SeTracker2 Excessive Permissions SeTracker2 Excessive PermissionsCVSS Base Score: 7.5/10Impact Subscore: 6.4/10Exploitability... 2024-8-19 04:52:58 | 阅读: 3 | 收藏 | CXSECURITY Database RSS Feed - CXSecurity.com - cxsecurity.com tk q90 setracker2 partial contacts

Journyx 11.5.4 XML Injection Journyx 11.5.4 XML InjectionKL-001-2024-010: Journyx Unauthenticated XML External Entities Injecti... 2024-8-19 04:51:53 | 阅读: 10 | 收藏 | CXSECURITY Database RSS Feed - CXSecurity.com - cxsecurity.com journyx korelogic sax uucp soapenv

OpenMetadata 1.2.3 Authentication Bypass / SpEL Injection OpenMetadata 1.2.3 Authentication Bypass / SpEL Injection### This module requires Metasploit: htt... 2024-8-19 04:50:29 | 阅读: 6 | 收藏 | CXSECURITY Database RSS Feed - CXSecurity.com - cxsecurity.com 2fv1 2fusers 28255

Build Your Own Botnet 2.0.0 Remote Code Execution Build Your Own Botnet 2.0.0 Remote Code Execution# Exploit Title: BYOB (Build Your Own Botnet) v2.... 2024-8-19 04:49:53 | 阅读: 17 | 收藏 | CXSECURITY Database RSS Feed - CXSecurity.com - cxsecurity.com database username byob regsiter

WordPress Profilepro 1.3 Cross Site Scripting WordPress Profilepro 1.3 Cross Site Scripting# Exploit Title: profilepro <= 1.3 - Subscriber+ Stor... 2024-8-15 05:57:51 | 阅读: 4 | 收藏 | CXSECURITY Database RSS Feed - CXSecurity.com - cxsecurity.com profilepro wp ux php wordpress

Microsoft PlayReady Design Issue Microsoft PlayReady Design IssueHello All,There is an architectural / design issue of PlayReady,... 2024-8-15 05:57:36 | 阅读: 5 | 收藏 | CXSECURITY Database RSS Feed - CXSecurity.com - cxsecurity.com playready client windows canal microsoft

WordPress MapFig Studio 0.2.1 Cross Site Request Forgery / Cross Site Scripting # Exploit Title: MapFig Studio <= 0.2.1 - Stored XSS via CSRF# Date: 15-04-2024# Exploit Author: V... 2024-8-15 05:57:15 | 阅读: 5 | 收藏 | CXSECURITY Database RSS Feed - CXSecurity.com - cxsecurity.com mapfig escaping php

Open WebUI 0.1.105 File Upload / Path Traversal Open WebUI 0.1.105 File Upload / Path TraversalKL-001-2024-006: Open WebUI Arbitrary File Upload +... 2024-8-13 06:10:20 | 阅读: 10 | 收藏 | CXSECURITY Database RSS Feed - CXSecurity.com - cxsecurity.com korelogic webui security maintainer kl

courier-management-system-2020-1.0 Multiple-SQLi courier-management-system-2020-1.0 Multiple-SQLi## Titles: courier-management-system-2020-1.0 Mult... 2024-8-13 06:10:1 | 阅读: 9 | 收藏 | CXSECURITY Database RSS Feed - CXSecurity.com - cxsecurity.com courier payload oastify

Backdoor.Win32.Nightmare.25 / Unauthenticated Remote Command Execution Backdoor.Win32.Nightmare.25 / Unauthenticated Remote Command ExecutionDiscovery / credits: Ma... 2024-8-13 06:9:41 | 阅读: 7 | 收藏 | CXSECURITY Database RSS Feed - CXSecurity.com - cxsecurity.com doom malvuln nightmare ftpon

Dolphin 7.4.2 Blind SQL Injection # Exploit Title: Blind SQL Injection - dolphinv7.4.2.# Date: 8/2024# Exploit Author: Andrey Stoyko... 2024-8-8 16:38:29 | 阅读: 7 | 收藏 | CXSECURITY Database RSS Feed - CXSecurity.com - cxsecurity.com injection builders andrey msecureltd php

OpenMediaVault rpc.php Authenticated Cron Remote Code Execution OpenMediaVault rpc.php Authenticated Cron Remote Code Execution### This module requires Metasploi... 2024-8-8 16:38:5 | 阅读: 6 | 收藏 | CXSECURITY Database RSS Feed - CXSecurity.com - cxsecurity.com payload php username ctype

WP-UserOnline 2.88.0 Stored Cross Site Scripting (XSS) (Authenticated) # Exploit Title: WP-UserOnline 2.88.0 - Stored Cross Site Scripting (XSS) (Authenticated)# Google D... 2024-8-8 16:36:34 | 阅读: 3 | 收藏 | CXSECURITY Database RSS Feed - CXSecurity.com - cxsecurity.com wp php changereq useronline

WordPress PayPlus Payment Gateway SQL Injection #!/usr/bin/env python3.11import requestsimport timedef exploit(url):payload = {"wc-api": "payplu... 2024-8-8 16:36:6 | 阅读: 8 | 收藏 | CXSECURITY Database RSS Feed - CXSecurity.com - cxsecurity.com payload python3 mozilla windows chrome

Genexus Protection Server 9.7.2.10 Unquoted Service Path #Exploit Title: Genexus Protection Server 9.7.2.10 - 'protsrvservice' Unquoted Service Path Service... 2024-8-7 05:35:17 | 阅读: 14 | 收藏 | CXSECURITY Database RSS Feed - CXSecurity.com - cxsecurity.com genexus nombre servicio inicio

Linux DRM drm_file_update_pid() Race Condition / Use-After-Free Linux DRM drm_file_update_pid() Race Condition / Use-After-FreeLinux: DRM: refcount incremented to... 2024-8-7 05:35:2 | 阅读: 12 | 收藏 | CXSECURITY Database RSS Feed - CXSecurity.com - cxsecurity.com drm mutex refcount filp

Ivanti ADC 9.9 Authentication Bypass Ivanti ADC 9.9 Authentication Bypass# Exploit Title: Ivanti vADC 9.9 - Authentication Bypass# Dat... 2024-8-7 05:34:50 | 阅读: 13 | 收藏 | CXSECURITY Database RSS Feed - CXSecurity.com - cxsecurity.com ivanti wizard fcgi bypass vtm

Korenix JetPort Series 1.2 Command Injection / Insufficient Authentication Korenix JetPort Series 1.2 Command Injection / Insufficient AuthenticationCyberDanube Security Res... 2024-8-7 05:34:9 | 阅读: 16 | 收藏 | CXSECURITY Database RSS Feed - CXSecurity.com - cxsecurity.com cyberdanube korenix jetport network attacker

eduAuthorities-1.0 Multiple-SQLi eduAuthorities-1.0 Multiple-SQLi ## Titles: eduAuthorities-1.0 Multiple-SQLi## Author: nu11secur... 2024-8-7 05:33:45 | 阅读: 6 | 收藏 | CXSECURITY Database RSS Feed - CXSecurity.com - cxsecurity.com editid 2229 php

Devika v1 Path Traversal via snapshot_path # Exploit Title: Devika v1 - Path Traversal via 'snapshot_path' Parameter# Google Dork: N/A# Date:... 2024-8-5 05:12:49 | 阅读: 8 | 收藏 | CXSECURITY Database RSS Feed - CXSecurity.com - cxsecurity.com devika devikaai 40422 passwd