CMSimple_XH version 1.7.4 remote command execution exploit.
Vehicle Service Management System 1.0 Shell Upload
Vehicle Service Management System version 1.0 suffers from a remote shell upload vulnerability.
Exam Form Submission System 1.0 SQL Injection
Exam Form Submission System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Drupal MiniorangeSAML 8.x-2.22 Privilege Escalation
Drupal MiniorangeSAML module version 8.x-2.22 suffers from a privilege escalation vulnerability via XML Signature Wrapping.
Phpwcms 1.9.30 Cross Site Scripting
Phpwcms version 1.9.30 suffers from a cross site scripting vulnerability via the file upload functionality.
Blood Bank System 1.0 SQL Injection
Blood Bank System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
WhatsUpGold 21.0.3 Cross Site Scripting
WhatsUpGold version 21.0.3 suffers from a persistent cross site scripting vulnerability.
Packet Storm New Exploits For September, 2021
This archive contains all of the 169 exploits added to Packet Storm in September, 2021.
Packet Storm New Exploits For September, 2021
This archive contains all of the 169 exploits added to Packet Storm in September, 2021.
Azure Active Directory Brute Forcer
This code is a proof-of-concept of the recently revealed Azure Active Directory password brute-forcing vulnerability announced by Secureworks.