header-logo
Suggest Exploit
explore-vulnerabilities

Explore Vulnerabilities

Version
Year

Explore all Exploits:

WordPress Plugin Mortgage Calculators WP 1.52 – Stored Cross-Site Scripting (XSS) (Authenticated)

The plugin gives users real-time estimates by providing mortgage calculators. It does not implement any sanitisation on the color value of the background of a calculator in admin panel, which could lead to authenticated Stored Cross-Site Scripting issues. An attacker can execute malicious javascript codes for all visitors of a page containing the calculator.

Online Project Time Management System 1.0 – Multiple Stored XSS (Authenticated)

Online Project Time Management System 1.0 is vulnerable to multiple stored XSS attacks when an authenticated user adds XSS payload to any field of the user's name. An attacker can exploit this vulnerability by logging in as an employee, going to http://localhost/ptms/?page=user, adding XSS payload to any field of the user's name and clicking Update.

Online Project Time Management System 1.0 – SQLi (Authenticated)

An authenticated SQL injection vulnerability exists in Online Project Time Management System 1.0. An attacker can send a maliciously crafted request to the application, which can be used to extract sensitive information from the database.

Simple Chatbot Application 1.0 – ‘message’ Blind SQLi

Simple Chatbot Application 1.0 is vulnerable to Blind SQL Injection. An attacker can exploit this vulnerability by sending a specially crafted HTTP POST request to the application. The request contains a malicious SQL query in the 'message' parameter. The application does not properly sanitize user input, allowing an attacker to inject malicious SQL code into the query. This can be used to extract sensitive information from the database, such as usernames and passwords.

OpenBMCS 2.4 – Server Side Request Forgery (SSRF) (Unauthenticated)

Unauthenticated Server-Side Request Forgery (SSRF) and Remote File Include (RFI) vulnerability exists in OpenBMCS within its functionalities. The application parses user supplied data in the POST parameter 'ip' to query a server IP on port 81 by default. Since no validation is carried out on the parameter, an attacker can specify an external domain and force the application to make an HTTP request to an arbitrary destination host. This can be used by an external attacker for example to bypass firewalls and initiate a service and network enumeration on the internal network through the affected application, allows hijacking the current session of the user, execute cross-site scripting code or changing the look of the page and content modification on current display.

OpenBMCS 2.4 – Create Admin / Remote Privilege Escalation

The application suffers from an insecure permissions and privilege escalation vulnerability. A regular user can create administrative users and/or elevate her privileges by sending an HTTP POST request to specific PHP scripts in '/plugins/useradmin/' directory.

OpenBMCS 2.4 – SQLi (Authenticated)

OpenBMCS suffers from an SQL Injection vulnerability. Input passed via the 'id' GET parameter is not properly sanitised before being returned to the user or used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.

Online Resort Management System 1.0 – SQLi (Authenticated)

There are a vulnerabilities in Online Resort Management System (ORMS) where the attacker can easily retrieved the database using sql injection. After login with the admin credentials(Username : admin / Password : admin123) there is a vulnerable parameter name is id=. The attacker can use SQL Injection Parameter, SQL Query & Users detaile to dump the database. The attacker can also use automated tools like SQLMap to dump the database.

Recent Exploits: