Exploit-DB
2.42K subscribers
9.31K links
Offensive Security Exploit Database
Download Telegram
[webapps] qdPM 9.2 - DB Connection String and Password Exposure (Unauthenticated)
qdPM 9.2 - DB Connection String and Password Exposure (Unauthenticated)
https://www.exploit-db.com/exploits/50176
[webapps] WordPress Plugin WP Customize Login 1.1 - 'Change Logo Title' Stored Cross-Site Scripting (XSS)
WordPress Plugin WP Customize Login 1.1 - 'Change Logo Title' Stored Cross-Site Scripting (XSS)
https://www.exploit-db.com/exploits/50174
[webapps] Hotel Management System 1.0 - Cross-Site Scripting (XSS) Arbitrary File Upload Remote Code Execution (RCE)
Hotel Management System 1.0 - Cross-Site Scripting (XSS) Arbitrary File Upload Remote Code Execution (RCE)
https://www.exploit-db.com/exploits/50173
[webapps] Panasonic Sanyo CCTV Network Camera 2.03-0x - 'Disable Authentication / Change Password' CSRF
Panasonic Sanyo CCTV Network Camera 2.03-0x - 'Disable Authentication / Change Password' CSRF
https://www.exploit-db.com/exploits/50172
[webapps] CloverDX 5.9.0 - Cross-Site Request Forgery (CSRF) to Remote Code Execution (RCE)
CloverDX 5.9.0 - Cross-Site Request Forgery (CSRF) to Remote Code Execution (RCE)
https://www.exploit-db.com/exploits/50166
[webapps] Online Traffic Offense Management System 1.0 - 'id' SQL Injection (Authenticated)
Online Traffic Offense Management System 1.0 - 'id' SQL Injection (Authenticated)
https://www.exploit-db.com/exploits/50218
[webapps] Laundry Booking Management System 1.0 - 'Multiple' Stored Cross-Site Scripting (XSS)
Laundry Booking Management System 1.0 - 'Multiple' Stored Cross-Site Scripting (XSS)
https://www.exploit-db.com/exploits/50220
[webapps] Online Traffic Offense Management System 1.0 - Remote Code Execution (RCE) (Unauthenticated)
Online Traffic Offense Management System 1.0 - Remote Code Execution (RCE) (Unauthenticated)
https://www.exploit-db.com/exploits/50221
[webapps] Simple Phone book/directory 1.0 - 'Username' SQL Injection (Unauthenticated)
Simple Phone book/directory 1.0 - 'Username' SQL Injection (Unauthenticated)
https://www.exploit-db.com/exploits/50223
[webapps] Online Leave Management System 1.0 - Arbitrary File Upload to Shell (Unauthenticated)
Online Leave Management System 1.0 - Arbitrary File Upload to Shell (Unauthenticated)
https://www.exploit-db.com/exploits/50228