144 matches found
SECURING-AGAINST-XSS
No d...
Xss-finder
...
XSS
No d...
CVE-2026-30556
A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the index.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML via...
XSS-CSRF
No d...
jun.github.io
j...
Exploit for CVE-2025-69985
FUXA ≤ 1.2.8 Auth Bypass + RCE CVE-2025-69985...
Advanced-Web-Exploit
...
Web-Exploit-Engine
No d...
ASPXsploit
No d...
CVE-2026-1702
A vulnerability was detected in SourceCodester Pet Grooming Management Software 1.0. Impacted is an unknown function of the file /admin/operation/user.php of the component User Management. Performing a manipulation of the argument groupid results in improper authorization. The attack can be...
📄 flatCore 1.5 Shell Upload
flatCore version 1.5 proof of concept remote shell upload exploit. ============================================================================================================================================= | Title : flatCore 1.5 Advanced File Upload Exploit | | Author : indoushka | | Tested on...
CVE_2020_35489_EnhancedExploit.php
...
EUVD-2017-0557
Malware in sbrugna...
Pet-grooming-management-print1.php-v.1.0-sql-injection
Pet-grooming-managem...
Exploit for Cross-site Scripting in Livehelperchat Live_Helper_Chat
Exploit Title: LiveHelperChat...
CVE-2025-6456
A vulnerability, which was classified as critical, has been found in code-projects Online Hotel Reservation System 1.0. Affected by this issue is some unknown functionality of the file /reservation/order.php. The manipulation of the argument Start leads to sql injection. The attack may be launche...
CVE-2023-21974
Vulnerability in the Application Express Team Calendar Plugin product of Oracle Application Express component: User Account. Supported versions that are affected are Application Express Team Calendar Plugin: 18.2-22.1. Easily exploitable vulnerability allows low privileged attacker with network...
Juniper Junos OS Authentication for Critical Function (CVE-2024-21619)
The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA76390 advisory. - A Missing Authentication for Critical Function vulnerability combined with a Generation of Error Message Containing Sensitive Information vulnerability in J-Web of Juniper...
Adobe Experience Manager cross-site scripting vulnerability (CNVD-2024-17894)
Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...