September 25th, 2020 📆 | 5487 Views ⚑
# Exploit Title: B-swiss 3 Digital Signage System 3.6.5 - Cross-Site Request Forgery (Add Maintenance Admin) # Date: 2020-09-16 #
September 25th, 2020 📆 | 3933 Views ⚑
# Exploit Title: Anchor CMS 0.12.7 – Persistent Cross-Site Scripting (Authenticated)# Date: 2020-09-24# Exploit Author: Sinem Şahin# Vendor Homepage: https://anchorcms.com/#
September 25th, 2020 📆 | 5681 Views ⚑
# Exploit Title: Anchor CMS 0.12.7 - Persistent Cross-Site Scripting (Authenticated) # Date: 2020-09-24 # Exploit Author: Sinem Şahin #
September 24th, 2020 📆 | 2732 Views ⚑
# Title: Visitor Management System in PHP 1.0 - Persistent Cross-Site Scripting # Exploit Author: Rahul Ramkumar # Date: 2020-09-16
September 23rd, 2020 📆 | 3252 Views ⚑
# Exploit Title: Flatpress Add Blog 1.0.3 – Persistent Cross-Site Scripting# Google Dork: –# Date: 2020-09-19# Exploit Author: Alperen Ergel#
September 23rd, 2020 📆 | 3387 Views ⚑
# Title: Visitor Management System in PHP 1.0 – Unauthenticated Stored XSS# Exploit Author: Rahul Ramkumar# Date: 2020-09-16# Vendor Homepage:
September 22nd, 2020 📆 | 1518 Views ⚑
# Exploit Title: Flatpress Add Blog 1.0.3 - Persistent Cross-Site Scripting # Google Dork: - # Date: 2020-09-19 # Exploit
September 22nd, 2020 📆 | 6955 Views ⚑
# Exploit Title: BlackCat CMS 1.3.6 - Cross-Site Request Forgery # Date: 2020-06-01 # Exploit Author: Noth # Vendor Homepage:
September 22nd, 2020 📆 | 2677 Views ⚑
CSRF Add b-swiss Maintenance Admin Source link
September 21st, 2020 📆 | 3035 Views ⚑
# Exploit Title: BlackCat CMS 1.3.6 – Cross-Site Request Forgery# Date: 2020-06-01# Exploit Author: Noth# Vendor Homepage: https://github.com/BlackCatDevelopment/BlackCatCMS# Software Link:
September 19th, 2020 📆 | 8256 Views ⚑
Vendor————————————————-Navy Federal – (https://www.navyfederal.org/ Product————————————————-Front pubic facing application Credit————————————————-Arthrocyberhttp://arthrocyber.com/research/#finding_7 David Reyes Vulnerability Summary————————————————-The endpoint sdu.navyfederal.org/__85258014004953a3.nsf/secureUploadMain did not sanitize HTML characters.
September 17th, 2020 📆 | 3712 Views ⚑
# Exploit Title: Piwigo 2.10.1 - Cross Site Scripting # POC by: Iridium # Software Homepage: http://www.piwigo.org # Version :
September 17th, 2020 📆 | 7916 Views ⚑
# Exploit Title: Piwigo 2.10.1 – Cross Site Scripting# POC by: Iridium# Software Homepage: http://www.piwigo.org# Version : 2.10.1# Tested on:
September 16th, 2020 📆 | 6442 Views ⚑
# Exploit Title: RAD SecFlow-1v SF_0290_2.3.01.26 - Cross-Site Request Forgery (Reboot) # Date: 2020-08-31 # Exploit Author: Uriel Yochpaz and
September 16th, 2020 📆 | 2322 Views ⚑
# Exploit Title: RAD SecFlow-1v SF_0290_2.3.01.26 - Persistent Cross-Site Scripting # Date: 2020-08-31 # Exploit Author: Jonatan Schor and Uriel
September 15th, 2020 📆 | 8571 Views ⚑
# Exploit Title: Tailor MS 1.0 - Reflected Cross-Site Scripting # Exploit Author: Bobby Cooke (boku) & Adeeb Shah (@hyd3sec)
September 15th, 2020 📆 | 1650 Views ⚑
# Exploit Title: RAD SecFlow-1v SF_0290_2.3.01.26 – Persistent Cross-Site Scripting# Date: 2020-08-31# Exploit Author: Jonatan Schor and Uriel Yochpaz# Vendor
September 15th, 2020 📆 | 6180 Views ⚑
# Exploit Title: RAD SecFlow-1v SF_0290_2.3.01.26 – Cross-Site Request Forgery (Reboot)# Date: 2020-08-31# Exploit Author: Uriel Yochpaz and Jonatan Schor#
September 11th, 2020 📆 | 3062 Views ⚑
Scopia XT Desktop 8.3.915.4 Cross Site Request Forgery Posted Sep 9, 2020 Authored by V1n1v131r4 Scopia XT Desktop version 8.3.915.4
September 11th, 2020 📆 | 4780 Views ⚑
Information——————– Advisory by NetsparkerName: Cross-Site Scripting in IlchCMSAffected Software: IlchCMSAffected Versions: 2.1.37Vendor Homepage: https://www.ilch.de/Vulnerability Type: Cross-Site ScriptingSeverity: ImportantStatus: FixedCVSS Score
September 10th, 2020 📆 | 4574 Views ⚑
# Exploit Title: Scopia XT Desktop 8.3.915.4 - Cross-Site Request Forgery (change admin password) # Google Dork: inurl:scopia+index.jsp # Date:
September 8th, 2020 📆 | 5958 Views ⚑
# Exploit Title: Cabot 0.11.12 – Persistent Cross-Site Scripting# Date: 2020-09-06# Exploit Author: Abhiram V# Vendor Homepage: https://cabotapp.com/# Software Link:
September 8th, 2020 📆 | 3801 Views ⚑
# Exploit Title: grocy 2.7.1 – Persistent Cross-Site Scripting# Date: 2020-09-06# Exploit Author: Mufaddal Masalawala# Vendor Homepage: https://berrnd.de/# Software Link:
September 8th, 2020 📆 | 1581 Views ⚑
CVSSv3.1 Score————————————————-AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N Vendor————————————————-Hyland Software – (https://www.hyland.com/en/ and https://www.onbase.com/en/) Product————————————————-Hyland OnBaseAll derivatives based on OnBase Versions Affected————————————————-All versions up to and
Cabot 0.11.12 – Persistent Cross-Site Scripting September 7, 2020 # Exploit Title: Cabot 0.11.12 - Persistent Cross-Site Scripting #…
CyberRisk Alliance Acquires Security Weekly September 8, 2020 NEW YORK, Sept. 08, 2020 (GLOBE NEWSWIRE) -- CyberRisk Alliance…
Dominic Cummings’ plan to build UK Google… September 10, 2020 UK Prime Minister Boris Johnson's top adviser, Dominic Cummings, is…
Windows XP Source Code Leaked By Apparent Bill Gates… September 25, 2020 It’s probably not the biggest security issue that Microsoft is…
European ISPs report mysterious wave of DDoS attacks September 5, 2020 More than a dozen internet service providers (ISPs) across Europe…
Zerologon Proof Of Concept September 17, 2020 Proof of concept exploit for the Windows Zerologon vulnerability as…
Bionano Genomics: Intriguing Technology. Troubling… September 8, 2020 The funny thing about truth, everyone seems to have their…
Comments