Publicly Disclosed
PoC Exploits

An issue has been identified in Microsoft Defender that could allow an authorized attacker to gain elevated privileges through improper link resolution before file access, also known as link following. This vulnerability could enable attackers to manipulate file paths, potentially leading to unau...

WooCommerce version 7.1.0 has a vulnerability that allows remote code execution. This flaw enables attackers to execute arbitrary PHP code by injecting untrusted shell commands through the product-type parameter. By sending crafted requests to the class-wc-meta-box-product-images.php endpoint, at...

The Time Capsule Plugin version 1.21.16 for WordPress has a significant authentication bypass vulnerability. This allows unauthenticated attackers to gain administrative access by sending specially crafted POST requests that leverage the IWP_JSON_PREFIX header. Exploiting this weakness grants att...

The Ultimate Addons for Beaver Builder version 1.2.4.1 is affected by an authentication bypass vulnerability that allows attackers to gain unauthorized access. This can be achieved through exploiting the social media login form functionality, specifically by sending a crafted POST request to the ...

Liquidfiles versions prior to 4.2.12 exhibit a broken access control vulnerability that allows for privilege escalation. An attacker with Admin privileges in a secondary domain can exploit this vulnerability to gain Sysadmin access by manipulating group settings within their managed non-default g...

The vulnerability in Redis arises from a packaging issue specific to Debian, which exposes the system to a Lua sandbox escape. This flaw could potentially allow attackers to execute arbitrary code remotely, compromising the security and integrity of applications that rely on Redis as a persistent...

A flaw in Polkit allows an unprivileged local attacker to bypass credential checks for D-Bus requests. This can lead to the elevation of privileges to that of the root user, enabling the attacker to execute commands with elevated permissions. This vulnerability poses a significant threat to the c...

A security flaw was identified in the Ray dashboard, specifically within the cpu_profile URL parameter, which is vulnerable to command injection. This allows remote attackers to execute arbitrary OS commands on the machine running the dashboard without requiring authentication. The issue has been...

An authentication bypass vulnerability exists in Ivanti Sentry versions prior to R10.5.2, R10.6.2, and R10.7.1, enabling remote unauthenticated attackers to create arbitrary administrative accounts. This flaw compromises the security model of the application, allowing malicious users full adminis...

The com_booking component for Joomla version 2.4.9 suffers from an information disclosure vulnerability that permits unauthenticated users to enumerate user accounts. By leveraging the getUserData function within the customer controller, attackers can send crafted GET requests to the index.php fi...

The Joomla! Component JoomProject 1.1.3.2 is vulnerable to an information disclosure flaw. This vulnerability enables unauthenticated attackers to access sensitive information, including user IDs, names, and email addresses. By manipulating requests to the relevant projects endpoint, attackers ca...

JoomCRM version 1.1.1 is susceptible to an SQL injection vulnerability due to improper validation of user input within the deal_id parameter. Authenticated attackers can exploit this flaw by crafting GET requests to index.php with specific parameters that allow them to execute arbitrary SQL queri...

The Easy Shop component for Joomla! version 1.2.3 has a local file inclusion flaw that enables unauthenticated attackers to read arbitrary files from the server. This vulnerability arises when an attacker encodes file paths in base64 format and manipulates the application's parameters in a GET re...

The Joomla! Component vBizz version 1.0.7 is susceptible to an SQL injection vulnerability that allows authenticated individuals to manipulate SQL queries. This vulnerability is exploited via crafted POST requests containing malicious payid array values, enabling attackers to access sensitive inf...

The vBizz component for Joomla! version 1.0.7 suffers from an unrestricted file upload vulnerability that enables authenticated attackers to upload harmful PHP files through the profile_pic parameter. By exploiting this flaw, attackers can send malicious files via POST requests to the employee vi...

Joomla vWishlist version 1.0.1 is susceptible to an SQL injection vulnerability that enables authenticated attackers to manipulate SQL queries. By exploiting this flaw, attackers can send crafted POST requests with malicious inputs in the vproductid and userid parameters. This can lead to the exe...

The vAccount component for Joomla! version 2.0.2 is susceptible to an SQL injection vulnerability. This flaw enables unauthorized attackers to manipulate SQL queries by injecting malicious code through the 'vid' parameter in GET requests directed to the vaccount-dashboard/expense endpoint. By exp...

