Lucene search
K
PacketstormRecent

50748 matches found

Packet Storm
Packet Storm
added 2022/07/25 12:0 a.m.269 views

Marty Marketplace Multi Vendor Ecommerce Script 1.2 SQL Injection

┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2022/07/25 12:0 a.m.278 views

Patlite 1.46 Buffer Overflow

Exploit Title: CVE-2022-35911 - Patlite Overflow. Date: 2022-07-07 Exploit Author: Samy Younsi - Necrum Security Labs Vendor Homepage: https://www.patlite.co.jp Software Link: https://www.patlite.co.jp/product/detail0000021462.html Version: Versions 1.46 and bellow are affected Tested on: CentOs ...

0.5AI score0.02045EPSS
Exploits2
Packet Storm
Packet Storm
added 2022/07/22 12:0 a.m.294 views

Backdoor.Win32.Eclipse.h MVID-2022-0625 Hardcoded Credential

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2022 Original source: https://malvuln.com/advisory/8b470931114527b4dce42034a95ebf46.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Eclipse.h Vulnerability: Weak Hardcoded Credentials Family: Eclipse Type:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/07/21 12:0 a.m.335 views

Dr. Fone 4.0.8 Unquoted Service Path

Exploit Title: Dr. Fone v4.0.8- 'netupdater32.exe' Unquoted Service Path Discovery Date: 2022-05-07 Discovery by: Esant1490 Vendor Homepage: https://drfone.wondershare.net Software Link : https://download.wondershare.net/drfonefull4008.exe Tested Version: 4.0.8 Tested on OS: Windows 10 Pro x64 en...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2022/07/21 12:0 a.m.310 views

CodoForum 5.1 Remote Code Execution

Exploit Title: CodoForum v5.1 - Remote Code Execution RCE Date: 06/07/2022 Exploit Author: Krish Pandey @vikaran101 Vendor Homepage: https://codoforum.com/ Software Link: https://bitbucket.org/evnix/codoforumdownloads/downloads/codoforum.v.5.1.zip Version: CodoForum v5.1 Tested on: Ubuntu 20.04...

7.2CVSS7AI score0.32233EPSS
Exploits4
Packet Storm
Packet Storm
added 2022/07/21 12:0 a.m.334 views

Schneider Electric SpaceLogic C-Bus Home Controller (5200WHC2) Remote Root

SpaceLogic.ps1 Schneider Electric SpaceLogic C-Bus Home Controller 5200WHC2 Remote Root Exploit Vendor: Schneider Electric SE Product web page: https://www.se.com https://www.se.com/ww/en/product/5200WHC2/home-controller-spacelogic-cbus-cbus-ip-free-standing-24v-dc/...

0.2AI score0.71084EPSS
Exploits6
Packet Storm
Packet Storm
added 2022/07/21 12:0 a.m.314 views

Kite 1.2021.610.0 Unquoted Service Path

Exploit Title: Kite 1.2021.610.0 - Unquoted Service Path Date: 2020-11-6 Exploit Author: Ghaleb Al-otaibi Vendor Homepage: https://www.kite.com/ Version: Version 4.2.0.1 U1 Tested on: Microsoft Windows 10 Pro - 10.0.19044 N/A Build 19044 CVE : NA Service info: C:\Windows\system32\cmd.exesc qc...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/07/21 12:0 a.m.441 views

IOTransfer 4.0 Remote Code Execution

Exploit Title: IOTransfer V4 – Remote Code Execution RCE Date: 06/22/2022 Exploit Author: Tomer Peled Vendor Homepage: https://www.iobit.com Software Link: https://iotransfer.itopvpn.com/ Version: V4 and onward Tested on: Windows 10 CVE : 2022-24562 References:...

10CVSS0.2AI score0.53868EPSS
Exploits3
Packet Storm
Packet Storm
added 2022/07/21 12:0 a.m.304 views

OctoBot WebInterface 0.4.3 Remote Code Execution

Exploit Title: OctoBot WebInterface 0.4.3 - Remote Code Execution RCE Date: 9/2/2021 Exploit Author: Samy Younsi, Thomas Knudsen Vendor Homepage: https://www.octobot.online/ Software Link: https://github.com/Drakkar-Software/OctoBot Version: 0.4.0beta3 - 0.4.3 Tested on: Linux Ubuntu, CentOs CVE ...

0.1AI score0.12077EPSS
Exploits4
Packet Storm
Packet Storm
added 2022/07/20 12:0 a.m.253 views

Emporium eCommerce Online Shopping CMS 1.2 SQL Injection

┌┌────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An Unimaginable...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2022/07/19 12:0 a.m.328 views

Spryker Commerce OS Remote Command Execution

Title ===== SCHUTZWERK-SA-2022-003: Remote Command Execution in Spryker Commerce OS Status ====== PUBLISHED Version ======= 1.0 CVE reference ============= CVE-2022-28888 Link ==== https://www.schutzwerk.com/en/43/advisories/schutzwerk-sa-2022-003/ Text-only version:...

0.3AI score0.03628EPSS
Exploits5
Packet Storm
Packet Storm
added 2022/07/19 12:0 a.m.359 views

Asus GameSDK 1.0.0.4 Unquoted Service Path

Exploit Title: Asus GameSDK v1.0.0.4 - 'GameSDK.exe' Unquoted Service Path Privilege Escalation Date: 07/14/2022 Exploit Author: Angelo Pio Amirante Version: 1.0.0.4 Tested on: Windows 10 Patched version: 1.0.5.0 CVE: CVE-2022-35899 Step to discover the unquoted service path: wmic service get...

0.1AI score0.00857EPSS
Exploits5
Packet Storm
Packet Storm
added 2022/07/18 12:0 a.m.269 views

Builder XtremeRAT 3.7 MVID-2022-0623 Insecure Permissions

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2022 Original source: https://malvuln.com/advisory/7f314e798c150aedd9ce41ed39318f65.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Builder XtremeRAT v3.7 Vulnerability: Insecure Permissions Description: The malware builds...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2022/07/18 12:0 a.m.345 views

Backdoor.Win32.HoneyPot.a MVID-2022-0622 Weak Hardcoded Password

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2022 Original source: https://malvuln.com/advisory/e3bb503f9b02cf57341695f30e31128f.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.HoneyPot.a Vulnerability: Weak Hardcoded Password Description: The malware...

Exploits0
Packet Storm
Packet Storm
added 2022/07/18 12:0 a.m.267 views

Travel Tours Script 1.0 SQL Injection

┌┌────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An Unimaginable crack.... ────┐...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/07/18 12:0 a.m.335 views

Property Listing Script 3.1 SQL Injection

┌┌────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An Unimaginable...

0.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/07/18 12:0 a.m.359 views

Builder XtremeRAT 3.7 MVID-2022-0624 Insecure Crypto Bypass

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2022 Original source: https://malvuln.com/advisory/7f314e798c150aedd9ce41ed39318f65B.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Builder XtremeRAT v3.7 Vulnerability: Insecure Crypto Bypass Description: The malware...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/07/18 12:0 a.m.213 views

Orange Station 1.0 SQL Injection

Title: Orange Station 1.0 SQLi Author: nu11secur1ty Date: 0.16.2022 Vendor: https://www.mayurik.com/ Software: https://www.sourcecodester.com/php/15485/garage-management-system-using-phpmysql-source-code.html Reference:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/07/13 12:0 a.m.371 views

Sourcegraph gitserver sshCommand Remote Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Sourcegraph gitserver sshCommand RCE', 'Description' = %q A vulnerability exists within Sourcegraph's gitserver component that allows a remote...

8.8CVSS0.3AI score0.7431EPSS
Exploits8
Packet Storm
Packet Storm
added 2022/07/12 12:0 a.m.410 views

JBOSS EAP/AS 6.x Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'JBOSS EAP/AS Remoting Unified Invoker RCE', 'Description' = %q An unauthenticated attacker with network access to the JBOSS EAP/AS 'Joao Matos ',...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/07/11 12:0 a.m.375 views

WordPress Visual Slide Box Builder 3.2.9 SQL Injection

Title: WordPress 6.0 - Visual Slide Box Builder 3.2.9 SQLi Author: nu11secur1ty Date: 07.11.2022 Vendor: https://wphive.com/ Software: https://wphive.com/plugins/wp-visual-slidebox-builder/?pluginversion=3.2.9 Reference:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/07/11 12:0 a.m.369 views

Mutt mutt_decode_uuencoded() Memory Disclosure

mutt: muttdecodeuuencoded can read the past the of the input line In muttdecodeuuencoded, the line length is read from the untrusted uuencoded part without validation. This could result in including private memory in replys, for example fragments of other messages, passphrases or keys. Reproduce...

