Publicly Disclosed
PoC Exploits

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

The HandL UTM Grabber / Tracker WordPress plugin prior to version 2.8.1 is susceptible to a reflected Cross-Site Scripting (XSS) vulnerability. This flaw arises from the improper sanitization and escaping of a parameter, enabling potential attackers to execute malicious scripts in the context of ...

The HandL UTM Grabber / Tracker plugin for WordPress prior to version 2.8.1 is vulnerable due to improper sanitization and escaping of user-supplied parameters. This oversight allows an attacker to initiate a reflected cross-site scripting attack, particularly targeting users with high privileges...

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

MiniDVBLinux version 5.4 is susceptible to a remote code execution vulnerability through its SVDRP protocol. This flaw enables remote attackers to craft specific commands and exploit the svdrpsend.sh script, potentially gaining control over Video Disk Recorder systems. Such exploitation allows un...

MiniDVBLinux version 5.4 is exposed to an unauthenticated access vulnerability in the tv_action.sh script. This flaw enables remote attackers to generate and download live stream snapshots via the Simple VDR Protocol without requiring any authentication credentials. By targeting the /tpl/tv_actio...

MiniDVBLinux version 5.4 has a vulnerability that allows attackers to exploit the 'file' parameter through the about page, enabling unauthorized access to sensitive system files. By manipulating file paths, malicious actors can read arbitrary file contents from the affected device, posing a signi...

MiniDVBLinux 5.4 is vulnerable to an authentication bypass flaw that enables attackers to change the root password without prior authentication. By sending specially crafted POST requests to the system setup endpoint with altered SYSTEM_PASSWORD parameters, an unauthorized user can reset root cre...

The MiniDVBLinux 5.4 platform contains a vulnerability that allows unauthorized users to access sensitive system configuration files. This issue arises from an exposed backup download endpoint which can be exploited by sending a GET request with the parameter 'action=getconfig'. Initiating this r...

The Tinycontrol LAN Controller v3 LK3 version 1.58a is prone to an unauthenticated file access vulnerability that allows remote attackers to exploit the system for unauthorized retrieval of sensitive configuration backups. By leveraging this flaw, attackers can download the 'lk3_settings.bin' fil...

The Selea Targa IP OCR-ANPR Camera is vulnerable due to a hard-coded developer password that enables unauthorized users to exploit a hidden configuration endpoint. By using the hard-coded password 'Selea781830', attackers can gain access to an undocumented page, allowing them to upload configurat...

The Selea Targa IP OCR-ANPR Camera is susceptible to a cross-site request forgery attack, which enables attackers to create unauthorized administrative users. By tricking a logged-in user into visiting a malicious web page, the attacker can submit a form that adds a new admin without requiring au...

The Selea Targa IP OCR-ANPR Camera is susceptible to a stored cross-site scripting vulnerability involving the 'files_list' parameter. This flaw allows attackers to insert malicious HTML or JavaScript code via a POST request to /cgi-bin/get_file.php. If exploited, malicious scripts can execute wi...

The Selea Targa IP OCR-ANPR Camera contains an unauthenticated command injection vulnerability within its utils.php file. This security flaw enables remote attackers to execute arbitrary shell commands by exploiting the 'addr' and 'port' parameters. Attackers can leverage this vulnerability along...

The Selea Targa IP OCR-ANPR Camera is susceptible to a vulnerability that allows remote attackers to access live video streams without requiring authentication. By targeting specific endpoints such as p1.mjpg or p1.264, attackers can gain unauthorized visibility into camera footage, posing seriou...

STVS ProVision 5.9.10 is susceptible to a path traversal vulnerability that enables authenticated attackers to gain access to arbitrary files. By exploiting the archive download functionality, attackers can manipulate the files parameter and issue GET requests with directory traversal sequences, ...

STVS ProVision version 5.9.10 is susceptible to a cross-site request forgery (CSRF) vulnerability that allows malicious actors to execute unauthorized actions with administrative privileges. By exploiting unvalidated HTTP requests, attackers can trick users into visiting compromised websites, sub...

The COMMAX WebViewer ActiveX Control version 2.1.4.5 is prone to a buffer overflow vulnerability that arises when handling excessively long string arrays through multiple functions. This flaw allows attackers to trigger boundary errors within the Commax_WebViewer.ocx module, potentially leading t...

OpenBMCS 2.4 features an information disclosure flaw that enables unauthenticated attackers to exploit directory listing functionality. By gaining access to certain directories, such as /debug/ and /php/, attackers can view sensitive files, including configuration files, database credentials, and...

The IntelliChoice eFORCE Software Suite 2.5.9 is susceptible to a username enumeration vulnerability that enables attackers to identify valid usernames. By exploiting the 'ctl00$MainContent$UserName' POST parameter, malicious actors are able to send requests with known usernames and receive user ...

The COMMAX Smart Home System, a smart IoT solution, is exposed to a vulnerability that allows unauthenticated attackers to leak RTSP credentials in plain-text. By exploiting the /overview.asp endpoint, attackers can submit a GET request to retrieve sensitive information, including critical login ...

The COMMAX Smart Home System is vulnerable to an unauthenticated Denial of Service (DoS) attack through its setconf endpoint. An attacker can exploit this vulnerability by sending a malformed request, leading to configuration changes and ultimately causing service disruption. This poses significa...

