Lucene search
K
ExploitdbMost viewed

47904 matches found

Exploit DB
Exploit DB
added 2021/06/07 12:0 a.m.366 views

Grav CMS 1.7.10 - Server-Side Template Injection (SSTI) (Authenticated)

Title: Grav CMS 1.7.10 - Server-Side Template Injection SSTI Authenticated Author: enox Date: 06-06-2021 Vendor: https://getgrav.org/ Software Link: https://getgrav.org/download/core/grav-admin/1.7.10 Vulnerable Versions: Grav CMS 1.7.10 CVE: CVE-2021-29440 Credits:...

8.4CVSS7.2AI score0.30623EPSS
Exploits5
Exploit DB
Exploit DB
added 2021/05/20 12:0 a.m.366 views

Backup Manager Module 3.0.0.99 - 'IScheduleSvc.exe' Unquoted Service Path

Exploit Title: Acer Backup Manager Module 3.0.0.99 - 'IScheduleSvc.exe' Unquoted Service Path Discovery by: Emmanuel Lujan Discovery Date: 2021-05-19 Vendor Homepage: https://www.acer.com/ac/en/US/content/home Tested Version: 3.0.0.99 Vulnerability Type: Unquoted Service Path Tested on OS: Window...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/04/14 12:0 a.m.366 views

CITSmart ITSM 9.1.2.27 - 'query' Time-based Blind SQL Injection (Authenticated)

Exploit Title: CITSmart ITSM 9.1.2.27 - 'query' Time-based Blind SQL Injection Authenticated Google Dork: "citsmart.local" Date: 11/03/2021 Exploit Author: skysbsb Vendor Homepage: https://docs.citsmart.com/pt-br/citsmart-platform-9/get-started/about-citsmart/release-notes.html Version: = 9.1.2.2...

8.8CVSS8.9AI score0.05767EPSS
Exploits3
Exploit DB
Exploit DB
added 2020/12/01 12:0 a.m.366 views

Tendenci 12.3.1 - CSV/ Formula Injection

Exploit Title: Tendenci 12.3.1 - CSV/ Formula Injection Date: 2020-10-29 Exploit Author: Mufaddal Masalawala Vendor Homepage: https://www.tendenci.com/ Software Link: https://github.com/tendenci/tendenci Version: 12.3.1 Payload: =10+20+cmd|' /C calc'!A0 Tested on: Kali Linux 2020.3 Proof Of...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/12/05 12:0 a.m.366 views

Amiti Antivirus 25.0.640 - Unquoted Service Path

Exploit Title: Amiti Antivirus 25.0.640 - Unquoted Service Path Exploit Author : ZwX Exploit Date: 2019-12-04 Vendor Homepage : http://www.netgate.sk/ Link Software : https://www.netgate.sk/download/download.php?id=11 Tested on OS: Windows 7 Analyze PoC : ============== C:\Users\ZwXsc qc...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2025/04/11 12:0 a.m.365 views

WebFileSys 2.31.0 - Directory Path Traversal

Exploit Title: WebFileSys 2.31.0 - Directory Path Traversal in relPath Parameter Date: Nov 25, 2024 Exploit Author: Korn Chaisuwan, Charanin Thongudom, Pongtorn Angsuchotmetee Vendor Homepage: http://www.webfilesys.de/webfilesys-home/index.html Software Link:...

5.3CVSS7AI score0.01805EPSS
Exploits3
Exploit DB
Exploit DB
added 2025/04/06 12:0 a.m.365 views

DataEase 2.4.0 - Database Configuration Information Exposure

Exploit Title: DataEase 2.4.0 - Database Configuration Information Exposure Shodan Dork: http.html:"dataease" FOFA Dork: body="dataease" && title=="DataEase" Exploit Author: ByteHunter Email: [email protected] vulnerable Versions: 2.4.0-2.5.0 Tested on: 2.4.0 CVE : CVE-2024-30269 import...

5.3CVSS5.4AI score0.16EPSS
Exploits2
Exploit DB
Exploit DB
added 2025/03/18 12:0 a.m.365 views

Chamilo LMS 1.11.24 - Remote Code Execution (RCE)

Exploit Title: Chamilo LMS 1.11.24 - Remote Code Execution RCE Exploit Author: 0x00-null - Mohamed Kamel BOUZEKRIA Exploit Date: September 3, 2024 Vendor Homepage: https://chamilo.org/ Software Link: https://chamilo.org/ Version: 1.11.24 Beersel Tested Versions: 1.11.24 Beersel - August 31, 2023...

