Lucene search
K
ExploitdbMost viewed

47904 matches found

Exploit DB
Exploit DB
•added 2023/06/06 12:0 a.m.•289 views

Tree Page View Plugin 1.6.7 - Cross Site Scripting (XSS)

Exploit Title: Tree Page View Plugin 1.6.7 - Cross Site Scripting XSS Google Dork: inurl:/wp-content/plugins/cms-tree-page-view/ Date: 2023-04-24 Exploit Author: LEE SE HYOUNG hackintoanetwork Vendor Homepage: https://wordpress.org/plugins/cms-tree-page-view/ Software Link:...

7.1CVSS7.1AI score0.03995EPSS
Exploits3
Exploit DB
Exploit DB
•added 2023/06/04 12:0 a.m.•289 views

Total CMS 1.7.4 - Remote Code Execution (RCE)

Exploit Title: Total CMS 1.7.4 - Remote Code Execution RCE Date: 02/06/2023 Exploit Author: tmrswrr Version: 1.7.4 Vendor home page : https://www.totalcms.co/ 1 Go to this page and click edit page button https://www.totalcms.co/demo/soccer/ 2After go down and will you see downloads area 3Add in...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/04/25 12:0 a.m.•289 views

Mars Stealer 8.3 - Admin Account Takeover

Exploit Title: Mars Stealer 8.3 - Admin Account Takeover Product: Mars Stelaer Technology: PHP Version: 8.3 Google Dork: N/A Date: 20.04.2023 Tested on: Linux Author: Sköll - twitter.com/skoll import argparse import requests parser = argparse.ArgumentParserdescription='Mars Stealer Account Takeov...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/04/14 12:0 a.m.•289 views

Sielco Analog FM Transmitter 2.12 - Remote Privilege Escalation

!-- Exploit Title: Sielco Analog FM Transmitter 2.12 - Remote Privilege Escalation Exploit Author: LiquidWorm Vendor: Sielco S.r.l Product web page: https://www.sielco.org Affected version: 2.12 EXC5000GX 2.12 EXC120GX 2.11 EXC300GX 2.10 EXC1600GX 2.10 EXC2000GX 2.08 EXC1600GX 2.08 EXC1000GX 2.07...

7AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/04/10 12:0 a.m.•289 views

Microsoft Edge (Chromium-based) Webview2 1.0.1661.34 - Spoofing

Title: Microsoft-Edge-Chromium-based-Webview2-1.0.1661.34-Spoofing-Vulnerability Author: nu11secur1ty Date: 04.10.2023 Vendor: https://developer.microsoft.com/en-us/ Software: https://developer.microsoft.com/en-us/microsoft-edge/webview2/ Reference:...

8.2CVSS8.3AI score0.03525EPSS
Exploits2
Exploit DB
Exploit DB
•added 2023/03/30 12:0 a.m.•289 views

4images 1.9 - Remote Command Execution (RCE)

Exploit Title: 4images 1.9 - Remote Command Execution RCE Exploit Author: Andrey Stoykov Software Link: https://www.4homepages.de/download-4images Version: 1.9 Tested on: Ubuntu 20.04 To reproduce do the following: 1. Login as administrator user 2. Browse to "General" - " Edit Templates" - "Selec...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/03/28 12:0 a.m.•289 views

ZKTeco ZEM/ZMM 8.88 - Missing Authentication

Exploit Title: ZKTeco ZEM/ZMM 8.88 - Missing Authentication Exploit Author: RedTeam Pentesting GmbH CVE: CVE-2022-42953 Advisory: Missing Authentication in ZKTeco ZEM/ZMM Web Interface The ZKTeco time attendance device does not require authentication to use the web interface, exposing the databas...

