Lucene search
K
ZdtMost viewed

39001 matches found

0day.today
0day.today
added 2023/09/04 12:0 a.m.305 views

CSZ CMS 1.3.0 - Stored Cross-Site Scripting (Photo URL and YouTube URL) Vulnerability

Exploit Title: CSZ CMS 1.3.0 - Stored Cross-Site Scripting 'Photo URL' and 'YouTube URL' CVE: CVE-2023-38910 Exploit Author: Daniel González Vendor Homepage: https://www.cszcms.com/ Software Link: https://github.com/cskaza/cszcms Version: 1.3.0 Tested on: CSZ CMS 1.3.0 Description: CSZ CMS 1.3.0 ...

6.1CVSS7.1AI score0.00436EPSS
Exploits4
0day.today
0day.today
added 2023/05/31 12:0 a.m.305 views

Lost And Found Information System 1.0 Broken Access Control / Privilege Escalation Vulnerability

Vulnerability: Broken Access Control Author: Akash Pandey CVE: CVE-2023-3018 Source: https://www.sourcecodester.com/php/16525/lost-and-found-information-system-using-php-and-mysql-db-source-code-free-download.html Steps to re-produce: 1. Go to https://site.com/admin/?page=user/list as staff user...

8.8CVSS7.1AI score0.00735EPSS
Exploits3
0day.today
0day.today
added 2023/04/05 12:0 a.m.305 views

Control Web Panel 7 (CWP7) v0.9.8.1147 - Remote Code Execution Exploit

// Exploit Title: Control Web Panel 7 CWP7 v0.9.8.1147 - Remote Code Execution RCE // Exploit Author: Mayank Deshmukh // Vendor Homepage: https://centos-webpanel.com/ // Affected Versions: version 0.9.8.1147 // Tested on: Kali Linux // CVE : CVE-2022-44877 // Github POC:...

9.8CVSS9.2AI score0.99995EPSS
Exploits12
0day.today
0day.today
added 2022/12/07 12:0 a.m.305 views

VMware vCenter vScalation Privilege Escalation Exploit

This Metasploit module exploits a privilege escalation in vSphere/vCenter due to improper permissions on the /usr/lib/vmware-vmon/java-wrapper-vmon file. It is possible for anyone in the cis group to write to the file, which will execute as root on vmware-vmon service restart or host reboot. This...

7.8CVSS1.6AI score0.01808EPSS
Exploits5
0day.today
0day.today
added 2022/08/16 12:0 a.m.305 views

Inout RealEstate 2.1.2 SQL Injection Vulnerability

┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ┌┘ Exploits ┌┘ └───────────────────────────────────────────────────────────────────────────────────────┘┘ : Author : CraCkEr │ │ : │ Website : inoutscripts.com │ │ │ │ Vendor : Inout Scripts │ │ │ │ Softwar...

Exploits0
0day.today
0day.today
added 2022/05/12 12:0 a.m.305 views

D-LINK DIR850 - Insecure Access Control Vulnerability

Exploit Title: DLINK DIR850 - Insecure Access Control Product: Dlink Model: DIR850 Date: 14/1/2022 CVE : CVE-2021-46378 Exploit Author: Ahmed Alroky Hardware version: b1 Firmware version: ET850-1.08TRb03 Vendor home page: https://www.dlink.com/ Exploit : Visit http:///config.dat...

7.5CVSS7.7AI score0.31863EPSS
Exploits4
0day.today
0day.today
added 2022/04/07 12:0 a.m.305 views

Kramer VIAware - Remote Code Execution Exploit

Exploit Title: Remote Code Execution as Root on KRAMER VIAware Exploit Author: sharkmoos Vendor Homepage: https://www.kramerav.com/ Software Link: https://www.kramerav.com/us/product/viaware Version: Tested on: ViaWare Go Linux CVE : CVE-2021-35064, CVE-2021-36356 import sys, urllib3 from request...

9.8CVSS0.2AI score0.70753EPSS
Exploits6
0day.today
0day.today
added 2022/04/07 12:0 a.m.305 views

WordPress Loco Translate Plugin < 2.6.1 - Authenticated Stored Cross-Site Scripting Vulnerability

Tittle: WordPress Plugin Loco Translate ' 7. Save 8. Replicated POC2 via example.po 1. Got to Plugin Loco Translate 2. Enter Plugins Options Any Plugin 3. Upload PO options 3. Load example.po Example.po msgid "" msgstr "" "Project-Id-Version: xss-tester\n" "Report-Msgid-Bugs-To: \n"...

