Publicly Disclosed
PoC Exploits

The File Away plugin for WordPress suffers from a vulnerability that allows unauthorized access to sensitive data. This is due to a missing capability check on the ajax() function present in all versions up to and including 3.9.9.0.1. Exploiting this vulnerability enables unauthenticated attacker...

The vulnerability occurs due to the use of the DES and Triple DES ciphers within TLS, SSH, and IPSec protocols. These ciphers are subject to a birthday attack, which can potentially allow attackers to extract plaintext data from long-lived encrypted sessions. The risk is particularly evident duri...

A security issue has been discovered in the Code-Projects Prison Management System 2.0, specifically within the file /admin/search.php. This vulnerability allows for manipulation of the argument keyname, potentially enabling attackers to execute SQL injection attacks from remote locations. Public...

A security flaw has been identified in itsourcecode's Student Management System version 1.0 within the /update_program.php file. This vulnerability allows for SQL injection through manipulation of the argument ID. The attack can be executed remotely, posing a risk to the integrity and confidentia...

A vulnerability exists in the itsourcecode Online Pet Shop Management System version 1.0, specifically affecting the file /pet1/available.php. This issue allows for SQL injection through manipulation of the 'Name' parameter, which can be exploited remotely. The vulnerability has a publicly availa...

An information leak vulnerability has been identified in React Server Components, allowing crafted HTTP requests to potentially expose the source code of sensitive Server Functions. This risk arises when specific configurations are employed, and conditions are met that make it possible to retriev...

A security flaw has been identified in the TOTOLINK X5000R router, specifically within the 'snprintf' function located in the '/cgi-bin/cstecgi.cgi?action=exportOvpn&type=user' endpoint. This vulnerability can be exploited by attackers to inject arbitrary commands into the system, potentially all...

The WPS Visitor Counter Plugin for WordPress versions up to 1.4.8 contains a vulnerability that allows attackers to inject malicious scripts via the unvalidated $_SERVER['REQUEST_URI'] parameter. This lack of proper escaping can lead to reflected cross-site scripting (XSS) attacks, particularly a...

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

A directory traversal vulnerability exists in 7-Zip, allowing remote attackers to execute arbitrary code by exploiting symbolic link handling in ZIP files. By crafting specific data within ZIP files, hackers can manipulate the application to navigate to unintended directories. Successfully levera...

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

A vulnerability has been identified in the itsourcecode COVID Tracking System version 1.0, specifically affecting the functionality found in the /admin/?page=zone endpoint. Through improper input handling, an attacker can manipulate the argument ID to execute SQL injection attacks. This flaw allo...

A vulnerability exists in the itsourcecode COVID Tracking System version 1.0 that allows for SQL injection through the manipulation of the 'Username' parameter in the /admin/login.php file. This security flaw can be exploited remotely, potentially compromising the integrity and confidentiality of...

A security flaw in the campcodes Online Student Enrollment System version 1.0 allows remote attackers to exploit the file /admin/register.php. By manipulating the 'photo' argument, an attacker can perform unrestricted file uploads, leading to potential unauthorized access and the execution of arb...

The Campcodes Online Student Enrollment System 1.0 has a vulnerability that allows attackers to exploit the file located at /admin/index.php?page=user-profile. By manipulating the argument 'userphoto', unauthorized users can perform unrestricted uploads of files. This security flaw can be exploit...

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

The Online Shopping System Advanced 1.0 is susceptible to an SQL injection vulnerability found in the payment_success.php script. By exploiting the unfiltered 'cm' parameter, attackers can inject malicious SQL code. This allows the potential retrieval of sensitive information from the database by...

A security weakness has been identified in the itsourcecode Student Management System version 1.0, specifically in the file /update_account.php. This flaw allows an attacker to manipulate the argument ID, potentially leading to SQL injection. Given that the vulnerability can be exploited remotely...

The Atcom 100M IP Phones firmware version 2.7.x.x is susceptible to an authenticated command injection vulnerability within its web configuration CGI script. This flaw permits attackers with valid administrative credentials to inject arbitrary shell commands through the 'cmd' parameter in web_cgi...

The Dormakaba Saflok System 6000 is susceptible to a vulnerability due to its predictable key generation algorithm. This flaw enables malicious actors to derive access keys by exploiting the deterministic nature of the key generation process linked to a 32-bit unique identifier. As a result, atta...

WonderCMS version 4.3.2 is vulnerable to cross-site scripting, enabling attackers to inject malicious JavaScript through the module installation endpoint. This vulnerability allows for the creation of specially crafted XSS payloads that can be deployed to install a reverse shell module. By deceiv...

PCMan FTP Server 2.0 features a buffer overflow vulnerability found in the 'pwd' command. This issue allows remote attackers to execute arbitrary code by sending a specially crafted payload during the FTP login. The overflow can lead to memory overwriting, potentially granting attackers system ac...

Typora version 1.7.4 is susceptible to a command injection vulnerability that arises during PDF export. This flaw allows attackers to inject malicious commands into the 'run command' input field, potentially leading to the execution of arbitrary system commands. Exploiting this vulnerability coul...

