Lucene search
K
PacketstormRecent

50773 matches found

Packet Storm
Packet Storm
added 2021/12/13 12:0 a.m.166 views

Backdoor.Win32.FTP.Matiteman Weak Hardcoded Password

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/fc8eaa2a5752b509dbd02989d8d9f2e2.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.FTP.Matiteman Vulnerability: Weak Hardcoded Password Description: The malware listens...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/10 12:0 a.m.426 views

OpenCATS 0.9.4 Remote Code Execution

Exploit Title: OpenCATS 0.9.4 - Remote Code Execution RCE Google Dork: intext:"Current Available Openings, Recently Posted Jobs" Date: 21/09/2021 Exploit Author: Nicholas Ferreira - https://github.com/Nickguitar Vendor Homepage: https://www.opencats.org/ Software Link:...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/10 12:0 a.m.358 views

Free School Management Software 1.0 Cross Site Scripting

Exploit Title: Free School Management Software 1.0 - 'multiple' Stored Cross-Site Scripting XSS Exploit Author: fuzzyap1 Date: 7-12-2021 Category: Web application Vendor Homepage: https://www.sourcecodester.com/php/15073/free-school-management-software.html Software Link:...

Exploits0
Packet Storm
Packet Storm
added 2021/12/10 12:0 a.m.438 views

Free School Management Software 1.0 Shell Upload

Exploit Title: Free School Management Software 1.0 - Remote Code Execution RCE Exploit Author: fuuzap1 Date: 7-12-2021 Category: Web application Vendor Homepage: https://www.sourcecodester.com/php/15073/free-school-management-software.html Software Link:...

Exploits0
Packet Storm
Packet Storm
added 2021/12/09 12:0 a.m.406 views

WordPress Catch Themes Demo Import 1.6.1 Shell Upload

Exploit Title: Wordpress Plugin Catch Themes Demo Import 1.6.1 - Remote Code Execution RCE Authenticated Date 07.12.2021 Exploit Author: Ron Jost Hacker5preme Vendor Homepage: https://wordpress.org/plugins/catch-themes-demo-import/ Software Link:...

7.2CVSS7.2AI score0.55729EPSS
Exploits6
Packet Storm
Packet Storm
added 2021/12/09 12:0 a.m.410 views

MTPutty 1.0.1.21 SSH Password Disclosure

Exploit Title: MTPutty 1.0.1.21 - SSH Password Disclosure Exploit Author: Sedat Ozdemir Version: 1.0.1.21 Date: 06/12/2021 Vendor Homepage: https://ttyplus.com/multi-tabbed-putty/ Tested on: Windows 10 Proof of Concept ================ Step 1: Open MTPutty and add a new SSH connection. Step 2:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/09 12:0 a.m.356 views

Employees Daily Task Management System 1.0 Cross Site Scripting

Exploit Title: Employees Daily Task Management System 1.0 - 'multiple' Cross Site Scripting XSS Exploit Author: able403 Date: 08/12/2021 Vendor Homepage: https://www.sourcecodester.com/php/15030/employee-daily-task-management-system-php-and-sqlite-source-code.html Software Link:...

Exploits0
Packet Storm
Packet Storm
added 2021/12/09 12:0 a.m.349 views

LimeSurvey 5.2.4 Remote Code Execution

Exploit Title: LimeSurvey 5.2.4 - Remote Code Execution RCE Authenticated Google Dork: inurl:limesurvey/index.php/admin/authentication/sa/login Date: 05/12/2021 Exploit Author: Y1LD1R1M Vendor Homepage: https://www.limesurvey.org/ Software Link:...

0.3AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/09 12:0 a.m.334 views

Employees Daily Task Management System 1.0 SQL Injection

Exploit Title: Employees Daily Task Management System 1.0 - 'username' SQLi Authentication Bypass Exploit Author: able403 Date: 08/12/2021 Vendor Homepage: https://www.sourcecodester.com/php/15030/employee-daily-task-management-system-php-and-sqlite-source-code.html Software Link:...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/09 12:0 a.m.604 views

Microsoft Office Word MSHTML Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft Office Word Malicious MSHTML RCE', 'Description' = %q This module creates a malicious docx file that when opened in Word on a vulnerabl...

8.8CVSS0.96843EPSS
Exploits38
Packet Storm
Packet Storm
added 2021/12/09 12:0 a.m.424 views

Raspberry Pi 5.10 Default Credentials

Exploit Title: Raspberry Pi 5.10 - Default Credentials Date: 08/12/2021 Exploit Author: netspooky Vendor Homepage: https://www.raspberrypi.com/ Software Link: https://www.raspberrypi.com/software/operating-systems/ Version: Raspberry Pi OS = 5.10 Tested on: Raspberry Pi OS 5.10 CVE : CVE-2021-387...

