Lucene search
K
ExploitdbRecent

47904 matches found

Exploit DB
Exploit DB
•added 2023/04/05 12:0 a.m.•287 views

GNU screen v4.9.0 - Privilege Escalation

Exploit Title: GNU screen v4.9.0 - Privilege Escalation Date: 03.02.2023 Exploit Author: Manuel Andreas Vendor Homepage: https://www.gnu.org/software/screen/ Software Link: https://ftp.gnu.org/gnu/screen/screen-4.9.0.tar.gz Version: 4.9.0 Tested on: Arch Linux CVE : CVE-2023-24626 import os impor...

6.5CVSS7AI score0.0054EPSS
Exploits3
Exploit DB
Exploit DB
•added 2023/04/05 12:0 a.m.•260 views

Responsive FileManager 9.9.5 - Remote Code Execution (RCE)

Exploit Title: Responsive FileManager 9.9.5 - Remote Code Execution RCE Date: 02-Feb-2023 Exploit Author: Galoget Latorre @galoget Vendor Homepage: https://responsivefilemanager.com Software Link: https://github.com/trippo/ResponsiveFilemanager/releases/download/v9.9.5/responsivefilemanager.zip...

8.8CVSS8.8AI score0.08627EPSS
Exploits5
Exploit DB
Exploit DB
•added 2023/04/05 12:0 a.m.•171 views

itech TrainSmart r1044 - SQL injection

Exploit Title: itech TrainSmart r1044 - SQL injection Date: 03.02.2023 Exploit Author: Adrian Bondocea Software Link: https://sourceforge.net/p/trainsmart/code/HEAD/tree/code/ Version: TrainSmart r1044 Tested on: Linux CVE : CVE-2021-36520 SQL injection vulnerability in itech TrainSmart r1044...

7.5CVSS7.7AI score0.02696EPSS
Exploits4
Exploit DB
Exploit DB
•added 2023/04/05 12:0 a.m.•218 views

ImageMagick 7.1.0-49 - DoS

Exploit Title: ImageMagick 7.1.0-49 - DoS Author: nu11secur1ty Date: 02.07.2023 Vendor: https://imagemagick.org/ Software: https://imagemagick.en.uptodown.com/windows/download/82953605 Reference: https://portswigger.net/daily-swig/denial-of-service CVE-ID: CVE-2022-44267 Description: ImageMagick...

6.5CVSS6.9AI score0.76581EPSS
Exploits4
Exploit DB
Exploit DB
•added 2023/04/05 12:0 a.m.•230 views

Secure Web Gateway 10.2.11 - Cross-Site Scripting (XSS)

Exploit Title: Secure Web Gateway 10.2.11 - Cross-Site Scripting XSS Product: Secure Web Gateway Affected Versions: 10.2.11, potentially other versions Fixed Versions: 10.2.17, 11.2.6, 12.0.1 Vulnerability Type: Cross-Site Scripting Security Risk: high Vendor URL:...

6.1CVSS6.6AI score0.0189EPSS
Exploits4
Exploit DB
Exploit DB
•added 2023/04/05 12:0 a.m.•197 views

SOUND4 LinkAndShare Transmitter 1.1.2 - Format String Stack Buffer Overflow

Exploit Title: SOUND4 LinkAndShare Transmitter 1.1.2 - Format String Stack Buffer Overflow Exploit Author: LiquidWorm Vendor: SOUND4 Ltd. Product web page: https://www.sound4.com | https://www.sound4.biz Affected version: 1.1.2 Summary: The SOUND4 Link&Share L&S is a simple and open protocol that...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/04/05 12:0 a.m.•172 views

Calendar Event Multi View 1.4.07 - Unauthenticated Arbitrary Event Creation to Cross-Site Scripting (XSS)

Exploit Title: Calendar Event Multi View 1.4.07 - Unauthenticated Arbitrary Event Creation to Cross-Site Scripting XSS Date: 2022-05-25 Exploit Author: Mostafa Farzaneh WPScan page: https://wpscan.com/vulnerability/95f92062-08ce-478a-a2bc-6d026adf657c Vendor Homepage:...

