Packetstorm - Page 152 of Packetstorm Vulnerabilities List | Vulners.com

PacketstormRecent

Recent Most viewed

50624 matches found

Packet Storm•added 2021/10/01 12:0 a.m.•303 views

Exam Form Submission System 1.0 SQL Injection

Exploit Title: Exam Form Submission System 1.0 - SQL Injection Authentication Bypass Date: 30-09-2021 Exploit Author: Nitin Sharma Vidvansh Vendor Homepage: https://code-projects.org Product link: https://code-projects.org/exam-form-submission-in-php-with-source-code/ Version: 1.0 Tested on: XAMP...

Packet Storm•added 2021/10/01 12:0 a.m.•287 views

Phpwcms 1.9.30 Cross Site Scripting

Exploit Title: Phpwcms 1.9.30 - File Upload to XSS Date: 30/9/2021 Exploit Author: Okan Kurtulus | okankurtulus.com.tr Software Link: http://www.phpwcms.org/ Version: 1.9.30 Tested on: Ubuntu 16.04 Steps: 1- You need to login to the system. http://target.com/phpwcms/login.php 2- Creating payload...

Packet Storm•added 2021/10/01 12:0 a.m.•398 views

WhatsUpGold 21.0.3 Cross Site Scripting

Exploit Title: WhatsUpGold 21.0.3 - Stored Cross-Site Scripting XSS Date: 09.17.2021 Exploit Author: Andreas Finstad 4ndr34z Vendor Homepage: https://www.whatsupgold.com Version: v.21.0.3, Build 188 Tested on: Windows 2019 Server CVE : CVE-2021-41318 Reference:...

6.4AI score0.00453EPSS

Packet Storm•added 2021/10/01 12:0 a.m.•364 views

Vehicle Service Management System 1.0 Shell Upload

Exploit Title: Vehicle Service Management System 1.0 - Remote Code Execution RCE Unauthenticated Date: 30.09.2021 Exploit Author: Fikrat Ghuliev Ghuliev Vendor Homepage: https://www.sourcecodester.com/php/14972/vehicle-service-management-system-php-free-source-code.html Software Link:...

Packet Storm•added 2021/10/01 12:0 a.m.•293 views

Blood Bank System 1.0 SQL Injection

Exploit Title: Blood Bank System 1.0 - SQL Injection / Authentication Bypass Date: 30-9-2021 Exploit Author: Nitin Sharma vidvansh Vendor Homepage: https://code-projects.org/blood-bank-in-php-with-source-code/ Software Link :...

Packet Storm•added 2021/10/01 12:0 a.m.•293 views

Drupal MiniorangeSAML 8.x-2.22 Privilege Escalation

Exploit Title: Drupal Module MiniorangeSAML 8.x-2.22 - Privilege escalation via XML Signature Wrapping Date: 09/07/2021 Exploit Author: Cristian 'void' Giustini Vendor Homepage: https://www.miniorange.com/ Software Link: https://www.drupal.org/project/miniorangesaml Version: 8.x-2.22 REQUIRED...

Packet Storm•added 2021/10/01 12:0 a.m.•392 views

CMSimple_XH 1.7.4 Remote Command Execution

Exploit Title: CMSimpleXH 1.7.4 - Remote Code Execution RCE Authenticated Date: 01-10-2021 Exploit Author: Halit AKAYDIN hLtAkydn Vendor Homepage: https://www.cmsimple-xh.org/ Software Link: https://www.cmsimple-xh.org/?Downloads Version: 1.7.4 Category: Webapps Tested on: Linux/Windows CMSimpleX...

Packet Storm•added 2021/09/30 12:0 a.m.•215 views

WordPress JS Jobs Manager 1.1.7 Authorization Bypass

Exploit Title: Wordpress Plugin JS Jobs Manager 1.1.7 - Unauthenticated Plugin Install/Activation Google Dork: inurl:/wp-content/plugins/js-jobs/ Date: 22/09/2021 Exploit Author: spacehen Vendor Homepage: https://wordpress.org/plugins/js-jobs/ Version: spacehen www.github.com/spacehen" def...

