26 matches found
EUVD-2026-11409
ZITADEL is an open source identity management platform. From 2.68.0 to before 3.4.8 and 4.12.2, Zitadel provides a System for Cross-domain Identity Management SCIM API to provision users from external providers into Zitadel. Request to the API with URL-encoded path values were correctly routed bu...
CVE-2022-38400
Mailform Pro CGI 4.3.1 and earlier allow a remote unauthenticated attacker to obtain the user input data by having a use of the product to access a specially crafted URL...
CVE-2024-0595
The Awesome Support – WordPress HelpDesk & Support Plugin plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the wpasgetusers function hooked via AJAX in all versions up to, and including, 6.1.7. This makes it possible for authenticated attackers, with...
CVE-2022-24865
HumHub is an Open Source Enterprise Social Network. In affected versions users who are forced to change their password by an administrator may retrieve other users' data. This issue has been resolved by commit eb83de20. It is recommended that the HumHub is upgraded to 1.11.0, 1.10.4 or 1.9.4. The...
CVE-2025-3575 Insecure Direct Object Reference en Deporsite de T-INNOVA
Insecure Direct Object Reference vulnerability in Deporsite from T-INNOVA allows an attacker to retrieve sensitive information from others users via "idUsuario" parameter in "/helper/Familia/establecerUsuarioSeleccion" endpoint...
CVE-2025-3575
CVE-2025-3575 affects Deporsite from T-INNOVA. The vulnerability is an Insecure Direct Object Reference allowing an attacker to retrieve sensitive information from other users through the idUsuario parameter at /helper/Familia/establecerUsuarioSeleccion. The CVE entry notes a high impact with CVS...
Moodle Information Disclosure Vulnerability (MSA-25-0011)
Moodle is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:moodle:moodle";...
CVE-2024-0595 Awesome Support – WordPress HelpDesk & Support Plugin <= 6.1.7 - Missing Authorization via wpas_get_users()
The Awesome Support – WordPress HelpDesk & Support Plugin plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the wpasgetusers function hooked via AJAX in all versions up to, and including, 6.1.7. This makes it possible for authenticated attackers, with...
CVE-2022-24865 Improper access control in humhub
HumHub is an Open Source Enterprise Social Network. In affected versions users who are forced to change their password by an administrator may retrieve other users' data. This issue has been resolved by commit eb83de20. It is recommended that the HumHub is upgraded to 1.11.0, 1.10.4 or 1.9.4. The...
Apache Archiva < 2.2.5 LDAP Injection Vulnerability
Apache Archiva is prone to an LDAP injection vulnerability. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apache:archiva"; if...
My Little Forum <= 1.7 (user.php id) Remote SQL Injection Exploit
No description provided by source. !/usr/bin/perl -w My Little Forum = 1.7 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code user.php: if isset$GET'id' $id = $GET'id'; switch $action case get userdata: if empty$id...
Group Office Calendar - calendarjson.php SQL Injection
Group Office Calendar - calendarjson.php SQL Injection /-------------------------------------\ | Group-Office Calendar SQL Injection | -------------------------------------/ Summary ======= Versions of Group-Office a web app for online collaboration prior to 4.0.90 are subject to a SQL injection...
Joomla XBall SQL Injection
Exploit Title : Joomla Component comxball SQL Injection Vulnerability Author : CoBRa21 E-Mail : uykucu at windowslive.com My Team : Lojistik ALLSTAR cyber-warrior.org Google Dork : inurl:index.php?option=comxball Status : High-Risk SQL Vulnerability...
MyBB MyTabs Plugin - SQL Injection
MyBB MyTabs Plugin - SQL Injection ===================================================================== MyBB 0day \ MyTabs plugin SQL injection vulnerability ===================================================================== Exploit title : MyBB 0day \ MyTabs plugin SQL injection vulnerabilit...
Easynet Forum Host (topic.php) SQL Injection Vulnerbility
Exploit for unknown platform in category web applications ========================================================= Easynet Forum Host topic.php SQL Injection Vulnerbility ========================================================= Exploit Title: Easynet Forum Host topic.php SQL Injection...
BusinessSpace <= 1.2 (id) Remote SQL Injection Vulnerability
No description provided by source. \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV102$2009 ----------------------------------------------------------------------------------------- ECHOADV102$2009 BusinessSpace = 1.2 id Remote SQL Injection Vulnerability...
Pro Chat Rooms 3.0.3 - SQL Injection
Author: !DoktOR! Date found: 28.09.08 Product: Pro Chat Rooms Version: 3.0.3 Price: $55 URL: www.prochatrooms.com Vulnerability Class: SQL Injection Condition: magicquotesgpc = Off Exploit 1:...
eazyPortal 1.0 - cookie SQL Injection
eazyPortal 1.0 - cookie SQL Injection !/usr/bin/perl Vendor url: http://www.eazyportal.com/ by Iron - http://www.randombase.com exploit goes through $COOKIE use LWP::UserAgent; use MIME::Base64; print " EazyPortal ; if$target ! /^http:/// $target = "http://".$target; if$target ! //$/ $target .=...
Fuzzylime Forum 1.0 (low.php topic) Remote SQL Injection Exploit
No description provided by source. !/usr/bin/perl -w Fuzzylime Forum 1.0 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code low.php: $gettopicid = mysqlquery"SELECT FROM $tableprefixthreads WHERE...
My Little Forum 1.7 - user.php?id SQL Injection
My Little Forum 1.7 - user.php?id SQL Injection !/usr/bin/perl -w My Little Forum = 1.7 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code user.php: if isset$GET'id' $id = $GET'id'; switch $action case "get...