header-logo
Suggest Exploit
explore-vulnerabilities

Explore Vulnerabilities

Version
Year

Explore all Exploits:

AlumniServer v-1.0.1 Blind SQL Injection Exploit

AlumniServer v-1.0.1 is vulnerable to Blind SQL Injection. The vulnerability is located in the 'resetpwemail' POST parameter of the 'forgotpassword.php' script when sending a password reset request. Remote attackers can send a specially crafted request to the vulnerable script and execute arbitrary SQL commands in application`s database.

Joomla Component (com_pinboard) Remote SQL Injection

A vulnerability exists in Joomla Component (com_pinboard) which allows an attacker to inject malicious SQL queries via the 'task' parameter in the 'showpic' action of the 'com_pinboard' component. This can be exploited to gain access to the database and potentially disclose sensitive information.

Joomla Component com_amocourse (catid) SQL-injection Vulnerability

A SQL injection vulnerability exists in the Joomla Component com_amocourse (catid). An attacker can send a specially crafted HTTP request containing malicious SQL code to the vulnerable application in order to gain access to unauthorized information from the database.

LightOpenCMS 0.1 (smarty.php cwd) Local File Inclusion Vulnerability

LightOpenCMS 0.1 is vulnerable to a local file inclusion vulnerability due to a lack of sanitization of user-supplied input. The vulnerability exists in the 'smarty.php' script, which is used to include the Smarty library. The script uses the 'cwd' parameter to define the path to the Smarty library, which is not properly sanitized before being used. This can be exploited to include arbitrary files from local resources via directory traversal sequences and URL-encoded NULL bytes. Successful exploitation requires that 'register_globals' is set to 'On' in the 'php.ini' configuration file.

Joomla Component [com_pinboard] Remote File Upload Vulnerability

A vulnerability exists in Joomla Component [com_pinboard] which allows an attacker to upload a malicious file on the target system. The attacker can exploit this vulnerability by using the following two URLs: 1-target.com/[path]/components/com_pinboard/popup/popup.php?option=showupload or 2-target.com/[path]/index2.php?option=com_pinboard&Itemid=117&action=popup%22&action=popup&task=uploadForm. After clicking on the photo in the top left corner, the attacker can upload a malicious file such as a shell.php.jpg and confirm it. The malicious file can then be accessed at target.com/[path]/images/stories/pinboard/picture/[name your shell].php.jpg or target.com/[path]/strona/components/com_pinboard/pictures/[name your shell].php.jpg

Glossword 1.8.11 LFI

Glossword is a system written in PHP to create and publish online multilingual dictionary, glossary, or encyclopedia. A Local File Inclusion (LFI) vulnerability was discovered in all versions of Glossword 1.8.11 and higher. An attacker can exploit this vulnerability by sending a specially crafted HTTP request containing directory traversal characters (e.g. “../”) to the vulnerable web server. This can allow the attacker to view sensitive files on the web server, such as the /etc/passwd file.

Authentication Bypass in BASE version 1.2.4 and prior – Insecure Cookie Handling Vulnerability

An authentication bypass vulnerability exists in BASE version 1.2.4 and prior due to insecure cookie handling. An attacker can exploit this vulnerability by creating a malicious cookie with the BASERole parameter set to a valid user role. This will allow the attacker to bypass authentication and gain access to the application.

Recent Exploits: