WordPress WP-Ajax-Form-Pro 5.0.2 Shell Upload

Exploit Title : WordPress WP-Ajax-Form-Pro Plugins 5.0.2 Remote Shell Upload Vulnerability Author Discovered By : KingSkrupellos from Cyberizm Digital Security Army Date : 22/12/2018 Vendor Homepage : wordpress.org ajaxformpro.com Software Download Link : ajaxformpro.com Software Script Owner and...

WordPress Firma Rehberi 4.9.9 Shell Upload / SQL Injection

Exploit Title : WordPress Firma Rehberi Themes 4.9.9 SQL Injection and Remote Shell Upload Vulnerability Author Discovered By : KingSkrupellos from Cyberizm Digital Security Army Date : 22/12/2018 Vendor Homepage : wordpress.org temafabrika.com/demo/rehber3/ Software Download Link :...

WordPress FCKEditor-For-Wordpress-Plugin 3.3.1 Shell Upload

Exploit Title : WordPress FCKEditor-For-Wordpress-Plugin 3.3.1 Remote Shell Upload Vulnerability Author Discovered By : KingSkrupellos from Cyberizm Digital Security Army Date : 20/12/2018 Vendor Homepage : wordpress.org/support/plugin/fckeditor-for-wordpress-plugin Software Download Link :...

WordPress St_Newsletter Swift Mailer 2.7 Shell Upload

Exploit Title : WordPress StNewsletter Swift Mailer Plugins 2.7 Remote Shell Upload Vulnerability Author Discovered By : KingSkrupellos from Cyberizm Digital Security Army Date : 20/12/2018 Vendor Homepage : wordpress.org forums.devnetwork.net swiftmailer.symfony.com swiftmailer.org Software...

WordPress Sem-Wysiwyg 1.0 Shell Upload

Exploit Title : WordPress Sem-Wysiwyg Plugins 1.0 Remote Shell Upload Vulnerability Author Discovered By : KingSkrupellos from Cyberizm Digital Security Army Date : 20/12/2018 Vendor Homepage : wordpress.org Software Download Link : N/A Tested On : Windows and Linux Category : WebApps Version...

WordPress ChenPress 3.1.1 Shell Upload

Exploit Title : WordPress ChenPress Plugins 3.1.1 Remote Shell Upload Vulnerability Author Discovered By : KingSkrupellos from Cyberizm Digital Security Army Date : 20/12/2018 Vendor Homepage : wordpress.org groups-beta.google.com/group/ChenPress Software Download Link :...

WordPress Monsters-Editor-10-For-WP-Super-Edit 2.3.1 Shell Upload

Exploit Title : WordPress Monsters-Editor-10-For-WP-Super-Edit Plugins 2.3.1 Remote Shell Upload Vulnerability Author Discovered By : KingSkrupellos from Cyberizm Digital Security Army Date : 20/12/2018 Vendor Homepage : thedevcouple.com wordpress.org/plugins/monsters-editor-10-for-wp-super-edit/...

WordPress Mirrorwp-Backups 4.8 Database Disclosure

Exploit Title : WordPress Mirrorwp-Backups 4.8 Database Backup Disclosure Author Discovered By : KingSkrupellos from Cyberizm Digital Security Army Date : 17/12/2018 Vendor Homepage : wordpress.org codecanyon.net/tags/wpmirror wpmirrorobj.com Software Download Link : N/A Tested On : Windows and...

ITAdvisorsNepal 9Qube Testimonials 1.0 Database Disclosure

Exploit Title : ITAdvisorsNepal 9Qube Testimonials Modules 1.0 Database Backup Disclosure Author Discovered By : KingSkrupellos from Cyberizm Digital Security Army Date : 17/12/2018 Vendor Homepage : itadvisorsnepal.com 9qube.com Software Download Link : N/A Tested On : Windows and Linux Category...

Simple CMS PHPJabbers Stivasoft 4.0 Database Disclosure

Exploit Title : Simple CMS PHPJabbers Stivasoft 4.0 Database Backup Disclosure Author Discovered By : KingSkrupellos from Cyberizm Digital Security Army Date : 17/12/2018 Vendor Homepage : phpjabbers.com stivasoft.com racingriverwebs.com Software Download Link : phpjabbers.com/simple-cms/ Demo...

