025-49653 concerns Lablup’s BackendAI. The vulnerability arises from exposure of sensitive data in active sessions, enabling an attacker to retrieve credentials for users on the management platform. The affected software is BackendAI (backend.ai) and specifically involves credentials exposur...

CVE-2021-40655

An informtion disclosure issue exists in D-LINK-DIR-605 B2 Firmware Version : 2.01MT. An attacker can obtain a user name and password by forging a post request to the / getcfg.php page...

eWON Flexy - Authentication Bypass

!/usr/bin/env python ''' Exploit Title: eWON v13.0 Authentication Bypass Date: 2018-10-12 Exploit Author: Photubias – tijldotDeneutatHowestdotbe for www.ic4.be Vendor Advisory: 1 https://websupport.ewon.biz/support/news/support/ewon-security-enhancement-131s0-0 2...

Easynet Forum Host - 'forum.php' SQL Injection

--==+================================================================================+==-- --==+ Easynet Forum Host SQL Injection Vulnerbilitys +==-- --==+================================================================================+==-- Discovered By: t0pP8uZz & xprog Discovered On: 5 April...

BBPortalS 2.0 - Blind SQL Injection

BBPortalS BBsProcesS Remote Blind SQL Injection Exploit Bug Found And Write By Max007 Exploit Tested On V.1.5.10 And V.1.6.2 And 1.5.11 info:For The Version BBPortalS 2.0 name of field is user and password but you have to find name of table !/usr/bin/perl use LWP::UserAgent; $err=1; $www = new...