5.4CVSS5.5AI score0.03932EPSS
Exploits4
0day.today
0day.today
added 2022/04/07 12:0 a.m.305 views

WordPress UpdraftPlus Plugin < 1.22.9 - Reflected Cross-Site Scripting Vulnerability

Tittle: WordPress Plugin UpdraftPlus confirm1 Classification Type XSS OWASP top 10 A7: Cross-Site Scripting XSS CWE-79 wpScan: https://wpscan.com/vulnerability/7337543f-4c2c-4365-aebf-3423e9d2f872...

6.1CVSS0.6AI score0.07355EPSS
Exploits4
0day.today
0day.today
added 2022/03/22 12:0 a.m.305 views

ICT Protege GX/WX 2.08 - Client-Side SHA1 Password Hash Disclosure Vulnerability

Exploit Title: ICT Protege GX/WX 2.08 - Client-Side SHA1 Password Hash Disclosure Exploit Author: LiquidWorm Vendor: Integrated Control Technology Ltd. Product web page: https://www.ict.co Affected version: GX: Ver: 2.08.1002 K1B3 Lib: 04.00.217 Int: 2.3.235.J013 OS: 2.0.20 WX: Ver: 4.00 284 H062...

7.4AI score
Exploits0
0day.today
0day.today
added 2020/08/13 12:0 a.m.305 views

Artica Proxy 4.3.0 - Authentication Bypass Exploit

Exploit for hardware platform in category web applications Exploit Title: Artica Proxy 4.3.0 - Authentication Bypass Google Dork: N/A Date: 2020-08-13 Exploit Author: Dan Duffy Vendor Homepage: http://articatech.net/ Software Link: http://articatech.net/download2x.php?IsoOnly=yes Version:...

9.6AI score0.93967EPSS
Exploits7
0day.today
0day.today
added 2020/07/04 12:0 a.m.305 views

Froala WYSIWYG HTML Editor 3.1.1 Cross Site Scripting Vulnerability

Exploit for php platform in category web applications Product: Froala WYSIWYG HTML Editor Vendor: Froala CSNC ID: CSNC-2020-004 CVE ID: CVE-2019-19935 Subject: DOM XSS in Froala WYSIWYG HTML Editor Severity: Medium Effect: Remotely exploitable Author: Emanuel Duss Date: 2020-07-01 Introduction...

4.3CVSS6.4AI score0.01847EPSS
Exploits3
0day.today
0day.today
added 2019/10/31 12:0 a.m.305 views

MikroTik RouterOS 6.45.6 - DNS Cache Poisoning Exploit

Exploit Title: MikroTik RouterOS 6.45.6 - DNS Cache Poisoning Exploit Author: Jacob Baines Vendor Homepage: https://mikrotik.com/ Software Link: https://mikrotik.com/download Version: 6.45.6 Stable and below or 6.44.5 Long-term and below Tested on: Various x86 and MIPSBE RouterOS installs CVE :...

8.1CVSS7.9AI score0.10274EPSS
Exploits5
0day.today
0day.today
added 2019/06/26 12:0 a.m.305 views

WordPress Live Chat Unlimited 2.8.3 Plugin - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Live Chat Unlimited v2.8.3 Stored XSS Injection Google Dork: inurl:"wp-content/plugins/screets-lcx" Date: 2019/06/25 Exploit Author: m0ze Vendor Homepage: https://screets.com/ Software Link:...

7.1AI score
Exploits0
0day.today
0day.today
added 2019/05/15 12:0 a.m.305 views

PHP-Fusion 9.03.00 Remote Code Execution Exploit

This Metasploit module exploits a command execution vulnerability in PHP-Fusion versions 9.03.00 and below. It is possible to execute commands in the system with ordinary user authority. This module requires Metasploit: https://metasploit.com/download Current source:...

0.7AI score
Exploits0
0day.today
0day.today
added 2018/10/24 12:0 a.m.305 views

exim 4.90 - Remote Code Execution Exploit

Exploit Title: exim 4.90 - Remote Code Execution Exploit Author: hackk.gr Vendor Homepage: exim.org Version: exim -1: authplainavailable = True if test: if lenl 70: sys.stdout.writel:70 + " ...\n" sys.stdout.flush else: print l.strip"\r".strip"\n" data = data + l if data.finddelim -1: return data...

