STVS ProVision 5.9.10 – Cross-Site Request Forgery (Add Admin)
January 31st, 2021 📆 | 3193 Views ⚑
# Exploit Title: STVS ProVision 5.9.10 - Cross-Site Request Forgery (Add Admin) # Date: 19.01.2021 # Exploit Author: LiquidWorm #
Browsing the "admin" Tag
Tagged with: Add • admin • cross • CrossSite • forgery • provision • request • Ruby • STVS • webapps
Selea Targa IP OCR-ANPR Camera – CSRF Add Admin
January 22nd, 2021 📆 | 5930 Views ⚑
# Exploit Title: Selea Targa IP OCR-ANPR Camera - CSRF Add Admin # Date: 07.11.2020 # Exploit Author: LiquidWorm #
Tagged with: Add • admin • camera • CSRF • hardware • OCRANPR • selea • targa • webapps
Online Hotel Reservation System 1.0 – Admin Authentication Bypass
January 17th, 2021 📆 | 2413 Views ⚑
# Exploit Title: Online Hotel Reservation System 1.0 - Admin Authentication Bypass # Exploit Author: Richard Jones # Date: 2021-01-13
Tagged with: admin • authentication • bypass • hotel • online • php • reservation • system • webapps
Online Movie Streaming 1.0 – Admin Authentication Bypass
January 17th, 2021 📆 | 7192 Views ⚑
# Exploit Title: Online Movie Streaming 1.0 - Admin Authentication Bypass # Exploit Author: Richard Jones # Date: 2021-01-13 #
Tagged with: admin • authentication • bypass • movie • online • php • streaming • webapps
PHP-Fusion CMS 9.03.90 – Cross-Site Request Forgery (Delete admin shoutbox message)
January 16th, 2021 📆 | 7980 Views ⚑
# Exploit Title: PHP-Fusion CMS 9.03.90 - Cross-Site Request Forgery (Delete admin shoutbox message) # Date: 2020-12-21 # Exploit Author:
Tagged with: admin • cms • cross • CrossSite • delete • forgery • fusion • message • php • PHPFusion • request • shoutbox • webapps
EgavilanMedia User Registration & Login System with Admin Panel 1.0 – Multiple Stored Cross-Site Scripting
January 10th, 2021 📆 | 8217 Views ⚑
# Exploit Title: EgavilanMedia User Registration & Login System with Admin Panel 1.0 - Multiple Stored Cross-Site Scripting # Date:
Tagged with: admin • CrossSite • egavilanmedia • login • multiple • panel • registration • scripting • stored • system • user • webapps
Grav CMS 1.6.30 Admin Plugin 1.9.18 – ‘Page Title’ Persistent Cross-Site Scripting
December 20th, 2020 📆 | 2853 Views ⚑
# Exploit Title: Grav CMS 1.6.30 Admin Plugin 1.9.18 - 'Page Title' Persistent Cross-Site Scripting # Date: 13-12-2020 # Exploit
Tagged with: admin • cms • cross • CrossSite • Grav • Page • persistent • php • plugin • scripting • title • webapps
EgavilanMedia User Registration & Login System with Admin Panel 1.0 – Stored Cross Site Scripting
December 6th, 2020 📆 | 7229 Views ⚑
# Exploit Title: EgavilanMedia User Registration & Login System with Admin Panel 1.0 - Stored Cross Site Scripting # Exploit
Tagged with: admin • cross • egavilanmedia • login • multiple • panel • registration • scripting • Site • stored • system • user • webapps
EgavilanMedia User Registration And Login System With Admin Panel 1.0 XSS ≈ Packet Storm
December 3rd, 2020 📆 | 5602 Views ⚑
EgavilanMedia User Registration And Login System With Admin Panel 1.0 XSS Posted Dec 2, 2020 Authored by Soushikta Chowdhury EgavilanMedia
Tagged with: admin • advisory • CSRF • egavilanmedia • exploit • login • overflow • packet • panel • registration • scanner • security • storm • system • user • vulnerability • whitepaper • XSS
TypeSetter 5.1 – CSRF (Change admin e-mail)
December 1st, 2020 📆 | 2872 Views ⚑
# Exploit Title: TypeSetter 5.1 - CSRF (Change admin e-mail) # Exploit Author: Alperen Ergel # Software Homepage: https://www.typesettercms.com/ #
Tagged with: admin • change • CSRF • email • php • typesetter • webapps
Kong Gateway Admin API Remote Code Execution ≈ Packet Storm
November 26th, 2020 📆 | 3794 Views ⚑
# frozen_string_literal: true ### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework## class MetasploitModule < Msf::Exploit::RemoteRank = ExcellentRanking include Msf::Exploit::Remote::HttpClient
Tagged with: admin • advisory • API • code • CSRF • execution • exploit • gateway • Kong • overflow • packet • remote • scanner • security • storm • vulnerability • whitepaper • XSS
EgavilanMedia User Registration & Login System with Admin Panel Exploit – SQLi Auth Bypass
November 21st, 2020 📆 | 8342 Views ⚑
