Exploitalert - database of exploits

Listing of latest Exploits

This is live excerpt from our database.

Date	Name	Status	Solution
2023-03-12	Online Graduate Tracer System for College of ICT Alumni - Vulnerability SQLi + XSS	Published	Fix it
2023-03-12	Helmet Store Showroom Site - XXE Injection	Published	Fix it
2023-03-12	Smart Hospital : Hospital Management System - Multiple XSS	Published	Fix it
2023-03-12	Real Time Automation 460MCBS 5.2.14 Cross Site Scripting	Published	Fix it
2023-03-12	VX Search 13.8 Unquoted Service Path	Published	Fix it
2023-03-09	Worksuite CMS - Multiple XSS	Published	Fix it
2023-03-09	WordPress Real Estate 7 Theme < = 3.3.4 - Abuse of Functionality	Published	Fix it
2023-03-09	ZwiiCMS 12.2.04 Remote Code Execution	Published	Fix it
2023-03-08	WordPress WoodMart Theme < = 7.1.0 - Unauthenticated Arbitrary Shortcodes Injection	Published	Fix it
2023-03-08	Gihosoft TubeGet v9.0.88 Denial of Service Exploit	Published	Fix it
2023-03-08	Arris DG3450 AR01.02.056.18_041520_711.NCS.10 XSS / Missing Authentication	Published	Fix it
2023-03-08	Oracle 19c Access Bypass	Published	Fix it
2023-03-08	CoreDial sipXcom sipXopenfire 21.04 Remote Command Execution / Weak Permissionsundefined	Published	Fix it
2023-03-08	Purchase Order Management 1.0 Shell Upload	Published	Fix it
2023-03-06	Barracuda CloudGen WAN OS Command Injection	Published	Fix it
2023-03-06	Agilebio Lab Collector 4.234 Remote Code Execution	Published	Fix it
2023-03-06	Android GKI Kernels Contain Broken Non-Upstream Speculative Page Faults MM Code	Published	Fix it
2023-03-06	Purchase Order Management 1.0 SQL Injection	Published	Fix it
2023-03-06	Purchase Order Management 1.0 Cross Site Scripting	Published	Fix it
2023-03-05	Lucee Authenticated Scheduled Job Code Execution	Published	Fix it
2023-03-05	Smart School : School Management System > All vers affected	Published	Fix it
2023-03-05	WordPress Real Estate 7 Theme < = 3.3.4 - Multiple Cross-Site Request Forgery CSRF Vulnerabilit	Published	Fix it
2023-03-05	WordPress Real Estate 7 Theme < = 3.3.4 - Unauthenticated Reflected Cross-Site Scripting XSS	Published	Fix it
2023-03-05	WordPress WoodMart Theme < = 7.1.1 - Theme License Options Change via CSRF	Published	Fix it
2023-03-01	WordPress Real Estate 7 Theme 3.3.4 Cross Site Scripting	Published	Fix it
2023-03-01	WordPress WoodMart Theme 7.1.1 Cross Site Request Forgery	Published	Fix it
2023-03-01	Osprey Pump Controller 1.0.1 pseudonym Command Injection	Published	Fix it
2023-03-01	Osprey Pump Controller 1.0.1 userName Command Injection	Published	Fix it
2023-03-01	Oracle E-Business Suite EBS Unauthenticated Arbitrary File Upload	Published	Fix it
2023-02-27	Microsoft Windows Contact File / Remote Code Execution Resurrected CVE-2022-44666	Published	Fix it
2023-02-27	PfBlockerNG 2.1.4_26 Remote Code Execution	Published	Fix it
2023-02-27	ASUS ASMB8 iKVM 1.14.51 SNMP Remote Root	Published	Fix it
2023-02-27	ABUS Security Camera TVIP 20000-21150 LFI / Remote Code Execution	Published	Fix it
2023-02-26	Auto Dealer Management System 1.0 SQL Injection	Published	Fix it
2023-02-26	Music Gallery Site 1.0 Privilege Escalation / Missing Authentication	Published	Fix it
2023-02-26	Auto Dealer Management System 1.0 Privilege Escalation	Published	Fix it
2023-02-24	Device Manager Express 7.8.20002.47752 SQL Injection / XSS / Code Execution / Traversal	Published	Fix it
2023-02-24	Froxlor 2.0.6 Remote Command Execution	Published	Fix it
2023-02-24	Yoga Class Registration System 1.0 SQL Injection	Published	Fix it

First
<<
1
2
3
4
5
6
7
8
>>
Last

About us & Partners This information is provided for TESTING and LEGAL RESEARCH purposes only.
All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use and Privacy Policy