9.8CVSS0.2AI score0.82238EPSS
Exploits19
0day.today
0day.today
added 2012/10/29 12:0 a.m.305 views

Joomla Component com_jce remote Code Injecion / Execution Exploit (perl)

JCE component for Joomla! could allow a remote authenticated attacker to upload arbitrary files, caused by the improper validation of file extensions by the file.php script. By sending a specially-crafted HTTP request, a remote attacker could exploit this vulnerability to upload a malicious PHP...

7.6AI score
Exploits0
0day.today
0day.today
added 2010/11/03 12:0 a.m.305 views

Tipard DVD Ripper DLL Hijacking Exploit (quserex.dll)

Exploit for windows platform in category local exploits ===================================================== Tipard DVD Ripper DLL Hijacking Exploit quserex.dll ===================================================== || || | || o,7 || . o7 || 4||| ow, : / /...

6.8AI score
Exploits0
0day.today
0day.today
added 2024/03/20 12:0 a.m.304 views

Tramyardg Autoexpress 1.3.0 Authentication Bypass Vulnerability

Tramyardg Autoexpress version 1.3.0 allows for authentication bypass via unauthenticated API access to admin functionality. This could allow a remote anonymous attacker to delete or update vehicles as well as upload images for vehicles. Exploit Title: tramyardg autoexpress - Authentication Bypass...

9.8CVSS7.9AI score0.01277EPSS
Exploits3
0day.today
0day.today
added 2023/06/07 12:0 a.m.304 views

PaperCut PaperCutNG Authentication Bypass Exploit

This Metasploit module leverages an authentication bypass in PaperCut NG. If necessary it updates Papercut configuration options, specifically the print-and-de vice.script.enabled and print.script.sandboxed options to allow for arbitrary code execution running in the builtin RhinoJS engine. This...

9.8CVSS10AI score0.99999EPSS
Exploits24
0day.today
0day.today
added 2022/07/31 12:0 a.m.304 views

Schneider Electric SpaceLogic C-Bus Home Controller (5200WHC2) - Remote Code Execution Vulnerability

Exploit Title: Schneider Electric SpaceLogic C-Bus Home Controller 5200WHC2 - Remote Code Execution Exploit Author: LiquidWorm SpaceLogic.ps1 Schneider Electric SpaceLogic C-Bus Home Controller 5200WHC2 Remote Root Exploit Vendor: Schneider Electric SE Product web page: https://www.se.com...

8.8CVSS0.3AI score0.71084EPSS
Exploits6
0day.today
0day.today
added 2022/03/30 12:0 a.m.304 views

CSZ CMS 1.2.9 - Multiple Blind SQL injection (Authenticated) Vulnerability

Exploit Title: CSZ CMS 1.2.9 - 'Multiple' Blind SQLiAuthenticated Exploit Author: Rahad Chowdhury Vendor Homepage: https://www.cszcms.com/ Software Link: https://sourceforge.net/projects/cszcms/files/install/CSZCMS-V1.2.9.zip Version: 1.2.9 Tested on: Windows 10, Kali Linux, PHP 7.4.16, Apache...

6.5CVSS0.4AI score0.03345EPSS
Exploits4
0day.today
0day.today
added 2022/03/30 12:0 a.m.304 views

Kramer VIAware 2.5.0719.1034 - Remote Code Execution Exploit

Exploit Title: Kramer VIAware 2.5.0719.1034 - Remote Code Execution RCE Exploit Author: sharkmoos & BallO Vendor Homepage: https://www.kramerav.com/ Software Link: https://www.kramerav.com/us/product/viaware Version: 2.5.0719.1034 Tested on: ViaWare Go Windows 10 CVE : CVE-2019-17124 import...

9.8CVSS0.2AI score0.2254EPSS
Exploits5
0day.today
0day.today
added 2021/11/15 12:0 a.m.304 views

WordPress Contact Form to Email 1.3.24 Plugin - Stored Cross Site Scripting Vulnerability

Exploit Title: WordPress Plugin Contact Form to Email 1.3.24 - Stored Cross Site Scripting XSS Authenticated Exploit Author: Mohammed Aadhil Ashfaq Vendor Homepage: https://form2email.dwbooster.com/ Version: 1.3.24 Tested on: wordpress POC 1. Click Contact form to Email...