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

A memory corruption vulnerability has been identified in the UTT 进取 512W device, specifically within the /goform/formWebAuthGlobalConfig file. This vulnerability arises from an improper manipulation of the argument 'hidcontact', allowing for potential remote exploitation. This flaw could lead to ...

An SQL injection vulnerability exists in the Projectworlds Advanced Library Management System version 1.0, particularly in the borrow_book.php file. This vulnerability arises from improper handling of the roll_number argument, allowing an attacker to manipulate database queries. As this attack ca...

A SQL injection flaw has been identified in the Advanced Library Management System 1.0 from Projectworlds. This vulnerability resides in the /view_admin.php file, where improper handling of the 'admin_id' parameter could allow an attacker to manipulate SQL queries. The vulnerability can be exploi...

A Remote Code Execution vulnerability affects pgAdmin versions 9.10 and earlier when operating in server mode, particularly during restores from PLAIN-format dump files. This vulnerability enables malicious actors to inject and run arbitrary commands on the server where pgAdmin is hosted, signifi...

A vulnerability has been identified in the ggml-org whisper.cpp project, specifically affecting the read_audio_data function within the codebase of common-whisper.cpp. This flaw enables a use after free condition, which may allow an attacker to manipulate memory in a way that can lead to potentia...

A security vulnerability exists within the Haxxorsid Stock-Management-System found in the User.php file, which permits a SQL injection through manipulated arguments such as employee_id, id, or admin. This vulnerability is exploitable remotely, allowing attackers to execute unauthorized queries on...

An information leak vulnerability has been identified in React Server Components, allowing crafted HTTP requests to potentially expose the source code of sensitive Server Functions. This risk arises when specific configurations are employed, and conditions are met that make it possible to retriev...

A critical flaw exists in the haxxorsid Stock-Management-System, specifically within an unknown function in the /api/employees file that leads to missing authentication checks. This weakness allows for potential remote exploitation, posing a significant security risk for environments using the af...

A security vulnerability has been identified in the kidaze CourseSelectionSystem, particularly affecting versions up to 42cd892b40a18d50bd4ed1905fa89f939173a464. The flaw resides within an unspecified function in the file /Profilers/SProfile/reg.php, where improper validation of the argument USN ...

A vulnerability exists in the kidaze CourseSelectionSystem, specifically in the /Profilers/SProfile/login1.php file, where improper handling of the Username argument allows for SQL injection attacks. This vulnerability can be exploited remotely, enabling attackers to manipulate the database queri...

Apache Tika is susceptible to an XML External Entity injection through a crafted XFA file within a PDF. This vulnerability affects various modules, including tika-core, tika-pdf-module, and tika-parsers. Users who have only updated the tika-pdf-module may still be exposed if they have not upgrade...

An information leak vulnerability has been identified in React Server Components, allowing crafted HTTP requests to potentially expose the source code of sensitive Server Functions. This risk arises when specific configurations are employed, and conditions are met that make it possible to retriev...

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

A security flaw exists in Android that enables a malicious application to manually create a clickable TYPE_TOAST window. This could potentially allow an attacker to escalate their privileges on the device without requiring any additional permissions. To exploit this vulnerability, user interactio...

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

An information leak vulnerability has been identified in React Server Components, allowing crafted HTTP requests to potentially expose the source code of sensitive Server Functions. This risk arises when specific configurations are employed, and conditions are met that make it possible to retriev...

The WooMulti WordPress plugin, up to version 17, contains a security flaw that fails to validate the file parameter during file deletion processes. This oversight enables authenticated users, including those with subscriber-level access, to delete arbitrary files from the server. Such a vulnerabi...

The Bookit plugin for WordPress, prior to version 2.5.1, contains a serious vulnerability due to a publicly accessible REST endpoint. This oversight allows unauthorized users to alter the Stripe payment options without authentication, posing significant risks to website security and potential fin...

A Remote Code Execution vulnerability affects pgAdmin versions 9.10 and earlier when operating in server mode, particularly during restores from PLAIN-format dump files. This vulnerability enables malicious actors to inject and run arbitrary commands on the server where pgAdmin is hosted, signifi...

An information leak vulnerability has been identified in React Server Components, allowing crafted HTTP requests to potentially expose the source code of sensitive Server Functions. This risk arises when specific configurations are employed, and conditions are met that make it possible to retriev...

Pdfminer.six, an open-source library for extracting information from PDF documents, is vulnerable to arbitrary code execution due to improper handling of malicious pickle files embedded in specially crafted PDF files. Specifically, the issue arises from the `CMapDB._load_data()` function that uti...

The vulnerability in Ruby on Rails occurs due to insufficient restrictions on the casting of string values, enabling remote attackers to exploit this flaw through object-injection attacks. By leveraging Action Pack's support for YAML and Symbol type conversions, attackers can execute arbitrary co...

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

The Construction Light WordPress theme versions prior to 1.6.8 are susceptible to an authorization bypass and Cross-Site Request Forgery (CSRF) flaw. This vulnerability enables any authenticated user, such as a subscriber, to exploit an AJAX action for activating arbitrary settings without proper...

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...