Lucene search
K
ZdtMost viewed

39001 matches found

zdt
zdt
added 2024/06/02 12:0 a.m.191 views

changedetection 0.45.20 Remote Code Execution Exploit

Exploit Title: changedetection = 0.45.20 Remote Code Execution RCE Exploit Author: Zach Crosman zcrosman Vendor Homepage: changedetection.io Software Link: https://github.com/dgtlmoon/changedetection.io Version: = 0.45.20 Tested on: Linux CVE : CVE-2024-32651 from pwn import import requests from...

10CVSS6.7AI score0.83722EPSS
Exploits5
zdt
zdt
added 2023/08/21 12:0 a.m.191 views

Academy LMS 6.1 Cross Site Scripting / File Upload Vulnerabilities

Exploit Title: Academy LMS 6.1 - Arbitrary File Upload Exploit Author: CraCkEr Vendor: Creativeitem Vendor Homepage: https://academylms.net/ Software Link: https://demo.academylms.net/ Tested on: Windows 10 Pro Impact: Allows User to upload files to the web server CWE: CWE-79 - CWE-74 - CWE-707...

7.1AI score
Exploits0
zdt
zdt
added 2023/08/21 12:0 a.m.191 views

Global Multi School Management System Express v1.0 - SQL Injection Vulnerability

Exploit Title: Global - Multi School Management System Express v1.0- SQL Injection Exploit Author: Ahmet Ümit BAYRAM Vendor: https://codecanyon.net/item/global-multi-school-management-system-express/21975378 Tested on: Kali Linux & MacOS CVE: N/A Request POST /report/balance HTTP/1.1 Content-Type...

7.1AI score
Exploits0
zdt
zdt
added 2023/08/04 12:0 a.m.191 views

Shelly PRO 4PM v0.11.0 - Authentication Bypass Exploit

!/bin/bash Exploit Title: Shelly PRO 4PM v0.11.0 - Authentication Bypass Google Dork: NA Date: 2nd August 2023 Exploit Author: The Security Team exploitsecurity.io Exploit Blog: https://www.exploitsecurity.io/post/cve-2023-33383-authentication-bypass-via-an-out-of-bounds-read-vulnerability Vendor...

5.3CVSS5.3AI score0.02462EPSS
Exploits4
zdt
zdt
added 2023/07/19 12:0 a.m.191 views

Blackcat Cms v1.4 - Remote Code Execution Vulnerability

Exploit Title: Blackcat Cms v1.4 - Remote Code Execution RCE Application: blackcat Cms Version: v1.4 Bugs: RCE Technology: PHP Vendor URL: https://blackcat-cms.org/ Software Link: https://github.com/BlackCatDevelopment/BlackCatCMS Date of found: 13.07.2023 Author: Mirabbas Ağalarov Tested on: Lin...

7.1AI score
Exploits0
zdt
zdt
added 2023/04/07 12:0 a.m.191 views

ChurchCRM 4.5.1 - Authenticated SQL Injection Exploit

Exploit Title: ChurchCRM 4.5.1 - Authenticated SQL Injection Exploit Author: Arvandy Blog Post: https://github.com/arvandy/CVE/blob/main/CVE-2023-24787/CVE-2023-24787.md Software Link: https://github.com/ChurchCRM/CRM/releases Vendor Homepage: http://churchcrm.io/ Version: 4.5.1 Tested on: Window...

6.4AI score
Exploits5
zdt
zdt
added 2023/04/02 12:0 a.m.191 views

TP-Link TL-WR902AC firmware 210730 (V3) - Remote Code Execution (Authenticated) Exploit

!/usr/bin/python3 Exploit Title: TP-Link TL-WR902AC firmware 210730 V3 - Remote Code Execution RCE Authenticated Exploit Author: Tobias Müller Date: 2022-12-01 Version: TL-WR902ACEUV30.9.1 Build 220329 Vendor Homepage: https://www.tp-link.com/ Tested On: TP-Link TL-WR902AC Vulnerability...

8.8CVSS8.9AI score0.33482EPSS
Exploits5
zdt
zdt
added 2023/03/27 12:0 a.m.191 views

System Mechanic v15.5.0.61 - Arbitrary Read/Write Exploit

/ Exploit Title: System Mechanic v15.5.0.61 - Arbitrary Read/Write Exploit Author: Brandon Marshall Vendor Homepage: https://www.iolo.com/ Tested Version - System Mechanic version 15.5.0.61 Driver Version - 5.4.11 - amp.sys Tested on OS - 64 bit Windows 10 18362 Fixed Version - System Mechanic...