4.3CVSS5AI score0.02179EPSS
Exploits5
Exploit DB
Exploit DB
•added 2023/04/05 12:0 a.m.•158 views

zstore 6.6.0 - Cross-Site Scripting (XSS)

Exploit Title: zstore 6.6.0 - Cross-Site Scripting XSS Development: nu11secur1ty Date: 01.29.2023 Vendor: https://zippy.com.ua/ Software: https://github.com/leon-mbs/zstore/releases/tag/6.5.4 Reproduce: https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/zippy/zstore-6.5.4...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/04/05 12:0 a.m.•195 views

Bus Pass Management System 1.0 - Stored Cross-Site Scripting (XSS)

Exploit Title: Bus Pass Management System 1.0 - Stored Cross-Site Scripting XSS Date: 2021-09-17 Exploit Author: Matteo Conti - https://deltaspike.io Vendor Homepage: https://phpgurukul.com/ Software Link:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/04/05 12:0 a.m.•232 views

bgERP v22.31 (Orlovets) - Cookie Session vulnerability & Cross-Site Scripting (XSS)

Title: bgERP v22.31 Orlovets - Cookie Session vulnerability & Cross-Site Scripting XSS Author: nu11secur1ty Date: 01.31.2023 Vendor: https://bgerp.com/Bg/Za-sistemata Software: https://github.com/bgerp/bgerp/releases/tag/v22.31 Reference:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/04/05 12:0 a.m.•280 views

XWorm Trojan 2.1 - Null Pointer Derefernce DoS

Exploit Author: XWorm Trojan 2.1 - Null Pointer Derefernce DoS Exploit Author: TOUHAMI KASBAOUI Vendor Homepage: https://blog.cyble.com/2022/08/19/evilcoder-project-selling-multiple-dangerous-tools-online/ Software Link: N/A Version: 2.1 Tested on: Windows 10 CVE : N/A...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/04/05 12:0 a.m.•226 views

D-Link DIR-846 - Remote Command Execution (RCE) vulnerability

Exploit Title: D-Link DIR-846 - Remote Command Execution RCE vulnerability Google Dork: NA Date: 30/01/2023 Exploit Author: Françoa Taffarel Vendor Homepage:...

8.8CVSS8.9AI score0.10503EPSS
Exploits4
Exploit DB
Exploit DB
•added 2023/04/05 12:0 a.m.•211 views

Liferay Portal 6.2.5 - Insecure Permissions

Exploit Title: Liferay Portal 6.2.5 - Insecure Permissions Google Dork: -inurl:/html/js/editor/ckeditor/editor/filemanager/browser/ Date: 2021/05 Exploit Author: fu2x2000 Version: Liferay Portal 6.2.5 or later CVE : CVE-2021-33990 import requests import json print " Search this on Google Dork for...

9.8CVSS9.8AI score0.11915EPSS
Exploits4
Exploit DB
Exploit DB
•added 2023/04/05 12:0 a.m.•940 views

PostgreSQL 9.6.1 - Remote Code Execution (RCE) (Authenticated)

Exploit Title: PostgreSQL 9.6.1 - Remote Code Execution RCE Authenticated Date: 2023-02-01 Exploit Author: Paulo Trindade @paulotrindadec, Bruno Stabelini @Bruno Stabelini, Diego Farias @fulcrum and Weslley Shaimon Github: https://github.com/paulotrindadec/CVE-2019-9193 Version: PostgreSQL 9.6.1 ...

9CVSS7.1AI score0.91877EPSS
Exploits17
Exploit DB
Exploit DB
•added 2023/04/05 12:0 a.m.•196 views

Dell EMC Networking PC5500 firmware versions 4.1.0.22 and Cisco Sx / SMB - Information Disclosure

Exploit Title: Dell EMC Networking PC5500 firmware versions 4.1.0.22 and Cisco Sx / SMB - Information Disclosure DSA-2020-042: Dell Networking Security Update for an Information Disclosure Vulnerability | Dell US...