Packet Storm•added 2021/09/30 12:0 a.m.•293 views

PlaceOS 1.2109.1 Open Redirection

Exploit Title: PlaceOS 1.2109.1 - Open Redirection Date: 29-09-2021 Exploit Author: Hamza Khedr @ Accenture Austalia AARO Team Vendor Homepage: https://place.technology/ Software Link: https://github.com/PlaceOS Version: 1.29.10 Tested on: Ubuntu 20.04 CVE: CVE-2021-41826 PoC:...

6.4AI score0.23963EPSS

Packet Storm•added 2021/09/30 12:0 a.m.•405 views

Pharmacy Point Of Sale System 1.0 SQL Injection

Exploit Title: Pharmacy Point of Sale System 1.0 - 'Multiple' SQL Injection SQLi Date: 28.09.2021 Exploit Author: Murat Vendor Homepage: https://www.sourcecodester.com/php/14957/pharmacy-point-sale-system-using-php-and-sqlite-free-source-code.html Software Link:...

Packet Storm•added 2021/09/30 12:0 a.m.•312 views

Cmsimple 5.4 Remote Code Execution

Exploit Title: Cmsimple 5.4 - Remote Code Execution RCE Authenticated Date: 29.09.2021 Exploit Author: pussycat0x Vendor Homepage: https://www.cmsimple.org/ Version: 5.4 Tested on: ubuntu-20.04.1 import argparse from bs4 import BeautifulSoup from argparse import ArgumentParser import requests...

Packet Storm•added 2021/09/29 12:0 a.m.•387 views

WordPress Select All Categories And Taxonomies 1.3.1 Cross Site Scripting

Exploit Title: WordPress Plugin Select All Categories and Taxonomies 1.3.1 - Reflected Cross-Site Scripting XSS Date: 2/15/2021 Author: 0xB9 Software Link: https://downloads.wordpress.org/plugin/select-all-categories-and-taxonomies-change-checkbox-to-radio-buttons.1.3.1.zip Version: 1.3.1 Tested...

6.1CVSS0.2234EPSS

Packet Storm•added 2021/09/29 12:0 a.m.•187 views

Pet Shop Management System 1.0 Shell Upload

Title: Pet Shop Management System 1.0 - Remote Code Execution RCE Unauthenticated Date: 28.09.2021 Author: Mr.Gedik Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/14962/petshop-management-system-using-phppdo-oop-full-source-code-complete.html...

Packet Storm•added 2021/09/29 12:0 a.m.•201 views

Google Extensible Service Proxy Header Forgery

Extensible Service Proxy a.k.a. ESP is an open source software by Google assisting Cloud Endpoints, a product on Google Cloud Platform. ESPv1 is an nginx based proxy which enables API management capabilities for JSON/REST or gRPC API services. In a typical deployment, ESP is running and fronting...

Packet Storm•added 2021/09/29 12:0 a.m.•210 views

Storage Unit Rental Management System 1.0 Shell Upload

Exploit Title: Storage Unit Rental Management System 1.0 - Remote Code Execution RCE Unauthenticated Date: 28.09.2021 Exploit Author: Fikrat Ghuliev Ghuliev Vendor Homepage: https://www.sourcecodester.com/php/14932/storage-unit-rental-management-system-using-php-free-source-code.html Software Lin...

Packet Storm•added 2021/09/29 12:0 a.m.•219 views

Mitrastar GPT-2541GNAC-N1 Privilege Escalation

Exploit Title: Mitrastar GPT-2541GNAC-N1 - Privilege escalation Date: 10-08-2021 Exploit Author: Leonardo Nicolas Servalli Vendor Homepage: www.mitrastar.com Platform: Mistrastar router devices GPT-2541GNAC-N1 HGU Tested on: Firmware BRg3.5100VNZ0b33 Vulnerability analysis:...

