Packetstorm - Page 68 of Packetstorm Vulnerabilities List

PacketstormRecent

50653 matches found

Packet Storm•added 2024/08/12 12:0 a.m.•170 views

Garden Gate 2.6 SQL Injection

============================================================================================================================================= | Title : Garden Gate v2.6 SQL injection Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 128.0.3 64 bits ...

7.4AI score

Exploits0

Packet Storm•added 2024/08/12 12:0 a.m.•184 views

Farmacia Gama 1.0 Insecure Direct Object Reference

============================================================================================================================================= | Title : Farmacia Gama v1.0 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | |...

7.4AI score

Exploits0

Packet Storm•added 2024/08/12 12:0 a.m.•169 views

Computer Laboratory Management 1.0 SQL Injection

Exploit Title: Computer Laboratory Management - SQL Injection Authenticated Date: 11/08/2024 Exploit Author: Mert Kuvvet Vendor Homepage: https://www.sourcecodester.com/php/17268/computer-laboratory-management-system-using-php-and-mysql.html Software Link:...

7.4AI score

Exploits0

Packet Storm•added 2024/08/12 12:0 a.m.•268 views

Courier Management System 2020-1.0 SQL Injection

Titles: courier-management-system-2020-1.0 Multiple-SQLi Author: nu11secur1ty Date: 08/12/2024 Vendor: https://github.com/oretnom23 Software: https://www.sourcecodester.com/php/14611/courier-management-system-using-phpmysqli-source-code.htmlcomment-105424 Reference:...

7.4AI score

Exploits0

Packet Storm•added 2024/08/12 12:0 a.m.•186 views

Goati Track 1.0-2023 Insecure Settings

============================================================================================================================================= | Title : Gaati track v1.0-2023 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1...

7.4AI score

Exploits0

Packet Storm•added 2024/08/12 12:0 a.m.•196 views

Gas Agency Management 2022 Cross Site Request Forgery

============================================================================================================================================= | Title : Gas Agency Management 2022 CSRF Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits...

7.4AI score

Exploits0

Packet Storm•added 2024/08/12 12:0 a.m.•200 views

Computer And Mobile Repair Shop Management System 1.0 Cross Site Request Forgery

============================================================================================================================================= | Title : Computer and Mobile Repair Shop Management System v1.0 CSRF Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser :...

7.4AI score

Exploits0

Packet Storm•added 2024/08/12 12:0 a.m.•184 views

Backdoor.Win32.Nightmare.25 MVID-2024-0687 Code Execution

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2024 Original source: https://malvuln.com/advisory/0fe8f37543e8face08941899add38e35.txt Contact: [email protected] Media: x.com/malvuln Threat: Backdoor.Win32.Nightmare.25 Vulnerability: Unauthenticated Remote Command Execution Family:...

7.4AI score

Exploits0

Packet Storm•added 2024/08/09 12:0 a.m.•316 views

Exam Form Submission 1.0 Arbitrary File Upload

============================================================================================================================================= | Title : Exam Form Submission v1.0 Remote File Upload Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox...

7.4AI score

Exploits0

Packet Storm•added 2024/08/09 12:0 a.m.•292 views

Yoga Class Registration System 1.0 Cross Site Request Forgery

============================================================================================================================================= | Title : Yoga Class Registration System v1.0 CSRF Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 128.0....

7.4AI score

Exploits0

Packet Storm•added 2024/08/09 12:0 a.m.•279 views

AccPack Cop 1.0 Arbitrary File Upload

============================================================================================================================================= | Title : AccPack Cop v1.0 Remote File Upload Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64...

7.4AI score

Exploits0

Packet Storm•added 2024/08/09 12:0 a.m.•274 views

Gaati Track 1.0-2023 Insecure Direct Object Reference

==================================================================================================================================== | Title : Gaati track v1.0-2023 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vendor :...

7.4AI score

Exploits0

Packet Storm•added 2024/08/09 12:0 a.m.•318 views

Xain-Hotel Management System 2.5 Insecure Settings

==================================================================================================================================== | Title : Xain-Hotel Management System v2.5 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox...

7.4AI score

Exploits0

Packet Storm•added 2024/08/09 12:0 a.m.•258 views

AccPack Khanepani 1.0 Arbitrary File Upload

============================================================================================================================================= | Title : AccPack Khanepani v1.0 Remote File Upload Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 128.0...

7.4AI score

Exploits0

Packet Storm•added 2024/08/09 12:0 a.m.•276 views

Farmacia Gama 1.0 File Inclusion

============================================================================================================================================= | Title : Farmacia Gama v1.0 File inclusion Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bi...