8.1CVSS7AI score0.76084EPSS
Exploits27
Exploit DB
Exploit DB
added 2024/04/21 12:0 a.m.365 views

Laravel Framework 11 - Credential Leakage

Exploit Title: Laravel Framework 11 - Credential Leakage Google Dork: N/A Date: 2024-04-19 Exploit Author: Huseein Amer Vendor Homepage: https://laravel.com/ Software Link: N/A Version: 8. - 11. REQUIRED Tested on: N/A CVE : CVE-2024-29291 Proof of concept: Go to any Laravel-based website and...

7AI score0.01341EPSS
Exploits3
Exploit DB
Exploit DB
added 2023/08/04 12:0 a.m.365 views

Wordpress Plugin EventON Calendar 4.4 - Unauthenticated Event Access

Exploit Title: Wordpress Plugin EventON Calendar 4.4 - Unauthenticated Event Access Date: 03.08.2023 Exploit Author: Miguel Santareno Vendor Homepage: https://www.myeventon.com/ Version: 4.4 Tested on: Google and Firefox latest version CVE : CVE-2023-2796 1. Description The plugin lacks...

5.3CVSS5.3AI score0.42674EPSS
Exploits5
Exploit DB
Exploit DB
added 2023/05/05 12:0 a.m.365 views

Jedox 2022.4.2 - Disclosure of Database Credentials via Connection Checks

Exploit Title: Jedox 2022.4.2 - Disclosure of Database Credentials via Connection Checks Date: 28/04/2023 Exploit Author: Team Syslifters / Christoph MAHRL, Aron MOLNAR, Patrick PIRKER and Michael WEDL Vendor Homepage: https://jedox.com Version: Jedox 2022.4 22.4.2 and older CVE : CVE-2022-47880...

6.8CVSS5.4AI score0.02902EPSS
Exploits4
Exploit DB
Exploit DB
added 2022/02/23 12:0 a.m.365 views

Student Record System 1.0 - 'cid' SQLi (Authenticated)

Exploit Title: Student Record System 1.0 - 'cid' SQLi Authenticated Exploit Author: Mohd. Anees Contact: https://www.linkedin.com/in/aneessecure/ Software Homepage: https://phpgurukul.com/student-record-system-php/ Version : 1.0 Tested on: windows 10 xammp | Kali linux Category: WebApp Google Dor...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/12/09 12:0 a.m.365 views

Employees Daily Task Management System 1.0 - 'multiple' Cross Site Scripting (XSS)

Exploit Title: Employees Daily Task Management System 1.0 - 'multiple' Cross Site Scripting XSS Exploit Author: able403 Date: 08/12/2021 Vendor Homepage: https://www.sourcecodester.com/php/15030/employee-daily-task-management-system-php-and-sqlite-source-code.html Software Link:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/11/15 12:0 a.m.365 views

WordPress Plugin Contact Form to Email 1.3.24 - Stored Cross Site Scripting (XSS) (Authenticated)

Exploit Title: WordPress Plugin Contact Form to Email 1.3.24 - Stored Cross Site Scripting XSS Authenticated Date: 11/11/2021 Exploit Author: Mohammed Aadhil Ashfaq Vendor Homepage: https://form2email.dwbooster.com/ Version: 1.3.24 Tested on: wordpress POC 1. Click Contact form to Email...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/10/01 12:0 a.m.365 views

WhatsUpGold 21.0.3 - Stored Cross-Site Scripting (XSS)

Exploit Title: WhatsUpGold 21.0.3 - Stored Cross-Site Scripting XSS Date: 09.17.2021 Exploit Author: Andreas Finstad 4ndr34z Vendor Homepage: https://www.whatsupgold.com Version: v.21.0.3, Build 188 Tested on: Windows 2019 Server CVE : CVE-2021-41318 Reference:...

6.1CVSS6.4AI score0.05881EPSS
Exploits4
Exploit DB
Exploit DB
added 2021/07/08 12:0 a.m.365 views

Exam Hall Management System 1.0 - Unrestricted File Upload + RCE (Unauthenticated)

Exploit Title: Exam Hall Management System 1.0 - Unrestricted File Upload + RCE Unauthenticated Exploit Author: Davide 'yth1n' Bianchin Contacts: davide dot bianchin at dedagroup dot it Original PoC: https://exploit-db.com/exploits/50103 Date: 06.07.2021 Vendor Homepage:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/02/11 12:0 a.m.365 views

b2evolution 6.11.6 - 'tab3' Reflected XSS

Exploit Title: b2evolution 6.11.6 - 'tab3' Reflected XSS CVE: CVE-2020-22839 Date: 10/02/2021 Exploit Author: Nakul Ratti, Soham Bakore Vendor Homepage: https://b2evolution.net/ Software Link: https://b2evolution.net/downloads/6-11-6-stable?download=12405 Version: 6.11.6 Tested on: latest version...

