Lucene search
K
ZdtMost viewed

39001 matches found

0day.today
0day.today
added 2024/02/17 12:0 a.m.374 views

SISQUALWFM 7.1.319.103 - Host Header Injection Vulnerability

Exploit Title: SISQUALWFM 7.1.319.103 Host Header Injection Discovered Date: 17/03/2023 Reported Date: 17/03/2023 Resolved Date: 13/10/2023 Exploit Author: Omer Shaik unknownexploit Vendor Homepage: https://www.sisqualwfm.com Version: 7.1.319.103 Tested on: SISQUAL WFM 7.1.319.103 Affected Versio...

6.1CVSS6.5AI score0.00507EPSS
Exploits5
0day.today
0day.today
added 2023/12/12 12:0 a.m.374 views

WordPress Bravo Translate 1.2 SQL Injection Vulnerability

Exploit Title: WP Plugins Bravo Translate = 1.2 - SQL Injection Exploit Author: Arvandy Software Link: https://wordpress.org/plugins/bravo-translate/ Version: 1.2 Tested on: Windows, Linux CVE: CVE-2023-49161 Product Description This plugin allow you to translate your monolingual website in a sup...

9.1CVSS9.4AI score0.00605EPSS
Exploits2
0day.today
0day.today
added 2023/06/08 12:0 a.m.374 views

Delta Electronics InfraSuite Device Master Deserialization Exploit

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Delta Electronics InfraSuite Device Master Deserialization', 'Description' = %q Delta Electronics InfraSuite Device Master versions below v1.0.5...

9.8CVSS9.2AI score0.5005EPSS
Exploits3
0day.today
0day.today
added 2023/02/15 12:0 a.m.374 views

GitLab GitHub Repo Import Deserialization Remote Code Execution Exploit

An authenticated user can import a repository from GitHub into GitLab. If a user attempts to import a repo from an attacker-controlled server, the server will reply with a Redis serialization protocol object in the nested defaultbranch. GitLab will cache this object and then deserialize it when...

9.9CVSS9.6AI score0.86194EPSS
Exploits5
0day.today
0day.today
added 2019/12/17 12:0 a.m.374 views

OpenBSD 6.x - Dynamic Loader Privilege Escalation Exploit

Local Privilege Escalation in OpenBSD's dynamic loader CVE-2019-19726 ============================================================================== Contents ============================================================================== Summary Analysis Demonstration Acknowledgments...

7.8CVSS0.7AI score0.03522EPSS
Exploits12
0day.today
0day.today
added 2024/03/04 12:0 a.m.373 views

Real Estate Management System v1.0 - Remote Code Execution via File Upload Vulnerability

Exploit Title: Real Estate Management System v1.0 - Remote Code Execution via File Upload Exploit Author: Diyar Saadi Vendor Homepage: https://codeastro.com Version: V1.0 Tested on: Windows 11 + XAMPP 8.0.30 + Burp Suite Professional v2023.12.1.3 Description This Vulnerability allow the attacker ...

7.4AI score
Exploits0
0day.today
0day.today
added 2024/02/05 12:0 a.m.373 views

Clinics Patient Management System 1.0 - Unauthenticated Code Execution Vulnerability

Exploit Title: Clinic's Patient Management System 1.0 - Unauthenticated RCE Exploit Author: Oğulcan Hami Gül Vendor Homepage: https://www.sourcecodester.com/php-clinics-patient-management-system-source-code Software Link:...

7.4AI score
Exploits0
0day.today
0day.today
added 2023/01/18 12:0 a.m.373 views

LISTSERV 17 Insecure Direct Object Reference Vulnerability

Exploit Title: LISTSERV 17 - Insecure Direct Object Reference IDOR Exploit Author: Shaunt D Vendor Homepage: https://www.lsoft.com/ Version: 17 Tested on: Windows Server 2019 CVE : CVE-2022-40319 Steps to replicate 1. Create two accounts on your LISTSERV 17 installation, logging into each one in ...

7.5CVSS0.3AI score0.07195EPSS
Exploits4
0day.today
0day.today
added 2021/12/14 12:0 a.m.373 views

Laravel Valet 2.0.3 - Local Privilege Escalation Exploit

Exploit Title: Laravel Valet 2.0.3 - Local Privilege Escalation macOS Exploit Author: leonjza Vendor Homepage: https://laravel.com/docs/8.x/valet Version: v1.1.4 to v2.0.3 !/usr/bin/env python2 Laravel Valet v1.1.4 - 2.0.3 Local Privilege Escalation macOS February 2017 - @leonjza Affected version...