7.5CVSS7.6AI score0.04834EPSS
Exploits5
Exploit DB
Exploit DB
•added 2022/06/14 12:0 a.m.•289 views

HP LaserJet Professional M1210 MFP Series Receive Fax Service - Unquoted Service Path

Exploit Title: HP LaserJet Professional M1210 MFP Series Receive Fax Service - Unquoted Service Path Date: 2022-06-06 Exploit Author: Ali Alipour Vendor Homepage: https://support.hp.com/us-en/document/c01998934 Software Link:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2022/03/09 12:0 a.m.•289 views

Wondershare Dr.Fone 12.0.18 - 'Wondershare InstallAssist' Unquoted Service Path

Exploit Title: Wondershare Dr.Fone 12.0.18 - 'Wondershare InstallAssist' Unquoted Service Path Discovery by: Mohamed Alzhrani Discovery Date: 2022-03-08 Vendor Homepage: https://www.wondershare.com/ Software Link : https://download.wondershare.com/drfonefull3360.exe Tested Version: 12.0.18...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2022/03/07 12:0 a.m.•289 views

Foxit PDF Reader 11.0 - Unquoted Service Path

Exploit Title: Foxit PDF Reader 11.0 - Unquoted Service Path Date: 05/03/2022 Exploit Author: Hejap Zairy Vendor Homepage: https://www.foxit.com/pdf-reader/ Software Link: https://www.foxit.com/downloads/Foxit-Reader/ Version: 11.0.1.49938 Tested: Windows 10 Pro x64 es C:\Users\Hejapsc qc...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2022/02/23 12:0 a.m.•289 views

Microweber CMS 1.2.10 - Local File Inclusion (Authenticated) (Metasploit)

Exploit Title: Microweber CMS v1.2.10 Local File Inclusion Authenticated Date: 22.02.2022 Exploit Author: Talha Karakumru Vendor Homepage: https://microweber.org/ Software Link: https://github.com/microweber/microweber/archive/refs/tags/v1.2.10.zip Version: Microweber CMS v1.2.10 Tested on:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2022/01/13 12:0 a.m.•289 views

SalonERP 3.0.1 - 'sql' SQL Injection (Authenticated)

Exploit Title: SalonERP 3.0.1 - 'sql' SQL Injection Authenticated Exploit Author: Betul Denizler Vendor Homepage: https://salonerp.sourceforge.io/ Software Link: https://sourceforge.net/projects/salonerp/files/latest/download Version: SalonERP v3.0.1 Tested on: Ubuntu Mate 20.04 Vulnerable...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2022/01/05 12:0 a.m.•289 views

Hospitals Patient Records Management System 1.0 - Account TakeOver

Exploit Title: Hospitals Patient Records Management System 1.0 - Account TakeOver Date: 30/12/2021 Exploit Author: twseptian Vendor Homepage: https://www.sourcecodester.com/php/15116/hospitals-patient-records-management-system-php-free-source-code.html Software Link:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2021/09/13 12:0 a.m.•289 views

Apartment Visitor Management System (AVMS) 1.0 - 'username' SQL Injection

Exploit Title: Apartment Visitor Management System AVMS 1.0 - 'username' SQL Injection Date: 2021-08-13 Exploit Author: mari0x00 Vendor Homepage: https://phpgurukul.com/apartment-visitors-management-system-using-php-and-mysql/ Software Link:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2021/02/18 12:0 a.m.•289 views

Apport 2.20 - Local Privilege Escalation

Exploit Title: Apport 2.20 - Local Privilege Escalation Date: 18/02/21 Exploit Author: Gr33nh4t Vendor Homepage: https://ubuntu.com/ Version: Apport: Ubuntu 20.10 - Before 2.20.11-0ubuntu50.5 Apport: Ubuntu 20.04 - Before 2.20.11-0ubuntu27.16 Apport: Ubuntu 18.04 - Before 2.20.9-0ubuntu7.23 Appor...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2021/01/15 12:0 a.m.•289 views

Online Hotel Reservation System 1.0 - 'description' Stored Cross-site Scripting

Exploit Title: Online Hotel Reservation System 1.0 - Stored Cross-site Scripting Exploit Author: Mesut Cetin Date: 2021-01-14 Vendor Homepage: https://www.sourcecodester.com/php/13492/online-hotel-reservation-system-phpmysqli.html Software Link:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2020/11/09 12:0 a.m.•289 views

Winstep 18.06.0096 - 'Xtreme Service' Unquoted Service Path

Exploit Title: Winstep 18.06.0096 - 'Xtreme Service' Unquoted Service Path Exploit Author : SamAlucard Exploit Date: 2020-11-08 Vendor : Winstep Version : WsxService 18.06.0096 Vendor Homepage : https://www.winstep.net/xtreme.asp Tested on OS: Windows 7 Pro Analyze PoC : ============== C:\sc qc...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2020/07/07 12:0 a.m.•289 views

Online Shopping Portal 3.1 - 'email' SQL Injection

Exploit Title: Online Shopping Portal 3.1 - 'email' SQL Injection Date: 2020-07-06 Exploit Author: gh1mau Team Members: Capt'N,muzzo,chaos689 | https://h0fclanmalaysia.wordpress.com/ Vendor Homepage: https://phpgurukul.com/shopping-portal-free-download/ Software Link:...