6.1CVSS6.3AI score0.05206EPSS
Exploits3
Exploit DB
Exploit DB
added 2020/12/17 12:0 a.m.365 views

Online Tours & Travels Management System 1.0 - "id" SQL Injection

Exploit Title: Online Tours & Travels Management System 1.0 - "id" SQL Injection Exploit Author: Saeed Bala Ahmed r0b0tG4nG Date: 2020-12-11 Google Dork: N/A Vendor Homepage: https://www.sourcecodester.com/php/14510/online-tours-travels-management-system-project-using-php-and-mysql.html Software...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/07/26 12:0 a.m.365 views

Ahsay Backup 7.x - 8.1.1.50 - XML External Entity Injection

Unauthenticated XML External Entity XXE in Ahsay Backup v7.x - v8.1.0.50. Date: 26-6-2019 Exploit Author: Wietse Boonstra Vendor Homepage: https://ahsay.com Software Link: http://ahsay-dn.ahsay.com/v8/81050/cbs-win.exe Version: 7.x %remote;%intern; %trick; On http://attacker/oob add the following...

7.8CVSS7AI score0.13301EPSS
Exploits5
Exploit DB
Exploit DB
added 2023/09/04 12:0 a.m.364 views

Kingo ROOT 1.5.8 - Unquoted Service Path

Exploit Title: Kingo ROOT 1.5.8 - Unquoted Service Path Date: 8/22/2023 Exploit Author: Anish Feroz ZEROXINN Vendor Homepage: https://www.kingoapp.com/ Software Link: https://www.kingoapp.com/android-root/download.htm Version: 1.5.8.3353 Tested on: Windows 10 Pro -------------Discovering Unquoted...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2023/08/04 12:0 a.m.364 views

Campcodes Online Matrimonial Website System v3.3 - Code Execution via malicious SVG file upload

Exploit Title: Online Matrimonial Website System v3.3 - Code Execution via malicious SVG file upload Date: 3-8-2023 Category: Web Application Exploit Author: Rajdip Dey Sarkar Version: 3.3 Tested on: Windows/Kali CVE: CVE-2023-39115 Description: ---------------- An arbitrary file upload...

9.8CVSS9.7AI score0.04623EPSS
Exploits5
Exploit DB
Exploit DB
added 2023/04/03 12:0 a.m.364 views

MyBB 1.8.32 - Remote Code Execution (RCE) (Authenticated)

Exploit Title: MyBB 1.8.32 - Chained LFI Remote Code Execution RCE Authenticated Date: 2023-01-19 Exploit Author: lUc1f3r11 https://github.com/FDlucifer Vendor Homepage: https://mybb.com/ Software Link: https://github.com/mybb/mybb/releases/tag/mybb1832 Version: MyBB 1.8.32 Tested on: Linux CVE :...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2022/05/17 12:0 a.m.364 views

SDT-CW3B1 1.1.0 - OS Command Injection

Exploit Title: SDT-CW3B1 1.1.0 - OS command injection Date: 2022-05-12 Exploit Author: Ahmed Alroky Author Company : AIactive Version: 1.0.0 Vendor home page : http://telesquare.co.kr/ Authentication Required: No CVE : CVE-2021-46422 Tested on: Windows HTTP Request GET...

10CVSS9.6AI score0.94629EPSS
Exploits20
Exploit DB
Exploit DB
added 2022/03/09 12:0 a.m.364 views

Webmin 1.984 - Remote Code Execution (Authenticated)

Exploit Title: Webmin 1.984 - Remote Code Execution Authenticated Date: 2022-03-06 Exploit Author: faisalfs10x https://github.com/faisalfs10x Vendor Homepage: https://www.webmin.com/ Software Link: https://github.com/webmin/webmin/archive/refs/tags/1.984.zip Version: = 1.984 Tested on: Ubuntu 18...