7.4AI score
Exploits0
0day.today
0day.today
added 2021/11/08 12:0 a.m.373 views

Money Transfer Management System 1.0 - Authentication Bypass Vulnerability

Exploit Title: Money Transfer Management System 1.0 - Authentication Bypass Exploit Author: Aryan Chehreghani Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/15015/money-transfer-management-system-send-money-businesses-php-free-source-code.html...

7.1AI score
Exploits0
0day.today
0day.today
added 2021/10/18 12:0 a.m.373 views

Plastic SCM 10.0.16.5622 - WebAdmin Server Access Vulnerability

Exploit Title: Plastic SCM 10.0.16.5622 - WebAdmin Server Access Shodan Dork: title:"Plastic SCM" Exploit Author: Basavaraj Banakar Vendor Homepage: https://www.plasticscm.com/ Software Link: https://www.plasticscm.com/download/releasenotes/10.0.16.5622 Version: Plastic SCM 10.0.16.5622 Tested on...

7.5CVSS0.2AI score0.08939EPSS
Exploits4
0day.today
0day.today
added 2018/11/14 12:0 a.m.373 views

SwitchVPN For MacOS / Windows 2.1012.03 Man-In-The-Middle Vulnerability

Exploit for multiple platform in category local exploits ======================================================================= Title: Insecure Update Process and RCE Product: SwitchVPN for MacOS, Windows Vulnerable version: 2.1012.03 CVE ID: Requested Impact: Critical Homepage:...

7.2AI score
Exploits0
0day.today
0day.today
added 2024/08/15 12:0 a.m.372 views

OpenMetadata 1.2.3 Authentication Bypass / SpEL Injection Exploit

This Metasploit module exploits OpenMetadata versions 1.2.3 and below by chaining an API authentication bypass using JWT tokens along with a SpEL injection vulnerability to achieve arbitrary command execution. This module requires Metasploit: https://metasploit.com/download Current source:...

9.8CVSS9.7AI score0.73255EPSS
Exploits5
0day.today
0day.today
added 2024/02/22 12:0 a.m.372 views

CMS Made Simple 2.2.19 Remote Code Execution Vulnerability

Exploit Title: CMS Made Simple Version: 2.2.19 - Remote Code Execution Exploit Author: tmrswrr Vendor Homepage: https://www.cmsmadesimple.org/ Version: 2.2.19 Tested on: https://www.softaculous.com/demos/CMSMadeSimple 1 log in as admin and go to Extensions User Defined Tags 2 Write in Code place...

7.4AI score
Exploits0
0day.today
0day.today
added 2024/02/13 12:0 a.m.372 views

ManageEngine ADManager Plus Build < 7183 - Recovery Password Disclosure Exploit

Exploit Title: ManageEngine ADManager Plus Build 7183 - Recovery Password Disclosure Exploit Author: Metin Yunus Kandemir Vendor Homepage: https://www.manageengine.com/ Software Link: https://www.manageengine.com/products/ad-manager/ Details:...

6.5CVSS6.6AI score0.05312EPSS
Exploits4
0day.today
0day.today
added 2023/06/12 12:0 a.m.372 views

TerraMaster TOS 4.2.06 Remote Code Execution Exploit

This Metasploit module exploits an unauthenticated remote code execution vulnerability in TerraMaster TOS versions 4.2.06 and below via shell metacharacters in the Event parameter at vulnerable endpoint include/makecvs.php during CSV creation. Any unauthenticated user can therefore execute comman...

9.8CVSS10AI score0.96598EPSS
Exploits4
0day.today
0day.today
added 2023/04/20 12:0 a.m.372 views

Bang Resto v1.0 - (Multiple) SQL Injection Vulnerability

Exploit Title: Bang Resto v1.0 - 'Multiple' SQL Injection Exploit Author: Rahad Chowdhury Vendor Homepage: https://www.hockeycomputindo.com/2021/05/restaurant-pos-source-code-free.html Software Link: https://github.com/mesinkasir/bangresto/archive/refs/heads/main.zip Version: 1.0 Tested on: Windo...

