Under Construction Page with CPanel 1.0 – SQL injection
>> TAG: #remote exploit
Under Construction Page with CPanel 1.0 – SQL injection
IDT PC Audio 1.0.6433.0 – ‘STacSV’ Unquoted Service Path
Pharmacy Store Management System 1.0 – ‘id’ SQL Injection
aSc TimeTables 2021.6.2 – Denial of Service (PoC)
Artworks Gallery 1.0 – Arbitrary File Upload RCE (Authenticated) via Edit Profile
Expense Management System – ‘description’ Stored Cross Site Scripting
Artworks Gallery 1.0 – Arbitrary File Upload RCE (Authenticated)
TypeSetter 5.1 – CSRF (Change admin e-mail)
Joomla! Component GMapFP 3.5 – Unauthenticated Arbitrary File Upload
WordPress Plugin EventON Calendar 3.0.5 – Reflected Cross-Site Scripting