Publicly Disclosed
PoC Exploits

A vulnerability has been identified in the itsourcecode Billing System 1.0, specifically within the login_crud.php file. An attacker can exploit this flaw via remote access by manipulating the 'Password' argument, potentially leading to unauthorized database access through SQL injection. This fla...

A vulnerability in PHPGurukul News Portal version 1.0 allows for sensitive information to be inserted into debugging code due to manipulation of an unknown function within the /onps/settings.py file. This issue can be exploited remotely, making it a concern for users. The complexity of executing ...

A vulnerability has been identified in PHPGurukul News Portal 1.0 that involves the improper handling of the SECRET_KEY parameter within the /onps/settings.py file. This flaw allows for exploitation through remote access, where an attacker can manipulate the argument to utilize a hard-coded crypt...

The Slider & Popup Builder plugin by Depicter for WordPress is susceptible to SQL Injection through the 's' parameter. This vulnerability arises due to inadequate escaping of user-supplied input and insufficient preparation of SQL queries. As a result, it allows unauthenticated attackers to inser...

A significant SQL injection vulnerability has been identified in the SourceCodester Best House Rental Management System version 1.0. The flaw exists in the delete_payment function located in /admin_class.php, allowing attackers to manipulate the ID argument. This exploitation can be conducted rem...

A significant security flaw affects version 1.0 of the Campcodes School Fees Payment Management System, specifically concerning the incorrect processing of the /ajax.php file. This vulnerability allows unauthorized individuals to execute remote SQL injection attacks, potentially leading to unauth...

A buffer overflow vulnerability exists in the Tenda AC21 router, specifically within the formSetPPTPServer function in the /goform/SetPptpServerCfg file. This flaw occurs due to improper handling of the startIp argument. By manipulating this parameter, an attacker could exploit the vulnerability ...

A critical security flaw has been identified in the CodeAstro Gym Management System 1.0, specifically located within the file /admin/view-progress-report.php. This vulnerability allows for SQL injection attacks through the manipulation of the argument ID, potentially enabling remote attackers to ...

A vulnerability has been identified in the CodeAstro Gym Management System 1.0, specifically within the /admin/update-progress.php file. This issue allows remote attackers to exploit the system through SQL injection by manipulating the parameters id and ini_weight. The exploit has been publicly d...

A critical security flaw has been identified in the itsourcecode Online Loan Management System version 1.0, specifically affecting the manage_user.php file. This vulnerability allows attackers to execute SQL injection attacks by manipulating the argument ID. The nature of this exploit enables rem...

The vulnerability in Windows Server Update Service arises from the deserialization of untrusted data, which could allow an unauthorized attacker to execute arbitrary code over a network. This flaw demonstrates the importance of secure coding practices to prevent untrusted input from being process...

A vulnerability exists in the itsourcecode Online Loan Management System 1.0, specifically in the /load_fields.php file. The issue arises from improper handling of the 'loan_id' parameter, allowing for SQL injection attacks. This flaw can be exploited remotely, enabling an attacker to manipulate ...

A security flaw has been identified in specific versions of Django where the FilteredRelation functionality is vulnerable to SQL injection. This issue arises when users employ a specially constructed dictionary with dictionary expansion in the arguments of QuerySet.annotate() or QuerySet.alias()....

A vulnerability exists in OpenShift Builder where improper handling of file paths can lead to command injection. An attacker who exploits this vulnerability could gain the ability to execute arbitrary commands on the host running the builder container. This flaw specifically affects the use of th...

A vulnerability has been identified in the SourceCodester Best House Rental Management System version 1.0, specifically within the save_tenant function located in the file /admin_class.php. This flaw allows for the manipulation of the 'firstname' argument, potentially leading to SQL Injection att...

A security flaw has been identified in the SourceCodester Best House Rental Management System 1.0, specifically within the save_category function of the /admin_class.php file. This vulnerability allows attackers to manipulate the Name argument, leading to SQL injection. As a result, unauthorized ...

