Publicly Disclosed
PoC Exploits

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

A SQL injection vulnerability exists in the SourceCodester Sales and Inventory System 1.0, specifically in the HTTP GET Parameter Handler found in the update_stock.php file. This flaw allows an attacker to manipulate the argument 'sid' to execute arbitrary SQL commands. As a result, unauthorized ...

A vulnerability exists in the SourceCodester Sales and Inventory System 1.0 that allows for SQL injection through the manipulation of the 'sid' argument in the /update_sales.php file. This flaw can be exploited remotely, potentially allowing attackers to execute arbitrary SQL commands, compromisi...

The Ormar ORM for Python allows for SQL injection when specific aggregate queries are executed. In versions 0.9.9 through 0.22.0, user-supplied column names are passed directly into `sqlalchemy.text()` without proper validation. This lack of sanitization in the `min()` and `max()` methods can lea...

A path traversal vulnerability present in the Windows version of WinRAR could enable attackers to execute arbitrary code by crafting specially designed malicious archive files. This type of exploitation was observed in the wild, bringing attention to the efforts of security researchers, including...

A vulnerability exists in Enter Software Iperius Backup, specifically in the Backup Job Configuration File Handler, which allows improper privilege management. This flaw requires local exploitation, reflecting a high complexity in executing the attack. Although challenging to exploit, the details...

A flaw has been identified in Enter Software's Iperius Backup that affects the NTLM2 Handler component, allowing for potential information disclosure. This vulnerability can be exploited through local execution, making the attack complex and difficult to execute successfully. The issue has been d...

A vulnerability was identified in Enter Software's Iperius Backup up to version 8.7.2, specifically within the Backup Service component. This issue arises from the insecure creation of temporary files within the directory located at C:\ProgramData\IperiusBackup\Jobs\. An attacker with local acces...

The Kali Forms plugin for WordPress, up to version 2.4.9, contains a security vulnerability that allows unauthenticated attackers to execute remote code on the server. This issue arises from the improper handling of user-supplied data within the 'form_process' function, where keys input by users ...

OpenCart Core version 4.0.2.3 is susceptible to SQL injection due to improper validation of user input in the 'search' parameter. This vulnerability enables unauthenticated attackers to craft specific GET requests to exploit the product search endpoint. By injecting malicious SQL code, attackers ...

The vulnerability in the Windows DWM Core Library enables an elevation of privilege that could allow an attacker to run arbitrary code in the context of the operating system user. Exploitation of this vulnerability requires an attacker to gain access to the target system, thereby increasing the s...

A security flaw in the BdApiUtil driver of Baidu Antivirus v5.2.3.116083 enables attackers to exploit the system through a Bring Your Own Vulnerable Driver (BYOVD) attack, allowing the execution of arbitrary code that can terminate any running process. This vulnerability compromises the integrity...

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

A use-after-free vulnerability in the io_uring subsystem of libfuse affects versions 3.18.0 through 3.18.1. When thread creation fails due to resource limits such as cgroup pids.max, the fuse_uring_start() function can free the ring pool structure but retains a dangling pointer in the session sta...

MCPJam Inspector, designed for local-first development on MCP servers, has a vulnerability allowing remote code execution (RCE) due to improper binding settings. In versions 1.4.2 and earlier, the platform listens on 0.0.0.0 by default, enabling attackers to exploit this configuration through cra...

The cryptodev-linux software, specifically versions 1.14 and earlier, is susceptible to a flaw in the handling of page references within the get_userbuf function of the /dev/crypto device driver. This vulnerability may allow local users to exploit use-after-free conditions by reducing reference c...

The cryptodev-linux software, specifically versions 1.14 and earlier, is susceptible to a flaw in the handling of page references within the get_userbuf function of the /dev/crypto device driver. This vulnerability may allow local users to exploit use-after-free conditions by reducing reference c...