9.8CVSS9.7AI score0.18455EPSS
Exploits8
zdt
zdt
added 2022/02/18 12:0 a.m.191 views

WordPress dzs-zoomsounds 6.60 Plugin - Remote Code Execution (Unauthenticated) Exploit

Exploit Title: WordPress Plugin dzs-zoomsounds - Remote Code Execution RCE Unauthenticated Google Dork: inurl:wp-content/plugins/dzs-zoomsounds Exploit Author: Overthinker1877 1877 Team Vendor Homepage: https://digitalzoomstudio.net/docs/wpzoomsounds/ Version: 6.60 Tested on: Windows / Linux impo...

0.5AI score
Exploits0
zdt
zdt
added 2021/09/23 12:0 a.m.191 views

Budget and Expense Tracker System 1.0 - Arbitrary File Upload Vulnerability

Exploit Title: Budget and Expense Tracker System 1.0 - Arbitrary File Upload Exploit Author: t//\1 Vendor Homepage: https://www.sourcecodester.com/php/14893/budget-and-expense-tracker-system-php-free-source-code.html Tested on: Linux Version: 2.0 Exploit Description: The application is prone to a...

0.2AI score
Exploits0
zdt
zdt
added 2021/07/19 12:0 a.m.191 views

Dolibarr ERP/CRM 10.0.6 - Login Brute Force Exploit

Exploit Title: Dolibarr ERP/CRM 10.0.6 - Login Brute Force Exploit Author: Creamy Chicken Soup Vendor Homepage: https://www.dolibarr.org Software Link: https://sourceforge.net/projects/dolibarr/ Version: 10.0.6 Tested on: Windows 10 - 64bit CVE: CVE-2020-7995 function brute$url,$username,$passwd...

10CVSS9.6AI score0.04537EPSS
Exploits4
zdt
zdt
added 2021/07/16 12:0 a.m.191 views

Aruba Instant (IAP) - Remote Code Execution Exploit

Aruba Instant IAP - Remote Code Execution Exploit import socket import sys import struct import time import threading import urllib3 import re import telnetlib import xml.etree.ElementTree as ET import requests urllib3.disablewarnings CONTINUERACE = True SNPRINTFCREATEFILEMAXLENGTH = 245 def...

8.1CVSS6AI score0.40523EPSS
Exploits11
zdt
zdt
added 2021/02/18 12:0 a.m.191 views

Gitea 1.12.5 - Remote Code Execution (Authenticated) Exploit

Exploit Title: Gitea 1.12.5 - Remote Code Execution Authenticated Exploit Author: Podalirius PoC demonstration article: https://podalirius.net/articles/exploiting-cve-2020-14144-gitea-authenticated-remote-code-execution/ Vendor Homepage: https://gitea.io/ Software Link: https://dl.gitea.io/...

7.2CVSS0.4AI score0.95432EPSS
Exploits12
zdt
zdt
added 2020/08/15 12:0 a.m.191 views

QiHang Media Web Digital Signage 3.0.9 Password Disclosure Vulnerability

QiHang Media Web Digital Signage version 3.0.9 suffers from a cleartext transmission/storage of sensitive information in a cookie. This allows a remote attacker to intercept the HTTP Cookie authentication credentials via a man-in-the-middle attack. QiHang Media Web QH.aspx Digital Signage 3.0.9...

6.7AI score
Exploits0
zdt
zdt
added 2020/08/11 12:0 a.m.191 views

BarracudaDrive 6.5 Local Privilege Escalation Vulnerability

Exploit Title: BarracudaDrive v6.5 - User-System - Local Privilege Escalation Exploit Author: Bobby Cooke boku & Adeeb Shah @hyd3sec Date: 08-08-2020 Vendor Homepage: https://barracudaserver.com/ Software Link: https://download.cnet.com/BarracudaDrive/3001-185064-10723210.html Version: v6.5 Teste...