7AI score
Exploits0
Exploit DB
Exploit DB
•added 2019/11/29 12:0 a.m.•289 views

SpotAuditor 5.3.2 - 'Key' Denial of Service

Exploit Title: SpotAuditor 5.3.2 - 'Key' Denial of Service Exploit Author : ZwX Exploit Date: 2019-11-28 Vendor Homepage : http://www.nsauditor.com/ Link Software : http://spotauditor.nsauditor.com/downloads/spotauditorsetup.exe Tested on OS: Windows 7 Social: twitter.com/ZwX2a ''' Proof of Conce...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2019/08/26 12:0 a.m.•289 views

Microsoft Windows 10 - SET_REPARSE_POINT_EX Mount Point Security Feature Bypass

Windows: SETREPARSEPOINTEX Mount Point Security Feature Bypass Platform: Windows 10 1903, 1809 not tested earlier Class: Security Feature Bypass Summary: The NTFS driver supports a new FS control code to set a mount point which the existing sandbox mitigation doesn’t support allowing a sandboxed...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2016/10/11 12:0 a.m.•289 views

AVTECH IP Camera / NVR / DVR Devices - Multiple Vulnerabilities

''' Avtech devices multiple vulnerabilities -------------------------------------------------- Platforms / Firmware confirmed affected: - Every Avtech device IP camera, NVR, DVR and firmware version. 4 contains the list of confirmed firmware versions, which are affected. - Product page:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2007/03/23 12:0 a.m.•289 views

Ethernet Device Drivers Frame Padding - 'Etherleak' Infomation Leakage

!/usr/bin/perl -w etherleak, code that has been 5 years coming. On 04/27/2002, I disclosed on the Linux Kernel Mailing list, a vulnerability that would be come known as the 'etherleak' bug. In various situations an ethernet frame must be padded to reach a specific size or fall on a certain...

5CVSS5.1AI score0.73006EPSS
Exploits15
Exploit DB
Exploit DB
•added 2025/04/16 12:0 a.m.•288 views

ASUS ASMB8 iKVM 1.14.51 - Remote Code Execution (RCE)

Exploit Title: ASUS ASMB8 iKVM 1.14.51 - Remote Code Execution RCE Date: 2023-02-16 Exploit Author: [email protected] for NetworkSEC NWSSA-002-2023, SC Vendor Homepage: https://servers.asus.com/search?q=ASMB8 Version/Model: ASMB8 iKVM Firmware = 1.14.51 probably others Tested on: Linux...

9.8CVSS9.4AI score0.17399EPSS
Exploits6
Exploit DB
Exploit DB
•added 2024/04/08 12:0 a.m.•288 views

AnyDesk 7.0.15 - Unquoted Service Path

Exploit Title: AnyDesk 7.0.15 - Unquoted Service Path Date: 2024-04-01 Exploit Author: Milad Karimi Ex3ptionaL Contact: [email protected] Zone-H: www.zone-h.org/archive/notifier=Ex3ptionaL Vendor Homepage: http://anydesk.com Software Link: http://anydesk.com/download Version: Software Versio...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2024/04/02 12:0 a.m.•288 views

ASUS Control Center Express 01.06.15 - Unquoted Service Path

Exploit Title: ASUS Control Center Express 01.06.15 - Unquoted Service Path Privilege Escalation Date: 2024-04-02 Exploit Author: Alaa Kachouh Vendor Homepage: https://www.asus.com/campaign/ASUS-Control-Center-Express/global/ Version: Up to 01.06.15 Tested on: Windows CVE: CVE-2024-27673...

6.6AI score
Exploits3
Exploit DB
Exploit DB
•added 2024/03/12 12:0 a.m.•288 views

SnipeIT 6.2.1 - Stored Cross Site Scripting

Exploit Title: SnipeIT 6.2.1 - Stored Cross Site Scripting Date: 06-Oct-2023 Exploit Author: Shahzaib Ali Khan Vendor Homepage: https://snipeitapp.com Software Link: https://github.com/snipe/snipe-it/releases/tag/v6.2.1 Version: 6.2.1 Tested on: Windows 11 22H2 and Ubuntu 20.04 CVE: CVE-2023-5452...