5.3CVSS5.5AI score0.01711EPSS
Exploits2
Packet Storm
Packet Storm
added 2022/07/11 12:0 a.m.1423 views

Nginx 1.20.0 Denial Of Service

Exploit Title: Nginx 1.20.0 - Denial of Service DOS Date: 2022-6-29 Exploit Author: Mohammed Alshehri - https://Github.com/M507 Vendor Homepage: https://nginx.org/ Software Link: https://github.com/nginx/nginx/releases/tag/release-1.20.0 Version: 0.6.18 - 1.20.0 Tested on: Ubuntu 18.04.4 LTS bion...

7.7CVSS0.52838EPSS
Exploits10
Packet Storm
Packet Storm
added 2022/07/06 12:0 a.m.351 views

EQS Integrity Line Cross Site Scripting / Information Disclosure

EQS Integrity Line: Multiple Vulnerabilities Name Multiple Vulnerabilities in EQS Integrity Line Systems Affected EQS Integrity Line through 2022-07-01 Severity High Impact CVSSv2 High 8.8/10, score: AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Vendor EQS Group AG https://www.eqs.com/ Advisory...

6.4AI score0.01459EPSS
Exploits3
Packet Storm
Packet Storm
added 2022/07/06 12:0 a.m.331 views

Magnolia CMS 6.2.19 Cross Site Scripting

Exploit Title: Magnolia CMS = 6.2.19 - Stored Cross-Site Scripting XSS Date: 08/05/2022 Exploit Author: Giulio Garzia 'Ozozuz' Vendor Homepage: https://www.magnolia-cms.com/ Software Link:...

6.3AI score0.52207EPSS
Exploits3
Packet Storm
Packet Storm
added 2022/07/06 12:0 a.m.418 views

Xen PV Guest Non-SELFSNOOP CPU Memory Corruption

Xen: PV guest on non-SELFSNOOP CPUs can validate non-coherent L2 pagetable I'm not sure whether there are any major users of unshimmed Xen PV left, but https://xenbits.xen.org/docs/unstable/support-matrix.html says it's still a security-supported usecase for 64-bit guests. Tested on Debian's Xen...

7.2CVSS7.2AI score0.00494EPSS
Exploits3
Packet Storm
Packet Storm
added 2022/07/05 12:0 a.m.318 views

Ransom Lockbit 3.0 MVID-2022-0621 Code Execution

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2022 Original source: https://malvuln.com/advisory/38745539b71cf201bb502437f891d799B.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Ransom Lockbit 3.0 Vulnerability: Code Execution Description: The ransomware apparently n...

Exploits0
Packet Storm
Packet Storm
added 2022/07/05 12:0 a.m.318 views

Advanced Testimonials Manager 5.6 SQL Injection

==================================================================================================================================== | Title : Advanced Testimonials Manager v5.6 Auth by pass Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox...

0.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/07/04 12:0 a.m.313 views

DouPHP 1.2 Release 20141027 SQL Injection

==================================================================================================================================== | Title : DouPHP v1.2 Release 20141027 SQL Injection Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox...

Exploits0
Packet Storm
Packet Storm
added 2022/07/04 12:0 a.m.447 views

Ransom Lockbit 3.0 MVID-2022-0620 Buffer Overflow

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2022 Original source: https://malvuln.com/advisory/38745539b71cf201bb502437f891d799.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Ransom Lockbit 3.0 Vulnerability: Local Unicode Buffer Overflow SEH Description: The...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2022/07/04 12:0 a.m.286 views

Paymoney 3.3 Cross Site Scripting

Title: paymoney-3.3 XSS-Reflected Author: nu11secur1ty Date: 07.02.2022 Vendor: https://paymoney.techvill.org/ Software: paymoney-3.3 Reference: https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/paymoney/2022/paymoney-3.3 Description: The parameters firstname and lastname in User...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/07/04 12:0 a.m.327 views