0.6AI score
Exploits0
zdt
zdt
added 2020/07/12 12:0 a.m.191 views

Responsive Online Blog 1.0 SQL Injection Vulnerability (2)

Exploit for php platform in category web applications Exploit Title: Responsive Online Blog 1.0 - 'single.php?id=' SQL Injection Exploit Author: gh1mau Team Members: Capt'N,muzzo,chaos689 | https://h0fclanmalaysia.wordpress.com/ Vendor Homepage:...

0.5AI score
Exploits0
zdt
zdt
added 2020/06/24 12:0 a.m.191 views

Code Blocks 20.03 - Denial Of Service Exploit

Exploit Title: Code Blocks 20.03 - Denial Of Service PoC Vendor Homepage: http://www.codeblocks.org/ Software Link Download: https://sourceforge.net/projects/codeblocks/files/Binaries/20.03/Windows/codeblocks-20.03-setup.exe/download Exploit Author: Paras Bhatia Vulnerable Software: Code Blocks...

7.4AI score
Exploits0
zdt
zdt
added 2020/03/28 12:0 a.m.191 views

Easy RM to MP3 Converter 2.7.3.700 - (Input) Local Buffer Overflow (SEH) Exploit

Exploit Title: Easy RM to MP3 Converter 2.7.3.700 - 'Input' Local Buffer Overflow SEH Author: Felipe Winsnes Software Link: https://www.exploit-db.com/apps/707414955696c57b71c7f160c720bed5-EasyRMtoMP3Converter.exe Version: 2.7.3.700 Tested on: Windows 7 x86 Proof of Concept: 1.- Run the python...

7.4AI score
Exploits0
zdt
zdt
added 2020/02/05 12:0 a.m.191 views

HiSilicon DVR/NVR hi3520d firmware - Remote Backdoor Account Exploit

Exploit Title: HiSilicon DVR/NVR hi3520d firmware - Remote Backdoor Account Exploit Author: Snawoot Vendor Homepage: http://www.hisilicon.com Product Link: http://www.hisilicon.com/en/Products Version: hi3520d Tested on: Linux CVE: N/A References: https://habr.com/en/post/486856/ References:...

0.4AI score
Exploits0
zdt
zdt
added 2016/11/10 12:0 a.m.191 views

Microsoft Windows Kernel - win32k Denial of Service (MS16-135) Exploit

Exploit for windows platform in category dos / poc / Source: https://github.com/tinysec/public/tree/master/CVE-2016-7255 Full Proof of Concept: https://github.com/tinysec/public/tree/master/CVE-2016-7255 https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/40745.z...

7.2CVSS7.8AI score0.80968EPSS
Exploits24
zdt
zdt
added 2011/05/02 12:0 a.m.191 views

WysGui <= 2.3 (FCKeditor) Multiple Upload Vulnerability

Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...

7.1AI score
Exploits0
zdt
zdt
added 2010/06/25 12:0 a.m.191 views

PageDirector CMS Sql Injection Vulnerability

Exploit for php platform in category web applications ============================================ PageDirector CMS Sql Injection Vulnerability ============================================ Author: Pokeng Software Link: http://www.customerparadigm.com/product.php?proid=2 buy $675.00 Platform /...

7.1AI score
Exploits0
zdt
zdt
added 2006/08/18 12:0 a.m.191 views

Joomla Artlinks Component <= 1.0b4 Remote Include Vulnerability

Exploit for unknown platform in category web applications =============================================================== Joomla Artlinks Component \ \ .: .:.. .. ./ .:/:. ./. .:/: . ...:. .advisory. .:... :..................: 18.o8.2oo6 .. Affected Application: Artlinks v1.0 Beta 4...

7.1AI score
Exploits0
zdt
zdt
added 2005/11/22 12:0 a.m.191 views

Mambo <= 4.5.2 Globals Overwrite / Remote Command Exection Exploit

Exploit for unknown platform in category web applications ================================================================== Mambo Mambo body bac...

7.1AI score
Exploits0
zdt
zdt
added 2025/02/09 12:0 a.m.190 views

dhtmlxFileExplorer 8.4.6 Directory Traversal Vulnerability

Exploit Title: dhtmlxFileExplorer 8.4.6 - Access Sensitive Floder via Directory Traversal in DHX File Exlploer Exploit Author: Nutchaya Augkanavitayakul, Nattachai Wanmak, Pongtorn Angsuchotmetee Vendor Homepage: https://dhtmlx.com Software Link: https://dhtmlx.com Version: 8.4.6 Tested on: macOS...