Packet Storm•added 2021/09/29 12:0 a.m.•247 views

Covid Vaccination Scheduler System 1.0 SQL Injection / Cross Site Scripting

CVE-2021-36621 Vendor Description Sourcecodester Online Covid Vaccination Scheduler System 1.0 is vulnerable to SQL Injection, XSS-STORED PHPSESSID Hijacking, and remote SQL Injection - bypass Authentication. The attacker can be hijacking the PHPSESSID by using this vulnerability and then he can...

6.8CVSS0.5AI score0.0131EPSS

Packet Storm•added 2021/09/29 12:0 a.m.•209 views

WordPress Redirect 404 To Parent 1.3.0 Cross Site Scripting

Exploit Title: WordPress Plugin Redirect 404 to Parent 1.3.0 - Reflected Cross-Site Scripting XSS Date: 2/3/2021 Author: 0xB9 Software Link: https://downloads.wordpress.org/plugin/redirect-404-to-parent.1.3.0.zip Version: 1.3.0 Tested on: Windows 10 CVE: CVE-2021-24286 1. Description: This plugin...

6.1CVSS0.1AI score0.52303EPSS

Packet Storm•added 2021/09/29 12:0 a.m.•211 views

OpenSIS 8.0 Cross Site Scripting

Exploit Title: OpenSIS 8.0 - 'cpidmissattn' Reflected Cross-Site Scripting XSS Date: 9/24/2021 Exploit Author: Eric Salario Vendor Homepage: http://www.os4ed.com/ Software Link: https://opensis.com/download Version: 8.0 Tested on: Windows, Linux CVE : CVE-2021-40310 OpenSIS Community Edition...

5.6AI score0.00263EPSS

Packet Storm•added 2021/09/28 12:0 a.m.•524 views

WordPress Popup 1.10.4 Cross Site Scripting

Exploit Title: WordPress Plugin Popup 1.10.4 - Reflected Cross-Site Scripting XSS Date: 3/28/2021 Author: 0xB9 Software Link: https://wordpress.org/plugins/popup-by-supsystic/ Version: 1.10.4 Tested on: Windows 10 CVE: CVE-2021-24275 1. Description: The plugin did not sanitize the tab parameter o...

6.1CVSS0.05897EPSS

Packet Storm•added 2021/09/28 12:0 a.m.•160 views

FatPipe Networks WARP 10.2.2 Authorization Bypass

FatPipe Networks WARP 10.2.2 Authorization Bypass Vendor: FatPipe Networks Inc. Product web page: https://www.fatpipeinc.com Affected version: WARP 10.2.2r38 10.2.2r25 10.2.2r10 10.1.2r60p82 10.1.2r60p71 10.1.2r60p65 10.1.2r60p58s1 10.1.2r60p58 10.1.2r60p55 10.1.2r60p45 10.1.2r60p35 10.1.2r60p32...

Packet Storm•added 2021/09/28 12:0 a.m.•223 views

WordPress TranslatePress 2.0.8 Cross Site Scripting

Exploit Title: WordPress Plugin TranslatePress 2.0.8 - Stored Cross-Site Scripting XSS Authenticated Date: 06-08-2021 Exploit Author: Nosa Shandy Apapedulimu Vendor Homepage: https://translatepress.com/ Software Link: https://wordpress.org/plugins/translatepress-multilingual/ Reference:...

5.1AI score0.01572EPSS

Packet Storm•added 2021/09/28 12:0 a.m.•215 views

FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 Backdoor Account

FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 Hidden Backdoor Account Write Access Vendor: FatPipe Networks Inc. Product web page: https://www.fatpipeinc.com Affected version: WARP / IPVPN / MPVPN 10.2.2r38 10.2.2r25 10.2.2r10 10.1.2r60p82 10.1.2r60p71 10.1.2r60p65 10.1.2r60p58s1 10.1.2r60p58...

Packet Storm•added 2021/09/28 12:0 a.m.•253 views

Apache James Server 2.3.2 Remote Command Execution

Exploit Title: Apache James Server 2.3.2 - Remote Command Execution RCE Authenticated 2 Date: 27/09/2021 Exploit Author: shinris3n Vendor Homepage: http://james.apache.org/server/ Software Link: http://ftp.ps.pl/pub/apache/james/server/apache-james-2.3.2.zip Version: Apache James Server 2.3.2...