0.2AI score0.15666EPSS
Exploits3
Packet Storm
Packet Storm
added 2021/12/09 12:0 a.m.402 views

TestLink 1.19 Arbitrary File Download

Exploit Title: TestLink 1.19 - Arbitrary File Download Unauthenticated Google Dork: inurl:/testlink/ Date: 07/12/2021 Exploit Author: Gonzalo Villegas Cl34r Exploit Author Homepage: https://nch.ninja Vendor Homepage: https://testlink.org/ Version:1.16 = 1.19 CVSS:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/09 12:0 a.m.353 views

Kabir Alhasan Student Management System 1.0 SQL Injection

Exploit Title: Student Management System 1.0 - SQLi Authentication Bypass Date: 2020-07-06 Exploit Author: Enes Özeser Vendor Homepage: https://www.sourcecodester.com/php/14268/student-management-system.html Version: 1.0 Tested on: Windows & WampServer CVE: CVE-2020-23935 1- Go to following url...

9.8CVSS0.1AI score0.15926EPSS
Exploits6
Packet Storm
Packet Storm
added 2021/12/09 12:0 a.m.730 views

Grafana 8.3.0 Directory Traversal / Arbitrary File Read

Exploit Title: Grafana 8.3.0 - Directory Traversal and Arbitrary File Read Date: 08/12/2021 Exploit Author: s1gh Vendor Homepage: https://grafana.com/ Vulnerability Details: https://github.com/grafana/grafana/security/advisories/GHSA-8pjx-jj86-j47p Version: V8.0.0-beta1 through V8.3.0 Description...

7.5CVSS0.1AI score0.88849EPSS
Exploits44
Packet Storm
Packet Storm
added 2021/12/09 12:0 a.m.301 views

Chikitsa Patient Management System 2.0.2 Plugin Remote Code Execution

Exploit Title: Chikitsa Patient Management System 2.0.2 - Remote Code Execution RCE Authenticated Date: 03/12/2021 Exploit Author: 0z09e https://twitter.com/0z09e Vendor Homepage: https://sourceforge.net/u/dharashah/profile/ Software Link:...

0.6AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/09 12:0 a.m.344 views

Chikitsa Patient Management System 2.0.2 Backup Remote Code Execution

Exploit Title: Chikitsa Patient Management System 2.0.2 - 'plugin' Remote Code Execution RCE Authenticated Date: 03/12/2021 Exploit Author: 0z09e https://twitter.com/0z09e Vendor Homepage: https://sourceforge.net/u/dharashah/profile/ Software Link:...

0.3AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/08 12:0 a.m.409 views

Reprise License Manager 14.2 Unauthenticated Password Change

Product: Reprise License Manager 14.2 Vendor: Reprise Software CVE ID: CVE-2021-44152 Vulnerability Title: Unauthenticated Password Change Severity: High Authors: Mark Staal Steenberg, Bilal El Ghoul, Gionathan Armando Reale, Andreas Fyhn Andersen, Oliver Lind Nordestgaard Date: 2021-11-25...

0.58555EPSS
Exploits3
Packet Storm
Packet Storm
added 2021/12/08 12:0 a.m.279 views

Reprise License Manager 14.2 User Enumeration

Product: Reprise License Manager 14.2 Vendor: Reprise Software CVE ID: CVE-2021-44155 Vulnerability Title: Unauthenticated User Enumeration Severity: Low Authors: Mark Staal Steenberg, Bilal El Ghoul, Gionathan Armando Reale, Andreas Fyhn Andersen, Oliver Lind Nordestgaard Date: 2021-11-25...

5.4AI score0.01846EPSS
Exploits3
Packet Storm
Packet Storm
added 2021/12/08 12:0 a.m.405 views

Reprise License Manager 14.2 Buffer Overflow

Product: Reprise License Manager 14.2 Vendor: Reprise Software CVE ID: CVE-2021-44154 Vulnerability Title: Authenticated Buffer Overflow Severity: High Authors: Mark Staal Steenberg, Bilal El Ghoul, Gionathan Armando Reale, Andreas Fyhn Andersen, Oliver Lind Nordestgaard Date: 2021-11-25...