6.5CVSS6.8AI score0.00739EPSS
Exploits3
zdt
zdt
added 2024/10/03 12:0 a.m.190 views

Acronis Cyber Infrastructure Default Password Remote Code Execution Exploit

Acronis Cyber Infrastructure ACI is an IT infrastructure solution that provides storage, compute, and network resources. Businesses and Service Providers are using it for data storage, backup storage, creating and managing virtual machines and software-defined networks, running cloud-native...

9.8CVSS7.7AI score0.53255EPSS
Exploits3
zdt
zdt
added 2024/06/02 12:0 a.m.190 views

BWL Advanced FAQ Manager 2.0.3 SQL Injection Vulnerability

Exploit Title: BWL Advanced FAQ Manager 2.0.3 - Authenticated SQL Injection Exploit Author: Ivan Spiridonov xbz0n Software Link: https://codecanyon.net/item/bwl-advanced-faq-manager/5007135 Version: 2.0.3 Tested on: Ubuntu 20.04 CVE: CVE-2024-32136 SQL Injection SQL injection is a type of securit...

7.6CVSS7.5AI score0.01307EPSS
Exploits3
zdt
zdt
added 2023/05/23 12:0 a.m.191 views

Quicklancer v1.0 - SQL Injection Vulnerability

Exploit Title: Quicklancer v1.0 - SQL Injection Exploit Author: Ahmet Ümit BAYRAM Vendor: https://codecanyon.net/item/quicklancer-freelance-marketplace-php-script/39087135 Demo Site: https://quicklancer.bylancer.com Tested on: Kali Linux CVE: N/A Request POST /php/user-ajax.php HTTP/1.1...

7.1AI score
Exploits0
zdt
zdt
added 2023/03/27 12:0 a.m.190 views

Mediconta 3.7.27 - (servermedicontservice) Unquoted Service Path Vulnerability

Exploit Title: Mediconta 3.7.27 - 'servermedicontservice' Unquoted Service Path Exploit Author: Luis Martinez Vendor Homepage: https://www.infonetsoftware.com Software Link : https://www.infonetsoftware.com/soft/instalarMedicontx.exe Tested Version: 3.7.27 Vulnerability Type: Unquoted Service Pat...

6.8AI score
Exploits0
zdt
zdt
added 2022/03/15 12:0 a.m.190 views

Automatic Question Paper Generator System 1.0 Cross Site Scripting Vulnerability

Exploit Title: Automatic Question Paper Generator System 1.0 - Cross-site scripting stored Exploit Author: Mr Empy Software Link: https://www.sourcecodester.com/php/15190/automatic-question-paper-generator-system-phpoop-free-source-code.html Version: 1.0 Tested on: Linux Title: ================...

7.4AI score
Exploits0
zdt
zdt
added 2021/09/15 12:0 a.m.190 views

AHSS-PHP 1.0 Cross Site Scripting / SQL Injection Vulnerabilities

Exploit Title: AHSS-PHP by: oretnom23 v1.0 is vulnerable in the application /scheduler/classes/Login.php to remote SQL-Injection-Bypass-Authentication + XSS-Stored Hijacking PHPSESSID Author: nu11secur1ty Testing and Debugging: nu11secur1ty Date: 09.15.2021 Vendor:...

0.3AI score
Exploits0
zdt
zdt
added 2021/08/21 12:0 a.m.190 views

NetModule Router Software Password Handling / Session Fixation Vulnerability

NetModule Router Software versions prior to 4.3.0.113, 4.4.0.111, and 4.5.0.105 suffer from insecure password handling and session fixation vulnerabilities. ======================================================================= title: Multiple Vulnerabilities in NetModule Router Software product...

9.8CVSS0.4AI score0.01529EPSS
Exploits5
zdt
zdt
added 2021/07/20 12:0 a.m.190 views

Webmin 1.973 - (run.cgi) Cross-Site Request Forgery Vulnerability

Exploit Title: Webmin 1.973 - 'run.cgi' Cross-Site Request Forgery CSRF Exploit Author: Mesh3l911 & Z0ldyck Vendor Homepage: https://www.webmin.com Repo Link: https://github.com/Mesh3l911/CVE-2021-31761 Version: Webmin 1.973 Tested on: All versions POC By \0331;m \0331;37mMesh3l\0331;m \0331;36m...

