Lucene search
K
ZdtMost viewed

39001 matches found

0day.today
0day.today
added 2023/03/22 12:0 a.m.233 views

Zyxel Unauthenticated LAN Remote Code Execution Exploit

This Metasploit module exploits a buffer overflow in the zhttpd binary /bin/zhttpd. It is present on more than 40 Zyxel routers and CPE devices. The code execution vulnerability can only be exploited by an attacker if the zhttp webserver is reachable. No authentication is required. After...

8.6AI score
Exploits0
0day.today
0day.today
added 2022/12/10 12:0 a.m.233 views

Spitfire CMS 1.0.475 PHP Object Injection Vulnerability

Spitfire CMS version 1.0.475 is prone to a PHP object injection vulnerability due to the unsafe use of unserialize function. A potential attacker, authenticated, could exploit this vulnerability by sending specially crafted requests to the web application containing malicious serialized input...

0.4AI score
Exploits0
0day.today
0day.today
added 2022/09/23 12:0 a.m.233 views

Feehi CMS 2.1.1 - Remote Code Execution (Authenticated) Vulnerability

Exploit Title: Feehi CMS 2.1.1 - Remote Code Execution RCE Authenticated Exploit Author: yuyudhn Vendor Homepage: https://feehi.com/ Software Link: https://github.com/liufee/cms Version: 2.1.1 REQUIRED Tested on: Linux, Docker CVE : CVE-2022-34140 Proof of Concept: 1. Login using admin account at...

5.4CVSS0.2AI score0.03574EPSS
Exploits7
0day.today
0day.today
added 2022/09/19 12:0 a.m.233 views

Social Share Buttons 2.2.3 SQL injection Vulnerability

Title: Social Share Buttons-2.2.3 SQLi Author: nu11secur1ty Vendor: https://wordpress.org/ Software: https://downloads.wordpress.org/plugin/social-share-buttons-by-supsystic.2.2.3.zip Reference:...

0.2AI score
Exploits0
0day.today
0day.today
added 2022/03/29 12:0 a.m.233 views

FruityWifi Remote Code Execution Exploit

This is an exploit for FruityWifi that binds a shell to tcp port 4444 using a remote code execution vulnerability leveraged via a SOAP request. !/usr/bin/python3 -- coding: utf-8 -- usage: ./akhlutprowlingterror.py http://phishingsiteurl text=''' -o==============o- ████ ██████ ██████ ██ ██ ██████...

7.9AI score
Exploits0
0day.today
0day.today
added 2022/02/02 12:0 a.m.233 views

Wordpress 404 to 301 2.0.2 Plugin - SQL Injection (Authenticated) Exploit

Exploit Title: Wordpress Plugin 404 to 301 2.0.2 - SQL-Injection Authenticated Exploit Author: Ron Jost Hacker5preme Vendor Homepage: https://de.wordpress.org/plugins/404-to-301/ Software Link: https://downloads.wordpress.org/plugin/404-to-301.2.0.2.zip Version: = 2.0.2 Tested on: Ubuntu 20.04 CV...

9.8CVSS0.6AI score0.46125EPSS
Exploits4
0day.today
0day.today
added 2022/01/17 12:0 a.m.233 views

Chaos Ransomware Builder 4 Insecure Permissions Vulnerability

Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/8b855e56e41a6e10d28522a20c1e0341.txt Contact: email protected Media: twitter.com/malvuln Threat: Chaos Ransomeware Builder v4 Vulnerability: Insecure Permissions Description: The malware writes an .EXE...

7.4AI score
Exploits0
0day.today
0day.today
added 2022/01/10 12:0 a.m.233 views

Online Examination System Project 1.0 SQL Injection Vulnerability

Title: Online Examination System Project 1.0 SQL - Injections Author: nu11secur1ty Vendor: https://projectworlds.in/free-projects/php-projects/ Software: https://projectworlds.in/free-projects/php-projects/online-examination/ Description: The eid parameter in account.php from Online Examination...

0.2AI score
Exploits0
0day.today
0day.today
added 2022/01/05 12:0 a.m.233 views

Library System in PHP 1.0 - (publisher name) Stored Cross-Site Scripting Vulnerability

Exploit Title: Library System in PHP 1.0 - 'publisher name' Stored Cross-Site Scripting XSS Exploit Author: Akash Rajendra Patil Vendor Homepage: https://www.yahoobaba.net/project/library-system-in-php Software Link: https://www.yahoobaba.net/project/library-system-in-php Version: V 1.0 Tested on...