8.8CVSS8.9AI score0.03165EPSS
Exploits4
0day.today
0day.today
added 2023/02/18 12:0 a.m.372 views

Kardex Mlog MCC 5.7.12+0-a203c2a213-master File Inclusion / Remote Code Execution Vulnerabilities

Kardex Mlog MCC version 5.7.12+0-a203c2a213-master suffers from a file inclusion vulnerability that allows for remote code execution. Remote Code Execution in Kardex MLOG ======================================================================= Product: Kardex Mlog MCC Vendor: Kardex Holding AG...

9.8CVSS9.9AI score0.14832EPSS
Exploits8
0day.today
0day.today
added 2022/12/24 12:0 a.m.372 views

Senayan Library Management System 9.2.0 Cross Site Scripting Vulnerability

Title: Senayan Library Management System v9.2.0 a.k.a SLIMS 9 XSS-Reflected - inserting gif - redirect to outside HTTPS server Author: nu11secur1ty Vendor: https://slims.web.id/web/ Software: https://github.com/slims/slims9bulian/releases/tag/v9.2.0 Reference:...

Exploits0
0day.today
0day.today
added 2022/08/25 12:0 a.m.372 views

Centreon 22.04.0 Cross Site Scripting Vulnerability

Exploit Title: Stored XSS in name parameter in Centreon version 22.04.0 Exploit Author: syad, yunaranyancat, saitamang Vendor Homepage: Centreon Software Link: https://download.centreon.com/ Version: 22.04.0 CVE ID : CVE-2022-36194 Tested on: Centos 7 Centreon 22.04.0 is vulnerable to Cross Site...

5.4CVSS5.6AI score0.00765EPSS
Exploits4
0day.today
0day.today
added 2022/08/19 12:0 a.m.372 views

Polar Flow Android 5.7.1 Secret Disclosure Vulnerability

Insecure data storage in Polar Flow Android application Overview Advisory ID: TRSA-2110-01 Advisory version: 1.0 Advisory status: Public Advisory URL: https://trovent.io/security-advisory-2110-01 Affected product: Polar Flow Android mobile application fi.polar.polarflow Affected version: 5.7.1...

7.4AI score
Exploits0
0day.today
0day.today
added 2020/03/10 12:0 a.m.372 views

Sysaid 20.1.11 b26 - Remote Command Execution Vulnerability

Exploit for java platform in category web applications Exploit Title: Sysaid 20.1.11 b26 - Remote Command Execution Google Dork: intext:"Help Desk Software by SysAid " Exploit Author: Ahmed Sherif Vendor Homepage: https://www.sysaid.com/free-help-desk-software Software Link:...

0.7AI score
Exploits0
0day.today
0day.today
added 2019/06/18 12:0 a.m.372 views

CleverDog Smart Camera DOG-2W / DOG-2W-V4 - Multiple Vulnerabilities

Exploit for hardware platform in category web applications 1. Advisory Information ======================================== Title: Clever Dog Smart Camera Vendor Homepage: http://www.cleverdog.com.cn/ Tested on Camera types : DOG-2W, DOG-2W-V4 Vulnerability: Hardware- Multiple Vulnerabilities Dat...

Exploits0
0day.today
0day.today
added 2024/05/19 12:0 a.m.371 views

htmlLawed 1.2.5 - Remote Code Execution Exploit

Exploit Title: htmlLawed 1.2.5 - Remote Code Execution RCE Exploit Author: Miguel Redondo aka d4t4s3c Vendor Homepage: https://www.bioinformatics.org/phplabware/internalutilities/htmLawed Software Link: https://github.com/kesar/HTMLawed Version: -c \n" exit else banner echo -e "\n+ Command output...

9.8CVSS7AI score0.99628EPSS
Exploits13
0day.today
0day.today
added 2024/05/08 12:0 a.m.371 views

Clinic Queuing System 1.0 - Remote Code Execution Exploit

Exploit Title: Clinic Queuing System 1.0 RCE Exploit Author: Juan Marco Sanchez Vendor Homepage: https://www.sourcecodester.com/ Software Link: https://www.sourcecodester.com/php/16439/clinic-queuing-system-using-php-and-sqlite3-source-code-free-download.html Version: 1.0 Tested on: Debian Linux...