MCPJam Inspector, designed for local-first development on MCP servers, has a vulnerability allowing remote code execution (RCE) due to improper binding settings. In versions 1.4.2 and earlier, the platform listens on 0.0.0.0 by default, enabling attackers to exploit this configuration through cra...

The MCP Inspector, a tool designed for testing and debugging MCP servers, is susceptible to remote code execution in versions prior to 0.14.1. The vulnerability arises from an absence of authentication between the Inspector client and the proxy, which allows unauthorized users to send commands to...

The PeproDev Ultimate Invoice plugin for WordPress versions up to 2.2.5 has an information disclosure vulnerability due to its bulk download feature. This feature generates ZIP archives that contain exported invoice PDFs with predictably named files. This predictability enables attackers to perfo...

A serious SQL injection vulnerability exists in the Simple Laundry System version 1.0, particularly within the /checkcheckout.php file. This flaw is due to improper handling of the serviceId parameter, allowing attackers to execute arbitrary SQL queries remotely. The exploit has been publicly dis...

A SQL injection vulnerability has been identified in the itsourcecode College Management System version 1.0, specifically within the unseen function of the file /admin/add-single-student-results.php. This flaw allows for the manipulation of the 'course_code' argument, enabling attackers to execut...

A potential SQL injection vulnerability exists in the SourceCodester Sales and Inventory System 1.0. This flaw arises from an unknown function within the update_purchase.php file, specifically related to the HTTP GET Parameter Handler. By manipulating the 'sid' argument, an attacker may execute u...

A potential SQL injection vulnerability exists in the SourceCodester Sales and Inventory System version 1.0, specifically affecting the update_out_standing.php file within the HTTP GET Parameter Handler component. By manipulating the 'sid' argument, an attacker can execute malicious SQL commands,...

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

A security flaw has been identified in the SourceCodester Sales and Inventory System 1.0. The vulnerability arises from improper handling of the HTTP GET parameter 'sid' in the file update_customer_details.php, allowing attackers to manipulate this argument and execute SQL injection attacks. This...

A security vulnerability has been found in SourceCodester Sales and Inventory System version 1.0, specifically within the update_category.php file. This issue arises from inadequate validation of the 'sid' HTTP GET parameter, enabling potential SQL injection attacks. Attackers could exploit this ...

A security flaw has been identified in the SourceCodester Sales and Inventory System 1.0, specifically within the file view_supplier.php related to the POST Parameter Handler. The vulnerability arises from improper handling of user input in the searchtxt parameter, allowing for SQL injection atta...

The Atlassian Bitbucket Server and Data Center is susceptible to remote code execution via multiple API endpoints. This vulnerability allows remote attackers with read permissions to either public or private repositories to execute arbitrary code by sending carefully crafted HTTP requests. The is...

The Zimbra Collaboration Suite (ZCS) version 8.8.15 has a command injection vulnerability in the PostJournal service. This flaw allows unauthenticated attackers to execute arbitrary system commands through improper sanitization of the RCPT TO parameter, which can be exploited via SMTP injection. ...

A vulnerability affecting various Dahua security devices allows attackers to bypass the authentication mechanism during the login process. By crafting malicious data packets, attackers can exploit this flaw to gain unauthorized access to sensitive device functionalities, potentially compromising ...

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

In PhreeBooks ERP version 5.2.3, a security flaw in the image manager allows authenticated users to bypass file extension controls and upload arbitrary PHP files. This vulnerability can be exploited to execute malicious scripts on the server, enabling attackers to establish reverse shell connecti...

Tabs Mail Carrier version 2.5.1 is susceptible to a buffer overflow vulnerability that arises from the MAIL FROM SMTP command. By sending a specially crafted MAIL FROM parameter, remote attackers could gain control of the affected system. This is accomplished through connecting to the SMTP servic...

WinMPG Video Convert versions 9.3.5 and earlier are susceptible to a buffer overflow vulnerability within the registration dialog. This flaw allows local attackers to disrupt the application's functionality by entering excessively large inputs, specifically exceeding 6000 bytes, into the Name and...