9CVSS8.7AI score0.96977EPSS
Exploits13
Exploit DB
Exploit DB
added 2021/05/03 12:0 a.m.364 views

GetSimple CMS Custom JS 0.1 - Cross-Site Request Forgery

Exploit Title: GetSimple CMS Custom JS 0.1 - CSRF to XSS to RCE Exploit Author: Bobby Cooke boku & Abhishek Joshi Date: 30/04/201 Vendor Homepage: http://get-simple.info Software Link: http://get-simple.info/download/ & http://get-simple.info/extend/plugin/custom-js/1267/ Vendor: 4Enzo Version:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/03/18 12:0 a.m.364 views

rConfig 3.9.6 - Arbitrary File Upload to Remote Code Execution (Authenticated) (1)

Exploit Title: rConfig 3.9.6 - Arbitrary File Upload to Remote Code Execution Authenticated 1 Date: 2021-03-17 Exploit Author: Murat ŞEKER Vendor Homepage: https://www.rconfig.com Software Link: https://www.rconfig.com/downloads/rconfig-3.9.6.zip Version: rConfig v3.9.6 Install scripts :...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2020/12/01 12:0 a.m.364 views

Online Shopping Alphaware 1.0 - Error Based SQL injection

Title: Online Shopping Alphaware 1.0 - Error-Based SQL injection Exploit Author: Moaaz Taha 0xStorm Date: 2020-08-20 Vendor Homepage: https://www.sourcecodester.com/php/14368/online-shopping-alphaware-phpmysql.html Software Link:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2020/09/25 12:0 a.m.364 views

Anchor CMS 0.12.7 - Persistent Cross-Site Scripting (Authenticated)

Exploit Title: Anchor CMS 0.12.7 - Persistent Cross-Site Scripting Authenticated Date: 2020-09-24 Exploit Author: Sinem Şahin Vendor Homepage: https://anchorcms.com/ Version: 0.12.7 Tested on: Windows & XAMPP == Tutorial http://HOST/admin/ 2- Login to admin panel. 3- Press "Posts" button. 4- Writ...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2020/01/30 12:0 a.m.365 views

OpenSMTPD 6.6.1 - Remote Code Execution

Exploit Title: OpenSMTPD 6.6.1 - Remote Code Execution Date: 2020-01-29 Exploit Author: 1F98D Original Author: Qualys Security Advisory Vendor Homepage: https://www.opensmtpd.org/ Software Link: https://github.com/OpenSMTPD/OpenSMTPD/releases/tag/6.6.1p1 Version: OpenSMTPD '.formatsys.argv0...

10CVSS9.7AI score0.98946EPSS
Exploits27
Exploit DB
Exploit DB
added 2020/01/28 12:0 a.m.364 views

Centreon 19.10.5 - Database Credentials Disclosure

Exploit Title: Centreon 19.10.5 - Database Credentials Disclosure Date: 2020-01-27 Exploit Author: Fabien AUNAY, Omri Baso Vendor Homepage: https://www.centreon.com/ Software Link: https://github.com/centreon/centreon Version: 19.10.5 Tested on: CentOS 7 CVE : - Centreon 19.10.5 Database...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/05/02 12:0 a.m.364 views

xdebug < 2.5.5 - OS Command Execution (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'xdebug Unauthenticated OS Command Execution', 'Description' = %q Module exploits a vulnerability in the eval command present in Xdebug versions...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2025/06/15 12:0 a.m.363 views

Parrot and DJI variants Drone OSes - Kernel Panic Exploit

!/usr/bin/env python3 Exploit Title: Parrot and DJI variants Drone OSes - Kernel Panic Exploit Author: Mohammed Idrees Banyamer Instagram: @banyamersecurity GitHub: https://github.com/mbanyamer Date: 2025-06-10 Tested on: Parrot QRD, Parrot Alpha-M, DJI QRD, DJI Alpha-M CVE: CVE-2025-37928 Type:...

7.8CVSS7.2AI score0.00618EPSS
Exploits1
Exploit DB
Exploit DB
added 2024/03/25 12:0 a.m.363 views

LimeSurvey Community 5.3.32 - Stored XSS

Exploit Title: Stored Cross-Site Scripting XSS in LimeSurvey Community Edition Version 5.3.32+220817 Exploit Author: Subhankar Singh Date: 2024-02-03 Vendor: LimeSurvey Software Link: https://community.limesurvey.org/releases/ Version: LimeSurvey Community Edition Version 5.3.32+220817 Tested on:...