7.4AI score
Exploits0
0day.today
0day.today
added 2021/11/03 12:0 a.m.233 views

WordPress Hotel Listing 3 Plugin - (Multiple) Cross-Site Scripting Vulnerability

Exploit Title: WordPress Plugin Hotel Listing 3 - 'Multiple' Cross-Site Scripting XSS Exploit Author: Vulnerability Lab Vendor Homepage: https://hotel.eplug-ins.com/ Software Link: https://hotel.eplug-ins.com/hoteldoc/ Version: v3 Document Title: =============== Hotel Listing WP Plugin v3.x -...

7.1AI score
Exploits0
0day.today
0day.today
added 2021/10/08 12:0 a.m.233 views

Online Enrollment Management System 1.0 - Authentication Bypass Vulnerability

Exploit Title: Online Enrollment Management System 1.0 - Authentication Bypass Exploit Author: Amine ismail @aminei Vendor Homepage: https://www.sourcecodester.com/php/12914/online-enrollment-management-system-paypal-payments-phpmysqli.html Software Link:...

0.3AI score
Exploits0
0day.today
0day.today
added 2021/04/07 12:0 a.m.233 views

OpenBSD OpenSMTPD 6.6 Remote Code Execution Exploit

smtpmailaddr in smtpsession.c in OpenSMTPD version 6.6, as used in OpenBSD version 6.6 and other products, allows remote attackers to execute arbitrary commands as root via a crafted SMTP session, as demonstrated by shell metacharacters in a MAIL FROM field. This affects the "uncommented" default...

9.8CVSS9.8AI score0.98946EPSS
Exploits27
0day.today
0day.today
added 2019/07/30 12:0 a.m.233 views

iMessage - NSKeyedUnarchiver Deserialization Allows file Backed NSData Objects Exploit

The class NSDataFileBackedFuture can be deserialized even if secure encoding is enabled. This class is a file-backed NSData object that loads a local file into memory when the NSData bytes selector is called. This presents two problems. First, it could potentially allow undesired access to local...

7.5CVSS0.6AI score0.11029EPSS
Exploits1
0day.today
0day.today
added 2019/05/21 12:0 a.m.233 views

GAT-Ship Web Module 1.30 Information Disclosure Vulnerability

Exploit for multiple platform in category web applications GAT-Ship Web Module 1.30 - Unauthenticated Information Disclosure Vulnerability It is possible in versions 1.30 and below for unauthenticated attackers to query the GAT-Ship Web Module for system information via a crafted request: PoC:...

7.4AI score
Exploits0
0day.today
0day.today
added 2019/05/18 12:0 a.m.233 views

Huawei eSpace Meeting 1.1.11.103 - (cenwpoll.dll) SEH Buffer Overflow (Unicode) Exploit

!/usr/bin/env python -- coding: utf-8 -- Huawei eSpace Meeting cenwpoll.dll Unicode Stack Buffer Overflow with SEH Overwrite Vendor: Huawei Technologies Co., Ltd. Product web page: https://www.huawei.com Affected application: eSpace 1.1.11.103 aka eSpace ECS, eSpace Desktop, eSpace Meeting, eSpac...

1.9CVSS6.6AI score0.00566EPSS
Exploits4
0day.today
0day.today
added 2019/05/08 12:0 a.m.233 views

Chrome 72.0.3626.119 FileReader Use-After-Free Exploit

This exploit takes advantage of a use after free vulnerability in Google Chrome 72.0.3626.119 running on Windows 7 x86. The FileReader.readAsArrayBuffer function can return multiple references to the same ArrayBuffer object, which can be freed and overwritten with sprayed objects. The dangling...

6.5CVSS7.2AI score0.61537EPSS
Exploits10
0day.today
0day.today
added 2018/05/19 12:0 a.m.233 views

Reliable Datagram Sockets (RDS) Privilege Escalation Exploit

This Metasploit module exploits a vulnerability in the rdspagecopyuser function in net/rds/page.c RDS in Linux kernel versions 2.6.30 to 2.6.36-rc8 to execute code as root CVE-2010-3904. This Metasploit module has been tested successfully on Fedora 13 i686 with kernel version...