Packet Storm•added 2021/09/28 12:0 a.m.•194 views

FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 Privilege Escalation

!/usr/bin/env python3 FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 Remote Privilege Escalation Vendor: FatPipe Networks Inc. Product web page: https://www.fatpipeinc.com Affected version: WARP / IPVPN / MPVPN 10.2.2r38 10.2.2r25 10.2.2r10 10.1.2r60p82 10.1.2r60p71 10.1.2r60p65 10.1.2r60p58s1...

Packet Storm•added 2021/09/28 12:0 a.m.•241 views

FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 Cross Site Request Forgery

!-- FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 CSRF Add Admin Exploit Vendor: FatPipe Networks Inc. Product web page: https://www.fatpipeinc.com Affected version: WARP / IPVPN / MPVPN 10.2.2r38 10.2.2r25 10.2.2r10 10.1.2r60p82 10.1.2r60p71 10.1.2r60p65 10.1.2r60p58s1 10.1.2r60p58 10.1.2r60p55...

Packet Storm•added 2021/09/28 12:0 a.m.•227 views

WordPress Ultimate Maps 1.2.4 Cross Site Scripting

Exploit Title: WordPress Plugin Ultimate Maps 1.2.4 - Reflected Cross-Site Scripting XSS Date: 3/28/2021 Author: 0xB9 Software Link: https://wordpress.org/plugins/ultimate-maps-by-supsystic/ Version: 1.2.4 Tested on: Windows 10 CVE: CVE-2021-24274 1. Description: The plugin did not sanitize the t...

6.1CVSS0.05512EPSS

Packet Storm•added 2021/09/28 12:0 a.m.•462 views

FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 Configuration Disclosure

FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 Unauthenticated Config Download Vendor: FatPipe Networks Inc. Product web page: https://www.fatpipeinc.com Affected version: WARP / IPVPN / MPVPN 10.2.2r38 10.2.2r25 10.2.2r10 10.1.2r60p82 10.1.2r60p71 10.1.2r60p65 10.1.2r60p58s1 10.1.2r60p58 10.1.2r60p55...

Packet Storm•added 2021/09/28 12:0 a.m.•234 views

WordPress Contact Form 1.7.14 Cross Site Scripting

Exploit Title: WordPress Plugin Contact Form 1.7.14 - Reflected Cross-Site Scripting XSS Date: 3/28/2021 Author: 0xB9 Software Link: https://wordpress.org/plugins/contact-form-by-supsystic/ Version: 1.7.14 Tested on: Windows 10 CVE: CVE-2021-24276 1. Description: The Contact Form by Supsystic...

6.1CVSS6.3AI score0.08366EPSS

Packet Storm•added 2021/09/27 12:0 a.m.•201 views

Cisco Small Business RV130W 1.0.3.44 Injection

Exploit Title: Cisco small business RV130W 1.0.3.44 - Inject Counterfeit Routers Date: 24/09/2021 Exploit Author: Michael Alamoot Vendor Homepage: https://www.cisco.com/ Version: RV130W 1.0.3.44 Tested on: Kali linux ! /usr/bin/env python3 from scapy.contrib.eigrp import EIGRPAuthData from...

Packet Storm•added 2021/09/27 12:0 a.m.•252 views

Backdoor.Win32.Hupigon.afjk Directory Traversal

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/8dc8abc99c1e7908fe9d048a4e360960B.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Hupigon.afjk Vulnerability: Directory Traversal Description: The malware deploys a W...

Packet Storm•added 2021/09/27 12:0 a.m.•190 views

Library System 1.0 SQL Injection

Exploit Title: Library System 1.0 - 'studentid' SQL injection Authenticated Google Dork: intitle: "Library System by YahooBaba" Date: 26/08/2021 Exploit Author: Vinay Bhuria Vendor Homepage: https://www.yahoobaba.net Software Link: https://www.yahoobaba.net/project/library-system-in-php Version:...

