Publicly Disclosed
PoC Exploits

A vulnerability has been identified in the Olivetin 2025.4.22 Custom Themes, where an OS Command Injection can be exploited through the ParseRequestURI function. This issue potentially allows attackers to execute arbitrary commands on the host system, posing a significant risk to the security and...

A security flaw has been identified in the SourceCodester eDoc Doctor Appointment System 1.0, specifically located in the /admin/delete-session.php file. This vulnerability arises from improper handling of the ID parameter, which can lead to unauthorized access and manipulation of session data. T...

A security flaw has been identified in the SourceCodester eDoc Doctor Appointment System 1.0, specifically located in the /admin/delete-session.php file. This vulnerability arises from improper handling of the ID parameter, which can lead to unauthorized access and manipulation of session data. T...

A security vulnerability has been detected in code-projects Project Management System 1.0. Affected is an unknown function of the file chk.php of the component Login. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed publicly a...

A vulnerability has been discovered in the SourceCodester CET Automated Grading System with AI Predictive Analytics version 1.0. This issue affects the SQL Handler component located in the /index.php file, which may allow attackers to exploit an unknown function. By executing a specific manipulat...

A vulnerability has been discovered in the SourceCodester CET Automated Grading System with AI Predictive Analytics version 1.0. This issue affects the SQL Handler component located in the /index.php file, which may allow attackers to exploit an unknown function. By executing a specific manipulat...

A security vulnerability has been identified in the SourceCodester CET Automated Grading System with AI Predictive Analytics version 1.0. This issue may allow an attacker to exploit an unknown function, leading to cross-site request forgery (CSRF). As the exploit can be executed remotely, it pose...

A security vulnerability has been identified in the SourceCodester CET Automated Grading System with AI Predictive Analytics version 1.0. This issue may allow an attacker to exploit an unknown function, leading to cross-site request forgery (CSRF). As the exploit can be executed remotely, it pose...

A vulnerability exists within JeecgBoot up to version 3.9.1, specifically in the file /sys/comment/add. This weakness results in improper access controls, allowing remote attackers to exploit it. The exploit is publicly accessible, emphasizing the necessity for timely upgrades to at least version...

A vulnerability has been identified in JeecgBoot versions up to 3.9.1, specifically within the LoginController.selectDepart function. This flaw allows for improper access controls, potentially enabling remote exploitation. The issue has been publicly disclosed, underscoring the urgency for affect...

A security vulnerability has been identified in JeecgBoot versions up to 3.9.1, specifically within the user management function located in the SysUser component. The flaw resides in the user.getUsername method, where the argument userIdentity can be manipulated, leading to improper access contro...

A significant SQL injection vulnerability exists in the itsourcecode Student Transcript Processing System version 1.0, specifically affecting the processing of requests at /admin/modules/class/index.php?view=view. This flaw allows an attacker to manipulate the 'ID' argument, potentially enabling ...

A vulnerability exists within the itsourcecode Student Transcript Processing System version 1.0, specifically in the `/admin/modules/student/trans.php` file. This issue arises from improper validation of input parameters, particularly the `studentId/cid` arguments, which allows attackers to execu...

A significant SQL injection vulnerability has been discovered in the itsourcecode Student Transcript Processing System version 1.0. Located specifically in the /admin/modules/student/index.php?view=view file, the vulnerability allows remote attackers to manipulate the studentId argument, leading ...

A memory leak has been identified in GPAC MP4Box versions up to 2.4.0, specifically in the Media_GetSample function located in the file src/isomedia/media.c. This vulnerability can be exploited locally by manipulating the argument cat, leading to potential Denial of Service conditions. The exploi...

A security flaw within the GPAC MP4Box component, specifically in the MergeFragment function of isom_intern.c, allows for a null pointer dereference. This vulnerability primarily affects versions up to 2.4.0 and requires local access to successfully exploit. An exploit for this flaw has been publ...

A security flaw was discovered in Teable by Teableio, specifically in the Sign-up component found in the LoginPage.tsx file. This vulnerability allows an attacker to manipulate the redirect parameter, resulting in a Cross Site Scripting (XSS) exploit that can be executed remotely. The attack leve...