0.6AI score0.0185EPSS
Exploits3
Packet Storm
Packet Storm
added 2021/12/08 12:0 a.m.358 views

Reprise License Manager 14.2 Session Hijacking

Product: Reprise License Manager 14.2 Vendor: Reprise Software CVE ID: CVE-2021-44151 Vulnerability Title: Unauthenticated Session Hijacking Severity: Medium/High Authors: Mark Staal Steenberg, Bilal El Ghoul, Gionathan Armando Reale, Andreas Fyhn Andersen, Oliver Lind Nordestgaard Date: 2021-11-...

0.4AI score0.02529EPSS
Exploits2
Packet Storm
Packet Storm
added 2021/12/08 12:0 a.m.465 views

Reprise License Manager 14.2 Remote Binary Execution

Product: Reprise License Manager 14.2 Vendor: Reprise Software CVE ID: CVE-2021-44153 Vulnerability Title: Authenticated Remote Binary Execution Severity: High Authors: Mark Staal Steenberg, Bilal El Ghoul, Gionathan Armando Reale, Andreas Fyhn Andersen, Oliver Lind Nordestgaard Date: 2021-11-25...

9.3CVSS0.2AI score0.02146EPSS
Exploits4
Packet Storm
Packet Storm
added 2021/12/06 12:0 a.m.286 views

Croogo 3.0.2 Remote Code Execution

Exploit Title: Croogo 3.0.2 - Remote Code Execution Authenticated Date: 05/12/2021 Exploit Author: Deha Berkin Bir Vendor Homepage: https://croogo.org/ Software Link: https://downloads.croogo.org/v3.0.2.zip Version: 3.0.2 Tested on: Windows 10 Home Single Language 20H2 & WampServer 3.2.3 ==...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/06 12:0 a.m.405 views

HCL Lotus Notes 12 Unquoted Service Path

Exploit Title: HCL Lotus Notes V12- Unquoted Service Path Exploit Author: Mert DAŞ Version: V12 Date: 01/12/2021 Vendor Homepage: https://www.hcltechsw.com/domino/download Tested on: Windows 10 ProcessId : 3860 Name : LNSUSvc DisplayName : HCL Notes Smart Upgrade Hizmeti PathName :...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/06 12:0 a.m.366 views

Microsoft Internet Explorer Active-X Control Security Bypass

Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/MICROSOFT-INTERNET-EXPLORER-ACTIVEX-CONTROL-SECURITY-BYPASS.txt + twitter.com/hyp3rlinx + ISR: ApparitionSec Vendor www.microsoft.com Product Microsoft Internet Explorer MSIE...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/06 12:0 a.m.405 views

Auerswald COMpact 8.0B Arbitrary File Disclosure

Advisory: Auerswald COMpact Arbitrary File Disclosure RedTeam Pentesting discovered a vulnerability in the web-based management interface of the Auerswald COMpact 5500R PBX which allows users with the "sub-admin" privilege to access any files on the PBX's file system. Details ======= Product:...

0.6AI score0.02394EPSS
Exploits4
Packet Storm
Packet Storm
added 2021/12/06 12:0 a.m.465 views

Auerswald COMfortel 1400/2600/3600 IP 2.8F Authentication Bypass

Advisory: Auerswald COMfortel 1400/2600/3600 IP Authentication Bypass RedTeam Pentesting discovered a vulnerability in the web-based configuration management interface of the Auerswald COMfortel 1400 and 2600 IP desktop phones. The vulnerability allows accessing configuration data and settings in...

0.3AI score0.5106EPSS
Exploits4
Packet Storm
Packet Storm
added 2021/12/06 12:0 a.m.429 views

Auerswald COMpact 8.0B Backdoors

Advisory: Auerswald COMpact Multiple Backdoors RedTeam Pentesting discovered several backdoors in the firmware for the Auerswald COMpact 5500R PBX. These backdoors allow attackers who are able to access the web-based management application full administrative access to the device. Details =======...

0.5AI score0.71979EPSS
Exploits6
Packet Storm
Packet Storm
added 2021/12/06 12:0 a.m.359 views

Auerswald COMpact 8.0B Privilege Escalation

Advisory: Auerswald COMpact Privilege Escalation RedTeam Pentesting discovered a vulnerability in the web-based management interface of the Auerswald COMpact 5500R PBX which allows low-privileged users to access passwords of administrative user accounts. Details ======= Product: COMpact 4000,...