Stock Management System 2020 SQL Injection

Title: Stock-Management-System-2020 SQLi Author: nu11secur1ty Date: 07.02.2022 Vendor: https://github.com/Dav-ee Software: https://github.com/Dav-ee/Stock-Management-System Reference: https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/Kiprono-Davies/2022/Stock-Management-System-20...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2022/07/01 12:0 a.m.503 views

BigBlueButton 2.3 / 2.4.7 Cross Site Scripting

CVE-2022-31064 - Stored Cross-Site Scripting in BigBlueButton. ========================= Exploit Title: Stored Cross-Site Scripting XSS in BigBlueButton Product: BigBlueButton Vendor: BigBlueButton Vulnerable Versions: 2.3, IV. References -----------------...

5.7AI score0.01179EPSS
Exploits3
Packet Storm
Packet Storm
added 2022/07/01 12:0 a.m.244 views

Carel pCOWeb HVAC BACnet Gateway 2.1.0 Unauthenticated Directory Traversal

Carel pCOWeb HVAC BACnet Gateway 2.1.0 Unauthenticated Directory Traversal Vendor: CAREL INDUSTRIES S.p.A. Product web page: https://www.carel.com Affected version: Firmware: A2.1.0 - B2.1.0 Application Software: 2.15.4A Software version: v16 13020200 Summary: pCO sistema is the solution CAREL...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2022/07/01 12:0 a.m.290 views

Classified Listing 2.2.9 Cross Site Scripting

Exploit Title: Classified Listing – Classified ads & Business Directory Plugin - Cross site scripting Date: 29.06.2022 Exploit Author: ASCII Vendor Homepage: https://www.radiustheme.com/ Version: 2.2.9 Tested on: 2.2.9 Classified Listing – Classified ads & Business Directory Plugin - Cross site...

Exploits0
Packet Storm
Packet Storm
added 2022/07/01 12:0 a.m.861 views

TypeORM SQL Injection

typeorm CVE-2022-33171 findOneid, findOneOrFailid The findOne function in TypeORM before 0.3.0 can either be supplied with a string or a FindOneOptions object. When input to the function is a user-controlled parsed JSON object, supplying a crafted FindOneOptions instead of an id string leads to S...

0.1AI score0.20299EPSS
Exploits6
Packet Storm
Packet Storm
added 2022/07/01 12:0 a.m.393 views

PHP Library Remote Code Execution

JAHx221 - RCE in copy/pasted PHP compat libraries, jsondecode function =============================================================================== Several PHP compatability libraries contain a potential remote code execution flaw in their jsondecode function based on having copy pasted existi...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2022/06/30 12:0 a.m.311 views

Backdoor.Win32.EvilGoat.b MVID-2022-0619 Hardcoded Credential

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2022 Original source: https://malvuln.com/advisory/20daf01e941f966b21a7ae431faefc65.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.EvilGoat.b Vulnerability: Weak Hardcoded Credentials Description: The malwa...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/06/30 12:0 a.m.337 views

Backdoor.Win32.Cafeini.b MVID-2022-0617 Hardcoded Credential

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2022 Original source: https://malvuln.com/advisory/a8fc1b3f7a605dc06a319bf0e14ca68b.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Cafeini.b Vulnerability: Weak Hardcoded Credentials Description: The malwar...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/06/30 12:0 a.m.360 views

Backdoor.Win32.Coredoor.10.a MVID-2022-0618 Authentication Bypass

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2022 Original source: https://malvuln.com/advisory/49da40a2ac819103da9dc5ed10d08ddb.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Coredoor.10.a Vulnerability: Authentication Bypass Description: The malware...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2022/06/29 12:0 a.m.295 views

Laundry Management System 1.0 SQL Injection

Exploit Title: Laundry Management System 1.0 - Authenticated SQL Injection Date: 29-06-2022 Exploit Author: syad Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/sites/default/files/download/oretnom23/php-cilaundry.zip Version: 1.0 Tested on: Windows 1...