6.1CVSS6.6AI score0.00677EPSS
Exploits4
Exploit DB
Exploit DB
added 2022/04/19 12:0 a.m.363 views

Easy Appointments 1.4.2 - Information Disclosure

Exploit Title: Easy Appointments 1.4.2 - Information Disclosure Exploit author: noraj Alexandre ZANNI for ACCEIS https://www.acceis.fr Author website: https://pwn.by/noraj/ Exploit source: https://github.com/Acceis/exploit-CVE-2022-0482 Date: 2022-04-11 Vendor Homepage:...

9.1CVSS9.3AI score0.38133EPSS
Exploits7
Exploit DB
Exploit DB
added 2022/04/11 12:0 a.m.363 views

Razer Sila - Local File Inclusion (LFI)

Exploit Title: Razer Sila - Local File Inclusion LFI Google Dork: N/A Date: 4/9/2022 Exploit Author: Kevin Randall Vendor Homepage: https://www2.razer.com/ap-en/desktops-and-networking/razer-sila Software Link: https://www2.razer.com/ap-en/desktops-and-networking/razer-sila Version:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/07/02 12:0 a.m.363 views

AKCP sensorProbe SPX476 - 'Multiple' Cross-Site Scripting (XSS)

Exploit Title: AKCP sensorProbe SPX476 - 'Multiple' Cross-Site Scripting XSS Date: 07-01-2021 Exploit Author: Tyler Butler Vendor Homepage: https://www.akcp.com/ Software Link: https://www.akcp.com/support-center/customer-login/sensorprobe-series-firmware-download/ Advisory:...

5.4CVSS5.5AI score0.0323EPSS
Exploits5
Exploit DB
Exploit DB
added 2020/08/10 12:0 a.m.363 views

Warehouse Inventory System 1.0 - Cross-Site Request Forgery (Change Admin Password)

Exploit Title: Warehouse Inventory System 1.0 - Cross-Site Request Forgery Change Admin Password Exploit Author: Bobby Cooke boku & Adeeb Shah @hyd3sec Date: 2020-08-09 Vendor Homepage: https://oswapp.com Software Link: https://github.com/siamon123/warehouse-inventory-system/archive/master.zip...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2020/01/08 12:0 a.m.363 views

Cisco DCNM JBoss 10.4 - Credential Leakage

Exploit Title: Cisco DCNM JBoss 10.4 - Credential Leakage Date: 2020-01-06 Exploit Author: Harrison Neal Vendor Homepage: https://www.cisco.com/ Software Link: https://software.cisco.com/download/home/281722751/type/282088134/release/10.42 Version: 10.42 CVE: CVE-2019-15999 You'll need a few .jar...

6.3CVSS6.3AI score0.03647EPSS
Exploits4
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.363 views

eMerge E3 Access Controller 4.6.07 - Remote Code Execution

Exploit Title: eMerge E3 Access Controller 4.6.07 - Remote Code Execution Google Dork: NA Date: 2018-11-11 Exploit Author: LiquidWorm Vendor Homepage: http://linear-solutions.com/nscfamily/e3-series/ Software Link: http://linear-solutions.com/nscfamily/e3-series/ Version: 4.6.07 Tested on: NA CVE...

10CVSS7.8AI score0.23123EPSS
Exploits16
Exploit DB
Exploit DB
added 2019/08/14 12:0 a.m.363 views

WordPress Plugin Download Manager 2.5 - Cross-Site Request Forgery

Exploit Title: CSRF vulnerabilities in WordPress Download Manager Plugin 2.5 Google Dork: inurl:"/wp-content/plugins/download-manager Date: 24 may, 2019 Exploit Author: Princy Edward Exploit Author Blog : https://prinyedward.blogspot.com/ Vendor Homepage: https://www.wpdownloadmanager.com/ Softwa...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/05/10 12:0 a.m.363 views

Cortex Unshortenlink Analyzer < 1.1 - Server-Side Request Forgery

Exploit Title: Cortex Unshortenlink Analyzer 1.1 - Server-Side Request Forgery Date: 2/26/2019 Exploit Author: Alexandre Basquin Vendor Homepage: https://blog.thehive-project.org Software Link: https://github.com/TheHive-Project/Cortex Version: Cortex = 2.1.3 Tested on: 2.1.3 CVE : CVE-2019-7652...

7.7CVSS7.6AI score0.05155EPSS
Exploits5
Exploit DB
Exploit DB
added 2011/03/02 12:0 a.m.363 views

vsftpd 2.3.2 - Denial of Service

include include include include include include include / This is code of http://cxib.net/stuff/vspoc232.c PoC CVE-2011-0762 vsftpd Remote Denial of Service Affected: 2.3.2 Fix: 2.3.4 Author: Maksymilian Arciemowicz Use: ./vspoc232 127.0.0.1 21 user pass 1 or read...