1.5AI score0.02028EPSS
Exploits4
Packet Storm
Packet Storm
added 2021/12/06 12:0 a.m.610 views

Simple Online Men's Salon Management System 1.0 SQL Injection

MSMS Vendor Description The password parameter on MSMS 1.0 appears to be vulnerable to SQL injection attacks. The predictive tests of this application interacted with that domain, indicating that the injected SQL query was executed. The attacker can retrieve all authentication and information abo...

0.3AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/03 12:0 a.m.437 views

WordPress DZS Zoomsounds 6.45 Arbitrary File Read

Exploit Title: WordPress Plugin DZS Zoomsounds 6.45 - Arbitrary File Read Unauthenticated Google Dork: inurl:/wp-content/plugins/dzs-zoomsounds/ Date: 2/12/2021 Exploit Author: Uriel Yochpaz Vendor Homepage: https://digitalzoomstudio.net/docs/wpzoomsounds/ Software Link: Version: 1.10, 1.20, 1.30...

7.5CVSS7.7AI score0.66543EPSS
Exploits5
Packet Storm
Packet Storm
added 2021/12/03 12:0 a.m.430 views

Backdoor.Win32.Vernet.axt Insecure Permissions

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/f529d60abbdafccce3dc5e5ffd6cdfa6.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Vernet.axt Vulnerability: Insecure Permissions Description: The malware writes an .EX...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/03 12:0 a.m.349 views

Trojan.Win32.Mucc.ivk Unquoted Service Path

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/1d622f8c72b010b8d7213c032db122e4.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan.Win32.Mucc.ivk Vulnerability: Insecure Service Path Description: The malware creates a servic...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/03 12:0 a.m.458 views

DuckDuckGo 7.64.4 Address Bar Spoofing

Vulnerability: Address Bar Spoofing Vulnerability Product: DuckDuckGo Discovered by: Rafay Baloch and Muhammad Samak Version: 7.64.4 Impact: Moderate Company: Cyber Citadel Website: https://www.cybercitadel.com Description DuckDuckGo browser for iOS was prone to an "Address Bar Spoofing"...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/03 12:0 a.m.333 views

WordPress Slider By Soliloquy 2.6.2 Cross Site Scripting

Exploit Title: WordPress Plugin Slider by Soliloquy 2.6.2 - 'title' Stored Cross Site Scripting XSS Authenticated Date: 02/12/2021 Exploit Author: Abdurrahman Erkan @erknabd Vendor Homepage: https://soliloquywp.com/ Software Link: https://wordpress.org/plugins/soliloquy-lite/ Version: 2.6.2 Teste...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/03 12:0 a.m.401 views

WordPress All-In-One Video Gallery 2.4.9 Local File Inclusion

Exploit Title: WordPress Plugin All-in-One Video Gallery plugin 2.4.9 - Local File Inclusion LFI Exploit Author: Mohamed Magdy Abumusilm Aka m19o Software: All-in-One Video Gallery plugin Version: = 2.4.9 Tested on: Windows,linux Poc:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/03 12:0 a.m.384 views

Backdoor.Win32.Bionet.10 Authentication Bypass / Code Execution

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/99b4428521fa9d9da18e0ccd79e5b985.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Bionet.10 Vulnerability: Authentication Bypass RCE Description: The malware listens o...

0.9AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/03 12:0 a.m.318 views

Backdoor.Win32.WinShell.50 Hardcoded Password

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/8170928cd3e0f1a79b9d40ae19a4d217.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.WinShell.50 Vulnerability: Weak Hardcoded Password Description: The malware listens o...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/03 12:0 a.m.432 views

Online Magazine Management System 1.0 SQL Injection

Exploit Title: Online Magazine Management System 1.0 - SQLi Authentication Bypass Date: 01-12-2021 Exploit Author: Mohamed habib Smidi Craniums Vendor Homepage: https://www.sourcecodester.com/php/15061/online-magazine-management-system-php-free-source-code.html Software Link:...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/03 12:0 a.m.493 views

M-Files Web Denial Of Service

I. SUMMARY ============================================================================================================================================================= Title: M-Files Web Improper Range Header Processing Denial of Services DoS Vulnerability Product: M-Files Web version before...

7.6AI score0.02837EPSS
Exploits3
Packet Storm
Packet Storm
added 2021/12/03 12:0 a.m.400 views

OrbiTeam BSCW Server XSS / LFI / User Enumeration

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple vulnerabilities in BSCW Server product: OrbiTeam BSCW Server vulnerable version: BSCW Server 5.0.x, 5.1.x, =5.2.4, =7.3.x, =7.4.3 fixed version: 5.2.5, 7.4.4 CVE...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/03 12:0 a.m.833 views

Ubuntu Overlayfs Local Privilege Escalation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule '2021 Ubuntu Overlayfs LPE', 'Description' = %q This module exploits a vulnerability in Ubuntu's implementation of overlayfs. The vulnerability is...