9.6CVSS1.1AI score0.33569EPSS
Exploits6
zdt
zdt
added 2021/06/21 12:0 a.m.190 views

Websvn 2.6.0 - Remote Code Execution (Unauthenticated) Exploit

Exploit Title: Websvn 2.6.0 - Remote Code Execution Unauthenticated Exploit Author: g0ldm45k Vendor Homepage: https://websvnphp.github.io/ Software Link: https://github.com/websvnphp/websvn/releases/tag/2.6.0 Version: 2.6.0 Tested on: Docker + Debian GNU/Linux Buster CVE : CVE-2021-32305 import...

10CVSS0.86716EPSS
Exploits9
zdt
zdt
added 2020/08/05 12:0 a.m.190 views

Stock Management System 1.0 - Authentication Bypass Vulnerability

Exploit for php platform in category web applications Exploit Title: Stock Management System 1.0 - Authentication Bypass Exploit Author: Adeeb Shah @hyd3sec Vendor Homepage: https://www.sourcecodester.com/ Software Link: https://www.sourcecodester.com/php/14366/stock-management-system-php.html...

0.1AI score
Exploits0
zdt
zdt
added 2020/02/27 12:0 a.m.190 views

Apache Tomcat - AJP Ghostcat File Read/Inclusion Exploit

Exploit for multiple platform in category web applications !/usr/bin/env python CNVD-2020-10487 Tomcat-Ajp lfi by ydhcui import struct Some references: https://tomcat.apache.org/connectors-doc/ajp/ajpv13a.html def packstrings: if s is None: return struct.pack"h", -1 l = lens return...

5.4AI score0.00535EPSS
Exploits3
zdt
zdt
added 2019/09/27 12:0 a.m.190 views

Mobatek MobaXterm 12.1 - Buffer Overflow (SEH) Exploit

Title: Mobatek MobaXterm 12.1 - Buffer Overflow SEH Author: Xavi Beltran Vendor: xavibel.com Vedor Page: https://mobaxterm.mobatek.net/download.html Software Link: https://download.mobatek.net/1112019010310554/MobaXtermPortablev11.1.zip Exploit Development process:...

0.1AI score
Exploits0
zdt
zdt
added 2019/05/29 12:0 a.m.190 views

Siemens LOGO! 8 Missing Authentication Vulnerability

Due to storing passwords in a recoverable format on Siemens LOGO! 8 PLCs, an attacker can gain access to configured passwords as cleartext. Siemens LOGO! 8 Missing Authentication Vulnerability Product: LOGO! Manufacturer: Siemens Affected Versions: LOGO! 8 all versions Tested Versions: LOGO! 8,...

9.4CVSS0.5AI score0.02746EPSS
Exploits3
zdt
zdt
added 2019/05/27 12:0 a.m.190 views

Pidgin 2.13.0 - Denial of Service Exploit

-- coding: utf-8 -- Exploit Title: Pidgin 2.13.0 - Denial of Service PoC Author: Alejandra Sánchez Vendor Homepage: https://pidgin.im/ Software https://cfhcable.dl.sourceforge.net/project/pidgin/Pidgin/2.13.0/pidgin-2.13.0.exe Version: 2.13.0 Tested on: Windows 7, Windows 10 Proof of Concept: 1.-...

Exploits0
zdt
zdt
added 2018/12/14 12:0 a.m.190 views

Fortify Software Security Center (SSC) 17.10/17.20/18.10 - Information Disclosure

Exploit for multiple platform in category web applications Details ================ Software: Fortify SSC Software Security Center Version: 17.10, 17.20 & 18.10 Homepage: https://www.microfocus.com Advisory report: https://github.com/alt3kx/CVE-2018-7690 CVE: CVE-2018-7690 CVSS: 6.5 Medium;...

6.6AI score0.07411EPSS
Exploits4
zdt
zdt
added 2018/11/13 12:0 a.m.190 views

Evince 3.24.0 - Command Injection Exploit

Exploit for linux platform in category dos / poc Exploit Title: evince command line injection Exploit Author: Matlink Vendor Homepage: https://wiki.gnome.org/Apps/Evince Software Link: https://wiki.gnome.org/Apps/Evince Version: 3.24.0 Tested on: Debian sid CVE : CVE-2017-1000083 Can be tested on...

