Lucene search
K

10 matches found

Packet Storm
Packet Storm
added 2026/02/06 12:0 a.m.170 views

📄 Xhibiter NFT Marketplace 1.10.2 SQL Injection

Xhibiter NFT Marketplace versions 1.10.2 and below suffer from a time-based remote blind SQL injection vulnerability in the id parameter of the /collections endpoint...

9.3CVSS5.7AI score0.00332EPSS
Exploits2
GithubExploit
GithubExploit
added 2026/01/21 3:50 p.m.170 views

Exploit for CVE-2024-58290

CVE-2024-58290-Xhibiter-SQLi Proof of Concept PoC for SQL In...

9.3CVSS6.5AI score0.00332EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2025/12/12 10:17 p.m.6 views

CVE-2024-58290

Xhibiter NFT Marketplace 1.10.2 contains a SQL injection vulnerability in the collections endpoint that allows attackers to manipulate database queries through the 'id' parameter. Attackers can exploit boolean-based, time-based, and UNION-based SQL injection techniques to potentially extract or...

9.3CVSS7.7AI score0.00332EPSS
Exploits2References1
EUVD
EUVD
added 2025/12/12 12:30 a.m.5 views

EUVD-2024-55341

Xhibiter NFT Marketplace 1.10.2 contains a SQL injection vulnerability in the collections endpoint that allows attackers to manipulate database queries through the 'id' parameter. Attackers can exploit boolean-based, time-based, and UNION-based SQL injection techniques to potentially extract or...

9.3CVSS7.2AI score0.00332EPSS
Exploits2References4
NVD
NVD
added 2025/12/11 10:15 p.m.4 views

CVE-2024-58290

Xhibiter NFT Marketplace 1.10.2 contains a SQL injection vulnerability in the collections endpoint that allows attackers to manipulate database queries through the 'id' parameter. Attackers can exploit boolean-based, time-based, and UNION-based SQL injection techniques to potentially extract or...

9.3CVSS0.00332EPSS
Exploits2References3
Vulnrichment
Vulnrichment
added 2025/12/11 9:34 p.m.5 views

CVE-2024-58290 Xhibiter NFT Marketplace 1.10.2 SQL Injection via Collections Endpoint

Xhibiter NFT Marketplace 1.10.2 contains a SQL injection vulnerability in the collections endpoint that allows attackers to manipulate database queries through the 'id' parameter. Attackers can exploit boolean-based, time-based, and UNION-based SQL injection techniques to potentially extract or...

9.3CVSS7.3AI score0.00332EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2025/12/11 12:0 a.m.7 views

PT-2025-50744

Name of the Vulnerable Software and Affected Versions Xhibiter NFT Marketplace version 1.10.2 Description The Xhibiter NFT Marketplace software has a SQL injection issue in the collections endpoint. An attacker can manipulate database queries by using the id parameter. Boolean-based, time-based,...

9.3CVSS7.5AI score0.00332EPSS
Exploits2References8
Packet Storm
Packet Storm
added 2024/07/22 12:0 a.m.360 views

Xhibiter NFT Marketplace 1.10.2 Cross Site Scripting

==================================================================================================================================== | Title : Xhibiter NFT Marketplace 1.10.2 XSS Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | |...

7.4AI score
Exploits0
0day.today
0day.today
added 2024/07/02 12:0 a.m.353 views

Xhibiter NFT Marketplace 1.10.2 - SQL Injection Vulnerability

Exploit Title: xhibiter nft marketplace SQLI Google Dork: intitle:"View - Browse, create, buy, sell, and auction NFTs" Exploit Author: Sohel yousef - https://www.linkedin.com/in/sohel-yousef-50a905189/ Vendor Homepage: https://elements.envato.com/xhibiter-nft-marketplace-html-template-AQN45FA...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2024/07/01 12:0 a.m.235 views

Xhibiter NFT Marketplace 1.10.2 - SQL Injection

Exploit Title: xhibiter nft marketplace SQLI Google Dork: intitle:"View - Browse, create, buy, sell, and auction NFTs" Date: 29/06/204 Exploit Author: Sohel yousef - https://www.linkedin.com/in/sohel-yousef-50a905189/ Vendor Homepage:...

7.4AI score
Exploits0
Rows per page
Query Builder