Результаты поиска

  1. Exploiter

    Exploit User Registration & Login and User Management System v3.0 - Stored Cross-Site Scripting (XSS)

    User Registration & Login and User Management System v3.0 - Stored Cross-Site Scripting (XSS) # Exploit Title: User Registration & Login and User Management System v3.0 - Stored Cross-Site Scripting (XSS) # Google Dork: NA # Date: 19/08/2023 # Exploit Author: Ashutosh Singh Umath # Vendor...
  2. Exploiter

    Exploit User Registration & Login and User Management System v3.0 - SQL Injection (Unauthenticated)

    User Registration & Login and User Management System v3.0 - SQL Injection (Unauthenticated) # Exploit Title: User Registration & Login and User Management System v3.0 - SQL Injection (Unauthenticated) # Google Dork: NA # Date: 19/08/2023 # Exploit Author: Ashutosh Singh Umath # Vendor Homepage...
  3. Exploiter

    Exploit Blood Donor Management System v1.0 - Stored XSS

    Blood Donor Management System v1.0 - Stored XSS # Exploit Title: Blood Donor Management System v1.0 - Stored XSS # Application: Blood Donor Management System # Version: v1.0 # Bugs: Stored XSS # Technology: PHP # Vendor Homepage: https://phpgurukul.com/ # Software Link...
  4. Exploiter

    Exploit Backdrop CMS 1.27.1 - Authenticated Remote Command Execution (RCE)

    Backdrop CMS 1.27.1 - Authenticated Remote Command Execution (RCE) # Exploit Title: Backdrop CMS 1.27.1 - Authenticated Remote Command Execution (RCE) # Date: 04/27/2024 # Exploit Author: Ahmet Ümit BAYRAM # Vendor Homepage: https://backdropcms.org/ # Software Link...
  5. Exploiter

    Exploit Uvdesk v1.1.3 - File Upload Remote Code Execution (RCE) (Authenticated)

    Uvdesk v1.1.3 - File Upload Remote Code Execution (RCE) (Authenticated) # Exploit Title: Uvdesk v1.1.3 - File Upload Remote Code Execution (RCE) (Authenticated) # Date: 28/07/2023 # Exploit Author: Daniel Barros (@cupc4k3d) - Hakai Offensive Security # Vendor Homepage: https://www.uvdesk.com #...
  6. Exploiter

    Exploit Webutler v3.2 - Remote Code Execution (RCE)

    Webutler v3.2 - Remote Code Execution (RCE) Exploit Title: Webutler v3.2 - Remote Code Execution (RCE) Application: webutler Cms Version: v3.2 Bugs: RCE Technology: PHP Vendor URL: https://webutler.de/en Software Link: http://webutler.de/download/webutler_v3.2.zip Date of found: 03.08.2023...
  7. Exploiter

    Exploit Webedition CMS v2.9.8.8 - Remote Code Execution (RCE)

    Webedition CMS v2.9.8.8 - Remote Code Execution (RCE) Exploit Title: Webedition CMS v2.9.8.8 - Remote Code Execution (RCE) Application: webedition Cms Version: v2.9.8.8 Bugs: RCE Technology: PHP Vendor URL: https://www.webedition.org/ Software Link...
  8. Exploiter

    Exploit Webedition CMS v2.9.8.8 - Stored XSS

    Webedition CMS v2.9.8.8 - Stored XSS Exploit Title: Webedition CMS v2.9.8.8 - Stored XSS Application: Webedition CMS Version: v2.9.8.8 Bugs: Stored Xss Technology: PHP Vendor URL: https://www.webedition.org/ Software Link: https://download.webedition.org/releases/OnlineInstaller.tgz?p=1 Date...
  9. Exploiter