8.1CVSS6.8AI score0.12942EPSS
Exploits4
Exploit DB
Exploit DB
•added 2023/04/05 12:0 a.m.•169 views

Online Eyewear Shop 1.0 - SQL Injection (Unauthenticated)

Exploit Title: Online Eyewear Shop 1.0 - SQL Injection Unauthenticated Date: 2023-01-02 Exploit Author: Muhammad Navaid Zafar Ansari Vendor Homepage: https://www.sourcecodester.com/php/16089/online-eyewear-shop-website-using-php-and-mysql-free-download.html Software Link:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/04/05 12:0 a.m.•195 views

projectSend r1605 - Remote Code Exectution RCE

Exploit Title: projectSend r1605 - Remote Code Exectution RCE Application: projectSend Version: r1605 Bugs: rce via file extension manipulation Technology: PHP Vendor URL: https://www.projectsend.org/ Software Link: https://www.projectsend.org/ Date of found: 26-01-2023 Author: Mirabbas AÄŸalarov...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/04/05 12:0 a.m.•240 views

Kardex Mlog MCC 5.7.12 - RCE (Remote Code Execution)

!/usr/bin/env python3 Exploit Title: Kardex Mlog MCC 5.7.12 - RCE Remote Code Execution Date: 12/13/2022 Exploit Author: Patrick Hener Vendor Homepage: https://www.kardex.com/en/mlog-control-center Version: 5.7.12+0-a203c2a213-master Tested on: Windows Server 2016 CVE : CVE-2023-22855 Writeup:...

9.8CVSS9.8AI score0.14832EPSS
Exploits8
Exploit DB
Exploit DB
•added 2023/04/05 12:0 a.m.•1962 views

Binwalk v2.3.2 - Remote Command Execution (RCE)

Exploit Title: Binwalk v2.3.2 - Remote Command Execution RCE Exploit Author: Etienne Lacoche CVE-ID: CVE-2022-4510 import os import inspect import argparse print"" print"" print"------------------CVE-2022-4510----------------" print"" print"--------Binwalk Remote Command Execution--------"...

7.8CVSS7.6AI score0.22013EPSS
Exploits8
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•407 views

GLPI v10.0.1 - Unauthenticated Sensitive Data Exposure

Exploit Title: GLPI v10.0.1 - Unauthenticated Sensitive Data Exposure Date: 11 Jun 2022 Version: =10.0.0 and 10.0.2 Author: Nuri Çilengir Vendor Homepage: https://glpi-project.org/ Software Link: https://github.com/glpi-project/glpi Advisory:...

5.3CVSS5.6AI score0.0085EPSS
Exploits2
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•165 views

HotKey Clipboard 2.1.0.6 - Privilege Escalation Unquoted Service Path

Exploit Title: HotKey Clipboard 2.1.0.6 - Privilege Escalation Unquoted Service Path Date: 2023/01/17 Exploit Author : Wim Jaap van Vliet Vendor Homepage: www.clevo.com.tw Software Link: https://enstrong.blob.core.windows.net/en-driver/PDXXPNX1/Others/CC301006.zip Version: 2.1.0.6 Tested on:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•264 views

GLPI Cartography Plugin v6.0.0 - Unauthenticated Remote Code Execution (RCE)

Exploit Title: GLPI Cartography Plugin v6.0.0 - Unauthenticated Remote Code Execution RCE Date of found: 11 Jun 2022 Application: GLPI Cartography...

9.8CVSS9.8AI score0.07746EPSS
Exploits3
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•164 views

Active eCommerce CMS 6.5.0 - Stored Cross-Site Scripting (XSS)

Exploit Title: Active eCommerce CMS 6.5.0 - Stored Cross-Site Scripting XSS Date: 19/01/2023 Exploit Author: Sajibe Kanti Vendor Name: ActiveITzone Vendor Homepage: https://activeitzone.com/ Software Link: https://codecanyon.net/item/active-ecommerce-cms/23471405 Version: 6.5.0 Tested on: Live...

7AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•214 views

Paid Memberships Pro v2.9.8 (WordPress Plugin) - Unauthenticated SQL Injection

!/usr/bin/env python Exploit Title: Paid Memberships Pro v2.9.8 WordPress Plugin - Unauthenticated SQL Injection Exploit Author: r3nt0n CVE: CVE-2023-23488 Date: 2023/01/24 Vulnerability discovered by Joshua Martinelle Vendor Homepage: https://www.paidmembershipspro.com Software Link:...

9.8CVSS9.8AI score0.9246EPSS
Exploits6
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•208 views

Grand Theft Auto III/Vice City Skin File v1.1 - Buffer Overflow

Exploit Title: Grand Theft Auto III/Vice City Skin File v1.1 - Buffer Overflow Exploit Date: 22.01.2023 Discovered and Written by: Knursoft Vendor Homepage: https://www.rockstargames.com/ Version: v1.1 Tested on: Windows XP SP2/SP3, 7, 10 21H2 CVE : N/A 1 - Run this python script to generate...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•203 views

ManageEngin AMP 4.3.0 - File-path-traversal

Exploit Title: ManageEngine Access Manager Plus 4.3.0 - File-path-traversal Author: nu11secur1ty Date: 11.22.2023 Vendor: https://www.manageengine.com/ Software: https://www.manageengine.com/privileged-session-management/download.html Reference:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•202 views

GLPI v10.0.2 - SQL Injection (Authentication Depends on Configuration)

ADVISORY INFORMATION Exploit Title: GLPI v10.0.2 - SQL Injection Authentication Depends on Configuration Date of found: 11 Jun 2022 Application: GLPI =10.0.0, 10.0.3 Author: Nuri Çilengir Vendor Homepage: https://glpi-project.org/ Software Link: https://github.com/glpi-project/glpi Advisory:...

9.8CVSS9.8AI score0.0858EPSS
Exploits3
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•255 views

Roxy WI v6.1.1.0 - Unauthenticated Remote Code Execution (RCE) via ssl_cert Upload

ADVISORY INFORMATION Exploit Title: Roxy WI v6.1.1.0 - Unauthenticated Remote Code Execution RCE via sslcert Upload Date of found: 21 July 2022 Application: Roxy WI .oastify.com;...

10CVSS9.8AI score0.90387EPSS
Exploits15
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•216 views

Roxy WI v6.1.0.0 - Improper Authentication Control

Exploit Title: Roxy WI v6.1.0.0 - Improper Authentication Control Date of found: 21 July 2022 Application: Roxy WI = v6.1.0.0 Author: Nuri Çilengir Vendor Homepage: https://roxy-wi.org Software Link: https://github.com/hap-wi/roxy-wi.git Advisory:...

10CVSS9.6AI score0.90387EPSS
Exploits15
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•272 views

Roxy WI v6.1.0.0 - Unauthenticated Remote Code Execution (RCE)

ADVISORY INFORMATION Exploit Title: Roxy WI v6.1.0.0 - Unauthenticated Remote Code Execution RCE Date of found: 21 July 2022 Application: Roxy WI = v6.1.0.0 Author: Nuri Çilengir Vendor Homepage: https://roxy-wi.org Software Link: https://github.com/hap-wi/roxy-wi.git Advisory:...

10CVSS9.6AI score0.90387EPSS
Exploits15
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•159 views

sleuthkit 4.11.1 - Command Injection

Exploit Title: sleuthkit 4.11.1 - Command Injection Date: 2023-01-20 CVE-2022-45639 Vendor Homepage: https://github.com/sleuthkit Vulnerability Type: Command injection Attack Type: Local Version: 4.11.1 Exploit Author: Dino Barlattani, Giuseppe Granato Link poc:...

7.8CVSS7.7AI score0.0466EPSS
Exploits4
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•237 views

GLPI 4.0.2 - Unauthenticated Local File Inclusion on Manageentities plugin

ADVISORY INFORMATION Exploit Title: GLPI 4.0.2 - Unauthenticated Local File Inclusion on Manageentities plugin Date of found: 11 Jun 2022 Application: GLPI Manageentities 4.0.2 Author: Nuri Çilengir Vendor Homepage: https://glpi-project.org/ Software Link:...

7.5CVSS7.6AI score0.06715EPSS
Exploits3
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•202 views

ChiKoi v1.0 - SQL Injection

Title: ChiKoi-1.0 SQLi Author: nu11secur1ty Date: 01.12.2023 Vendor: https://chikoiquan.tanhongit.com/ Software: https://github.com/tanhongit/new-mvc-shop/releases/tag/v1.0 Reference: https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/tanhongit/2023/ChiKoi Description: The...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•224 views

Metform Elementor Contact Form Builder v3.1.2 - Unauthenticated Stored Cross-Site Scripting (XSS)

Exploit Title: Metform Elementor Contact Form Builder v3.1.2 - Unauthenticated Stored Cross-Site Scripting XSS Google Dork: inurl:metform-form intext:textarea|message Date: 14/01/2023 Exploit Author: Mohammed Chemouri https://de.linkedin.com/in/chemouri Vendor Homepage:...