4CVSS7.8AI score0.50826EPSS
Exploits10
zdt
zdt
added 2018/11/13 12:0 a.m.190 views

XAMPP Control Panel 3.2.2 - Buffer Overflow (SEH) (Unicode) Exploit

Exploit for windows platform in category local exploits Exploit Title: XAMPP Control Panel 3.2.2 - Buffer Overflow SEH Unicode Exploit Author: Gionathan "John" Reale 0-day DoS exploit, Semen Alexandrovich Lyhin 1-day fully working exploit. Shellcode Author: Giuseppe D'Amore EDB:28996 Software:...

0.1AI score
Exploits0
zdt
zdt
added 2018/05/30 12:0 a.m.190 views

Procps-ng - Multiple Vulnerabilities

Exploit for linux platform in category local exploits Procps-ng Audit Report ======================================================================== Contents ======================================================================== Summary 1. FUSE-backed /proc/PID/cmdline 2. Unprivileged process...

6.8AI score0.09081EPSS
Exploits11
zdt
zdt
added 2017/08/06 12:0 a.m.190 views

Microsoft Windows - LNK Shortcut File Code Execution Exploit

Exploit for windows platform in category local exploits !/usr/bin/python -- coding: utf-8 -- Title : CVE-2017-8464 | LNK Remote Code Execution Vulnerability CVE : 2017-8464 Authors : ykoster, nixawk Notice : Only for educational purposes. Support : python2 import struct def generateSHELLLINKHEADE...

9.3CVSS9AI score0.90026EPSS
Exploits27
zdt
zdt
added 2016/04/19 12:0 a.m.190 views

modified eCommerce Shopsoftware 2.0.0.0 rev 9678 - Blind SQL Injection

Exploit for php platform in category web applications...

7.5CVSS1.9AI score0.0373EPSS
Exploits5
zdt
zdt
added 2015/07/08 12:0 a.m.190 views

CuteNews 2.0.3 - Arbitrary File Upload Vulnerability

Exploit for php platform in category web applications Exploit Title: CuteNews 2.0.3 Remote File Upload Vulnerability Date: 02/07/2015 Exploit Author: T0x!c Facebook: https://www.facebook.com/Dz.pr0s Vendor Homepage: http://cutephp.com/ Software Link: http://cutephp.com/cutenews/cutenews.2.0.3.zip...

7.1AI score
Exploits0
zdt
zdt
added 2010/06/28 12:0 a.m.190 views

IFP Group SQL Injection Vulnerability

Exploit for php platform in category web applications ===================================== IFP Group SQL Injection Vulnerability ===================================== Exploit Title: IFP Group SQL Injecyion Date: 28/6/2010 Author: dev!l ghost Email: awsatlivedotit Software Link:N/A Version: Any...

7.1AI score
Exploits0
zdt
zdt
added 2025/03/13 12:0 a.m.189 views

WordPress Th Shop Mania Theme 1.4.9 Missing Authorization Exploit

import requests import argparse import re import time By Nxploit | Khaled alenazi, Function to check if the site is vulnerable def checkvulnerabilityurl: versionurl = f"url/wp-content/themes/th-shop-mania/readme.txt" try: response = requests.getversionurl, timeout=5 if response.statuscode == 200:...

8.8CVSS7AI score0.01683EPSS
Exploits2
zdt
zdt
added 2025/02/09 12:0 a.m.189 views

Gleamtech FileVista 9.2.0.0 Missing Authorization Vulnerability

A vulnerability exists in Gleamtech FileVista version 9.2.0.0 that allows unauthorized access to image files, even after the HTTP cookie associated with the session is deleted. The issue arises due to insufficient validation of session or authentication tokens on the server side. Exploit Title:...

6.5CVSS6.8AI score0.00481EPSS
Exploits3
zdt
zdt
added 2023/08/04 12:0 a.m.189 views

Webedition CMS v2.9.8.8 - Stored XSS Vulnerability

Exploit Title: Webedition CMS v2.9.8.8 - Stored XSS Application: Webedition CMS Version: v2.9.8.8 Bugs: Stored Xss Technology: PHP Vendor URL: https://www.webedition.org/ Software Link: https://download.webedition.org/releases/OnlineInstaller.tgz?p=1 Date of found: 03.08.2023 Author: Mirabbas...

7.1AI score
Exploits0
Total number of security vulnerabilities5000