A security flaw has been identified in haojing8312 WorkClaw, specifically affecting versions up to 0.6.4. The vulnerability resides in the Blacklist Handler within the function is_dangerous, located in the file apps/runtime/src-tauri/src/agent/tools/bash.rs. This weakness allows attackers to exec...

A vulnerability exists in the Linux kernel that concerns the handling of shared skb fragments during the decryption process in ESP-in-UDP packets. When pages are attached from a pipe directly to an skb using MSG_SPLICE_PAGES, the kernel marked these SKBs with SKBFL_SHARED_FRAG, which plays a cruc...

A vulnerability in the Hospitals Patient Records Management System 1.0 developed by SourceCodester allows for cross site scripting through improper handling of user input in the 'Remarks' parameter of the /admin/?page=patients/view_patient function. An attacker could exploit this vulnerability re...

The Open WebUI platform, designed for offline AI operations, has a vulnerability in its validate_url() function which allows an authenticated user to exploit HTTP 3xx redirects. The vulnerability permits a user to submit a URL that redirects to an internal IP address, potentially gaining access t...

A hard-coded machineKey value in Digital Knowledge's KnowledgeDeliver software, prior to February 24, 2026, enables attackers to bypass ViewState validation. This vulnerability can be exploited through malicious ViewState deserialization attacks, allowing unauthorized remote code execution. Prope...

A vulnerability exists in the dashboard component of the sambitraj STUDENT-MANAGEMENT-SYSTEM, where improper access controls can be exploited remotely. This flaw allows unauthorized users to manipulate system functions, posing a significant security risk. The product is maintained on a rolling re...

OpenKM version 6.3.12 contains a vulnerability that enables authenticated administrators to execute arbitrary Java or BeanShell code via the /admin/Scripting endpoint. By exploiting this flaw, attackers can submit malicious scripts with the action=Evaluate parameter, which could allow them to run...

The luci-app-https-dns-proxy, an optional add-on for OpenWrt, is susceptible to a command injection flaw within its setInitAction function. This vulnerability allows an authenticated user with specific permissions to inject shell metacharacters via the 'name' parameter during an ubus RPC call, po...

A security vulnerability exists within the Das Parking Management System 6.2.0, specifically affecting the Search API Endpoint. This flaw allows for SQL injection through manipulations of the parameter Value, enabling remote attackers to potentially execute harmful SQL commands. Public exploit te...

A security vulnerability has been discovered in version 6.2.0 of Das Parking Management System, specifically within the API Endpoint and its xp_cmdshell function located in the ExportParkingRecords file. This vulnerability allows for SQL injection through manipulation of the 'Value' argument, ena...

A security vulnerability has been identified within the Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform 1.3.0. Specifically, this flaw lies in an undisclosed functionality related to a file path manipulation in the application. By exploiting this path traversal iss...

A vulnerability has been discovered in the Sixun Shanghui Group Business Management System 10 by Shenzhen Sixun Software. This vulnerability lies within an undocumented function of the /api/Dinner/PayConfig endpoint, where improper input validation allows attackers to manipulate the 'tableno' par...

A vulnerability exists in the Totolink N300RH Web Management Interface related to the function setPasswordCfg within the cgi-bin/cstecgi.cgi file. This vulnerability allows for remote execution of OS commands due to improper handling of the admpass argument. Attackers can exploit this flaw to exe...

A vulnerability has been detected in the CodeAstro Leave Management System 1.0, specifically within the /admin/add_staff.php file. An attacker can exploit this issue by manipulating the email_id parameter, leading to the possibility of SQL injection. This weakness allows for remote execution of m...

A vulnerability has been identified in the Squirrel application up to version 3.2, specifically within the ReadObject function located in squirrel/sqobject.cpp of the Cnut File Handler. This flaw permits a local attacker to exploit a heap-based buffer overflow through manipulated input, leading t...

Grafana, an open-source monitoring and observability platform, is susceptible to a directory traversal vulnerability in versions ranging from 8.0.0-beta1 to 8.3.0. This vulnerability enables unauthorized access to local files via specially crafted URL paths which include the identifier for any in...

A vulnerability exists in vllm 0.19.0 related to the OpenAI-compatible Serving Path, allowing attackers to exploit this issue remotely, leading to denial of service. The potential for manipulation makes it critical for users to address this vulnerability urgently. A pull request is available for ...