9.8CVSS7.4AI score0.20938EPSS
Exploits6
0day.today
0day.today
added 2024/04/29 12:0 a.m.371 views

Doctor Appointment Management System 1.0 Cross Site Scripting Vulnerability

Application Name: Doctor Appointment Management System Software Link: Download Link Vendor Homepage: Vendor Homepage BuG: XsS BUGAuthor: SoSPiro Version: 1.0 CVE: CVE-2024-4293 Vulnerable code section: - http://localhost/Doctor-Appointment-SystemPHP/dams/doctor/appointment-bwdates.php - Lines 57-...

5.4CVSS7.2AI score0.00635EPSS
Exploits3
0day.today
0day.today
added 2024/03/20 12:0 a.m.371 views

Tramyardg Autoexpress 1.3.0 Cross Site Scripting Vulnerability

Exploit Title: tramyardg autoexpress - Stored Cross-Site Scripting XSS Exploit Author: Scott White Vendor Homepage: https://github.com/tramyardg/autoexpress Version: v1.3.0 Tested on: Ubuntu 22.04.3 LTS + Apache/2.4.52 CVE : CVE-2023-48903 References:...

6.1CVSS6.4AI score0.00571EPSS
Exploits3
0day.today
0day.today
added 2024/03/18 12:0 a.m.372 views

WordPress File Upload Plugin < 4.23.3 - Stored XSS Vulnerability

Exploit Title: WordPress File Upload 4.23.3 Stored XSS CVE 2023-4811 Exploit Author: Faiyaz Ahmad Vendor Homepage: https://wordpress.com/ Version: 4.23.3 CVE : CVE 2023-4811 Proof Of Concept: 1. Login to the wordpress account 2. Add the following shortcode to a post in "File Upload Plugin":...

5.4CVSS7.1AI score0.00394EPSS
Exploits3
0day.today
0day.today
added 2024/02/28 12:0 a.m.371 views

WordPress WP Fastest Cache 1.2.2 SQL Injection Vulnerability

WordPress WP Fastest Cache plugin version 1.2.2 suffers from an unauthenticated remote SQL injection vulnerability. Exploit Title: Unauthenticated SQL Injection in WP Fastest Cache 1.2.2 Exploit Author: Meryem Taşkın Vendor Homepage: https://www.wpfastestcache.com/ Software Link:...

7.5CVSS8.7AI score0.73708EPSS
Exploits11
0day.today
0day.today
added 2023/12/29 12:0 a.m.371 views

Lot Reservation Management System 1.0 File Disclosure Vulnerability

Exploit Title: Lot Reservation Management System Unauthenticated File Disclosure Vulnerability Date: 10th December 2023 Exploit Author: Elijah Mandila Syoyi Vendor Homepage: https://www.sourcecodester.com/php/14530/lot-reservation-management-system-using-phpmysqli-source-code.html Software Link:...

7.4AI score
Exploits0
0day.today
0day.today
added 2023/09/18 12:0 a.m.371 views

Academy LMS 6.2 SQL Injection Vulnerability

Exploit Title: Academy LMS 6.2 - SQL Injection Exploit Author: CraCkEr Vendor: Creativeitem Vendor Homepage: https://creativeitem.com/ Software Link: https://demo.creativeitem.com/academy/ Tested on: Windows 10 Pro Impact: Database Access CVE: CVE-2023-4974 CWE: CWE-89 / CWE-74 / CWE-707 Greeting...

9.8CVSS7.1AI score0.04886EPSS
Exploits3
0day.today
0day.today
added 2023/06/13 12:0 a.m.371 views

Teachers Record Management System 1.0 - File Upload Type Validation Vulnerability

Exploit Title: Teachers Record Management System 1.0 – File Upload Type Validation Date: 17-01-2023 EXPLOIT-AUTHOR: AFFAN AHMED Vendor Homepage: Software Link: Version: 1.0 Tested on: Windows 11 + XAMPP CVE : CVE-2023-3187 =============================== STEPSTOREPRODUCE...

6.5CVSS5.6AI score0.02556EPSS
Exploits4
0day.today
0day.today
added 2022/08/01 12:0 a.m.371 views

Wavlink WN533A8 - Password Disclosure Vulnerability

Exploit Title: Wavlink WN533A8 - Password Disclosure Exploit Author: Ahmed Alroky Author Company : AIactive Version: M33A8.V5030.190716 Vendor home page : wavlink.com Authentication Required: No CVE : CVE-2022-34046 Tested on: Windows Exploit view-source:http://IPADDRESS/sysinit.shtml search for...