Packet Storm•added 2021/09/27 12:0 a.m.•221 views

Ether MP3 CD Burner 1.3.8 Buffer Overflow

Exploit Title: EtherMP3CDBurner 1.3.8 - Buffer Overflow SEH Date: 24.09.2021 Software Link: https://mp3-avi-mpeg-wmv-rm-to-audio-cd-burner.software.informer.com/download/?caa8ec-1.2 Software Link 2: https://anonfiles.com/X2Ff36J6ue/ethercdburnerexe Exploit Author: Achilles Tested Version: 1.3.8...

Packet Storm•added 2021/09/27 12:0 a.m.•200 views

Simple Attendance System 1.0 Authentication Bypass

Exploit Title: Simple Attendance System v1.0 - Unauthenticated Add Admin Account Exploit Author: Richard Jones Date: September 26, 2021 Vendor Homepage: https://www.sourcecodester.com/php/14948/simple-attendance-system-php-and-sqlite-free-source-code.html Software Link:...

Packet Storm•added 2021/09/27 12:0 a.m.•245 views

PASS-PHP 1.0 SQL Injection / Cross Site Scripting

Exploit Title: PASS-PHP by: oretnom23 v1.0 is vulnerable to remote SqL-Injection bypass Authentication, XSS-Stored and PHPSESSID Hijacking. Author: nu11secur1ty Testing and Debugging: nu11secur1ty Date: 09.24.2021 Vendor: https://www.sourcecodester.com/user/257130/activity Link:...

Packet Storm•added 2021/09/27 12:0 a.m.•212 views

Trojan-Downloader.Win32.VB.abb Insecure Permissions

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/8f81373b0f0e6f60206a1a707de2ed77.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan-Downloader.Win32.VB.abb Vulnerability: Insecure Permissions Description: The malware creates ...

Packet Storm•added 2021/09/27 12:0 a.m.•188 views

Backdoor.Win32.RmtSvc.l Denial Of Service

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/38f9ee3ce51ead0ce6bf2edcaa462611.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.RmtSvc.l Vulnerability: Remote Denial of Service Description: The malware listens on...

Packet Storm•added 2021/09/27 12:0 a.m.•216 views

WordPress Wappointment 2.2.4 Cross Site Scripting

Exploit Title: WordPress Plugin Wappointment 2.2.4 - Stored Cross-Site Scripting XSS Date: 2021-07-31 Exploit Author: Renos Nikolaou Software Link: https://downloads.wordpress.org/plugin/wappointment.2.2.4.zip Version: 2.2.4 Tested on: Windows Description : Wappointment is prone to Stored Cross...

Packet Storm•added 2021/09/27 12:0 a.m.•191 views

Backdoor.Win32.Hupigon.fjcd Unauthenticated Open Proxy

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/284f36e35db6a0aa9a493f39d834367e.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Hupigon.fjcd Vulnerability: Unauthenticated Open Proxy Description: The malware liste...

Packet Storm•added 2021/09/27 12:0 a.m.•218 views

Backdoor.Win32.Agent.aer Insecure Transit / Password Disclosure

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/9576a6a59715a69be499fa41d6383a64B.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Agent.aer Vulnerability: Insecure Transit Password Disclosure Description: The malwa...

Packet Storm•added 2021/09/27 12:0 a.m.•398 views

XAMPP 7.4.3 Privilege Escalation

Exploit Title: XAMPP 7.4.3 - Local Privilege Escalation Exploit Author: Salman Asad @deathflash1411, [email protected] Original Author: Maximilian Barz @S1lkys Date: 27/09/2021 Vendor Homepage: https://www.apachefriends.org Version: XAMPP 7.2.29, 7.3.x 7.3.16 & 7.4.x 7.4.4 Tested on: Windows 10 +...

8.8CVSS0.5AI score0.3891EPSS

Packet Storm•added 2021/09/27 12:0 a.m.•223 views

Backdoor.Win32.Hupigon.afjk Authentication Bypass / Code Execution

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/8dc8abc99c1e7908fe9d048a4e360960.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Hupigon.afjk Vulnerability: Authentication Bypass RCE Description: The malware runs a...