4CVSS7.7AI score0.73946EPSS
Exploits9
Exploit DB
Exploit DB
added 2025/08/11 12:0 a.m.362 views

Ghost CMS 5.42.1 - Path Traversal

!/usr/bin/env python3 -- coding: utf-8 -- """ Exploit Title: Ghost CMS 5.42.1 - Path Traversal Date: 2023-06-15 Exploit Author:ibrahimsql https://github.com/ibrahimsql Vendor Homepage: https://ghost.org Software Link: https://github.com/TryGhost/Ghost Version: =2.28.1 """ import requests import s...

7.5CVSS7.4AI score0.39078EPSS
Exploits3
Exploit DB
Exploit DB
added 2025/03/22 12:0 a.m.362 views

Microsoft Windows - NTLM Hash Leak Malicious Windows Theme

Exploit Title: CVE-2024-21320 - NTLM Hash Leak via Malicious Windows Theme Date: 02/03/2025 Exploit Author: Abinesh Kamal K U CVE : CVE-2024-21320 Ref: https://www.cve.org/CVERecord?id=CVE-2024-21320 Step 1: Install Responder Responder is a tool to capture NTLM hashes over SMB. git clone...

6.5CVSS7.4AI score0.22773EPSS
Exploits1
Exploit DB
Exploit DB
added 2024/05/04 12:0 a.m.362 views

Elber Signum DVB-S/S2 IRD For Radio Networks 1.999 - Device Config Disclosure

Elber Signum DVB-S/S2 IRD For Radio Networks 1.999 Device Config Vendor: Elber S.r.l. Product web page: https://www.elber.it Affected version: 1.999 Revision 1243 1.317 Revision 602 1.220 Revision 1250 1.220 Revision 12481249 1.220 Revision 597 1.217 Revision 1242 1.214 Revision 1023 1.193 Revisi...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2024/03/22 12:0 a.m.362 views

minaliC 2.0.0 - Denied of Service

!/usr/bin/perl use Socket; Exploit Title: minaliC 2.0.0 - Denial of Service DoS Discovery by: Fernando Mengali Discovery Date: 03 january 2024 Vendor Homepage: http://minalic.sourceforge.net/ Notification vendor: No reported Tested Version: minaliC 2.0.0 Tested on: Window XP Professional - Servic...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2024/03/18 12:0 a.m.362 views

Quick.CMS 6.7 - SQL Injection Login Bypass

Exploit Title: Quick.CMS 6.7 SQL Injection Login Bypass Google Dork: N/A Date: 02-03-2024 Exploit Author: ./H4X.Forensics - Diyar Vendor Homepage: https://www.opensolution.org Software Link: https://opensolution.org/download/home.html?sFile=Quick.Cmsv6.7-en.zip Version: 6.7 Tested on: Windows CVE...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2022/06/14 12:0 a.m.363 views

Old Age Home Management System 1.0 - SQLi Authentication Bypass

Exploit Title: Old Age Home Management System 1.0 - SQLi Authentication Bypass Date: 12/06/2022 Exploit Author: twseptian Vendor Homepage: https://phpgurukul.com/old-age-home-management-system-using-php-and-mysql/ Software Link: https://phpgurukul.com/projects/Old-Age-Home-MS-using-PHP.zip Versio...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2022/05/12 12:0 a.m.362 views

College Management System 1.0 - 'course_code' SQL Injection (Authenticated)

Exploit Title: College Management System - 'coursecode' SQL Injection Authenticated Date: 2022-24-03 Exploit Author: Eren Gozaydin Vendor Homepage: https://code-projects.org/college-management-system-in-php-with-source-code/ Software Link:...

8.8CVSS8.8AI score0.28826EPSS
Exploits5
Exploit DB
Exploit DB
added 2022/01/12 12:0 a.m.362 views

Microsoft Windows .Reg File - Dialog Spoof / Mitigation Bypass

Exploit Title: Microsoft Windows .Reg File - Dialog Spoof / Mitigation Bypass Exploit Author: John Page aka hyp3rlinx Website: hyp3rlinx.altervista.org Source: http://hyp3rlinx.altervista.org/advisories/MICROSOFTWINDOWSREGFILEDIALOGSPOOFMITIGATIONBYPASS.txt twitter.com/hyp3rlinx ISR: ApparitionSe...

7.4AI score
Exploits0
Total number of security vulnerabilities5000