Publicly Disclosed
PoC Exploits

The vulnerability in the Windows DWM Core Library enables an elevation of privilege that could allow an attacker to run arbitrary code in the context of the operating system user. Exploitation of this vulnerability requires an attacker to gain access to the target system, thereby increasing the s...

A security flaw in the BdApiUtil driver of Baidu Antivirus v5.2.3.116083 enables attackers to exploit the system through a Bring Your Own Vulnerable Driver (BYOVD) attack, allowing the execution of arbitrary code that can terminate any running process. This vulnerability compromises the integrity...

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

A use-after-free vulnerability in the io_uring subsystem of libfuse affects versions 3.18.0 through 3.18.1. When thread creation fails due to resource limits such as cgroup pids.max, the fuse_uring_start() function can free the ring pool structure but retains a dangling pointer in the session sta...

MCPJam Inspector, designed for local-first development on MCP servers, has a vulnerability allowing remote code execution (RCE) due to improper binding settings. In versions 1.4.2 and earlier, the platform listens on 0.0.0.0 by default, enabling attackers to exploit this configuration through cra...

MCPJam Inspector, designed for local-first development on MCP servers, has a vulnerability allowing remote code execution (RCE) due to improper binding settings. In versions 1.4.2 and earlier, the platform listens on 0.0.0.0 by default, enabling attackers to exploit this configuration through cra...

The MCP Inspector, a tool designed for testing and debugging MCP servers, is susceptible to remote code execution in versions prior to 0.14.1. The vulnerability arises from an absence of authentication between the Inspector client and the proxy, which allows unauthorized users to send commands to...

The PeproDev Ultimate Invoice plugin for WordPress versions up to 2.2.5 has an information disclosure vulnerability due to its bulk download feature. This feature generates ZIP archives that contain exported invoice PDFs with predictably named files. This predictability enables attackers to perfo...

A serious SQL injection vulnerability exists in the Simple Laundry System version 1.0, particularly within the /checkcheckout.php file. This flaw is due to improper handling of the serviceId parameter, allowing attackers to execute arbitrary SQL queries remotely. The exploit has been publicly dis...

A SQL injection vulnerability has been identified in the itsourcecode College Management System version 1.0, specifically within the unseen function of the file /admin/add-single-student-results.php. This flaw allows for the manipulation of the 'course_code' argument, enabling attackers to execut...

A potential SQL injection vulnerability exists in the SourceCodester Sales and Inventory System 1.0. This flaw arises from an unknown function within the update_purchase.php file, specifically related to the HTTP GET Parameter Handler. By manipulating the 'sid' argument, an attacker may execute u...

A potential SQL injection vulnerability exists in the SourceCodester Sales and Inventory System version 1.0, specifically affecting the update_out_standing.php file within the HTTP GET Parameter Handler component. By manipulating the 'sid' argument, an attacker can execute malicious SQL commands,...

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

A security flaw has been identified in the SourceCodester Sales and Inventory System 1.0. The vulnerability arises from improper handling of the HTTP GET parameter 'sid' in the file update_customer_details.php, allowing attackers to manipulate this argument and execute SQL injection attacks. This...

A security vulnerability has been found in SourceCodester Sales and Inventory System version 1.0, specifically within the update_category.php file. This issue arises from inadequate validation of the 'sid' HTTP GET parameter, enabling potential SQL injection attacks. Attackers could exploit this ...

A security flaw has been identified in the SourceCodester Sales and Inventory System 1.0, specifically within the file view_supplier.php related to the POST Parameter Handler. The vulnerability arises from improper handling of user input in the searchtxt parameter, allowing for SQL injection atta...

The Atlassian Bitbucket Server and Data Center is susceptible to remote code execution via multiple API endpoints. This vulnerability allows remote attackers with read permissions to either public or private repositories to execute arbitrary code by sending carefully crafted HTTP requests. The is...

The Zimbra Collaboration Suite (ZCS) version 8.8.15 has a command injection vulnerability in the PostJournal service. This flaw allows unauthenticated attackers to execute arbitrary system commands through improper sanitization of the RCPT TO parameter, which can be exploited via SMTP injection. ...