7.2CVSS0.7AI score0.11217EPSS
Exploits16
0day.today
0day.today
added 2010/10/09 12:0 a.m.233 views

MySQl 5.1 DLL Hijacking Exploit (lPK.dll)

Exploit for windows platform in category local exploits ========================================= MySQl 5.1 DLL Hijacking Exploit lPK.dll ========================================= / Exploit Title: MySQl 5.1 DLL Hijacking Exploit lPK.dll Date: Octobre 6, 2010 Author: Mu$lim email protected Version...

6.8AI score
Exploits0
0day.today
0day.today
added 2024/04/01 12:0 a.m.232 views

Gibbon 26.0.00 Server-Side Template Injection / Remote Code Execution Exploit

Exploit Title: Gibbon LMS has an SSTI vulnerability on the v26.0.00 version Exploit Author: SecondX.io Research TeamIslam Rzayev,Fikrat Guliev, Ali Maharramli Vendor Homepage: https://gibbonedu.org/ Software Link: https://github.com/GibbonEdu/core Version: v26.0.00 Tested on: Ubuntu 22.0 CVE :...

9.8CVSS9.7AI score0.26089EPSS
Exploits4
0day.today
0day.today
added 2023/09/04 12:0 a.m.232 views

AdminLTE PiHole 5.18 - Broken Access Control Vulnerability

Exploit Title: AdminLTE PiHole ' HTTP requests GET /admin/scripts/pi-hole/php/queryads.php?domain=' HTTP/1.1 HOST: pi.hole Cookie: ..SNIPPED.. ..SNIPPED.. HTTP Response HTTP/1.1 200 OK ..SNIPPED.. data: Match found in ..SNIPPED.. data: data: data:...

5.3CVSS5.3AI score0.40162EPSS
Exploits4
0day.today
0day.today
added 2023/07/04 12:0 a.m.232 views

POS Codekop v2.0 - Authenticated Remote Code Execution Vulnerability

Exploit Title: POS Codekop v2.0 - Authenticated Remote Code Execution RCE Exploit Author: yuyudhn Vendor Homepage: https://www.codekop.com/ Software Link: https://github.com/fauzan1892/pos-kasir-php Version: 2.0 Tested on: Linux CVE: CVE-2023-36348 Vulnerability description: The application does...

8.8CVSS7.1AI score0.06366EPSS
Exploits4
0day.today
0day.today
added 2023/05/02 12:0 a.m.232 views

Companymaps v8.0 - Stored Cross Site Scripting Vulnerability

Exploit Title: Companymaps V8.0 - Stored Cross Site Scripting XSS Exploit Author: Lucas Noki 0xPrototype Vendor Homepage: https://github.com/vogtmh Software Link: https://github.com/vogtmh/cmaps Version: 8.0 Tested on: Mac, Windows, Linux CVE : CVE-2023-29983 Steps to reproduce: 1. Clone the...

5.4CVSS6.6AI score0.05097EPSS
Exploits4
0day.today
0day.today
added 2023/04/03 12:0 a.m.232 views

Active eCommerce CMS 6.5.0 - Stored Cross-Site Scripting Vulnerability

Exploit Title: Active eCommerce CMS 6.5.0 - Stored Cross-Site Scripting XSS Exploit Author: Sajibe Kanti Vendor Name: ActiveITzone Vendor Homepage: https://activeitzone.com/ Software Link: https://codecanyon.net/item/active-ecommerce-cms/23471405 Version: 6.5.0 Tested on: Live Centos & Litespeed...

6.8AI score
Exploits0
0day.today
0day.today
added 2023/03/28 12:0 a.m.232 views

Social-Share-Buttons v2.2.3 - SQL Injection Vulnerability

Title: Social-Share-Buttons v2.2.3 - SQL Injection Author: nu11secur1ty Vendor: https://wordpress.org/ Software: https://downloads.wordpress.org/plugin/social-share-buttons-by-supsystic.2.2.3.zip Reference:...

6.8AI score
Exploits0
0day.today
0day.today
added 2022/12/06 12:0 a.m.232 views

Zillya Total Security 3.0.2367.0 / 3.0.2368.0 Local Privilege Escalation Vulnerability

Zillya Total Security versions 3.0.2367.0 and 3.0.2368.0 suffer from a local privilege escalation vulnerability via a symlink vulnerability when using the quarantine module. Title: Zillya Total Security - Link Following Local Privilege Escalation AVGater Vulnerability Author: M. Akil Gündoğan...

