This exploit allows an attacker to inject malicious JavaScript code into the Xenforo version 2.2.13 application. The vulnerability exists in the 'title' parameter of the '/admin.php?smilie-categories/0/save' endpoint, which does not properly sanitize user input. An authenticated user can exploit this vulnerability by submitting a crafted request with a malicious payload in the 'title' parameter. When the page is viewed by another user, the payload will be executed, leading to potential remote code execution or other malicious activities.
The PrestaShop Winbiz Payment module is vulnerable to an Improper Limitation of a Pathname to a Restricted Directory vulnerability. This vulnerability allows an attacker to download arbitrary files from the server.
This exploit allows an attacker to spoof a SharePoint server by creating a fake file on the vulnerable server and redirecting users to a malicious website.
Directory browsing vulnerability in MCL-Net version 4.3.5.8788 webserver running on default port 5080, allows attackers to gain sensitive information about the configured databases via the "/file" endpoint.
This exploit allows an authenticated attacker to download arbitrary files from the server. The vulnerability exists in the Backup Plugin of Bludit version < 3.13.1.
Smart Office Web 20.28 and before allows Remote Information Disclosure(Unauthenticated) via insecure direct object reference (IDOR). This was fixed in latter version except for ExportEmployeeDetails.
Microsoft OneNote is vulnerable to spoofing attacks. The malicious user can trick the victim into clicking on a very maliciously crafted URL or download some other malicious file and execute it. When this happens the game will be over for the victim and his computer will be compromised. Exploiting the vulnerability requires that a user open a specially crafted file with an affected version of Microsoft OneNote and then click on a specially crafted URL to be compromised by the attacker.
This exploit allows an attacker to escalate privileges on HiSecOS-04.0.01 or lower versions. By crafting a specific XML payload, the attacker can modify the access role of a user to admin, granting them elevated privileges.
SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. Branches 3.2, 4.0, 4.1 and 4.2 are concerned. The fixed versions are 3.2.18, 4.0.10, 4.1.8, and 4.2.1. This PoC exploits a PHP code injection in SPIP. The vulnerability exists in the 'oubli' parameter and allows an unauthenticated user to execute arbitrary commands with web user privileges.
The exploit allows an attacker to disclose the hard-coded private key in the Nokia ASIKA 7.13.52 device. By using this key, an attacker can gain unauthorized access to the device.