A security vulnerability has been identified in the Tenda AC23 router that affects the saveParentControlInfo function in the /goform/saveParentControlInfo file. This vulnerability allows an attacker to manipulate the Time argument, leading to a buffer overflow condition. The flaw enables remote e...

A buffer overflow vulnerability has been identified in the Tenda AC23 router, specifically within the formSetVirtualSer function in the /goform/SetVirtualServerCfg file. This issue allows an attacker to manipulate the argument list, potentially enabling them to execute arbitrary code remotely. Th...

A security flaw has been identified in the Simple Online Hotel Reservation System version 2.0, specifically within the /admin/add_account.php file. This vulnerability arises from improper handling of input, allowing an attacker to manipulate the 'Name' argument, which leads to SQL injection. As a...

A vulnerability has been discovered in the Simple Online Hotel Reservation System 2.0, specifically in the Photo Handler component associated with the /admin/edit_room.php file. This flaw allows attackers to perform unrestricted uploads of malicious files, which can lead to various potential expl...

The vulnerability involves a buffer overflow in the BootROM Recovery Mode (RCM) of certain NVIDIA Tegra mobile processors released before 2016. An attacker who has physical access to the device's USB port and can reboot the device into RCM can exploit this vulnerability to execute unverified code...

The vulnerability in Windows Server Update Service arises from the deserialization of untrusted data, which could allow an unauthorized attacker to execute arbitrary code over a network. This flaw demonstrates the importance of secure coding practices to prevent untrusted input from being process...

The OverlayFS implementation in Ubuntu's Linux kernel prior to version 3.19.0-21.21 fails to enforce proper permission checks on file creation within the upper filesystem directory. This oversight can be exploited by local users in scenarios where OverlayFS is allowed in an arbitrary mount namesp...

Wordpress is an open source CMS. A user with the ability to upload files (like an Author) can exploit an XML parsing issue in the Media Library leading to XXE attacks. This requires WordPress installation to be using PHP 8. Access to internal files is possible in a successful XXE attack. This has...

DNN, an open-source web content management system, has a vulnerability prior to version 10.1.1 that allows unauthenticated users to upload files through its default HTML editor provider. This flaw can lead to the replacement of existing files, resulting in potential website defacement. The vulner...

A security flaw has been detected in the LogicalDOC Community Edition affecting the admin login page. Specifically, the file /login.jsp is vulnerable to manipulation, allowing for improper restriction on excessive authentication attempts. This could enable attackers to attempt unauthorized access...

A vulnerability exists in LogicalDOC Community Edition affecting versions up to 9.2.1, specifically within the API Key creation user interface. This flaw allows for cross site scripting (XSS), which can be exploited remotely, making systems potentially vulnerable to malicious attacks. The exploit...

A Server-Side Request Forgery (SSRF) vulnerability exists in Rocket.Chat's Twilio webhook endpoint that affects versions prior to 6.10.1. This vulnerability can enable unauthorized access and potential data exposure, as malicious actors can manipulate the webhook to perform requests on behalf of ...

An issue has been identified in the Redis open-source database that impacts all versions with Lua scripting enabled. Authenticated users can exploit this vulnerability by executing specially crafted Lua scripts that manipulate the garbage collector. This can result in a use-after-free situation, ...

The RealPress plugin for WordPress prior to version 1.1.0 has a flaw in its implementation of REST routes, which were not safeguarded by proper permission checks. This oversight allows malicious users to create pages and send emails from the vulnerable site without proper authorization, potential...

An authenticated Cacti user can exploit vulnerabilities in the graph creation and graph template features to execute arbitrary PHP scripts within the web root of the application. This unauthorized script execution can lead to significant security breaches, allowing attackers to compromise the ser...

A vulnerability in Git LFS exists where certain commands, such as 'git lfs checkout' and 'git lfs pull,' can write to files outside of the intended Git working tree. This occurs when symbolic or hard links are present that collide with paths used by Git LFS. This allows an attacker to create a sp...

The vulnerability in Windows Server Update Service arises from the deserialization of untrusted data, which could allow an unauthorized attacker to execute arbitrary code over a network. This flaw demonstrates the importance of secure coding practices to prevent untrusted input from being process...