A vulnerability affecting various Dahua security devices allows attackers to bypass the authentication mechanism during the login process. By crafting malicious data packets, attackers can exploit this flaw to gain unauthorized access to sensitive device functionalities, potentially compromising ...

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

In PhreeBooks ERP version 5.2.3, a security flaw in the image manager allows authenticated users to bypass file extension controls and upload arbitrary PHP files. This vulnerability can be exploited to execute malicious scripts on the server, enabling attackers to establish reverse shell connecti...

Tabs Mail Carrier version 2.5.1 is susceptible to a buffer overflow vulnerability that arises from the MAIL FROM SMTP command. By sending a specially crafted MAIL FROM parameter, remote attackers could gain control of the affected system. This is accomplished through connecting to the SMTP servic...

The WinAVI iPod/3GP/MP4/PSP Converter version 4.4.2 is susceptible to a denial of service issue. Local attackers can exploit this vulnerability by crafting malformed AVI files that trigger an application crash when processed. By using an oversized buffer loaded through the Convert to iPhone funct...

WinMPG Video Convert versions 9.3.5 and earlier are susceptible to a buffer overflow vulnerability within the registration dialog. This flaw allows local attackers to disrupt the application's functionality by entering excessively large inputs, specifically exceeding 6000 bytes, into the Name and...

The eNdonesia Portal version 8.7 is susceptible to multiple SQL injection vulnerabilities, which can be exploited by unauthenticated attackers. By crafting specific GET requests that include malicious code injected through the 'bid' parameter in the 'banners.php' script, malicious users can execu...

Bootstrapy CMS is susceptible to multiple SQL injection vulnerabilities, enabling unauthenticated attackers to run arbitrary SQL queries by exploiting vulnerabilities in various POST parameters. Key areas of concern include the thread_id parameter in 'forum-thread.php', the subject parameter in '...

The Vlog System developed by Netartmedia is susceptible to an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL code through the email parameter in the forgotten_password module. By sending specially crafted POST requests to index.php, an attacker can extr...

Inout Article Base CMS is affected by SQL injection vulnerabilities that permit unauthenticated attackers to manipulate database queries by leveraging the 'p' and 'u' parameters. By injecting specifically crafted XOR-based payloads via GET requests to portalLogin.php, attackers can extract sensit...

Matrimony Website Script M-Plus is susceptible to multiple SQL injection vulnerabilities that can be exploited by unauthenticated attackers. By injecting malicious SQL code through various POST parameters such as txtGender, religion, Fage, and cboCountry, attackers can exploit various pages inclu...

X-NetStat Pro 5.63 is susceptible to a local buffer overflow vulnerability that enables local attackers to execute arbitrary code. By manipulating a 264-byte buffer, an attacker could overwrite the EIP register, allowing them to inject and execute shellcode within the application. This vulnerabil...

The Meeplace Business Review Script is vulnerable to SQL injection through the 'id' parameter in the addclick.php endpoint. This security flaw allows attackers, without authentication, to craft GET requests that exploit the SQL logic processing, potentially enabling them to execute arbitrary SQL ...

Zeeways Jobsite CMS has a vulnerability that allows unauthenticated attackers to exploit SQL injection through the 'id' GET parameter. By manipulating this parameter in requests to specified pages like news_details.php, jobs_details.php, or job_cmp_details.php, attackers can execute malicious SQL...

Zeeways Matrimony CMS presents multiple SQL injection vulnerabilities that could be exploited by unauthenticated attackers through the profile_list endpoint. By manipulating input parameters such as up_cast, s_mother, and s_religion, attackers can execute arbitrary SQL code. This may lead to unau...

AIDA64 Extreme version 5.99.4900 is vulnerable to a structured exception handling buffer overflow, allowing local attackers to execute arbitrary code. This vulnerability can be exploited by providing malicious input through the application's email preferences and report wizard. Attackers can inje...