7.1AI score
Exploits0
0day.today
0day.today
added 2021/09/29 12:0 a.m.304 views

Covid Vaccination Scheduler System 1.0 SQL Injection / Cross Site Scripting Vulnerabilities

Covid Vaccination Scheduler System version 1.0 suffers from cross site scripting and remote SQL injection vulnerabilities. Original discovery of SQL injection in this version is attributed to faisalfs10x in July of 2021. CVE-2021-36621 Vendor Description Sourcecodester Online Covid Vaccination...

8.1CVSS0.3AI score0.02073EPSS
Exploits3
0day.today
0day.today
added 2019/03/24 12:0 a.m.304 views

Canarytokens 2019-03-01 - Detection Bypass Exploit

Exploit Title: Canarytokens 2019-03-01 - Detection Bypass Exploit Author: Benjamin Zink Loft, Gionathan "John" Reale Vendor Homepage: https://thinkst.com/ Version: up to 2019-03-01 Software Link: https://github.com/thinkst/canarytokens Google Dork: N/A CVE: 2019-9768...

7.5CVSS7.6AI score0.11682EPSS
Exploits3
0day.today
0day.today
added 2018/04/07 12:0 a.m.304 views

LineageOS 14.1 Blueborne - Remote Code Execution Vulnerability

Exploit for Android platform in category remote exploits Exploit Title: LineageOS 14.1 Android 7.1.2 Blueborne RCE CVE-2017-0781 Exploit Author: Marcin Kozlowski Tested on: LinageOS 14.1 Android 7.1.2 without BlueBorne Patch CVE : CVE-2017-0781 Provided for legal security research and testing...

8.3CVSS0.3AI score0.2285EPSS
Exploits13
0day.today
0day.today
added 2013/07/31 12:0 a.m.304 views

Adobe ColdFusion all versions LFD exploit (without Metasploit)

This code exploit a Local FIle Disclosure vulnerability in ColdFusion that allows attackers to dump administrator passwords and log into the admin panel. !/usr/bin/perl ColdFusion Locale File Disclosure exploit without Metasploit Google Dork: intitle:"Index of /CFIDE/" administrator Date:...

7AI score
Exploits0
0day.today
0day.today
added 2024/11/06 12:0 a.m.303 views

SmartAgent 1.1.0 SQL Injection Vulnerability

Exploit Title: SmartAgent v1.1.0 - Unauthenticated SQL Injection SQLi Exploit Author: Alter Prime Vendor Homepage: https://smarts-srlcom.com/, https://smartagent.com Version: Build v1.1.0 Tested on: Kali Linux An unauthenticated user can inject SQL queries through a POST request to the vulnerable...

7.4AI score
Exploits0
0day.today
0day.today
added 2024/01/29 12:0 a.m.303 views

Bank Locker Management System - SQL Injection Vulnerability

Exploit Title: Bank Locker Management System - SQL Injection Application: Bank Locker Management System Bugs: SQL Injection Exploit Author: SoSPiro Vendor Homepage: https://phpgurukul.com/ Software Link: https://phpgurukul.com/bank-locker-management-system-using-php-and-mysql/ Tested on: Windows ...

7.4AI score
Exploits0
0day.today
0day.today
added 2024/01/08 12:0 a.m.303 views

Linux 6.4 io_uring Use-After-Free Exploit

Linux =6.4: iouring: page UAF via buffer ring mmap Since commit c56e022c0a27 "iouring: add support for user mapped provided buffer ring", landed in Linux 6.4, iouring makes it possible to allocate, mmap, and deallocate "buffer rings". A "buffer ring" can be allocated with iouringregister...,...

7.4AI score
Exploits0
0day.today
0day.today
added 2023/06/28 12:0 a.m.303 views

Zip And RAR FileExtractor 5.7 Cross Site Scripting Vulnerability

Exploit Title: Zip & RAR FileExtractor v5.7 - Reflected XSS Vendor Homepage: Penghui Zhao Software Link: https://apps.apple.com/tr/app/zip-rar-file-extractor/id769409043?l=en Exploit Author: tmrswrr Category : ios app Version: v5.7 Tested on: Windows/Linux Description: Go to Wi-Fi Transfer sectio...

7.1AI score
Exploits0
0day.today
0day.today
added 2023/04/25 12:0 a.m.303 views

Sophos Web Appliance 4.3.10.4 - Pre-auth command injection Exploit

!/bin/bash Exploit Title: Sophos Web Appliance 4.3.10.4 - Pre-auth command injection Exploit Author: Behnam Abasi Vanda Vendor Homepage: https://www.sophos.com Version: Sophos Web Appliance older than version 4.3.10.4 Tested on: Ubuntu CVE : CVE-2023-1671 Shodan Dork: title:"Sophos Web Appliance"...