5.5CVSS5.5AI score0.00527EPSS
Exploits4
Exploit DB
Exploit DB
•added 2024/01/29 12:0 a.m.•288 views

7 Sticky Notes v1.9 - OS Command Injection

Exploit Title: 7 Sticky Notes v1.9 - OS Command Injection Discovered by: Ahmet Ümit BAYRAM Discovered Date: 12.09.2023 Vendor Homepage: http://www.7stickynotes.com Software Link: http://www.7stickynotes.com/download/Setup7StickyNotesv19.exe Tested Version: 1.9 latest Tested on: Windows 2019 Serve...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2024/01/29 12:0 a.m.•288 views

Blood Bank & Donor Management System using v2.2 - Stored XSS

Exploit Title: Blood Bank & Donor Management System using v2.2 - Stored XSS Application: Blood Donor Management System Version: v2.2 Bugs: Stored XSS Technology: PHP Vendor Homepage: https://phpgurukul.com/ Software Link: https://phpgurukul.com/blood-bank-donor-management-system-free-download/...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/07/28 12:0 a.m.•288 views

RosarioSIS 10.8.4 - CSV Injection

Exploit Title: RosarioSIS 10.8.4 - CSV Injection Google Dork:NA Exploit Author: Ranjeet Jaiswal Vendor Homepage: https://www.rosariosis.org/ Software Link: https://gitlab.com/francoisjacquet/rosariosis/-/archive/v10.8.4/rosariosis-v10.8.4.zip Affected Version: 10.8.4 Category: WebApps Tested on:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/05/23 12:0 a.m.•288 views

SitemagicCMS 4.4.3 - Remote Code Execution (RCE)

Exploit Title: SitemagicCMS 4.4.3 Remote Code Execution RCE Application: SitemagicCMS Version: 4.4.3 Bugs: RCE Technology: PHP Vendor URL: https://sitemagic.org/Download.html Software Link: https://github.com/Jemt/SitemagicCMS Date of found: 14-05-2023 Author: Mirabbas AÄŸalarov Tested on: Linux 2...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/05/02 12:0 a.m.•288 views

Companymaps v8.0 - Stored Cross Site Scripting (XSS)

Exploit Title: Companymaps V8.0 - Stored Cross Site Scripting XSS Date: 27.04.2023 Exploit Author: Lucas Noki 0xPrototype Vendor Homepage: https://github.com/vogtmh Software Link: https://github.com/vogtmh/cmaps Version: 8.0 Tested on: Mac, Windows, Linux CVE : CVE-2023-29983 Steps to reproduce: ...

5.4CVSS5.5AI score0.05097EPSS
Exploits4
Exploit DB
Exploit DB
•added 2023/04/06 12:0 a.m.•288 views

Music Gallery Site v1.0 - Broken Access Control

Exploit Title: Music Gallery Site v1.0 - Broken Access Control Exploit Author: Muhammad Navaid Zafar Ansari Date: 21 February 2023 CVE Assigned: CVE-2023-0963 mitre.org nvd.nist.org Vendor Homepage: https://www.sourcecodester.com Software Link: Music Gallery Site Version: v 1.0 Tested on: Windows...

9.8CVSS7AI score0.0467EPSS
Exploits5
Exploit DB
Exploit DB
•added 2022/05/11 12:0 a.m.•288 views

Explore CMS 1.0 - SQL Injection

Exploit Title: Explore CMS 1.0 - SQL Injection Date: 19/03/2022 Exploit Author: Sajibe Kanti Vendor Name : EXPLORE IT Vendor Homepage: https://exploreit.com.bd CVE: CVE-2022-27412 POC SQL Injection SQL injection is a web security vulnerability that allows an attacker to interfere with the queries...