0.7AI score
Exploits0
Packet Storm
Packet Storm
added 2022/06/29 12:0 a.m.294 views

Fruits-Bazar 2021 1.0 SQL Injection

Title: Fruits-Bazar 2021 v1.0 SQLi Author: nu11secur1ty Date: 06.29.2022 Vendor: https://github.com/creativesaiful Software: https://github.com/creativesaiful/Ecommerce-project-with-php-and-mysqli-Fruits-Bazar- Reference:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/06/28 12:0 a.m.440 views

OpenCart 3.x So Filter Shop By SQL Injection

Exploit Title: OpenCart v3.x So Filter Shop By - Blind SQL Injection Date: 28/06/2022 Exploit Author: Saud Alenazi Vendor Homepage: https://www.opencart.com/ Software Link: https://codecanyon.net/item/so-filter-shop-by-responsive-opencart-module/13945633 Version: V3.X Tested on: XAMPP, Linux...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2022/06/28 12:0 a.m.213 views

Zoo Management System 1.0 Cross Site Scripting

Exploit Title: Zoo Management System 1.0 - Stored Cross-Site-Scripting XSS Date: 05/26/2022 Exploit Author: Angelo Pio Amirante Vendor Homepage: https://www.sourcecodester.com/ Software Link: https://www.sourcecodester.com/php/15344/zoo-management-system-phpoop-free-source-code.html Version: 1.0...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/06/28 12:0 a.m.298 views

AnyDesk 7.0.9 Arbitrary File Write / Denial Of Service

Exploit Title: AnyDesk allow arbitrary file write by symbolic link attack lead to denial-of-service attack on local machine Google Dork: if applicable Date: 24/5/2022 Exploit Author: Erwin Chan Vendor Homepage: https://anydesk.com/en Software Link: https://anydesk.com/en Version: 7.0.9 Tested on:...

0.7AI score
Exploits0
Packet Storm
Packet Storm
added 2022/06/27 12:0 a.m.453 views

WordPress Weblizar 8.9 Code Execution

Exploit Title: WordPress Plugin Weblizar 8.9 - Backdoor Google Dork: 'wp-json/am-member/license' Exploit Author: Sobhan Mahmoodi Vendor Homepage: https://weblizar.com/plugins/school-management/ Version: 8.9 Tested on: windows/linux Vulnerable code: addaction 'restapiinit', function...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2022/06/27 12:0 a.m.374 views

WSO2 Management Console Cross Site Scripting

Exploit Title: WSO2 Management Console Multiple Products - Unauthenticated Reflected Cross-Site Scripting XSS Date: 21 Apr 2022 Exploit Author: cxosmo Vendor Homepage: https://wso2.com Software Link: API Manager https://wso2.com/api-manager/, Identity Server https://wso2.com/identity-server/,...

6.1CVSS0.1AI score0.40481EPSS
Exploits5
Packet Storm
Packet Storm
added 2022/06/27 12:0 a.m.294 views

Coffee Shop Cashiering System 1.0 SQL Injection

Exploit Title: Coffee Shop Cashiering System - Authenticated Time Based Sql injection Date: 27-06-2022 Exploit Author: syad Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/sites/default/files/download/oretnom23/cscs.zip Version: 1.0 Tested on: Windows...

0.7AI score
Exploits0
Packet Storm
Packet Storm
added 2022/06/27 12:0 a.m.302 views

Library Management System With QR Code 1.0 Cross Site Scripting

Title: Library Management System with QR code Attendance 1.0 Stored Cross-Site Scripting Author: Ashish Kumar https://www.linkedin.com/in/ashish-kumar-0b65a3184 Date: 27.06.2022 Vendor: https://www.sourcecodester.com/users/kingbhob02 Software:...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2022/06/27 12:0 a.m.346 views

WordPress W-DALIL 2.0 Cross Site Scripting

Exploit Title: WordPress Plugin W-DALIL - Stored Cross Site Scripting Date: 27-06-2022 Exploit Author: Mariam Tariq - HunterSherlock Vendor Homepage: https://wordpress.org/plugins/w-dalil/ Version: 2.0 Tested on: Firefox Contact me: [email protected] Vulnerable Code: " value="" / Steps To...

7.4AI score
Exploits0
Total number of security vulnerabilities50748