Packet Storm•added 2021/09/27 12:0 a.m.•212 views

Backdoor.Win32.Agent.aer Denial Of Service

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/9576a6a59715a69be499fa41d6383a64.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Agent.aer Vulnerability: Remote Denial of Service Description: The malware listens on...

Packet Storm•added 2021/09/26 12:0 a.m.•135 views

Cyberfox Web Brwoser 52.9.1 Denial Of Service

Exploit Title: Cyberfox Web Browser 52.9.1 - Denial-of-Service PoC Date: 2021-09-26 Exploit Author: Aryan Chehreghani Vendor Homepage: https://cyberfox.8pecxstudios.com Software Link: https://www.techspot.com/downloads/6568-cyberfox-web-browser.html Version: v52.9.1 Possibly all versions Tested o...

Packet Storm•added 2021/09/24 12:0 a.m.•248 views

SmarterTools SmarterTrack 7922 Information Disclosure

Exploit Title: SmarterTools SmarterTrack 7922 - 'Multiple' Information Disclosure Google Dork: intext:"Powered by SmarterTrack" Date: 23/01/2020 Exploit Author: Andrei Manole Vendor Homepage: https://www.smartertools.com/ Software Link: https://www.smartertools.com/smartertrack Version: TESTED ON...

Packet Storm•added 2021/09/24 12:0 a.m.•287 views

OpenVPN Monitor 1.1.3 Authorization Bypass / Denial Of Service

COMPASS SECURITY ADVISORY https://www.compass-security.com/research/advisories/ Product: openvpn-monitor Vendor: https://github.com/furlongm/openvpn-monitor CSNC ID: CSNC-2021-009 CVE ID: CVE-2021-31606 Subject: Authorization Bypass Severity: Medium Effect: Denial of Service Author: Emanuel Duss...

0.9AI score0.0108EPSS

Packet Storm•added 2021/09/24 12:0 a.m.•320 views

OpenVPN Monitor 1.1.3 Command Injection

COMPASS SECURITY ADVISORY https://www.compass-security.com/research/advisories/ Product: openvpn-monitor Vendor: https://github.com/furlongm/openvpn-monitor CSNC ID: CSNC-2021-010 CVE ID: CVE-2021-31605 Subject: OpenVPN Management Socket Command Injection Severity: High Effect: Denial of Service...

7.5AI score0.02194EPSS

Packet Storm•added 2021/09/24 12:0 a.m.•218 views

OpenVPN Monitor 1.1.3 Cross Site Request Forgery

COMPASS SECURITY ADVISORY https://www.compass-security.com/research/advisories/ Product: openvpn-monitor Vendor: https://github.com/furlongm/openvpn-monitor CSNC ID: CSNC-2021-011 CVE ID: CVE-2021-31604 Subject: Cross-Site Request Forgery CSRF Severity: Medium Effect: Denial of Service Author:...

0.3AI score0.0108EPSS

Packet Storm•added 2021/09/23 12:0 a.m.•173 views

Police Crime Record Management Project 1.0 SQL Injection

Exploit Title: Police Crime Record Management Project 1.0 - Time Based SQLi Exploit Author: t//\1 Date: 23/09/2021 Vendor Homepage: https://www.sourcecodester.com/php/14894/police-crime-record-management-system.html Tested on: Linux Version: 1.0 Exploit Description: The application is prone to an...

Packet Storm•added 2021/09/23 12:0 a.m.•205 views

Gurock Testrail 7.2.0.3014 Improper Access Control

Exploit Title: Gurock Testrail 7.2.0.3014 - 'files.md5' Improper Access Control Date: 22/09/2022 Exploit Author: Sick Codes & JohnJHacking Sakura Samuraii Vendor Homepage: https://www.gurock.com/testrail/ Version: 7.2.0.3014 and below Tested on: macOS, Linux, Windows CVE : CVE-2021-40875 Referenc...

0.4AI score0.83001EPSS

Total number of security vulnerabilities50624