Facebook And Google Reviews System For Businesses 1.1 - Remote Code Execution

Exploit for php platform in category web applications Exploit Title: Facebook And Google Reviews System For Businesses 1.1 - Remote Code Execution Exploit Author: Ihsan Sencan Vendor Homepage: https://codecanyon.net/item/facebook-and-google-reviews-system-for-businesses/22793559 Version: 1.1...

Facebook And Google Reviews System For Businesses 1.1 - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Facebook And Google Reviews System For Businesses 1.1 - SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: https://codecanyon.net/item/facebook-and-google-reviews-system-for-businesses/22793559 Version: 1.1 Category:...

Facebook And Google Reviews System For Businesses 1.1 - SQL Injection

Facebook And Google Reviews System For Businesses 1.1 - SQL Injection Exploit Title: Facebook And Google Reviews System For Businesses 1.1 - SQL Injection Dork: N/A Date: 2018-12-14 Exploit Author: Ihsan Sencan Vendor Homepage:...

Facebook And Google Reviews System For Businesses 1.1 - Remote Code Execution

Facebook And Google Reviews System For Businesses 1.1 - Remote Code Execution Exploit Title: Facebook And Google Reviews System For Businesses 1.1 - Remote Code Execution Dork: N/A Date: 2018-12-14 Exploit Author: Ihsan Sencan Vendor Homepage:...

Facebook And Google Reviews System For Businesses 1.1 Code Execution

Exploit Title: Facebook And Google Reviews System For Businesses 1.1 - Remote Code Execution Dork: N/A Date: 2018-12-14 Exploit Author: Ihsan Sencan Vendor Homepage: https://codecanyon.net/item/facebook-and-google-reviews-system-for-businesses/22793559 Version: 1.1 Category: Webapps Tested on:...

Facebook And Google Reviews System For Businesses 1.1 - SQL Injection

Exploit Title: Facebook And Google Reviews System For Businesses 1.1 - SQL Injection Dork: N/A Date: 2018-12-14 Exploit Author: Ihsan Sencan Vendor Homepage: https://codecanyon.net/item/facebook-and-google-reviews-system-for-businesses/22793559 Version: 1.1 Category: Webapps Tested on:...

Facebook And Google Reviews System For Businesses 1.1 - Remote Code Execution

Exploit Title: Facebook And Google Reviews System For Businesses 1.1 - Remote Code Execution Dork: N/A Date: 2018-12-14 Exploit Author: Ihsan Sencan Vendor Homepage: https://codecanyon.net/item/facebook-and-google-reviews-system-for-businesses/22793559 Version: 1.1 Category: Webapps Tested on:...

Alumni Tracer SMS Notification - SQL Injection / Cross-Site Request Forgery Vulnerabilities

Exploit for php platform in category web applications Exploit Title: Alumni Tracer SMS Notification - SQL Injection / Cross-Site Request Forgery Add/Update Admin Exploit Author: Ihsan Sencan Vendor Homepage:...

WordPress AutoSuggest 0.24 SQL Injection

Exploit Title: WP AutoSuggest 0.24 - SQL Injection Date: 01-12-2018 Software Link: https://wordpress.org/plugins/wp-autosuggest/ Exploit Author: Kaimi Website: https://kaimi.io Version: 0.24 Category: webapps SQL Injection File: autosuggest.php Vulnerable code: if isset$GET'wpaskeys' $wpaskeys =...

WordPress Plugin AutoSuggest 0.24 - wpas_keys SQL Injection

WordPress Plugin AutoSuggest 0.24 - wpaskeys SQL Injection Exploit Title: WP AutoSuggest 0.24 - SQL Injection Date: 01-12-2018 Software Link: https://wordpress.org/plugins/wp-autosuggest/ Exploit Author: Kaimi Website: https://kaimi.io Version: 0.24 Category: webapps SQL Injection File:...