9.8CVSS9.7AI score0.03829EPSS
Exploits3
Exploit DB
Exploit DB
•added 2022/05/11 12:0 a.m.•288 views

Tenda HG6 v3.3.0 - Remote Command Injection

Exploit Title: Tenda HG6 v3.3.0 - Remote Command Injection Exploit Author: LiquidWorm Tenda HG6 v3.3.0 Remote Command Injection Vulnerability Vendor: Tenda Technology Co.,Ltd. Product web page: https://www.tendacn.com https://www.tendacn.com/product/HG6.html Affected version: Firmware version:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2022/01/18 12:0 a.m.•288 views

OpenBMCS 2.4 - Create Admin / Remote Privilege Escalation

Exploit Title: OpenBMCS 2.4 - Create Admin / Remote Privilege Escalation Exploit Author: LiquidWorm Date: 26/10/2021 OpenBMCS 2.4 Create Admin / Remote Privilege Escalation Vendor: OPEN BMCS Product web page: https://www.openbmcs.com Affected version: 2.4 Summary: Building Management & Controls...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2021/08/10 12:0 a.m.•288 views

Simple Library Management System 1.0 - 'rollno' SQL Injection

Exploit Title: Simple Library Management System 1.0 - 'rollno' SQL Injection Date: 2021-08-08 Exploit Author: Halit AKAYDIN hLtAkydn Vendor Homepage: https://www.nikhilbhalerao.com/ Software Link: https://www.sourcecodester.com/php/14126/simple-library-management-system.html Version: V1 Category:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2020/05/12 12:0 a.m.•288 views

CuteNews 2.1.2 - Authenticated Arbitrary File Upload

Exploit Title: CuteNews 2.1.2 - Authenticated Arbitrary File Upload Date: 2020-05-12 Author: Vigov5 - SunCSR Team Vendor Homepage: https://cutephp.com Software Link: https://cutephp.com/click.php?cutenewslatest Version: v2.1.2 Tested on: Ubuntu 18.04 / Kali Linux Description:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2020/03/25 12:0 a.m.•288 views

Joomla! Component GMapFP 3.30 - Arbitrary File Upload

Exploit Title: Joomla! Component GMapFP 3.30 - Arbitrary File Upload Google Dork: inurl:''comgmapfp'' Date: 2020-03-25 Exploit Author: ThelastVvV Vendor Homepage:https://gmapfp.org/ Version: Version J3.30pro Tested on: Ubuntu PoC:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2019/11/13 12:0 a.m.•288 views

FUDForum 3.0.9 - Remote Code Execution

Exploit Title : FUDForum 3.0.9 - Remote Code Execution Date: 2019-10-26 Exploit Author: liquidsky JMcPeters Vulnerable Software: FUDForum 3.0.9 Vendor Homepage: https://sourceforge.net/projects/fudforum/ Version: 3.0.9 Software Link:...

9CVSS9.4AI score0.08154EPSS
Exploits6
Exploit DB
Exploit DB
•added 2019/07/10 12:0 a.m.•288 views

Microsoft DirectWrite / AFDKO - Out-of-Bounds Read in OpenType Font Handling Due to Undefined FontName Index

-----===== Background =====----- AFDKO Adobe Font Development Kit for OpenType is a set of tools for examining, modifying and building fonts. The core part of this toolset is a font handling library written in C, which provides interfaces for reading and writing Type 1, OpenType, TrueType to some...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2008/11/01 12:0 a.m.•288 views

YourFreeWorld Autoresponder Hosting - 'tr.php' SQL Injection

Autoresponder Hosting id Remote SQL Injection Vulnerability Author: Hussin X Home : www.IQ-TY.com & www.TrYaG.cc script :http://www.yourfreeworld.com/script/autoresponderhosting.php DorK : inurl:tr.php?id= Autoresponder Exploit :...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2025/08/18 12:0 a.m.•287 views

Microsoft Windows 10.0.19045 - NTLMv2 Hash Disclosure

Exploit Title: Microsoft Windows 10.0.19045 - NTLMv2 Hash Disclosure Date: 13/08/2025 Exploit Author: Ruben Enkaoua Author link: https://x.com/RubenLabs, https://github.com/rubenformation Original Blog: https://cymulate.com/blog/zero-click-one-ntlm-microsoft-security-patch-bypass-cve-2025-50154/...