7.2CVSS6.4AI score0.28565EPSS
Exploits5
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•171 views

pimCore v5.4.18-skeleton - Sensitive Cookie with Improper SameSite Attribute

Exploit Title: pimCore v5.4.18-skeleton - Sensitive Cookie with Improper SameSite Attribute Author: nu11secur1ty Date: 01.11.2023 Vendor: https://pimcore.com/en Software: https://packagist.org/packages/pimcore/skeleton Reference:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•507 views

Windows 11 10.0.22000 - Backup service Privilege Escalation

Title: Windows 11 10.0.22000 - Backup service Privilege Escalation Author: nu11secur1ty Date: 01.13.2023 Vendor: https://www.microsoft.com/ Software: https://www.microsoft.com/en-us/software-download/windows11 Reference: https://github.com/nu11secur1ty/CVE-mitre/tree/main/2023/CVE-2023-21752...

7.1CVSS7.8AI score0.05327EPSS
Exploits2
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•290 views

Microsoft Exchange Active Directory Topology 15.02.1118.007 - 'Service MSExchangeADTopology' Unquoted Service Path

Exploit Title: Microsoft Exchange Active Directory Topology 15.02.1118.007 - 'Service MSExchangeADTopology' Unquoted Service Path Exploit Author: Milad Karimi Ex3ptionaL Exploit Date: 2023-01-18 Vendor : Microsoft Version : 15.02.1118.007 Tested on OS: Microsoft Exchange Server 2019 CU12 PoC :...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•295 views

Solaris 10 libXm - Buffer overflow Local privilege escalation

/ Exploit Title: Solaris 10 libXm - Buffer overflow Local privilege escalation raptordtprintlibXmas.c - Solaris 10 CDE ForeverDay LPE Copyright c 2023 Marco Ivaldi "What has been will be again, what has been done will be done again; there is nothing new under the Sun." -- Ecclesiastes 1:9 Solaris...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•186 views

Chromacam 4.0.3.0 - PsyFrameGrabberService Unquoted Service Path

Exploit Title: Chromacam 4.0.3.0 - PsyFrameGrabberService Unquoted Service Path Exploit Author: Laguin Benjamin MONK-MODE Discovery Date: 2023-19-01 Vendor Homepage: https://personifyinc.com/ Software Link: https://personifyinc.com/download/chromacam Tested Version: Chromacam-4.0.3.0 Vulnerabilit...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•198 views

Art Gallery Management System Project v1.0 - Reflected Cross-Site Scripting (XSS)

Exploit Title: Art Gallery Management System Project v1.0 - Reflected Cross-Site Scripting XSS Date: 20/01/2023 Exploit Author: Rahul Patwari Vendor Homepage: https://phpgurukul.com/ Software Link: https://phpgurukul.com/projects/Art-Gallery-MS-PHP.zip Version: 1.0 Tested on: XAMPP / Windows 10 C...

6.1CVSS6.3AI score0.0591EPSS
Exploits4
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•183 views

Art Gallery Management System Project v1.0 - SQL Injection (cid) Unauthenticated

Exploit Title: Art Gallery Management System Project v1.0 - SQL Injection cid Unauthenticated Date: 20/01/2023 Exploit Author: Rahul Patwari Vendor Homepage: https://phpgurukul.com/ Software Link: https://phpgurukul.com/projects/Art-Gallery-MS-PHP.zip Version: 1.0 Tested on: XAMPP / Windows 10 CV...

