Clik here to view.
Mailing List Manager Pro 3.0 - SQL Injection
EDB-ID: 43092Author: Ihsan SencanPublished: 2017-10-30CVE: CVE-2017-15967 Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Title: Mailing List Manager Pro 3.0 - SQL Injection # Dork: N/A # Date:...
View ArticleClik here to view.
PG All Share Video 1.0 - SQL Injection
EDB-ID: 43090Author: Ihsan SencanPublished: 2017-10-30CVE: CVE-2017-15969 Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Title: PG All Share Video 1.0 - SQL Injection # Dork: N/A # Date:...
View ArticleClik here to view.
Joomla! Component NS Download Shop 2.2.6 - 'id' SQL Injection
EDB-ID: 43094Author: Ihsan SencanPublished: 2017-10-30CVE: CVE-2017-15965 Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Title: Joomla! Component NS Download Shop 2.2.6 - SQL Injection # Dork:...
View ArticleClik here to view.
Same Sex Dating Software Pro 1.0 - SQL Injection
EDB-ID: 43088Author: Ihsan SencanPublished: 2017-10-30CVE: CVE-2017-15971 Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Title: Same Sex Dating Software Pro 1.0 - SQL Injection # Dork: N/A #...
View ArticleClik here to view.
Joomla! Component Zh YandexMap 6.1.1.0 - 'placemarklistid' SQL Injection
EDB-ID: 43093Author: Ihsan SencanPublished: 2017-10-30CVE: CVE-2017-15966 Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Title: Joomla! Component Zh YandexMap 6.1.1.0 - SQL Injection # Dork:...
View ArticleClik here to view.
AROX School ERP PHP Script - 'id' SQL Injection
EDB-ID: 43081Author: Ihsan SencanPublished: 2017-10-30CVE: CVE-2017-15978 Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Title: AROX School ERP PHP Script - SQL Injection # Dork: N/A # Date:...
View ArticleClik here to view.
Vastal I-Tech Dating Zone 0.9.9 - 'product_id' SQL Injection
EDB-ID: 43084Author: Ihsan SencanPublished: 2017-10-30CVE: CVE-2017-15975 Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Title: Vastal I-Tech Dating Zone 0.9.9 - 'product_id' Parameter SQL...
View ArticleClik here to view.
ZeeBuddy 2x - 'groupid' SQL Injection
EDB-ID: 43083Author: Ihsan SencanPublished: 2017-10-30CVE: CVE-2017-15976 Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Title: ZeeBuddy 2x - SQL Injection # Dork: N/A # Date: 30.10.2017 #...
View ArticleClik here to view.
Sokial Social Network Script 1.0 - SQL Injection
EDB-ID: 43086Author: Ihsan SencanPublished: 2017-10-30CVE: CVE-2017-15973 Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Title: Sokial Social Network Script 1.0 - SQL Injection # Dork: N/A #...
View ArticleClik here to view.
SoftDatepro Dating Social Network 1.3 - SQL Injection
EDB-ID: 43087Author: Ihsan SencanPublished: 2017-10-30CVE: CVE-2017-15972 Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Title: SoftDatepro Dating Social Network 1.3 - SQL Injection # Dork:...
View ArticleClik here to view.
tPanel 2009 - Authentication Bypass
EDB-ID: 43085Author: Ihsan SencanPublished: 2017-10-30CVE: CVE-2017-15974 Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Title: tPanel 2009 - Authentication Bypass # Dork: N/A # Date:...
View ArticleClik here to view.
Protected Links - SQL Injection
EDB-ID: 43082Author: Ihsan SencanPublished: 2017-10-30CVE: CVE-2017-15977 Type: WebappsPlatform: PHPVulnerable App: N/A # # # # # # Exploit Title: Protected Links - Expiring Download Links - SQL...
View ArticleClik here to view.
Newspaper 1.0 - SQL Injection
EDB-ID: 43078Author: Ihsan SencanPublished: 2017-10-30CVE: CVE-2017-15981 Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Title: Newspaper Magazine & Blog CMS 1.0 - SQL Injection # Dork:...
View ArticleClik here to view.
Shareet - 'photo' SQL Injection
EDB-ID: 43080Author: Ihsan SencanPublished: 2017-10-30CVE: CVE-2017-15979 Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Title: Shareet - Photo Sharing Social Network - SQL Injection # Dork:...
View ArticleClik here to view.
US Zip Codes Database - 'state' SQL Injection
EDB-ID: 43079Author: Ihsan SencanPublished: 2017-10-30CVE: CVE-2017-15980 Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Title: US Zip Codes Database Script - SQL Injection # Dork: N/A # Date:...
View ArticleClik here to view.
Oracle Java SE - Web Start jnlp XML External Entity Processing Information...
EDB-ID: 43103Author: mr_mePublished: 2017-10-30CVE: CVE-2017-10309 Type: WebappsPlatform: XMLAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A """ Oracle Java SE Web Start jnlp XML External...
View ArticleClik here to view.
EMC VMAX Virtual Appliance (vApp) Authentication Bypass
The vApp Manager which is embedded in EMC Unisphere for VMAX, Solutions Enabler, VASA Virtual Appliances, and EMC VMAX Embedded Management (eManagement) contains an authentication bypass vulnerability...
View ArticleClik here to view.
JanTek JTC-200 RS232-NET Connector CSRF / Missing Authentication
JanTek JTC-200 RS232-NET Connector suffers from cross site request forgery and missing authentication vulnerabilities.MD5 | 020bc5ac941329974bf88c561dc914f2DownloadVendor: JanTekEquipment:...
View ArticleClik here to view.
SpiderControl SCADA Web Server 2.02.0007 Improper Privilege Management
SpiderControl SCADA Web Server versions 2.02.0007 and below suffer from an improper privilege management vulnerability.MD5 | d6acb33e7b8598a0c01679e484876aefDownloadVendor: SpiderControlEquipment:...
View ArticleClik here to view.
Progea Movicon 11.5.1181 Search Path Issues
Progea Movicon versions 11.5.1181 and below suffer from search path related vulnerabilities.MD5 | 1de6e04aa62eca5a923d8fc55a9f1748DownloadVendor: ProgeaEquipment: Movicon SCADA/HMIVulnerability:...
View Article