    Exploit mooSocial 3.1.8 - Reflected XSS

    mooSocial 3.1.8 - Reflected XSS # Exploit Title: mooSocial 3.1.8 - Reflected XSS # Exploit Author: CraCkEr # Date: 28/07/2023 # Vendor: mooSocial # Vendor Homepage: https://moosocial.com/ # Software Link: https://travel.moosocial.com/ # Version: 3.1.8 # Tested on: Windows 10 Pro # Impact...
  10. Exploiter

    Exploit Social-Commerce 3.1.6 - Reflected XSS

    Social-Commerce 3.1.6 - Reflected XSS # Exploit Title: Social-Commerce 3.1.6 - Reflected XSS # Exploit Author: CraCkEr # Date: 28/07/2023 # Vendor: mooSocial # Vendor Homepage: https://moosocial.com/ # Software Link: https://social-commerce.moosocial.com/ # Version: 3.1.6 # Tested on: Windows 10...
  11. Exploiter

    Exploit Color Prediction Game v1.0 - SQL Injection

    Color Prediction Game v1.0 - SQL Injection # Exploit Title: Color Prediction Game v1.0 - SQL Injection # Date: 2023-08-12 # Exploit Author: Ahmet Ümit BAYRAM # Vendor: https://www.codester.com/items/44411/color-prediction-game-php-script # Tested on: Kali Linux & MacOS # CVE: N/A ### Request...
  12. Exploiter

    Exploit Vaidya-Mitra 1.0 - Multiple SQLi

    Vaidya-Mitra 1.0 - Multiple SQLi ## Title: Vaidya-Mitra 1.0 - Multiple SQLi ## Author: nu11secur1ty ## Date: 07.12.2023 ## Vendor: https://mayurik.com/ ## Software: free: https://www.sourcecodester.com/php/16720/free-hospital-management-system-small-practices.html...
  13. Exploiter

    Exploit Online Piggery Management System v1.0 - unauthenticated file upload vulnerability

    Online Piggery Management System v1.0 - unauthenticated file upload vulnerability #!/bin/bash # Exploit Title: Online Piggery Management System v1.0 - unauthenticated file upload vulnerability # Date: July 12 2023 # Exploit Author: 1337kid # Software Link...
  14. Exploiter

    Exploit RosarioSIS 10.8.4 - CSV Injection

    RosarioSIS 10.8.4 - CSV Injection # Exploit Title: RosarioSIS 10.8.4 - CSV Injection # Google Dork:NA # Exploit Author: Ranjeet Jaiswal# # Vendor Homepage: https://www.rosariosis.org/ # Software Link: https://gitlab.com/francoisjacquet/rosariosis/-/archive/v10.8.4/rosariosis-v10.8.4.zip #...
  15. Exploiter

    Exploit WordPress Plugin AN_Gradebook 5.0.1 - SQLi

    WordPress Plugin AN_Gradebook 5.0.1 - SQLi #!/usr/bin/python3 # Exploit Title: WordPress Plugin AN_Gradebook <= 5.0.1 - Subscriber+ SQLi # Date: 2023-07-26 # Exploit Author: Lukas Kinneberg # Github: https://github.com/lukinneberg/CVE-2023-2636 # Vendor Homepage...
  16. Exploiter

    Exploit copyparty v1.8.6 - Reflected Cross Site Scripting (XSS)

    copyparty v1.8.6 - Reflected Cross Site Scripting (XSS) # Exploit Title: copyparty v1.8.6 - Reflected Cross Site Scripting (XSS) # Date: 23/07/2023 # Exploit Author: Vartamtezidis Theodoros (@TheHackyDog) # Vendor Homepage: https://github.com/9001/copyparty/ # Software Link...
  17. Exploiter

    Exploit copyparty 1.8.2 - Directory Traversal

    copyparty 1.8.2 - Directory Traversal # Exploit Title: copyparty 1.8.2 - Directory Traversal # Date: 14/07/2023 # Exploit Author: Vartamtzidis Theodoros (@TheHackyDog) # Vendor Homepage: https://github.com/9001/copyparty/ # Software Link: https://github.com/9001/copyparty/releases/tag/v1.8.2 #...
  18. Exploiter