The WinAVI iPod/3GP/MP4/PSP Converter version 4.4.2 is susceptible to a denial of service issue. Local attackers can exploit this vulnerability by crafting malformed AVI files that trigger an application crash when processed. By using an oversized buffer loaded through the Convert to iPhone funct...

The eNdonesia Portal version 8.7 is susceptible to multiple SQL injection vulnerabilities, which can be exploited by unauthenticated attackers. By crafting specific GET requests that include malicious code injected through the 'bid' parameter in the 'banners.php' script, malicious users can execu...

Bootstrapy CMS is susceptible to multiple SQL injection vulnerabilities, enabling unauthenticated attackers to run arbitrary SQL queries by exploiting vulnerabilities in various POST parameters. Key areas of concern include the thread_id parameter in 'forum-thread.php', the subject parameter in '...

Inout Article Base CMS is affected by SQL injection vulnerabilities that permit unauthenticated attackers to manipulate database queries by leveraging the 'p' and 'u' parameters. By injecting specifically crafted XOR-based payloads via GET requests to portalLogin.php, attackers can extract sensit...

The Vlog System developed by Netartmedia is susceptible to an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL code through the email parameter in the forgotten_password module. By sending specially crafted POST requests to index.php, an attacker can extr...

Matrimony Website Script M-Plus is susceptible to multiple SQL injection vulnerabilities that can be exploited by unauthenticated attackers. By injecting malicious SQL code through various POST parameters such as txtGender, religion, Fage, and cboCountry, attackers can exploit various pages inclu...

X-NetStat Pro 5.63 is susceptible to a local buffer overflow vulnerability that enables local attackers to execute arbitrary code. By manipulating a 264-byte buffer, an attacker could overwrite the EIP register, allowing them to inject and execute shellcode within the application. This vulnerabil...

The Meeplace Business Review Script is vulnerable to SQL injection through the 'id' parameter in the addclick.php endpoint. This security flaw allows attackers, without authentication, to craft GET requests that exploit the SQL logic processing, potentially enabling them to execute arbitrary SQL ...

Zeeways Jobsite CMS has a vulnerability that allows unauthenticated attackers to exploit SQL injection through the 'id' GET parameter. By manipulating this parameter in requests to specified pages like news_details.php, jobs_details.php, or job_cmp_details.php, attackers can execute malicious SQL...

Zeeways Matrimony CMS presents multiple SQL injection vulnerabilities that could be exploited by unauthenticated attackers through the profile_list endpoint. By manipulating input parameters such as up_cast, s_mother, and s_religion, attackers can execute arbitrary SQL code. This may lead to unau...

AIDA64 Extreme version 5.99.4900 is vulnerable to a structured exception handling buffer overflow, allowing local attackers to execute arbitrary code. This vulnerability can be exploited by providing malicious input through the application's email preferences and report wizard. Attackers can inje...

The Base64 Decoder version 1.1.2 exhibits a stack-based buffer overflow vulnerability that can be exploited by local attackers. By crafting a malicious input file, an attacker can trigger an overwrite of the structured exception handler (SEH) chain. This leads to the possibility of executing arbi...

phpFileManager version 1.7.8 is susceptible to a local file inclusion (LFI) vulnerability. This security flaw allows unauthenticated attackers to gain access to sensitive files on the server by exploiting the 'action', 'fm_current_dir', and 'filename' parameters in GET requests to 'index.php'. By...

AIDA64 Business 5.99.4900 is susceptible to a structured exception handling (SEH) buffer overflow vulnerability. This flaw allows local attackers to potentially execute arbitrary code by manipulating SEH pointers through crafted input. Attackers can exploit this issue via the SMTP display name fi...

PhreeBooks ERP version 5.2.3 has a vulnerability in the Image Manager component, which allows authenticated users to exploit an arbitrary file upload fault. By manipulating the requests sent to the image upload endpoint, attackers can upload malicious files, such as PHP scripts, through the 'imgF...