A vulnerability in FiberHome GPON ONU HG6145F1 RP4423 allows attackers to predict the factory default Wi-Fi password. The device utilizes a deterministic algorithm that derives the pre-shared key from the SSID, enabling unauthorized individuals to gain access to the network simply by observing th...

A security flaw has been identified in the Totolink CA750-PoE 6.2c.510 device, where an improper handling of the setWiFiWpsConfig function in the /cgi-bin/cstecgi.cgi file can allow an attacker to manipulate the argument PIN, resulting in command injection. This vulnerability poses a risk of remo...

A vulnerability has been identified in the Totolink CA750-PoE, specifically within the recvUpgradeNewFw function in the cgi-bin/cstecgi.cgi file, part of the Setting Handler. This vulnerability allows for remote command injection through manipulation of the fwUrl and magicid parameters. Attackers...

A security flaw has been identified in Totolink's CA750-PoE, where an OS command injection vulnerability exists within the setUploadUserData function of the /cgi-bin/cstecgi.cgi file. This vulnerability allows attackers to manipulate the FileName argument, potentially leading to unauthorized comm...

A vulnerability has been identified in the Totolink CA750-PoE 6.2c.510, specifically within the setUpgradeUboot function of the /cgi-bin/cstecgi.cgi file. This security flaw allows for remote command injection due to inadequate input validation on the FileName argument. Attackers can exploit this...

A vulnerability in GNU LibreDWG, specifically in the read_2004_compressed_section function of the src/decode.c file, allows for out-of-bounds read operations. This vulnerability affects versions of the software up to 0.14 and requires local access to exploit. Once manipulated, it can potentially ...

The vulnerability in the TLS and DTLS implementations of OpenSSL versions prior to 1.0.1g allows remote attackers to exploit crafted Heartbeat Extension packets. This exploitation results in a buffer over-read, potentially revealing sensitive information from the memory of the affected process. A...

A vulnerability exists in the itsourcecode Electronic Judging System that allows remote attackers to exploit an unknown function in the /admin/delete_judge.php file. This vulnerability occurs due to improper handling of the 'judge_id' argument, leading to a SQL injection condition. The exploit is...

A cross-site scripting vulnerability has been identified in the itsourcecode Electronic Judging System version 1.0. The issue arises from improper handling of the 'fname' parameter within the /admin/judges.php file. This flaw allows remote attackers to inject malicious scripts, potentially compro...

A vulnerability exists in the itsourcecode Electronic Judging System 1.0, specifically in the edit_team.php file, which can be exploited through the manipulation of the num_id parameter. This SQL injection flaw allows attackers to execute arbitrary SQL queries against the database, potentially co...

The itsourcecode Electronic Judging System version 1.0 is vulnerable to a SQL injection attack through improper handling of the 'judge_id' parameter in the /admin/edit_judge.php file. This flaw allows remote attackers to manipulate database queries, potentially compromising data integrity and sec...

A vulnerability has been identified in Acrel's Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform 3000WEBV2, specifically in the file located at /SubstationWEBV2/app/..;/calc/getCalcmeterDetailDayListTree. Exploiting this flaw allows attackers to manipulate the argument 'so...

A security vulnerability in Fraillt Bitsery versions up to 5.2.4 allows improper validation of specified types of input in the loadFromSharedState function of std_smart_ptr.h. This flaw can be exploited remotely, making it a critical concern for users. It has been publicly disclosed, and an upgra...

A Cross-Site Scripting vulnerability has been identified within the LoginForm component of Blitz.js up to version 3.0.2. This weakness can be exploited by manipulating the argument 'Next' in the application, enabling attackers to execute arbitrary scripts in the context of a victim's browser. The...

A security flaw has been identified in the 'Sign-in Auto-Redirect' functionality of the Pingvin-Share application. The issue lies within the 'getServerSideProps' function, specifically in the handling of the 'redirect' argument within 'frontend/src/pages/auth/signIn.tsx'. This vulnerability enabl...

A vulnerability exists in the addStudent function within the view_students.php file of the Students Controller in CodeIgniter-StudentManagementSystem. This flaw allows an attacker to manipulate the 'Name' argument, potentially leading to cross-site scripting (XSS) attacks. The exploit is remote-a...