6.5CVSS7.4AI score0.58974EPSS
Exploits21
Exploit DB
Exploit DB
•added 2025/03/29 12:0 a.m.•287 views

XWiki Standard 14.10 - Remote Code Execution (RCE)

Exploit Title: CVE-2023-48292 Remote Code Execution Exploit Google Dork: N/A Date: 23 March 2025 Exploit Author: Mehran Seifalinia Vendor Homepage: https://www.xwiki.org/ Software Link: https://www.xwiki.org/xwiki/bin/view/Download/ Version: XWiki Standard 14.10 Tested on: Ubuntu 20.04 LTS with...

9.6CVSS9.4AI score0.22938EPSS
Exploits2
Exploit DB
Exploit DB
•added 2024/04/03 12:0 a.m.•287 views

ESET NOD32 Antivirus 17.0.16.0 - Unquoted Service Path

Exploit Title: ESET NOD32 Antivirus 17.0.16.0 - Unquoted Service Path Exploit Author: Milad Karimi Ex3ptionaL Exploit Date: 2024-04-01 Vendor : https://www.eset.com Version : 17.0.16.0 Tested on OS: Microsoft Windows 10 pro x64 C:\wmic service get name,displayname,pathname,startmode |findstr /i...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2024/03/05 12:0 a.m.•287 views

Neontext Wordpress Plugin - Stored XSS

Exploit Title: Wordpress Plugin Neon Text = 1.1 - Stored Cross Site Scripting XSS Date: 2023-11-15 Exploit Author: Eren Car Vendor Homepage: https://www.eralion.com/ Software Link: https://downloads.wordpress.org/plugin/neon-text.zip Category: Web Application Version: 1.0 Tested on: Debian /...

6.4CVSS5.7AI score0.00524EPSS
Exploits4
Exploit DB
Exploit DB
•added 2023/05/31 12:0 a.m.•287 views

MotoCMS Version 3.4.3 - Server-Side Template Injection (SSTI)

Title: MotoCMS Version 3.4.3 - Server-Side Template Injection SSTI Author: tmrswrr Date: 31/05/2023 Vendor: https://www.motocms.com Link: https://www.motocms.com/website-templates/demo/189526.html Vulnerable Versions: MotoCMS 3.0.27 Description MotoCMS Version 3.4.3 Store Category Template was...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/04/10 12:0 a.m.•287 views

ever gauzy v0.281.9 - JWT weak HMAC secret

Exploit Title: ever gauzy v0.281.9 - JWT weak HMAC secret Author: nu11secur1ty Date: 04.08.2023 Vendor: https://gauzy.co/ Software: https://github.com/ever-co/ever-gauzy/releases/tag/v0.281.9 Reference: https://portswigger.net/kb/issues/00200903jwt-weak-hmac-secret Description: It was, detected a...

7AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/04/05 12:0 a.m.•287 views

GNU screen v4.9.0 - Privilege Escalation

Exploit Title: GNU screen v4.9.0 - Privilege Escalation Date: 03.02.2023 Exploit Author: Manuel Andreas Vendor Homepage: https://www.gnu.org/software/screen/ Software Link: https://ftp.gnu.org/gnu/screen/screen-4.9.0.tar.gz Version: 4.9.0 Tested on: Arch Linux CVE : CVE-2023-24626 import os impor...

6.5CVSS7AI score0.0054EPSS
Exploits3
Exploit DB
Exploit DB
•added 2022/01/05 12:0 a.m.•287 views

TRIGONE Remote System Monitor 3.61 - Unquoted Service Path

Exploit Title: TRIGONE Remote System Monitor 3.61 - Unquoted Service Path Discovery by: Yehia Elghaly Date: 30-12-2021 Vendor Homepage: https://www.trigonesoft.com/ Software Link: https://www.trigonesoft.com/download/RemoteSystemmonitorServer3.61x86Setup.exe Tested Version: 3.61 Vulnerability Typ...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2021/10/08 12:0 a.m.•287 views

django-unicorn 0.35.3 - Stored Cross-Site Scripting (XSS)

Exploit Title: django-unicorn 0.35.3 - Stored Cross-Site Scripting XSS Date: 10/7/21 Exploit Author: Raven Security Associates, Inc. ravensecurity.net Software Link: https://pypi.org/project/django-unicorn/ Version: = 0.35.3 CVE: CVE-2021-42053 django-unicorn = 0.35.3 suffers from a stored XSS...

5.4CVSS5.6AI score0.02524EPSS
Exploits4
Total number of security vulnerabilities5000