9.8CVSS9.2AI score0.99999EPSS
Exploits10
0day.today
0day.today
added 2023/03/30 12:0 a.m.303 views

Dreamer CMS v4.0.0 - SQL Injection Vulnerability

Exploit Title: Dreamer CMS v4.0.0 - SQL Injection Exploit Author: lvren Vendor Homepage: http://cms.iteachyou.cc/ Software Link: https://gitee.com/isoftforce/dreamercms/repository/archive/v4.0.0.zip Version: v4.0.0 CVE: CVE-2022-43128 Proof Of Concept: POST /admin/search/doSearch HTTP/1.1 Host:...

6.3AI score
Exploits3
0day.today
0day.today
added 2022/10/05 12:0 a.m.303 views

WordPress WPvivid Backup Path Traversal Vulnerability

Wordpress plugin - WPvivid Backup - Version 0.9.76 Author: Rodolfo Tavares Tempest Security Intelligence - Recife, Pernambuco - Brazil ===== Table of Contents================================================== Overview Detailed description Timeline of disclosure Thanks & Acknowledgements Reference...

4.9CVSS0.18147EPSS
Exploits3
0day.today
0day.today
added 2022/06/07 12:0 a.m.303 views

Korenix JetPort 5601V3 Backdoor Account Vulnerability

Korenix JetPort 5601V3 with firmware version 1.0 suffers from having default backdoor accounts. The vendor will not address the issue as they claim the secret cannot be cracked in a reasonable amount of time. ======================================================================= title: Backdoor...

9.8CVSS9.5AI score0.03338EPSS
Exploits7
0day.today
0day.today
added 2022/03/30 12:0 a.m.303 views

ImpressCMS 1.4.2 - Remote Code Execution Exploit

Exploit Title: ImpressCMS 1.4.2 - Remote Code Execution RCE Exploit Author: Egidio Romano aka EgiX Version: = 1.4.2 Venor: https://www.impresscms.org CVE: CVE-2021-26599 ?php / ---------------------------------------------------------- ImpressCMS = 1.4.2 SQL Injection to Remote Code Execution...

9.8CVSS0.19419EPSS
Exploits9
0day.today
0day.today
added 2022/02/22 12:0 a.m.303 views

Agirhnet 1.0 Cross Site Scripting Vulnerability

Exploit Title: Agirhnet - Reflected XSS via GET Google Dork: inurl:agirhnet Exploit Author: Daniel Martinez Adan aDoN90 Vendor Homepage: https://agirh.net/ Version: app version 1.0 CVSS : 6.1 AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N URL:...

7.4AI score
Exploits0
0day.today
0day.today
added 2021/12/20 12:0 a.m.303 views

Bazaar Web PHP Social Listings Shell Upload Vulnerability

-- Exploit Title: Bazaar Web PHP Social Listings Arbitrary File Upload Exploit Author: Sohel Yousef - email protected Software Link: https://codecanyon.net/item/bazaar-social-listing-shopping-web-php-template/23207913 Software Demo :https://xserver.app/apps/bazaar-web/index.php Category: webapps ...

7.4AI score
Exploits0
0day.today
0day.today
added 2021/11/05 12:0 a.m.303 views

PHP Event Calendar Lite Edition Cross Site Scripting Vulnerability

Product: PHP Event Calendar Manufacturer: Kayson Group Ltd. Affected Versions: PHP Event Calendar Lite edition Tested Versions: PHP Event Calendar Lite edition Vulnerability Type: Cross-site Scripting CWE-79 Risk Level: High Solution Status: Open Manufacturer Notification: 2021-08-09 Public...

6.1CVSS6.5AI score0.00864EPSS
Exploits3
0day.today
0day.today
added 2021/07/29 12:0 a.m.303 views

IntelliChoice eFORCE Software Suite 2.5.9 - Username Enumeration Vulnerability

Exploit Title: IntelliChoice eFORCE Software Suite 2.5.9 - Username Enumeration Exploit Author: LiquidWorm Vendor Homepage: https://www.eforcesoftware.com IntelliChoice eFORCE Software Suite v2.5.9 Username Enumeration Vendor: IntelliChoice, Inc. Product web page: https://www.eforcesoftware.com...