    Exploit Netlify CMS 2.10.192 - Stored Cross-Site Scripting (XSS)

    Netlify CMS 2.10.192 - Stored Cross-Site Scripting (XSS) # Exploit Title: Netlify CMS 2.10.192 - Stored Cross-Site Scripting (XSS) # Exploit Author: tmrswrr # Vendor Homepage: https://decapcms.org/docs/intro/ # Software Link: https://github.com/decaporg/decap-cms # Version: 2.10.192 # Tested on...
  19. Exploiter

    Exploit News Portal v4.0 - SQL Injection (Unauthorized)

    News Portal v4.0 - SQL Injection (Unauthorized) # Exploit Title: News Portal v4.0 - SQL Injection (Unauthorized) # Date: 09/07/2023 # Exploit Author: Hubert Wojciechowski # Contact Author: [email protected] # Vendor Homepage: https://phpgurukul.com/news-portal-project-in-php-and-mysql/c #...
  20. Exploiter

    Exploit Super Socializer 7.13.52 - Reflected XSS

    Super Socializer 7.13.52 - Reflected XSS # Exploit Title: Super Socializer 7.13.52 - Reflected XSS # Dork: inurl: https://example.com/wp-admin/admin-ajax.php?action=the_champ_sharing_count&urls[%3Cimg%20src%3Dx%20onerror%3Dalert%28document%2Edomain%29%3E]=https://www.google.com # Date...
  21. Exploiter

    Exploit SPIP v4.2.0 - Remote Code Execution (Unauthenticated)

    SPIP v4.2.0 - Remote Code Execution (Unauthenticated) #!/usr/bin/env python3 # -*- coding: utf-8 -*- # Exploit Title: SPIP v4.2.1 - Remote Code Execution (Unauthenticated) # Google Dork: inurl:"/spip.php?page=login" # Date: 19/06/2023 # Exploit Author: nuts7...
  22. Exploiter

    Exploit WebsiteBaker v2.13.3 - Stored XSS

    WebsiteBaker v2.13.3 - Stored XSS Exploit Title: WebsiteBaker v2.13.3 - Stored XSS Application: WebsiteBaker Version: 2.13.3 Bugs: Stored XSS Technology: PHP Vendor URL: https://websitebaker.org/pages/en/home.php Software Link: https://wiki.websitebaker.org/doku.php/en/downloads Date of found...
  23. Exploiter

    Exploit WebsiteBaker v2.13.3 - Directory Traversal

    WebsiteBaker v2.13.3 - Directory Traversal Exploit Title: WebsiteBaker v2.13.3 - Directory Traversal Application: WebsiteBaker Version: 2.13.3 Bugs: Directory Traversal Technology: PHP Vendor URL: https://websitebaker.org/pages/en/home.php Software Link...
  24. Exploiter

    Exploit Faculty Evaluation System v1.0 - SQL Injection

    Faculty Evaluation System v1.0 - SQL Injection # Exploit Title: Faculty Evaluation System v1.0 - SQL Injection # Date: 07/2023 # Exploit Author: Andrey Stoykov # Vendor Homepage: https://www.sourcecodester.com/php/14635/faculty-evaluation-system-using-phpmysqli-source-code.html # Software Link...
  25. Exploiter

    Exploit Diafan CMS 6.0 - Reflected Cross-Site Scripting (XSS)

    Diafan CMS 6.0 - Reflected Cross-Site Scripting (XSS) # Exploit Title: Diafan CMS 6.0 - Reflected Cross-Site Scripting (XSS) # Exploit Author: tmrswrr / Hulya Karabag # Vendor Homepage: https://www.diafancms.com/ # Version: 6.0 # Tested on: https://demo.diafancms.com Description: 1)...