The COMMAX Smart Home System CDP-1020n is susceptible to SQL injection, allowing attackers to bypass authentication mechanisms via the 'id' parameter in the 'loginstart.asp' endpoint. By injecting arbitrary SQL code through malicious POST requests, an attacker can manipulate database queries, lea...

COMMAX CVD-Axx DVR version 5.1.4 features weak default administrative credentials that could allow unauthorized users to perform remote password attacks. By sending a POST request with the passkey parameter set to '1234', attackers can gain access to the web control panel, potentially disclosing ...

The COMMAX Biometric Access Control System version 1.0.0 is affected by an authentication bypass vulnerability. This issue allows unauthenticated attackers to exploit cookie poisoning techniques to circumvent authentication mechanisms, granting them unauthorized access to sensitive information. A...

The COMMAX UMS Client ActiveX Control version 1.7.0.2 is susceptible to a heap-based buffer overflow vulnerability. This issue arises from improper boundary validation handled within the CNC_Ctrl.dll file, which allows attackers to manipulate string arrays by sending excessively long inputs throu...

OpenBMCS 2.4 is susceptible to an SQL injection vulnerability that allows authenticated users to execute arbitrary SQL queries against the database. By sending specially crafted GET requests to /debug/obix_test.php with malicious 'id' parameters, an attacker can retrieve sensitive database inform...

OpenBMCS version 2.4 is susceptible to an unauthenticated Server Side Request Forgery (SSRF) vulnerability. This flaw allows attackers to manipulate the application into making unauthorized HTTP requests to any specified external domain via the 'ip' parameter. Consequently, this can enable attack...

OpenBMCS version 2.4 is susceptible to a Cross-Site Request Forgery (CSRF) vulnerability affecting the sendFeedback.php endpoint. This security flaw allows attackers to send unauthorized requests that can modify system settings or perform administrative actions without user consent. Potential exp...

OpenBMCS 2.4 presents a vulnerability that allows attackers to escalate their privileges from a read-only user to an admin user. This can be accomplished by exploiting the permissions in the update_user_permissions.php script. By sending a specially crafted HTTP POST request to the PHP scripts lo...

The n8n workflow automation platform, versions 0.123.1 through 1.119.1, contains a vulnerability that allows an attacker to execute arbitrary code on the host system by exploiting inadequate protections in the pre-commit hooks. When using the 'Add Config' operation, workflows can set malicious Gi...

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

A SQL injection vulnerability has been identified in itsourcecode's Student Management System version 1.0, specifically within the /new_grade.php file. This flaw allows attackers to manipulate the 'grade' argument, leading to potential unauthorized access and manipulation of the database. As the ...

The Frontend Admin plugin by DynamiApps for WordPress has a vulnerability that allows unauthorized modification of WordPress options due to insufficient capability checks and inadequate input validation in its save handler. This vulnerability affects all versions up to and including 3.28.20, enab...

A SQL injection vulnerability exists in the itsourcecode Student Management System 1.0, specifically within the /promote.php file. This flaw allows unauthorized users to manipulate certain arguments, enabling potential remote attacks. As a result, attackers can exploit this vulnerability to execu...

A significant SQL injection vulnerability has been identified in the itsourcecode Student Management System version 1.0. This issue involves an undisclosed functionality within the '/new_school_year.php' file, where the manipulation of the 'sy' argument can allow attackers to execute unauthorized...

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

A significant vulnerability has been discovered in the itsourcecode Student Management System version 1.0, specifically within the function handling arguments in the /new_adviser.php file. This flaw allows attackers to manipulate the 'Name' argument, potentially leading to SQL injection attacks. ...

The Legality WHISTLEBLOWING software by DigitalPA suffers from a critical protection mechanism failure, where essential HTTP security headers are not emitted by default. This vulnerability leads to the omission of crucial security headers including Content-Security-Policy, Referrer-Policy, Permis...

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

The CSV to SortTable WordPress plugin prior to version 4.2 fails to properly validate certain shortcode attributes. This oversight allows authenticated users, including those with contributor roles, to execute Local File Inclusion (LFI) attacks. By exploiting this vulnerability, an attacker could...

The Custom Admin Menu plugin for WordPress versions up to 1.0.0 is susceptible to a reflected cross-site scripting (XSS) vulnerability. This occurs due to the improper sanitization and escaping of user-supplied input before being rendered on the page. As a result, attackers could exploit this wea...

The WPeMatico RSS Feed Fetcher plugin for WordPress, prior to version 2.8.13, contains a vulnerability where certain settings are not properly sanitized or escaped. This lack of validation can be exploited by users with elevated privileges, such as contributors, to execute Stored Cross-Site Scrip...

A vulnerability has been identified in the Tenda AC9 router's Configuration File Handler located at /cgi-bin/DownloadCfg.jpg. This flaw allows unauthorized access to sensitive information, which can be exploited remotely by an attacker. The exploit has been disclosed publicly, highlighting the ne...

A SQL Injection vulnerability exists in the Employee Profile Management System 1.0 due to improper handling of user input in the edit_personnel.php file. This weakness allows an attacker to manipulate the argument 'per_id', potentially gaining unauthorized access to sensitive data stored in the d...