Exploits0
0day.today
0day.today
added 2020/08/18 12:0 a.m.303 views

Geutebruck testaction.cgi Remote Command Execution Exploit

This Metasploit module exploits an authenticated arbitrary command execution vulnerability within the 'server' GET parameter of the /uapi-cgi/testaction.cgi page of Geutebruck G-Cam EEC-2xxx and G-Code EBC-21xx, EFD-22xx, ETHC-22xx, and EWPC-22xx devices running firmware versions 'Geutebruck...

9CVSS7.5AI score0.60435EPSS
Exploits4
0day.today
0day.today
added 2020/03/29 12:0 a.m.303 views

Redis Replication Code Execution Exploit

This Metasploit module can be used to leverage the extension functionality added since Redis 4.0.0 to execute arbitrary code. To transmit the given extension it makes use of the feature of Redis which called replication between master and slave. This module requires Metasploit:...

0.5AI score
Exploits0
0day.today
0day.today
added 2019/11/29 12:0 a.m.303 views

FortiOS 6.0.6 / FortiClientWindows 6.0.6 / FortiClientMac 6.2.1 XOR Encryption Vulnerability

Fortinet products, including FortiGate and Forticlient, regularly send information to Fortinet servers using XOR "encryption" with a static key. FortiClientWindows versions 6.0.6 and below, and FortiClientMac versions 6.2.1 and below. After this advisory was released, Fortinet has confirmed that...

4.3CVSS5.6AI score0.01766EPSS
Exploits2
0day.today
0day.today
added 2019/06/22 12:0 a.m.304 views

EA Origin < 10.5.38 - Remote Code Execution Vulnerability

Exploit Title: EA Origin 10.5.38 Remote Code Execution Date: 05/22/2019 Exploit Author: Dominik Penner @zer0pwn Vendor Homepage: https://www.origin.com Software Link: https://www.origin.com/can/en-us/store/download Version: 10.5.38 and below Tested on: Windows 7, Windows 8, Windows 10 CVE :...

9.3CVSS0.4AI score0.71776EPSS
Exploits14
0day.today
0day.today
added 2018/11/07 12:0 a.m.303 views

libiec61850 1.3 - Stack Based Buffer Overflow

Exploit for linux platform in category local exploits Exploit Title: libiec61850 1.3 - Stack Based Buffer Overflow Exploit Author: Dhiraj Mishra Vendor Homepage: http://libiec61850.com/libiec61850/ Software Link: https://github.com/mz-automation/libiec61850 Version: 1.3 Tested on: Linux...

9.4AI score0.11573EPSS
Exploits4
0day.today
0day.today
added 2025/02/20 12:0 a.m.303 views

LTL Freight Quotes – Estes Edition 3.3.7 SQL Injection Vulnerability

CVE-2024-13488 LTL Freight Quotes – Estes Edition = 5.6 AND error-based - WHERE, HAVING...

7.5CVSS9.6AI score0.01059EPSS
Exploits3
0day.today
0day.today
added 2024/11/06 12:0 a.m.302 views

SQLite3 generate_series Stack Buffer Underflow Vulnerability

SQLite3 suffers from a stack buffer underflow condition in seriesBestIndex in the generateseries extension. Vulnerability details static int seriesBestIndex sqlite3vtab pVTab, sqlite3indexinfo pIdxInfo int i, j; / Loop over constraints / int idxNum = 0; / The query plan bitmask / ifndef...

7.5AI score
Exploits0
0day.today
0day.today
added 2024/06/26 12:0 a.m.302 views

Poultry Farm Management System v1.0 - Remote Code Execution Exploit

Exploit Title: Poultry Farm Management System v1.0 - Remote Code Execution RCE Exploit Author: Jerry Thomas w3bn00b3r Vendor Homepage: https://www.sourcecodester.com/php/15230/poultry-farm-management-system-free-download.html Software Link:...

7.4AI score
Exploits0
0day.today
0day.today
added 2024/04/12 12:0 a.m.302 views

HTMLy Version v2.9.6 - Stored XSS Vulnerability

Exploit Title: HTMLy Version v2.9.6 - Stored XSS Exploit Author: tmrswrr Vendor Homepage: https://www.htmly.com/ Version 3.10.8.21 Date : 04/08/2024 1 Login admin https://127.0.0.1/HTMLy/admin/config 2 General Setting Blog title " 3 After save it you will be see XSS alert...

7.4AI score
Exploits0
Total number of security vulnerabilities5000