8.8CVSS0.5AI score0.43988EPSS
Exploits27
Packet Storm
Packet Storm
added 2021/12/03 12:0 a.m.379 views

Backdoor.Win32.WinShell.50 Hardcoded Password

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/0faecbdfccf3144d487971ed47f3665c.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.WinShell.50 Vulnerability: Weak Hardcoded Password Description: The malware listens o...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/03 12:0 a.m.425 views

Online Pre-Owned / Used Car Showroom Management System 1.0 SQL Injection

Exploit Title: Online Pre-owned/Used Car Showroom Management System 1.0 - SQLi Authentication Bypass Date: 01-12-2021 Exploit Author: Mohamed habib Smidi Craniums Vendor Homepage: https://www.sourcecodester.com/php/15067/online-pre-ownedused-car-showroom-management-system-php-free-source-code.htm...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/01 12:0 a.m.379 views

Online Enrollment Management System In PHP And PayPal 1.0 Cross Site Scripting

Exploit Title: Online Enrollment Management System in PHP and PayPal 1.0 - 'UNAME' Stored Cross-Site Scripting Date: 2021-08-31 Exploit Author: Tushar Jadhav Vendor Homepage: https://www.sourcecodester.com/ Software Link:...

5.4CVSS0.2AI score0.01635EPSS
Exploits4
Packet Storm
Packet Storm
added 2021/12/01 12:0 a.m.393 views

MilleGPG5 5.7.2 Luglio 2021 Privilege Escalation

Exploit Title: MilleGPG5 5.7.2 Luglio 2021 x64 - Local Privilege Escalation Date: 2021-07-19 Author: Alessandro 'mindsflee' Salzano Vendor Homepage: https://millegpg.it/ Software Homepage: https://millegpg.it/ Software Link: https://www.millegpg.it/download/MilleGPGInstall.exe Version: 5.7.2 Test...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/01 12:0 a.m.431 views

Advanced Comment System 1.0 Remote Command Execution

Exploit Title: Advanced Comment System 1.0 - Remote Command Execution RCE Date: November 30, 2021 Exploit Author: Nicole Daniella Murillo Mejias Version: Advanced Comment System 1.0 Tested on: Linux !/usr/bin/env python3 DESCRIPTION: Commands are Base64 encoded and sent via POST requests to the...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2021/11/30 12:0 a.m.347 views

Laundry Booking Management System 1.0 Remote Code Execution

Exploit Title: Laundry Booking Management System 1.0 - Remote Code Execution RCE Date: 29/11/2021 Exploit Author: Pablo Santiago Vendor Homepage: https://www.sourcecodester.com/php/14400/laundry-booking-management-system-php-source-code.html Software Link:...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2021/11/29 12:0 a.m.538 views

Orangescrum 1.8.0 Privilege Escalation

Exploit Title: orangescrum 1.8.0 - Privilege escalation Authenticated Date: 07/10/2021 Exploit Author: Hubert Wojciechowski Contact Author: [email protected] Company: https://redteam.pl Vendor Homepage: https://www.orangescrum.org/ Software Link: https://www.orangescrum.org/ Version: 1.8.0 Teste...

0.6AI score
Exploits0
Packet Storm
Packet Storm
added 2021/11/29 12:0 a.m.417 views

Orangescrum 1.8.0 Cross Site Scripting

Exploit Title: orangescrum 1.8.0 - 'Multiple' Cross-Site Scripting XSS Authenticated Date: 28/11/2021 Exploit Author: Hubert Wojciechowski Contact Author: [email protected] Company: https://redteam.pl Vendor Homepage: https://www.orangescrum.org/ Software Link: https://www.orangescrum.org/...

Exploits0
Packet Storm
Packet Storm
added 2021/11/29 12:0 a.m.598 views

Orangescrum 1.8.0 SQL Injection

Exploit Title: orangescrum 1.8.0 - 'Multiple' SQL Injection Authenticated Date: 28/11/2021 Exploit Author: Hubert Wojciechowski Contact Author: [email protected] Company: https://redteam.pl Vendor Homepage: https://www.orangescrum.org/ Software Link: https://www.orangescrum.org/ Version: 1.8.0...

0.4AI score
Exploits0
Total number of security vulnerabilities50773