50738 matches found
AMPLE BILLS 1.0 Cross Site Scripting
============================================================================================================================================= | Title : AMPLE BILLS v1.0 XSS Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vendor...
Readymade Real Estate Script SQL Injection / Cross Site Scripting
x========================================================================================================================================x | Title : Readymade Real Estate Script Blind SQL & XSS Vulnerabilities | Software : Advanced Real Estate Script | Last Update : 12/07/24 | First Release:...
AccPack Buzz 1.0 Arbitrary File Upload
============================================================================================================================================= | Title : AccPack Buzz v1.0 Remote File Upload Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64...
AccPack Khanepani 1.0 Insecure Direct Object Reference
============================================================================================================================================= | Title : AccPack Khanepani v1.0 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | |...
SchoolPlus LMS 1.0 SQL Injection
============================================================================================================================================= | Title : SchoolPlus LMS v1.0 SQL injection Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bi...
Aero CMS 0.0.1 Cross Site Request Forgery
============================================================================================================================================= | Title : Aero CMS v0.0.1 CSRF Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 128.0.3 64 bits | | Vendor...
Academy LMS 6.8.1 Cross Site Scripting
============================================================================================================================================= | Title : Academy LMS 6.8.1 XSS Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 128.0.3 64 bits | | Vendo...
AccPack Cop 1.0 SQL Injection
============================================================================================================================================= | Title : AccPack Cop v1.0 Auth By Pass Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits |...
OpenMediaVault rpc.php Authenticated Cron Remote Code Execution
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'OpenMediaVault rpc.php Authenticated Cron Remote Code Execution', 'Description' = %q OpenMediaVault allows an authenticated user to create cron...
Chuksrio LMS 2.9 Insecure Direct Object Reference
==================================================================================================================================== | Title : Chuksrio LMS v2.9 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vendor :...
AMPLE BILLS 1.0 Administrative Page Disclosure
============================================================================================================================================= | Title : AMPLE BILLS v1.0 Administrative Page Disclosure Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox...
AccPack Khanepani 1.0 SQL Injection
============================================================================================================================================= | Title : AccPack Khanepani v1.0 Auth By Pass Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64...
AccPack Buzz Cop 1.0 Cross Site Request Forgery
============================================================================================================================================= | Title : AccPack Buzz Cop v1.0 CSRF Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | |...
AccPack Cop CMS 1.0 SQL Injection
============================================================================================================================================= | Title : AccPack Cop CMS v1.0 SQL injection Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64...
SchoolPlus 1.0 Shell Upload
============================================================================================================================================= | Title : SchoolPlus v1.0 Remote File Upload Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64...
Pharmacy Management System 1.0 Insecure Settings
==================================================================================================================================== | Title : Pharmacy Management System v1.0 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0....
Online Payment Hub System 1.0 Insecure Settings
==================================================================================================================================== | Title : Online Payment Hub System v1.0 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1...
Innue Business Live Chat 2.5 Insecure Settings
==================================================================================================================================== | Title : innue business live chat v2.5 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 ...
mySCADA MyPRO Authenticated Command Injection
class MetasploitModule 'mySCADA MyPRO Authenticated Command Injection CVE-2023-28384', 'Description' = %q Authenticated Command Injection in MyPRO MSFLICENSE, 'Author' = 'Michael Heinzl', Vulnerability discovery & MSF module 'References' = 'URL',...
Blog Site 1.0 SQL Injection
Titles: blog-site-1.0 Multiple-SQLi Author: nu11secur1ty Date: 07/29/2024 Vendor: https://github.com/oretnom23 Software: https://www.sourcecodester.com/php/14442/blog-site-using-phpmysql.html Reference: https://portswigger.net/web-security/sql-injection Description: The id parameter appears to be...
QuickJob 6.1 Insecure Settings
==================================================================================================================================== | Title : quickjob 6.1 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vendo...
Prison Management System version 1.0 Insecure Settings
==================================================================================================================================== | Title : Prison Management System version 1.0 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox...
Prison Management System 1.0 Shell Upload
Exploit Title: Prison Management System 1.0 - Unuthenticated RCE Date: 24.07.2024 Exploit Author: Muhammet Ali Dak Vendor Homepage: https://www.sourcecodester.com/sql/17287/prison-management-system.html Software Link:...
Online Discussion Forum Site 1.0 Insecure Settings
==================================================================================================================================== | Title : Online Discussion Forum Site v1.0 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox...
LMS ZAI 6.3 Insecure Settings
==================================================================================================================================== | Title : LMS ZAI v6.3 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vendo...