The Anheng Mingyu Operation and Maintenance Audit and Risk Control System contains a server-side request forgery (SSRF) vulnerability that allows attackers to craft specific XML-RPC requests. These requests can manipulate the server to connect to sensitive internal UNIX socket endpoints, enabling...

The Anheng Mingyu Operation and Maintenance Audit and Risk Control System contains a server-side request forgery (SSRF) vulnerability that allows attackers to craft specific XML-RPC requests. These requests can manipulate the server to connect to sensitive internal UNIX socket endpoints, enabling...

The Seeyon Zhiyuan OA Web Application System, up to version 7.0 SP1, contains a vulnerability in its session management due to improper decoding and parsing of the `enc` parameter. An attacker can exploit this flaw to manipulate session attributes without proper authentication or authorization, a...

The Seeyon Zhiyuan OA Web Application System, up to version 7.0 SP1, contains a vulnerability in its session management due to improper decoding and parsing of the `enc` parameter. An attacker can exploit this flaw to manipulate session attributes without proper authentication or authorization, a...

The Seeyon Zhiyuan OA Web Application System, up to version 7.0 SP1, contains a vulnerability in its session management due to improper decoding and parsing of the `enc` parameter. An attacker can exploit this flaw to manipulate session attributes without proper authentication or authorization, a...

A vulnerability exists in Dolby UDC versions 4.5 through 4.13 where a malformed DD+ bitstream can cause the DD+ decoder process to crash. This occurs due to an integer overflow when processing Evolution data in evo_priv.c, potentially allowing for an out-of-bounds write operation. If the write le...

A vulnerability has been identified in Needrestart, the tool developed by Qualys, which prior to version 3.8, can be exploited by local attackers. This flaw allows attackers to execute arbitrary code with root privileges by manipulating the PYTHONPATH environment variable when Needrestart runs th...

The NS Maintenance Mode plugin for WordPress prior to version 1.3.1 has a vulnerability that stems from improper sanitization and escaping of certain settings. This flaw could potentially allow high-privilege users, like administrators, to execute stored cross-site scripting attacks, even when th...

Windows Kernel Information Disclosure Vulnerability

A path traversal vulnerability exists in SourceCodester's Pet Grooming Management System version 1.0. This flaw, located in the admin/manage_website.php component, allows an authenticated user with administrative privileges to execute specially crafted POST requests. By exploiting this vulnerabil...

This vulnerability in BIND software allows attackers to inject malicious data into the cache due to overly lenient acceptance of records from responses. This flaw affects multiple versions of BIND 9, posing a risk of cache poisoning, which could potentially lead to compromised network integrity a...

The D-Link DNS-343 ShareCenter devices harbor a command injection weakness in the Mail Test feature, allowing attackers to exploit the web maintenance script. By sending specially crafted form data to the '/goform/Mail_Test' endpoint without proper input sanitization, an unauthenticated remote in...

The D-Link DNS-343 ShareCenter devices harbor a command injection weakness in the Mail Test feature, allowing attackers to exploit the web maintenance script. By sending specially crafted form data to the '/goform/Mail_Test' endpoint without proper input sanitization, an unauthenticated remote in...

The D-Link DNS-343 ShareCenter devices harbor a command injection weakness in the Mail Test feature, allowing attackers to exploit the web maintenance script. By sending specially crafted form data to the '/goform/Mail_Test' endpoint without proper input sanitization, an unauthenticated remote in...

The vulnerability in Windows Server Update Service arises from the deserialization of untrusted data, which could allow an unauthorized attacker to execute arbitrary code over a network. This flaw demonstrates the importance of secure coding practices to prevent untrusted input from being process...

A flaw exists in the OpenShift Container Platform due to the improper handling of elevated privileges during the build process. Specifically, the git-clone container operates with a privileged security context during the build initialization phase, granting unrestricted access to the underlying n...

A vulnerability has been identified in Needrestart, the tool developed by Qualys, which prior to version 3.8, can be exploited by local attackers. This flaw allows attackers to execute arbitrary code with root privileges by manipulating the PYTHONPATH environment variable when Needrestart runs th...