The Base64 Decoder version 1.1.2 exhibits a stack-based buffer overflow vulnerability that can be exploited by local attackers. By crafting a malicious input file, an attacker can trigger an overwrite of the structured exception handler (SEH) chain. This leads to the possibility of executing arbi...

phpFileManager version 1.7.8 is susceptible to a local file inclusion (LFI) vulnerability. This security flaw allows unauthenticated attackers to gain access to sensitive files on the server by exploiting the 'action', 'fm_current_dir', and 'filename' parameters in GET requests to 'index.php'. By...

AIDA64 Business 5.99.4900 is susceptible to a structured exception handling (SEH) buffer overflow vulnerability. This flaw allows local attackers to potentially execute arbitrary code by manipulating SEH pointers through crafted input. Attackers can exploit this issue via the SMTP display name fi...

PhreeBooks ERP version 5.2.3 has a vulnerability in the Image Manager component, which allows authenticated users to exploit an arbitrary file upload fault. By manipulating the requests sent to the image upload endpoint, attackers can upload malicious files, such as PHP scripts, through the 'imgF...

Download Accelerator Plus version 10.0.6.0 contains a serious buffer overflow vulnerability in its structured exception handler. This security flaw permits remote attackers to execute arbitrary code by exploiting crafted URLs designed to overflow the application's buffer. When a user imports such...

The AIDA64 Extreme 5.99.4900 version contains a vulnerability in its logging functionality, which is susceptible to a structured exception handler buffer overflow. This allows local attackers to execute arbitrary code by supplying a malicious path to a CSV log file. By leveraging the Hardware Mon...

FlexHEX 2.71 has a local buffer overflow vulnerability in the Stream Name field, allowing local attackers to exploit it by triggering a structured exception handler (SEH) overflow. By crafting a specially formatted text file that includes aligned shellcode and SEH chain pointers, attackers can ex...

The local buffer overflow vulnerability in River Past Cam Do 3.7.6 allows local attackers to execute arbitrary code. By supplying a crafted activation code string, an attacker can manipulate a buffer that leads to code execution through the activation dialog. Specifically, attackers can provide a...

A security flaw has been discovered in the itsourcecode Online Enrollment System version 1.0. This vulnerability resides in the /sms/user/index.php?view=add file, specifically affecting the parameter handling mechanism. By manipulating the 'Name' argument, an attacker could execute a SQL injectio...

A Reflected Cross-Site Scripting (XSS) vulnerability is present in the POST request data zipPath of tiki-admin_system.php in Tiki version 21.2. This flaw permits attackers to inject and execute arbitrary JavaScript code through specially crafted input, which can lead to unauthorized interactions ...

A Cross-Site Scripting (XSS) vulnerability exists in the page parameter of tiki-editpage.php in Tiki version 26.3 and earlier, enabling attackers to execute arbitrary JavaScript code. This exploit can lead to unauthorized access to sensitive information or unauthorized actions, posing significant...

MCPJam Inspector, designed for local-first development on MCP servers, has a vulnerability allowing remote code execution (RCE) due to improper binding settings. In versions 1.4.2 and earlier, the platform listens on 0.0.0.0 by default, enabling attackers to exploit this configuration through cra...

A Cross Site Scripting (XSS) vulnerability has been identified in the projectworlds Lawyer Management System version 1.0, affecting an unspecified function within the file /lawyer_booking.php. The vulnerability arises from improper handling of the 'Description' parameter, which allows attackers t...

A vulnerability has been identified in the SourceCodester Online Admission System version 1.0, specifically in the 'programmes.php' file. This flaw allows an attacker to manipulate the 'program' argument, leading to a SQL injection scenario. This issue can be exploited remotely, allowing unauthor...

A SQL injection vulnerability has been identified in the SourceCodester Online Library Management System version 1.0. The issue arises from an insufficiently validated input within an unspecified function of the file /home.php related to the Parameter Handler component. Attackers can manipulate t...

A vulnerability has been discovered in the DefaultFuction Jeson-Customer-Relationship-Management-System, specifically within the API Module located at /api/System.php. This vulnerability allows an attacker to manipulate the 'url' parameter, potentially leading to server-side request forgery (SSRF...