PT-2025-9670

Name of the Vulnerable Software and Affected Versions Firefox for iOS versions prior to 136 Description A issue exists where scanning certain QR codes containing website URLs can lead to the URL being opened without a confirmation alert. Recommendations For Firefox for iOS versions prior to 136,...

CVE-2023-38030

Saho’s attendance devices ADM100 and ADM-100FP have a vulnerability of missing authentication for critical functions. An unauthenticated remote attacker can execute system commands in partial website URLs to read sensitive device information without permissions...

MAC 1200R - Directory Traversal

Exploit Title: MAC 1200R - Directory Traversal Google Dork: "MAC1200R" && port="8888" Date: 2023/03/09 Exploit Author: Chunlei Shang, Jiangsu Public Information Co., Ltd. Vendor Homepage: https://www.mercurycom.com.cn/ Software Link: https://www.mercurycom.com.cn/product-1-1.html Version: all...

LastPass Admits to Severe Data Breach, Encrypted Password Vaults Stolen

The August 2022 security breach of LastPass may have been more severe than previously disclosed by the company. The popular password management service on Thursday revealed that malicious actors obtained a trove of personal information belonging to its customers that include their encrypted...

浪潮某政府系统通用SQL注入24处打包

简要描述： ... 详细说明： 某政府系统通用SQL注入24处打包。 案例：（23处GET注入+1处POST注入） 23处GET注入： http://www.whaac.gov.cn:8080/BusinessRegistration/BRProjectList.aspx?page=1&procode= http://www.cfdonline.org.cn/OutPortalCFD//BusinessRegistration/BRProjectList.aspx?page=1&procode=...

Caravel CMS 3.0 Beta 1 Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/15939/info Caravel CMS is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to hav...

CGI Helper 1.0 xss

No description provided by source. CGI Helper 1.00 Download: http://www.sourcecodeonline.com/details/cgihelper.html Discovered by: Paulo Santos Contact: [email protected] Blog: http://infocampo.wordpress.com The script CGI Helper 1.00 is vulnerable to XSS. Example:...

PixelPost 1.7.1 SQL Injection / XSS

=========================================== PixelPost Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 0 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-1 + Discovered By : Inj3ct0r + Site : Inj3ct0r.com + support e-mail : submitatinj3ct0r.com...

RadAFFILIATE Links Cross Site Scripting

-----------------------------I AM MUSLIM !!------------------------------ ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || ||...