7.5CVSS7.6AI score0.16583EPSS
Exploits4
0day.today
0day.today
added 2022/05/24 12:0 a.m.371 views

iTop Remote Command Execution Exploit

!/usr/bin/env ruby Exploit Title: iTop p...

8.8CVSS0.1AI score0.05341EPSS
Exploits4
0day.today
0day.today
added 2021/12/01 12:0 a.m.371 views

Online Enrollment Management System in PHP and PayPal 1.0 - (U_NAME) Stored XSS Vulnerability

Exploit Title: Online Enrollment Management System in PHP and PayPal 1.0 - 'UNAME' Stored Cross-Site Scripting Exploit Author: Tushar Jadhav Vendor Homepage: https://www.sourcecodester.com/ Software Link:...

5.4CVSS0.01635EPSS
Exploits4
0day.today
0day.today
added 2021/10/26 12:0 a.m.371 views

GridPro Request Management For Windows Azure Pack 2.0.7905 Directory Traversal Vulnerability

GridPro Request Management for Windows Azure Pack versions 2.0.7905 and below suffer from a traversal vulnerability that can allow for arbitrary execution of Powershell scripts. PRODUCT : GridPro Request Management for Windows Azure Pack VENDOR : GridPro Software SEVERITY : Critical AFFECTED...

9.8CVSS0.06886EPSS
Exploits3
0day.today
0day.today
added 2024/04/23 12:0 a.m.370 views

FortiNet FortiClient EMS 7.2.2 / 7.0.10 SQL Injection / Remote Code Execution Exploit

A remote SQL injection vulnerability exists in FortiNet FortiClient EMS Endpoint Management Server versions 7.2.0 through 7.2.2 and 7.0.1 through 7.0.10. FortiClient EMS serves as an endpoint management solution tailored for enterprises, offering a centralized platform for overseeing enrolled...

9.8CVSS10AI score0.97591EPSS
Exploits4
0day.today
0day.today
added 2024/04/02 12:0 a.m.370 views

ASUS Control Center Express 01.06.15 - Unquoted Service Path Vulnerability

Exploit Title: ASUS Control Center Express 01.06.15 - Unquoted Service Path Privilege Escalation Exploit Author: Alaa Kachouh Vendor Homepage: https://www.asus.com/campaign/ASUS-Control-Center-Express/global/ Version: Up to 01.06.15 Tested on: Windows CVE: CVE-2024-27673...

7.2AI score
Exploits3
0day.today
0day.today
added 2024/03/14 12:0 a.m.370 views

SolarView Compact 6.00 - Command Injection Exploit

Exploit Title: SolarView Compact 6.00 - Command Injection - Shodan Dork: http.html:"solarview compact" - Exploit Author: ByteHunter - Email: email protected - Version: 6.00 - Tested on: 6.00 - CVE : CVE-2023-23333 import argparse import requests def vulncheckipaddress, port: url =...

9.8CVSS9.6AI score0.99273EPSS
Exploits9
0day.today
0day.today
added 2024/03/04 12:0 a.m.370 views

Maxima Max Pro Power - BLE Traffic Replay (Unauthenticated) Vulnerability

Exploit Title: Maxima Max Pro Power - BLE Traffic Replay Unauthenticated Exploit Author: Alok kumar email protected, Cyberpwn Technologies Pvt. Ltd. Vendor Homepage: https://www.maximawatches.com Product Link: https://www.maximawatches.com/products/max-pro-power Firmware Version: v1.0 486A Tested...

4.3CVSS4.7AI score0.00511EPSS
Exploits4
0day.today
0day.today
added 2023/11/14 12:0 a.m.370 views

WordPress WP Rocket 2.10.3 Local File Inclusion Exploit

Paulos Yibelo discovered and reported this Local File Inclusion vulnerability in WordPress WP Rocket Plugin. This could allow a malicious actor to include local files of the target website and show its output onto the screen. Files which store credentials, such as database credentials, could...

7.4AI score
Exploits0
0day.today
0day.today
added 2023/08/04 12:0 a.m.370 views

PHPJabbers Rental Property Booking 2.0 - Reflected XSS Vulnerability

Exploit Title: PHPJabbers Rental Property Booking 2.0 - Reflected XSS Exploit Author: CraCkEr Vendor: PHPJabbers Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/rental-property-booking-calendar/ Version: 2.0 Tested on: Windows 10 Pro Impact: Manipulate the...

