1697 matches found
Unauthorized Access Vulnerability in TOTOLINK N300RH
The TOTOLINK N300RH is a wireless router. An unauthorized access vulnerability exists in the TOTOLINK N300RH, which can be exploited by attackers to obtain sensitive information...
PT-2024-2991
The software that is vulnerable is the GNU C Library glibc versions 2.39 and older, specifically the iconv function when converting strings to the ISO-2022-CN-EXT character set. This vulnerability can be exploited through PHP-based web applications. The vulnerability is a buffer overflow in the...
Tdarr 2.00.15 - Command Injection
Exploit Title: Tdarr 2.00.15 - Command Injection Date: 10/03/2022 Exploit Author: Sam Smith Vendor Homepage: https://tdarr.io Software Link: https://f000.backblazeb2.com/file/tdarrs/versions/2.00.15/linuxarm64/TdarrServer.zip Version: 2.00.15 likely also older versions Tested on: 2.00.15 Exploit:...
D-Link DI-7200G Command Injection Vulnerability (CNVD-2022-15181)
D-Link Di-7200G is a gigabit enterprise router from China Youxun D-Link. D-Link DI-7200GV2.E1 v21.04.09E1 is vulnerable to command injection, which can be exploited by attackers to execute arbitrary commands via the cmd parameter...
Online Railway Reservation System 1.0 - Remote Code Execution (RCE) (Unauthenticated)
Exploit Title: Online Railway Reservation System 1.0 - Remote Code Execution RCE Unauthenticated Date: 07/01/2022 Exploit Author: Zachary Asher Vendor Homepage: https://www.sourcecodester.com/php/15121/online-railway-reservation-system-phpoop-project-free-source-code.html Software Link:...
Design/Logic Flaw
The HwNearbyMain module has a Data Processing Errors vulnerability.Successful exploitation of this vulnerability may cause a process to restart...
Arbitrary File Deletion Vulnerability in BossCMS of Wenzhou Huyin Information Technology Co.
BossCMS is a content management system based on self-developed PHP framework MySQL architecture developed by Wenzhou Huyin Information Technology Co. BossCMS has an arbitrary file deletion vulnerability, which can be exploited by attackers to delete arbitrary files...
CVE-2021-44790
creationtimestamp| type| source ---|---|--- 2021-12-20 14:39:58+00:00| seen| https://t.me/cibsecurity/34272 2021-12-23 17:49:44+00:00| seen| https://t.me/poxek/322 2021-12-28 16:00:47+00:00| seen| https://t.me/truesecator/2485 2022-01-25 20:42:22+00:00| published-proof-of-concept|...
elecom lan routers cross-site scripting vulnerability (CNVD-2021-95484)
elecom lan routers is a router from Elecom Japan. A cross-site scripting vulnerability exists in elecom lan routers, which can be exploited by an attacker to inject arbitrary script via an unspecified vector...
CVE-2021-37034
There is an Unstandardized field names in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality...
CVE-2021-42237
Sitecore XP 7.5 Initial Release to Sitecore XP 8.2 Update-7 is vulnerable to an insecure deserialization attack where it is possible to achieve remote command execution on the machine. No authentication or special configuration is required to exploit this vulnerability. Recent assessments:...
Zoho ManageEngine Applications Manager elevation of privilege vulnerability (CNVD-2021-88236)
Zoho ManageEngine Applications Manager is an application performance monitoring and management solution for various business monitoring and management needs of enterprises. An elevation of privilege vulnerability exists in /showReports.do in Zoho ManageEngine Applications Manager 14550 and earlie...
Exploit for SQL Injection in Djangoproject Django
CVE-2020-7471 这个仓库提供 CVE-2020-7471 Potential SQL injection via StringAggdelimiter 漏洞的环境和 POC 受影响的 django 版本 - 1.11 到 1.11.28(不含) - 2.2 到 2.2.10(不含) - 3.0 到 3.0.3(不含) 下载使用前需要如下操作: 1. 安装 django 漏洞版本,我测试用的是 python pip install django==3.0.2 -i https://pypi.tuna.tsinghua.edu.cn/simple 2. 参考...
PT-2021-23573 · Unknown · Shinher Studyonline System
Name of the Vulnerable Software and Affected Versions: ShinHer StudyOnline System affected versions not specified Description: The issue concerns the "Teacher Edit" function, which lacks authority control. After logging in with a user's privilege, remote attackers can access and edit other users'...
Apache HTTP Server 2.4.50 - Path Traversal & Remote Code Execution (RCE)
Exploit: Apache HTTP Server 2.4.50 - Path Traversal & Remote Code Execution RCE Date: 10/05/2021 Exploit Author: Lucas Souza https://lsass.io Vendor Homepage: https://apache.org/ Version: 2.4.50 Tested on: 2.4.50 CVE : CVE-2021-42013 Credits: Ash Daulton and the cPanel Security Team !/bin/bash if...
CVE-2021-40499
Client-side printing services SAP Cloud Print Manager and SAPSprint for SAP NetWeaver Application Server for ABAP - versions 7.70, 7.70 PI, 7.70 BYD, allow an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application...
Header Footer Code Manager < 1.1.14 - Admin+ SQL Injections
The plugin does not validate and escape the "orderby" and "order" request parameters before using them in a SQL statement when viewing the Snippets admin dashboard, leading to SQL injections...
Simple Online College Entrance Exam System 1.0 - Unauthenticated Admin Creation Vulnerability
Exploit Title: Simple Online College Entrance Exam System 1.0 - Unauthenticated Admin Creation Exploit Author: Amine ismail @aminei Vendor Homepage: https://www.sourcecodester.com/php/14976/simple-online-college-entrance-exam-system-php-and-sqlite-free-source-code.html Software Link:...
WordPress Plugin Pie Register 3.7.1.4 - Admin Privilege Escalation (Unauthenticated)
Exploit Title: WordPress Plugin Pie Register 3.7.1.4 - Admin Privilege Escalation Unauthenticated Google Dork: inurl:/plugins/pie-register/ Date: 08.10.2021 Exploit Author: Lotfi13-DZ Vendor Homepage: https://wordpress.org/plugins/pie-register/ Software Link:...
Prestashop ph_simpleblog SQL Injection
SQL Injection vulnerabilty in Prestashop phsimpleblog sbcategory parameter Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...