Online Medicine Ordering System 1.0 Insecure Settings
==================================================================================================================================== | Title : Online Medicine Ordering System v1.0 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox...
Ingredient Stock Management System 1.0 Insecure Settings
==================================================================================================================================== | Title : Ingredient Stock Management System v1.0 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefo...
Bhojon Restaurant Management System 2.7 Insecure Direct Object Reference
==================================================================================================================================== | Title : Bhojon restaurant management system v2.7 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64...
ChatBot Application With A Suggestion Feature 1.0 Insecure Settings
==================================================================================================================================== | Title : ChatBot Application with a Suggestion Feature v1.0 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser :...
Multi Store Inventory Management System 1.0 Insecure Direct Object Reference
==================================================================================================================================== | Title : Multi Store Inventory Management System v1.0 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0....
TAIF LMS 5.8.0 Shell Upload
==================================================================================================================================== | Title : TAIF LMS v5.8.0 shell upload Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vendor ...
SIM Wisuda 1.0 Insecure Direct Object Reference
==================================================================================================================================== | Title : SIM Wisuda v1.0 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vendor :...
StarTask CRM 1.9 SQL Injection
==================================================================================================================================== | Title : StarTask CRM v1.9 Auth by Pass Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 128.0.1 64 bits | | Vendo...
Webdenim AppUI 1.0 Insecure Direct Object Reference
==================================================================================================================================== | Title : Webdenim AppUI v1.0 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vendor :...
SLiMS CMS 2.0 SQL Injection
==================================================================================================================================== | Title : SLiMS CMS v2.0 Sql injection Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vendor ...
UBM CMS 1.2 Insecure Direct Object Reference
==================================================================================================================================== | Title : UBM CMS v1.2 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 128.0.1 64 bits | | Vendor :...
Vencorp 2.1.1 SQL Injection
==================================================================================================================================== | Title : Vencorp v 2.1.1 Auth by Pass Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vendor ...
Minfotech CMS 2.0 SQL Injection
==================================================================================================================================== | Title : Minfotech CMS v2.0 Sql injection Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | |...
NUKE SENTINEL 2.5.2 Cross Site Scripting
==================================================================================================================================== | Title : NUKE SENTINEL v2.5.2 XSS Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vendor :...
eDesign CMS 2.0 Insecure Direct Object Reference
==================================================================================================================================== | Title : eDesign CMS v2.0 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vendor :...
LMS ZAI 6.1 Insecure Settings
==================================================================================================================================== | Title : LMS ZAI v6.1 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vendo...
Perten Instruments Process Plus Software 1.11.6507.0 LFI / Hardcoded Credentials
CyberDanube Security Research 20240722-0 ------------------------------------------------------------------------------- title| Multiple Vulnerabilities product| Perten Instruments Process Plus Software vulnerable version| =1.11.6507.0 fixed version| 2.0.0 CVE number| CVE-2024-6911, CVE-2024-6912...
Quick Job 2.4 Insecure Direct Object Reference
==================================================================================================================================== | Title : Quick Job v2.4 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vendor :...
PHP MaXiMuS 2.5.2 Cross Site Scripting
==================================================================================================================================== | Title : PHP MaXiMuS v2.5.2 XSS Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vendor :...
PPDB ONLINE 1.3 Administrative Page Disclosure
==================================================================================================================================== | Title : PPDB ONLINE V.1.3 HTML Form in redirect page Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64...
Adobe Commerce / Magento Open Source XML Injection / User Impersonation
!/usr/bin/env ruby -W0 require 'bundler' Bundler.require:default DEBUG = false USEPROXY = false PROXYADDR = '127.0.0.1' PROXYPORT = 8080 def debugmsg puts msg.inspect if DEBUG end def randtextlength = 8 random string generator o = 'a'..'z', 'A'..'Z'.map&:toa.flatten 0...length.map orando.length...
Agop CMS 1.0 Insecure Direct Object Reference
==================================================================================================================================== | Title : Agop CMS v1.0 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vendor :...
Softing Secure Integration Server 1.22 Remote Code Execution
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'zip' require 'metasploit/framework/loginscanner/softingsis' class MetasploitModule 'Softing Secure Integration Server v1.22 Remote Code Execution', 'Description...
Xhibiter NFT Marketplace 1.10.2 Cross Site Scripting
==================================================================================================================================== | Title : Xhibiter NFT Marketplace 1.10.2 XSS Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | |...
Candy Redis 2.1.2 Admin Page Disclosure
==================================================================================================================================== | Title : Candy Redis V2.1.2 HTML Form in redirect page Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64...