6.1CVSS7.1AI score0.01535EPSS
Exploits4
0day.today
0day.today
added 2023/05/09 12:0 a.m.370 views

Found Information System 1.0 SQL Injection Vulnerability

Title: Found Information System 1.0 Multiple-SQLi Author: nu11secur1ty Vendor: https://github.com/oretnom23 Software: https://www.sourcecodester.com/php/16525/lost-and-found-information-system-using-php-and-mysql-db-source-code-free-download.html Reference:...

7.1AI score
Exploits0
0day.today
0day.today
added 2023/03/16 12:0 a.m.370 views

Bitbucket Environment Variable Remote Command Injection Exploit

For various versions of Bitbucket, there is an authenticated command injection vulnerability that can be exploited by injecting environment variables into a user name. This module achieves remote code execution as the atlbitbucket user by injecting the GITEXTERNALDIFF environment variable, a null...

9.8CVSS9.9AI score0.98076EPSS
Exploits3
0day.today
0day.today
added 2022/06/07 12:0 a.m.370 views

Poly EagleEye Director II 2.2.1.1 Command Injection / Authentication Bypass Vulnerability

======================================================================= title: Multiple Critical Vulnerabilities product: Poly EagleEye Director II vulnerable version: 2.2.1.1 Jul 1, 2021 fixed version: 2.2.2.1 or higher CVE number: CVE-2022-26479, CVE-2022-26482 impact: critical homepage:...

9.8CVSS0.5AI score0.22337EPSS
Exploits4
0day.today
0day.today
added 2022/06/07 12:0 a.m.370 views

Confluence OGNL Injection Remote Code Execution Exploit

Confluence suffers from a pre-authentication remote code execution vulnerability that is leveraged via OGNL injection. All 7.4.17 versions before 7.18.1 are affected. !/usr/bin/python3 Exploit Title: Confluence Pre-Auth Remote Code Execution via OGNL Injection Google Dork: N/A Date: 06/006/2022...

9.8CVSS0.4AI score0.99999EPSS
Exploits76
0day.today
0day.today
added 2021/12/23 12:0 a.m.370 views

Accu-Time Systems MAXIMUS 1.0 Buffer Overflow / Denial Of Service Exploit

Exploit Title: Accu-Time Systems MAXIMUS 1.0 Telnet Remote Buffer Overflow Discovered by: Yehia Elghaly Vendor Homepage: https://www.accu-time.com/ Software Link : https://www.accu-time.com/maximus-employee-time-clock-3/ Tested Version: 1.0 Vulnerability Type: Buffer Overflow DoS Remote Tested on...

7.4AI score
Exploits0
0day.today
0day.today
added 2021/12/06 12:0 a.m.370 views

Auerswald COMpact 8.0B - Privilege Escalation Vulnerability

Exploit Title: Auerswald COMpact 8.0B - Privilege Escalation Exploit Author: RedTeam Pentesting GmbH Advisory: Auerswald COMpact Privilege Escalation RedTeam Pentesting discovered a vulnerability in the web-based management interface of the Auerswald COMpact 5500R PBX which allows low-privileged...

8.8CVSS1.8AI score0.02028EPSS
Exploits4
0day.today
0day.today
added 2021/10/05 12:0 a.m.370 views

Atlassian Confluence 7.12.2 - Pre-Authorization Arbitrary File Read Vulnerability

Exploit Title: Atlassian Confluence 7.12.2 - Pre-Authorization Arbitrary File Read Exploit Author: Mayank Deshmukh Vendor Homepage: https://www.atlassian.com/ Software Link: https://www.atlassian.com/software/confluence/download-archives Version: version 7.4.10 and 7.5.0 ≤ version 7.12.3 Tested o...

5.3CVSS0.5AI score0.99937EPSS
Exploits6
0day.today
0day.today
added 2024/03/20 12:0 a.m.369 views

Teacher Subject Allocation Management System 1.0 - (searchdata) SQL injection Vulnerability

Exploit Title: Teacher Subject Allocation Management System 1.0 - 'searchdata' SQLi Exploit Author: Ersin Erenler Vendor Homepage: https://phpgurukul.com/teacher-subject-allocation-system-using-php-and-mysql Software Link: https://phpgurukul.com/?sdmprocessdownload=1&downloadid=17645 Version: 1.0...

7.5CVSS7.4AI score0.01079EPSS
Exploits4
Total number of security vulnerabilities5000