7.4AI score

Exploits0

Packet Storm•added 2024/08/09 12:0 a.m.•276 views

E-Commerce Site Using PHP PDO 1.0 Cross Site Scripting

============================================================================================================================================= | Title : E-Commerce Site using PHP PDO v1.0 XSS Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 ...

7.4AI score

Exploits0

Packet Storm•added 2024/08/09 12:0 a.m.•341 views

Employee Management System 1.0 Cross Site Request Forgery

============================================================================================================================================= | Title : Employee Management System v1.0 CSRF Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 128.0.3 64...

7.4AI score

Exploits0

Packet Storm•added 2024/08/09 12:0 a.m.•280 views

Bhojon Restaurant Management System 2.8 Insecure Direct Object Reference

==================================================================================================================================== | Title : Bhojon restaurant management system v2.9 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64...

7.4AI score

Exploits0

Packet Storm•added 2024/08/08 12:0 a.m.•404 views

Employee Management System 1.0 SQL Injection

============================================================================================================================================= | Title : Employee Management System v1.0 Auth By Pass Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox...

7.4AI score

Exploits0

Packet Storm•added 2024/08/08 12:0 a.m.•442 views

Journyx 11.5.4 XML Injection

KL-001-2024-010: Journyx Unauthenticated XML External Entities Injection Title: Journyx Unauthenticated XML External Entities Injection Advisory ID: KL-001-2024-010 Publication Date: 2024.08.07 Publication URL: https://korelogic.com/Resources/Advisories/KL-001-2024-010.txt 1. Vulnerability Detail...

7.5CVSS7.1AI score0.91385EPSS

Exploits3

Packet Storm•added 2024/08/08 12:0 a.m.•475 views

Calibre 7.15.0 Python Code Injection

class MetasploitModule 'Calibre Python Code Injection CVE-2024-6782', 'Description' = %q This module exploits a Python code injection vulnerability in the Content Server component of Calibre v6.9.0 - v7.15.0. Once enabled disabled by default, it will listen in its default configuration on all...

9.8CVSS7.1AI score0.93835EPSS

Exploits8

Packet Storm•added 2024/08/08 12:0 a.m.•338 views

Journyx 11.5.4 Authenticated Remote Code Execution

KL-001-2024-008: Journyx Authenticated Remote Code Execution Title: Journyx Authenticated Remote Code Execution Advisory ID: KL-001-2024-008 Publication Date: 2024.08.07 Publication URL: https://korelogic.com/Resources/Advisories/KL-001-2024-008.txt 1. Vulnerability Details Affected Vendor: Journ...

8.8CVSS7.1AI score0.00156EPSS

Exploits3

Packet Storm•added 2024/08/08 12:0 a.m.•347 views

Journyx 11.5.4 Unauthenticated Password Reset Bruteforce

KL-001-2024-007: Journyx Unauthenticated Password Reset Bruteforce Title: Journyx Unauthenticated Password Reset Bruteforce Advisory ID: KL-001-2024-007 Publication Date: 2024.08.07 Publication URL: https://korelogic.com/Resources/Advisories/KL-001-2024-007.txt 1. Vulnerability Details Affected...

9.8CVSS7.1AI score0.00114EPSS

Exploits3

Packet Storm•added 2024/08/08 12:0 a.m.•427 views

Windows Firewall Control 6.11.0 Unquoted Service Path

Exploit Title: Microsoft Windows Firewall Control 6.11.0 - Unquoted Service Path Date: 2024-08-06 Exploit Author: Milad Karimi Ex3ptionaL Contact: [email protected] Zone-H: www.zone-h.org/archive/notifier=Ex3ptionaL MiRROR-H: https://mirror-h.org/search/hacker/49626/ Vendor Homepage:...

7.4AI score

Exploits0

Packet Storm•added 2024/08/08 12:0 a.m.•568 views

Open WebUI 0.1.105 Persistent Cross Site Scripting

KL-001-2024-005: Open WebUI Stored Cross-Site Scripting Title: Open WebUI Stored Cross-Site Scripting Advisory ID: KL-001-2024-005 Publication Date: 2024.08.06 Publication URL: https://korelogic.com/Resources/Advisories/KL-001-2024-005.txt 1. Vulnerability Details Affected Vendor: Open WebUI...