7.4AI score
Exploits0
0day.today
0day.today
added 2022/04/07 12:0 a.m.232 views

School Club Application System v1.0 SQL injection Vulnerability

Title: School Club Application System v1.0 SQLi Author: nu11secur1ty Vendor: https://www.sourcecodester.com/users/tips23 Software: https://www.sourcecodester.com/php/15266/school-club-application-system-phpoop-free-source-code.html Reference:...

0.3AI score
Exploits0
0day.today
0day.today
added 2022/02/28 12:0 a.m.232 views

Cobian Backup Gravity 11.2.0.582 - (CobianBackup11) Unquoted Service Path

Exploit Title: Cobian Backup Gravity 11.2.0.582 - 'CobianBackup11' Unquoted Service Path Discovery by: Luis Martinez Vendor Homepage: https://www.cobiansoft.com/ Software Link : https://files.cobiansoft.com/programs/cbSetup.exe Tested Version: 11.2.0.582 Vulnerability Type: Unquoted Service Path...

7.4AI score
Exploits0
0day.today
0day.today
added 2020/07/10 12:0 a.m.232 views

Aruba ClearPass Policy Manager 6.7.0 - Unauthenticated Remote Command Execution Exploit

Exploit Title: Aruba ClearPass Policy Manager 6.7.0 - Unauthenticated Remote Command Execution Exploit Author: SpicyItalian Vendor Homepage: https://www.arubanetworks.com/products/security/network-access-control/ Version: ClearPass 6.7.x prior to 6.7.13-HF, ClearPass 6.8.x prior to 6.8.5-HF,...

10CVSS9.2AI score0.64596EPSS
Exploits8
0day.today
0day.today
added 2020/03/31 12:0 a.m.232 views

IBM TM1 / Planning Analytics - Unauthenticated Remote Code Execution Exploit (2)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'openssl' class MetasploitModule "IBM TM1 / Planning Analytics Unauthenticated Remote Code Execution", 'Description' = %q This module exploits a vulnerability in...

10CVSS0.6AI score0.86441EPSS
Exploits6
0day.today
0day.today
added 2020/03/13 12:0 a.m.232 views

Drobo 5N2 4.1.1 - Remote Command Injection Exploit

Exploit Title: Drobo 5N2 4.1.1 - Remote Command Injection Date: 2020-03-12 Exploit Author: Rick Ramgattie, Ian Sindermann Vendor Homepage: https://www.drobo.com/ Version: 4.1.1 and lower. CVE: CVE-2018-14709, CVE-2018-14701 !/usr/bin/env python3 nasty.py - A proof-of-concept utility for malicious...

9.8CVSS0.3AI score0.19994EPSS
Exploits6
0day.today
0day.today
added 2020/03/12 12:0 a.m.232 views

Joomla com_newsfeeds 1.0 Component - (feedid) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Joomla! Component comnewsfeeds 1.0 - 'feedid' SQL Injection Author: Milad Karimi Software Link: Version: Category : webapps Tested on: windows 10 , firefox CVE : CWE-89 Dork: inurl:index.php?option=comnewsfeeds...

Exploits0
0day.today
0day.today
added 2019/12/09 12:0 a.m.232 views

PRO-7070 Hazır Profesyonel Web Sitesi 1.0 - Authentication Bypass Vulnerability

Exploit for php platform in category web applications Exploit Title: PRO-7070 Hazır Profesyonel Web Sitesi 1.0 - Authentication Bypass Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://www.websitem.biz/hazir-site/pro-7070-hazir-mobil-tablet-uyumlu-web-sitesi Tested on: Kali Linux Version...

0.3AI score
Exploits0
0day.today
0day.today
added 2019/11/15 12:0 a.m.232 views

FreeSWITCH Event Socket Command Execution Exploit

This Metasploit module uses the FreeSWITCH event socket interface to execute system commands using the system API command. The event socket service is enabled by default and listens on TCP port 8021 on the local network interface. This module has been tested successfully on FreeSWITCH versions:...

Exploits0
0day.today
0day.today
added 2019/11/12 12:0 a.m.232 views

Wondershare Application Framework Service - (WsAppService) Unquote Service Path Vulnerability

Exploit Title: Wondershare Application Framework Service - "WsAppService" Unquote Service Path Exploit Author: chuyreds Vendor Homepage: https://www.wondershare.com/ Software Link: https://www.wondershare.com/drfone/ Version: 2.4.3.231 Tested on: Windows 10 Home Single Language CVE : N/A Service...

0.2AI score
Exploits0
0day.today
0day.today
added 2019/06/03 12:0 a.m.232 views

ZyXEL P-660HN-T1 V2 Missing Authentication / Password Disclosure Vulnerabilities

Exploit for hardware platform in category web applications Description: The rpWLANRedirect.asp ASP page is accessible without authentication on ZyXEL P-660HN-T1 V2 2.00AAKK.3 devices. After accessing the page, the admin user's password can be obtained by viewing the HTML source code, and the...

0.3AI score0.01785EPSS
Exploits2
0day.today
0day.today
added 2015/10/14 12:0 a.m.232 views

Linux/MIPS Kernel NetUSB - Remote Code Execution Exploit

Exploit for multiple platform in category remote exploits !/usr/bin/env python Source: http://haxx.in/blasty-vs-netusb.py CVE-2015-3036 - NetUSB Remote Code Execution exploit Linux/MIPS =========================================================================== This is a weaponized exploit for th...

10CVSS0.27906EPSS
Exploits7
0day.today
0day.today
added 2024/03/11 12:0 a.m.231 views

Microsoft Windows Defender / Trojan.Win32/Powessere.G - Detection Mitigation Bypass Vulnerability

Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: https://hyp3rlinx.altervista.org/advisories/MICROSOFTWINDOWSDEFENDERTROJAN.WIN32.POWESSERE.GMITIGATIONBYPASSPART2.txt + twitter.com/hyp3rlinx + ISR: ApparitionSec Vendor www.microsoft.com Product Windows Defender...

7.4AI score
Exploits0
0day.today
0day.today
added 2023/07/31 12:0 a.m.231 views

Joomla Solidres 2.13.3 - Reflected XSS Vulnerability

Exploit Title: Joomla Solidres 2.13.3 - Reflected XSS Exploit Author: CraCkEr Vendor: Solidres Team Vendor Homepage: http://solidres.com/ Software Link: https://extensions.joomla.org/extension/vertical-markets/booking-a-reservations/solidres/ Demo: http://demo.solidres.com/joomla Version: 2.13.3...

7.1AI score
Exploits0
0day.today
0day.today
added 2023/07/28 12:0 a.m.231 views

copyparty v1.8.6 - Reflected Cross Site Scripting Vulnerability

Exploit Title: copyparty v1.8.6 - Reflected Cross Site Scripting XSS Exploit Author: Vartamtezidis Theodoros @TheHackyDog Vendor Homepage: https://github.com/9001/copyparty/ Software Link: https://github.com/9001/copyparty/releases/tag/v1.8.6 Version: =1.8.6 Tested on: Debian Linux CVE :...

6.3CVSS7.1AI score0.06195EPSS
Exploits3
0day.today
0day.today
added 2023/05/23 12:0 a.m.231 views

Webkul Qloapps 1.5.2 - Cross-Site Scripting Vulnerability

Exploit Title: Webkul Qloapps 1.5.2 - Cross-Site Scripting XSS Exploit Author: Astik Rawat ahrixia Vendor Homepage: https://qloapps.com/ Software Link: https://github.com/webkul/hotelcommerce Version: 1.5.2 Tested on: Kali Linux 2022.4 CVE : CVE-2023-30256 Description: A Cross Site Scripting XSS...

5.8CVSS6.4AI score0.08731EPSS
Exploits5
0day.today
0day.today
added 2023/04/03 12:0 a.m.231 views

Art Gallery Management System Project v1.0 - Reflected Cross-Site Scripting Vulnerability

Exploit Title: Art Gallery Management System Project v1.0 - Reflected Cross-Site Scripting XSS Exploit Author: Rahul Patwari Vendor Homepage: https://phpgurukul.com/ Software Link: https://phpgurukul.com/projects/Art-Gallery-MS-PHP.zip Version: 1.0 Tested on: XAMPP / Windows 10 CVE : CVE-2023-231...