The Joomla vReview component version 1.9.11 is susceptible to an SQL injection attack due to improper handling of the cmId parameter. This vulnerability allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code. The attacker can exploit this by sending speciall...

The Joomla component vRestaurant version 1.9.4 is susceptible to an SQL injection flaw that permits unauthenticated attackers to execute arbitrary SQL statements. By injecting malicious payloads through the keysearch parameter in POST requests to the menu-listing-layout endpoint, attackers may ga...

The Joomla! Component VMap version 1.9.6 is susceptible to an SQL injection vulnerability that enables unauthorized users to execute arbitrary SQL queries. By targeting the 'latlngbound' parameter through manipulated GET requests to 'index.php' with predefined parameters, attackers can inject har...

The J-BusinessDirectory component for Joomla! version 4.9.7 is susceptible to SQL injection, allowing unauthenticated attackers to execute arbitrary SQL commands. By manipulating the 'type' parameter via a GET request, attackers can inject UNION-based SQL statements. This vulnerability enables th...

The Joomla component J-ClassifiedsManager version 3.0.5 is susceptible to an SQL injection flaw, which enables unauthenticated attackers to execute arbitrary SQL commands. This vulnerability arises from the improper handling of user input in parameters such as categorySearch, adType, and citySear...

The BetterDocs Pro plugin for WordPress contains a vulnerability that allows unauthenticated attackers to exploit a Local File Inclusion (LFI) flaw through the 'doc_style' parameter. This security issue affects versions up to and including 3.8.0, enabling attackers to include and execute arbitrar...

The J-MultipleHotelReservation component for Joomla version 6.0.7 is susceptible to an SQL injection vulnerability. This flaw enables unauthenticated attackers to manipulate the hotel_id parameter and execute arbitrary SQL commands. By crafting specific POST requests to the search-hotels endpoint...

The Joomla J-CruisePortal version 6.0.4 has a SQL injection flaw that enables authenticated attackers to execute arbitrary SQL commands. By manipulating the 'guest_adult' parameter through crafted POST requests to the cruises endpoint, attackers can potentially access sensitive database contents ...

Joomla JHotelReservation version 6.0.7 is susceptible to an SQL injection flaw that enables unauthenticated attackers to execute arbitrary SQL queries through the 'rooms' parameter. By sending specially crafted POST requests to the 'search-hotels' endpoint, attackers can manipulate the SQL execut...

The jCart component for OpenCart version 2.0, developed by Joomla!, is susceptible to an SQL injection vulnerability that permits unauthenticated attackers to manipulate database queries. By sending specially crafted GET requests to the index.php endpoint with the option=com_jcart&route=product/p...

The Joomla! Component Extra Search version 2.2.8 is susceptible to an SQL injection flaw, allowing attackers who are not authenticated to execute unauthorized SQL code. By sending specially crafted GET requests to index.php with the option=com_extrasearch parameter, they can manipulate the establ...

The Myportfolio component for Joomla version 3.0.2 contains a significant SQL injection vulnerability, allowing attackers to exploit the pid parameter. By sending specially crafted GET requests to index.php with malicious pid values at the task=project&view=grid endpoint, unauthorized individuals...

The Joomla Payage 2.05 version is affected by a SQL injection vulnerability that occurs through the 'aid' parameter in the make_payment task. This flaw enables unauthenticated attackers to inject malicious SQL code via crafted GET requests to index.php. By manipulating these requests, attackers c...

The JoomRecipe component version 1.0.3 for Joomla is affected by an SQL injection vulnerability that can be exploited by unauthenticated attackers. By sending specially-crafted GET requests to the all-recipes endpoint, attackers can inject malicious SQL code through the category parameter, enabli...

The Joomla JoomRecipe 1.0.4 component is susceptible to a blind SQL injection vulnerability via the search_author parameter on the search results page. This flaw allows attackers to send specially crafted POST requests that can manipulate SQL queries, enabling them to retrieve sensitive database ...

The SIMGenealogy component for Joomla! version 2.1.5 is susceptible to an SQL injection vulnerability. Malicious actors can exploit this flaw by sending crafted GET requests to index.php, allowing them to manipulate database queries through the vulnerable type parameter. This could lead to unauth...

The PHP-Bridge component for Joomla! version 1.2.3 is susceptible to an SQL injection vulnerability. This flaw enables unauthenticated attackers to execute arbitrary SQL commands by exploiting the 'id' parameter in GET requests directed at index.php with specific options. By injecting malicious S...