# Exploit Title: EgavilanMedia User Registration & Login System with Admin Panel Exploit - SQLi Auth Bypass # Date: 17-11-2020
Tagged with: admin • Auth • bypass • egavilanmedia • exploit • login • panel • php • registration • SQLi • system • user • webapps
Barco wePresent Admin Credential Exposure ≈ Packet Storm
November 21st, 2020 📆 | 8270 Views ⚑
KL-001-2020-005 : Barco wePresent Admin Credentials Exposed In Plain-text Title: Barco wePresent Admin Credentials Exposed In Plain-textAdvisory ID: KL-001-2020-005Publication Date:
Tagged with: admin • advisory • barco • credential • CSRF • exploit • exposure • overflow • packet • scanner • security • storm • vulnerability • wepresent • whitepaper • XSS
HiSilicon Video Encoders – Full admin access via backdoor password
October 25th, 2020 📆 | 5609 Views ⚑
#!/usr/bin/env bash # Exploit Title: HiSilicon video encoders - full admin access via backdoor password # Date: 2020-09-20 # Exploit
Tagged with: access • admin • backdoor • CVE-2020-24215 • encoders • Full • hardware • hisilicon • password • video • webapps
User Registration & Login and User Management System With admin panel 2.1 – Persistent XSS
October 24th, 2020 📆 | 4394 Views ⚑
# Exploit Title: User Registration & Login and User Management System With admin panel 2.1 - Persistent XSS # Google
Tagged with: admin • login • management • panel • persistent • php • registration • system • user • webapps • XSS
B-swiss 3 Digital Signage System 3.6.5 – Cross-Site Request Forgery (Add Maintenance Admin)
September 25th, 2020 📆 | 5946 Views ⚑
# Exploit Title: B-swiss 3 Digital Signage System 3.6.5 - Cross-Site Request Forgery (Add Maintenance Admin) # Date: 2020-09-16 #
Tagged with: Add • admin • Bswiss • cross • CrossSite • digital • forgery • maintenance • multiple • request • signage • swiss • system • webapps
CISA says unnamed US federal agency got hacked using valid credentials for users’ Microsoft 365 and domain admin accounts
September 25th, 2020 📆 | 2446 Views ⚑
CISA announced Thursday that an unnamed United States government agency was hacked in an unusual method. The attacker used valid
Tagged with: accounts • admin • agency • CISA • credentials • domain • federal • hacked • microsoft • unnamed • users • using • valid
Scopia XT Desktop 8.3.915.4 – Cross-Site Request Forgery (change admin password)
September 10th, 2020 📆 | 6710 Views ⚑
# Exploit Title: Scopia XT Desktop 8.3.915.4 - Cross-Site Request Forgery (change admin password) # Google Dork: inurl:scopia+index.jsp # Date:
Tagged with: admin • change • cross • CrossSite • desktop • forgery • Java • password • request • scopia • webapps
GetSimple CMS Plugin Multi User 1.8.2 – Cross-Site Request Forgery (Add Admin)
August 14th, 2020 📆 | 1614 Views ⚑
# Exploit Title: GetSimple CMS Plugin Multi User v1.8.2 - Cross-Site Request Forgery (Add Admin) # Exploit Author: Bobby Cooke
Tagged with: Add • admin • cms • cross • CrossSite • forgery • getsimple • multi • php • plugin • request • user • webapps
Warehouse Inventory System 1.0 – Cross-Site Request Forgery (Change Admin Password)
August 10th, 2020 📆 | 5625 Views ⚑
# Exploit Title: Warehouse Inventory System 1.0 - Cross-Site Request Forgery (Change Admin Password) # Exploit Author: Bobby Cooke (boku)
Tagged with: admin • change • cross • CrossSite • forgery • inventory • password • php • request • system • warehouse • webapps
Popular
High Wire Networks Achieves SOC 2 Type 1… February 9, 2021 BOCA RATON, Fla. and BATAVIA, Ill., Feb. 09, 2021 (GLOBE…- High Wire Networks Achieves SOC 2 Type 1… February 9, 2021 BOCA RATON, Fla. and BATAVIA, Ill., Feb. 09, 2021 (GLOBE…
Useful Movie add-ons that are compatible with Kodi 19 February 26, 2021 With the launch of Kodi 19, the add-ons are very…
Kodi 19.0 Matrix: What’s changed? February 22, 2021 Kodi 19.0 Matrix, the final version has arrived and it…- Kodi 19.0 Matrix is released: Should you upgrade? February 24, 2021 Kodi media player recently rolled out its much-awaited update, Matrix,…
Online Ordering System 1.0 – Arbitrary File… March 5, 2021 # Exploit Title: Online Ordering System 1.0 - Arbitrary File…
Lenovo Tab P11 Pro: A worthy competitor to the… February 14, 2021 Lenovo Tab P11 Pro launched in India, while the global,…
Members
Comments