6.1CVSS6.5AI score0.0591EPSS
Exploits4
0day.today
0day.today
added 2023/04/02 12:0 a.m.231 views

Reprise Software RLM v14.2BL4 - Cross-Site Scripting Vulnerability

Exploit Title: Reprise Software RLM v14.2BL4 - Cross-Site Scripting XSS Exploit Author: Mohammed A.Siledar Author Company : reprisesoftware Version: rlm.v14.2BL4 Vendor home page : https://reprisesoftware.com Software Link:...

6.1CVSS6.4AI score0.02527EPSS
Exploits4
0day.today
0day.today
added 2023/03/29 12:0 a.m.231 views

Helmet Store Showroom v1.0 - SQL Injection Vulnerability

Exploit Title: Helmet Store Showroom v1.0 - SQL Injection Exploit Author: Ameer Hamza Vendor Homepage: https://www.sourcecodester.com/php/15851/helmet-store-showroom-site-php-and-mysql-free-source-code.html Software Link:...

6.8AI score
Exploits0
0day.today
0day.today
added 2023/03/27 12:0 a.m.231 views

D-Link DIR 819 A1 - Denial of Service Exploit

Exploit Title: DLink DIR 819 A1 - Denial of Service Date: 30th September, 2022 Exploit Author: @whokilleddb https://twitter.com/whokilleddb Vendor Homepage: https://www.dlink.com/en/products/dir-819-wireless-ac750-dual-band-router Version: DIR-819 Firmware Version : 1.06 Hardware Version : A1...

7.5CVSS7.6AI score0.07974EPSS
Exploits5
0day.today
0day.today
added 2022/10/17 12:0 a.m.231 views

MiniDVBLinux 5.4 SVDRP Control Vulnerability

MiniDVBLinux 5.4 Simple VideoDiskRecorder Protocol SVDRP svdrpsend.sh Exploit Vendor: MiniDVBLinux Product web page: https://www.minidvblinux.de Affected version: =5.4 Summary: MiniDVBLinuxTM Distribution MLD. MLD offers a simple way to convert a standard PC into a Multi Media Centre based on the...

Exploits0
0day.today
0day.today
added 2022/06/14 12:0 a.m.231 views

HP LaserJet Professional M1210 MFP Series Receive Fax Service - Unquoted Service Path

Exploit Title: HP LaserJet Professional M1210 MFP Series Receive Fax Service - Unquoted Service Path Exploit Author: Ali Alipour Vendor Homepage: https://support.hp.com/us-en/document/c01998934 Software Link:...

0.6AI score
Exploits0
0day.today
0day.today
added 2022/06/02 12:0 a.m.231 views

GtkRadiant 1.6.6 Buffer Overflow Exploit

===== Intro ===== GtkRadiant is a cross-platform level editor software for idtech game engines such as Quake. It comes with data authoring tools and a BSP map compiler called q3map2 which parses MAP files. The code has been around for a long time and uses unsafe string copy and format functions. ...

7.1AI score
Exploits0
0day.today
0day.today
added 2022/03/29 12:0 a.m.231 views

Microfinance Management System 1.0 SQL Injection Vulnerability

Microfinance Management System version suffers from multiple remote SQL injection vulnerabilities including one that allows for authentication bypass. Original discovery of SQL injection in this version is attributed to Hejap Zairy in March of 2022. Exploit Title: Microfinance Management System 1...

0.2AI score
Exploits0
0day.today
0day.today
added 2022/02/10 12:0 a.m.231 views

Home Owners Collection Management System 1.0 - Account Takeover Vulnerability

Exploit Title: Home Owners Collection Management System 1.0 - Account Takeover Unauthenticated Exploit Author: Saud Alenazi Vendor Homepage: https://www.sourcecodester.com/ Software Link: https://www.sourcecodester.com/php/15162/home-owners-collection-management-system-phpoop-free-source-code.htm...

0.3AI score
Exploits0
0day.today
0day.today
added 2022/01/25 12:0 a.m.231 views

uBidAuction 2.0.1 Cross Site Scripting Vulnerability

Document Title: =============== uBidAuction v2.0.1 - Multiple XSS Web Vulnerabilities Product & Service Introduction: =============================== uBidAuction is a powerful, scalable & fully-featured classic and bid auction software that lets create the ultimate profitable online auctions...

0.1AI score
Exploits0
Total number of security vulnerabilities5000