The Joomla LMS King Professional version 3.2.4.0 is susceptible to an SQL injection vulnerability that enables unauthenticated attackers to alter database queries. By injecting malicious SQL code through the cp_id parameter, an attacker can issue crafted GET requests to index.php, exploiting spec...

Joomla Event Registration Pro Calendar version 4.1.3 contains a vulnerability that allows unauthenticated attackers to execute arbitrary SQL commands. By crafting specific GET requests that manipulate the id parameter, attackers can inject malicious SQL code. This exposes the database to unauthor...

The Joomla Ultimate Property Listing version 1.0.2 is susceptible to an SQL injection vulnerability that enables unauthenticated attackers to execute arbitrary SQL commands. By manipulating the sf_selectuser_id parameter in the request, attackers can send specially crafted GET requests to index.p...

The Joomla StreetGuessr Game version 1.1.8 is susceptible to an SQL injection vulnerability that permits unauthenticated users to perform arbitrary SQL commands. By manipulating the 'catid' parameter within GET requests directed at 'index.php' with the parameters 'option=com_streetguess&view=maps...

The Twitch TV Component for Joomla! version 1.1 is susceptible to SQL injection, allowing attackers to execute arbitrary SQL queries by manipulating the 'username' and 'id' parameters. By sending specially crafted GET requests to index.php with the parameters 'option=com_twitchtv' and 'view', att...

The Joomla! Component KissGallery 1.0.0 has a significant SQL injection vulnerability that enables unauthorized attackers to inject SQL statements through the component's URL. This flaw allows malicious users to manipulate database queries, potentially leading to unauthorized data extraction and ...

The Joomla! Component Zap Calendar Lite version 4.3.4 is impacted by an SQL injection vulnerability that permits unauthenticated attackers to execute arbitrary SQL commands. By exploiting the 'eid' parameter via crafted GET requests targeting the RSVP plugin endpoint, attackers can inject malicio...

The Joomla! Component Calendar Planner version 1.0.1 is susceptible to an SQL injection vulnerability that enables unauthenticated attackers to execute arbitrary SQL queries via the category_id parameter. By manipulating this parameter in GET requests to the events view, attackers can potentially...

The Joomla SP Movie Database version 1.3 contains a SQL injection vulnerability that can be exploited by unauthenticated attackers. By injecting malicious SQL code through the searchword parameter, attackers can manipulate search queries and potentially access sensitive information stored in the ...

The Joomla! Component Flip Wall version 8.0 is affected by an SQL injection vulnerability that enables unauthorized attackers to conduct arbitrary SQL queries by exploiting the wallid parameter. By sending specifically crafted GET requests to the index.php file with the parameters option=com_flip...

The Joomla! Component Sponsor Wall version 8.0 is susceptible to an SQL injection vulnerability. This flaw allows attackers, without authentication, to craft malicious GET requests targeting the wallid parameter. By including SQL injection payloads in the request, attackers can execute arbitrary ...

The Joomla! Component FocalPoint Pro/Free 1.2.3 is susceptible to SQL injection attacks via the 'id' parameter. This flaw allows unauthenticated assailants to manipulate SQL queries, potentially leading to the extraction of sensitive information from the database. Attackers can exploit this vulne...

The Joomla! Component Ajax Quiz 1.8 is susceptible to an SQL injection vulnerability. This security issue enables unauthorized attackers to execute arbitrary SQL queries by manipulating the 'cid' parameter in GET requests. By exploiting the vulnerability, an attacker can leverage the 'option=com_...

The Joomla! Component Bargain Product VM3 1.0 is susceptible to SQL injection, which allows unauthenticated attackers to execute arbitrary SQL commands through the product_id parameter. By manipulating GET requests to specific views, such as brainy and alice, attackers can extract sensitive infor...

The Joomla! Component Price Alert version 3.0.2 is susceptible to an SQL injection vulnerability that can be exploited by unauthenticated attackers. By manipulating the product_id parameter in requests sent to the subscribeajax view, attackers can inject malicious SQL code. This could allow them ...

Joomla OSDownloads 1.7.4 is susceptible to an SQL injection vulnerability, enabling unauthorized attackers to inject and execute arbitrary SQL commands via the 'id' parameter. By constructing a specific GET request to index.php with parameters such as option=com_osdownloads&view=item&id=[SQL], at...