6.3CVSS7.1AI score0.00189EPSS

Exploits3

Packet Storm•added 2024/08/08 12:0 a.m.•307 views

E-Commerce Site Using PHP PDO 1.0 Insecure Settings

============================================================================================================================================= | Title : E-Commerce Site using PHP PDO v1.0 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla...

7.4AI score

Exploits0

Packet Storm•added 2024/08/08 12:0 a.m.•283 views

Bhojon Restaurant Management System 2.8 Insecure Settings

==================================================================================================================================== | Title : Bhojon restaurant management system v2.8 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firef...

7.4AI score

Exploits0

Packet Storm•added 2024/08/08 12:0 a.m.•304 views

Journyx 11.5.4 Cross Site Scripting

KL-001-2024-009: Journyx Reflected Cross Site Scripting Title: Journyx Reflected Cross Site Scripting Advisory ID: KL-001-2024-009 Publication Date: 2024.08.07 Publication URL: https://korelogic.com/Resources/Advisories/KL-001-2024-009.txt 1. Vulnerability Details Affected Vendor: Journyx Affecte...

7.1AI score0.07512EPSS

Exploits2

Packet Storm•added 2024/08/08 12:0 a.m.•627 views

Open WebUI 0.1.105 File Upload / Path Traversal

KL-001-2024-006: Open WebUI Arbitrary File Upload + Path Traversal Title: Open WebUI Arbitrary File Upload + Path Traversal Advisory ID: KL-001-2024-006 Publication Date: 2024.08.D06 Publication URL: https://korelogic.com/Resources/Advisories/KL-001-2024-006.txt 1. Vulnerability Details Affected...

8.8CVSS7.1AI score0.00203EPSS

Exploits3

Packet Storm•added 2024/08/07 12:0 a.m.•309 views

AccPack Buzz 1.0 Insecure Direct Object Reference

============================================================================================================================================= | Title : AccPack Buzz v1.0 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vend...

7.4AI score

Exploits0

Packet Storm•added 2024/08/07 12:0 a.m.•324 views

Bhojan Restaurant Management System 2.8 Insecure Direct Object Reference

==================================================================================================================================== | Title : Bhojon restaurant management system v2.8 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64...

7.4AI score

Exploits0

Packet Storm•added 2024/08/07 12:0 a.m.•304 views

Covid-19 Directory On Vaccination System 1.0 Insecure Settings

==================================================================================================================================== | Title : Covid-19 Directory on Vaccination System v1.0 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla...

7.4AI score

Exploits0

Packet Storm•added 2024/08/07 12:0 a.m.•289 views

AccPack Cop 1.0 Insecure Direct Object Reference

============================================================================================================================================= | Title : AccPack Cop v1.0 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vendo...

7.4AI score

Exploits0

Packet Storm•added 2024/08/07 12:0 a.m.•269 views

AccPack Khanepani 1.0 Cross Site Request Forgery

============================================================================================================================================= | Title : AccPack Khanepani v1.0 CSRF Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 128.0.3 64 bits | |...

7.4AI score

Exploits0

Packet Storm•added 2024/08/07 12:0 a.m.•412 views

WordPress PayPlus Payment Gateway SQL Injection

!/usr/bin/env python3.11 import requests import time def exploiturl: payload = "wc-api": "payplusgateway&statuscode=true&moreinfo=selectfromselectsleep5a" start = time.time with requests.Session as session: session.headers.update 'User-Agent': 'Mozilla/5.0 Windows NT 10.0; Win64; x64...

9.8CVSS7AI score0.90163EPSS

Exploits4

Packet Storm•added 2024/08/07 12:0 a.m.•265 views

E-Commerce Site Using PHP PDO 1.0 Directory Traversal

============================================================================================================================================= | Title : E-Commerce Site using PHP PDO v1.0 Directory traversal Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla...

7.4AI score

Exploits0

Packet Storm•added 2024/08/06 12:0 a.m.•333 views

Korenix JetPort Series 1.2 Command Injection / Insufficient Authentication

CyberDanube Security Research 20240805-0 ------------------------------------------------------------------------------- title| Multiple Vulnerabilities in JetPort Series product| Korenix JetPort Series vulnerable version| 1.2 fixed version| None CVE number| CVE-2024-7395, CVE-2024-7396,...

9.3CVSS7.4AI score0.00981EPSS

Exploits1

Packet Storm•added 2024/08/06 12:0 a.m.•300 views

Blog Site 1.0 Cross Site Scripting

============================================================================================================================================= | Title : Blog Site 1.0 XSS Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vendor :...