9.8CVSS9.7AI score0.04379EPSS
Exploits4
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•364 views

MyBB 1.8.32 - Remote Code Execution (RCE) (Authenticated)

Exploit Title: MyBB 1.8.32 - Chained LFI Remote Code Execution RCE Authenticated Date: 2023-01-19 Exploit Author: lUc1f3r11 https://github.com/FDlucifer Vendor Homepage: https://mybb.com/ Software Link: https://github.com/mybb/mybb/releases/tag/mybb1832 Version: MyBB 1.8.32 Tested on: Linux CVE :...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•250 views

ERPGo SaaS 3.9 - CSV Injection

Exploit Title: ERPGo SaaS 3.9 - CSV Injection Date: 18/01/2023 Exploit Author: Sajibe Kanti Vendor Name: RajodiyaInfotech Vendor Homepage: https://rajodiya.com/ Software Link: https://codecanyon.net/item/erpgo-saas-all-in-one-business-erp-with-project-account-hrm-crm-pos/33263426 Version: 3.9...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•201 views

Art Gallery Management System Project v1.0 - SQL Injection (editid) authenticated

Exploit Title: Art Gallery Management System Project v1.0 - SQL Injection editid authenticated Date: 20/01/2023 Exploit Author: Rahul Patwari Vendor Homepage: https://phpgurukul.com/ Software Link: https://phpgurukul.com/projects/Art-Gallery-MS-PHP.zip Version: 1.0 Tested on: XAMPP / Windows 10 C...

9.8CVSS9.7AI score0.04379EPSS
Exploits4
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•237 views

WP-file-manager v6.9 - Unauthenticated Arbitrary File Upload leading to RCE

!/usr/bin/env Exploit Title: WP-file-manager v6.9 - Unauthenticated Arbitrary File Upload leading to RCE Date: 22-01-2023 Exploit Author: BLY Vendor Homepage: https://wpscan.com/vulnerability/10389 Version: File Manager plugin 6.0-6.9 Tested on: Debian CVE : CVE-2020-25213 import...

10CVSS9.6AI score0.97328EPSS
Exploits14
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•198 views

Nacos 2.0.3 - Access Control vulnerability

Exploit Title: Nacos 2.0.3 - Access Control vulnerability Date: 2023-01-17 Exploit Author: Jenson Zhao Vendor Homepage: https://nacos.io/ Software Link: https://github.com/alibaba/nacos/releases/ Version: Up to including2.0.3 Tested on: Windows 10 CVE : CVE-2021-43116 Required before execution: p...

8.8CVSS8.8AI score0.07229EPSS
Exploits4
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•209 views

AmazCart CMS 3.4 - Cross-Site-Scripting (XSS)

Exploit Title: AmazCart CMS 3.4 - Cross-Site-Scripting XSS Date: 17/01/2023 Exploit Author: Sajibe Kanti Vendor Name: CodeThemes Vendor Homepage: https://spondonit.com/ Software Link: https://codecanyon.net/item/amazcart-laravel-ecommerce-system-cms/34962179 Version: 3.4 Tested on: Live Demo Demo...

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•203 views

SQL Monitor 12.1.31.893 - Cross-Site Scripting (XSS)

Exploit Title: SQL Monitor 12.1.31.893 - Cross-Site Scripting XSS Date: 12/21/2022 02:07:23 AM UTC Exploit Author: [email protected] Vendor Homepage: https://www.red-gate.com/ Software Link: https://www.red-gate.com/products/dba/sql-monitor/ Version: SQL Monitor 12.1.31.893 Tested on: Window...

6.1CVSS6.4AI score0.02229EPSS
Exploits4
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•203 views

Zstore 6.5.4 - Reflected Cross-Site Scripting (XSS)

Exploit Title: Zstore 6.5.4 - Reflected Cross-Site Scripting XSS Development: nu11secur1ty Date: 01.18.2023 Vendor: https://zippy.com.ua/ Software: https://github.com/leon-mbs/zstore/releases/tag/6.5.4 Reproduce: https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/zippy/zstore-6.5....

7.4AI score
Exploits0
Exploit DB
Exploit DB
•added 2023/04/03 12:0 a.m.•167 views

SLIMSV 9.5.2 - Cross-Site Scripting (XSS)

Exploit Title: SLIMSV 9.5.2 - Cross-Site Scripting XSS Development: nu11secur1ty Date: 01.19.2023 Vendor: https://slims.web.id/web/ Software: https://github.com/slims/slims9bulian/releases/tag/v9.5.2 Reference:...

7AI score
Exploits0
Total number of security vulnerabilities47904