7.4AI score

Exploits0

Packet Storm•added 2024/08/06 12:0 a.m.•215 views

Concert Ticket Reservation System 1.0 SQL Injection

====================================================================================================================================================== | Title : Concert Ticket Reservation System v1.0 Auth By Pass Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser :...

7.4AI score

Exploits0

Packet Storm•added 2024/08/06 12:0 a.m.•263 views

eduAuthorities 1.0 SQL Injection

Titles: eduAuthorities-1.0 Multiple-SQLi Author: nu11secur1ty Date: 07/29/2024 Vendor: https://www.mayurik.com/ Software: https://www.sourcecodester.com/php/16137/online-student-management-system-php-free-download.html Reference: https://portswigger.net/web-security/sql-injection Description: The...

7.4AI score

Exploits0

Packet Storm•added 2024/08/06 12:0 a.m.•240 views

Microweber 2.0.15 Cross Site Scripting

Exploit Title: Microweber =v2.0.15 - Reflected Cross-Site Scripting XSS Date: 16.07.2024 Exploit Author: Prerak Mittal Vendor Homepage: https://microweber.org/ Software Link: https://github.com/microweber/microweber/releases/tag/v2.0.15 Version: =v2.0.15 Tested on: Ubuntu 22.04 CVE : CVE-2024-401...

7.4AI score0.0115EPSS

Exploits2

Packet Storm•added 2024/08/06 12:0 a.m.•230 views

Computer Laboratory Management System 1.0 Insecure Settings

============================================================================================================================================= | Title : Computer Laboratory Management System v1.0 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser :...

7.4AI score

Exploits0

Packet Storm•added 2024/08/06 12:0 a.m.•257 views

Codeprojects E-Commerce 1.0 Cross Site Scripting

============================================================================================================================================= | Title : Codeprojects E-Commerce v1.0 XSS Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bit...

7.4AI score

Exploits0

Packet Storm•added 2024/08/05 12:0 a.m.•241 views

Appointment Scheduler 4.0 Insecure Direct Object Reference

============================================================================================================================================= | Title : Appointment Scheduler v4.0 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 128.0.3 64 bits...

7.4AI score

Exploits0

Packet Storm•added 2024/08/05 12:0 a.m.•290 views

Ivanti ADC 9.9 Authentication Bypass

Exploit Title: Ivanti vADC 9.9 - Authentication Bypass Date: 2024-08-03 Exploit Author: ohnoisploited Vendor Homepage: https://www.ivanti.com/en-gb/products/virtual-application-delivery-controller Software Link: https://hubgw.docker.com/r/pulsesecure/vtm Version: 9.9 Tested on: Linux Name Changes...

7.4AI score

Exploits0

Packet Storm•added 2024/08/05 12:0 a.m.•233 views

Best Courier Management System 1.0 SQL Injection

============================================================================================================================================= | Title : Best Courier Management System v1.0 Auth By Pass Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefo...

7.4AI score

Exploits0

Packet Storm•added 2024/08/05 12:0 a.m.•223 views

e107 2.3.3 Cross Site Scripting

============================================================================================================================================= | Title : e107 v2.3.3 XSS Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vendor :...

7.4AI score

Exploits0

Packet Storm•added 2024/08/05 12:0 a.m.•197 views

Codeprojects E-Commerce 1.0 Insecure Settings

============================================================================================================================================= | Title : Codeprojects E-Commerce v1.0 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox...

7.4AI score

Exploits0

Packet Storm•added 2024/08/05 12:0 a.m.•259 views

Linux DRM drm_file_update_pid() Race Condition / Use-After-Free

Linux: DRM: refcount incremented too late in drmfileupdatepid I am sending this to security@ and to the drm-misc maintainers - based on https://drm.pages.freedesktop.org/maintainer-tools/committer-drm-misc.htmlmerge-criteria I think this falls into drm-misc's area of responsibility? === summary =...

7AI score0.00029EPSS

Exploits3

Packet Storm•added 2024/08/05 12:0 a.m.•277 views

Devika 1 Path Traversal

Exploit Title: Devika v1 - Path Traversal via 'snapshotpath' Parameter Google Dork: N/A Date: 2024-06-29 Exploit Author: Alperen Ergel Contact: @alpernae IG/X Vendor Homepage: https://devikaai.co/ Software Link: https://github.com/stitionai/devika Version: v1 Tested on: Windows 11 Home Edition CV...

9.1CVSS7.1AI score0.9057EPSS

Exploits6

Total number of security vulnerabilities50653