Home
PHP Shell
Backdoor Shell
Bypass Shell
Exploits
WordPress Exploits
Joomla Exploits
Drupal Exploits
PrestaShop Exploits
OpenCart Exploits
Tools
Litespeed Cache WordPress Plugin 6.3.0.1 – Privilege Escalation
WordPress Digits Plugin 8.4.6.1 – Authentication Bypass via OTP Bruteforcing
WordPress User Registration & Membership Plugin 4.1.2 – Authentication Bypass
WordPress Frontend Login and Registration Blocks Plugin 1.0.7 – Privilege Escalation
WordPress Depicter Plugin 3.6.1 – SQL Injection
WordPress Core 6.2 – Directory Traversal
Drupal 11.x-dev – Full Path Disclosure
LearnPress WordPress LMS Plugin 4.2.7 – SQL Injection
WordPress User Registration & Membership Plugin 4.1.1 – Unauthenticated Privilege Escalation
WordPress Theme XStore 9.3.8 – SQLi
WordPress Plugin Background Image Cropper v1.2 – Remote Code Execution
WordPress Plugin Playlist for Youtube 1.32 – Stored Cross-Site Scripting (XSS)
WordPress Plugin WP Video Playlist 1.1.1 – Stored Cross-Site Scripting (XSS)
WordPress Theme Travelscape v1.0.3 – Arbitrary File Upload
WordPress Plugin Alemha Watermarker 1.3.1 – Stored Cross-Site Scripting (XSS)
WordPress Plugin – Membership For WooCommerce < v2.1.7 - Arbitrary File Upload to Shell (Unauthenticated)
OpenCart Core 4.0.2.3 – ‘search’ SQLi
WordPress File Upload Plugin < 4.23.3 - Stored XSS
WordPress Plugin Duplicator < 1.5.7.1 - Unauthenticated Sensitive Data Exposure to Account Takeover
Neontext WordPress Plugin – Stored XSS
WordPress Plugin Admin Bar & Dashboard Access Control Version: 1.2.8 – _Dashboard Redirect_ field Stored Cross-Site Scripting (XSS)
WordPress Plugin Canto < 3.0.5 - Remote File Inclusion (RFI) and Remote Code Execution (RCE)
WordPress Augmented-Reality – Remote Code Execution Unauthenticated
WordPress Seotheme – Remote Code Execution Unauthenticated
Media Library Assistant WordPress Plugin – RCE and LFI
WordPress Plugin Masterstudy LMS – 3.0.17 – Unauthenticated Instructor Account Creation
WordPress Sonaar Music Plugin 4.7 – Stored XSS
WordPress Plugin Elementor 3.5.5 – Iframe Injection
Drupal 10.1.2 – web-cache-poisoning-External-service-interaction
WordPress adivaha Travel Plugin 2.3 – Reflected XSS
WordPress adivaha Travel Plugin 2.3 – SQL Injection
WordPress Plugin EventON Calendar 4.4 – Unauthenticated Event Access
WordPress Plugin EventON Calendar 4.4 – Unauthenticated Post Access via IDOR
WordPress Plugin Forminator 1.24.6 – Unauthenticated Remote Command Execution
WordPress Plugin Ninja Forms 3.6.25 – Reflected XSS
Joomla JLex Review 6.0.1 – Reflected XSS
Joomla iProperty Real Estate 4.1.1 – Reflected XSS
Joomla Solidres 2.13.3 – Reflected XSS
WordPress Plugin AN_Gradebook 5.0.1 – SQLi
Joomla HikaShop 4.7.4 – Reflected XSS
Joomla VirtueMart Shopping Cart 4.0.12 – Reflected XSS
Joomla! com_booking component 2.4.9 – Information Leak (Account enumeration)
Prestashop 8.0.4 – Cross-Site Scripting (XSS)
PrestaShop Winbiz Payment module – Improper Limitation of a Pathname to a Restricted Directory
WordPress Theme Medic v1.0.0 – Weak Password Recovery Mechanism for Forgotten Password
WordPress Theme Workreap 2.2.2 – Unauthenticated Upload Leading to Remote Code Execution
WordPress Plugin Backup Migration 1.2.8 – Unauthenticated Database Backup
Prestashop 8.0.4 – CSV injection
Joomla! v4.2.8 – Unauthenticated information disclosure
Paid Memberships Pro v2.9.8 (WordPress Plugin) – Unauthenticated SQL Injection
NEX-Forms WordPress plugin < 7.9.7 - Authenticated SQLi
Translatepress Multilinugal WordPress plugin < 2.3.3 - Authenticated SQL Injection
Prestashop blockwishlist module 2.1.0 – SQLi
OpenCart v3.x Newsletter Module – Blind SQLi
Joomla Plugin SexyPolling 2.1.7 – SQLi
Drupal avatar_uploader v7.x-1.0-beta8 – Cross Site Scripting (XSS)
opencart 3.0.3.8 – Sessjion Injection
Opencart 3 Extension TMD Vendor System – Blind SQL Injection
Balbooa Joomla Forms Builder 2.0.6 – SQL Injection (Unauthenticated)
Drupal Module MiniorangeSAML 8.x-2.22 – Privilege escalation
OpenCart 3.0.3.7 – ‘Change Password’ Cross-Site Request Forgery (CSRF)
PrestaShop 1.7.6.7 – ‘location’ Blind Sql Injection
Joomla JCK Editor 6.4.4 – ‘parent’ SQL Injection (2)
Prestashop 1.7.7.0 – ‘id_product’ Time Based Blind SQL Injection
OpenCart 3.0.36 – ATO via Cross Site Request Forgery
PrestaShop ProductComments 4.2.0 – ‘id_products’ Time Based Blind SQL Injection
OpenCart 3.0.3.6 – Cross Site Request Forgery
Joomla! Component GMapFP 3.5 – Unauthenticated Arbitrary File Upload
OpenCart 3.0.3.6 – ‘Profile Image’ Stored Cross-Site Scripting (Authenticated)
OpenCart 3.0.3.6 – ‘subject’ Stored Cross-Site Scripting
Joomla Plugin Simple Image Gallery Extended (SIGE) 3.5.3 – Multiple Vulnerabilities
OpenCart Theme Journal 3.1.0 – Sensitive Data Exposure
Joomla! paGO Commerce 2.5.9.0 – SQL Injection (Authenticated)
Joomla! J2 JOBS 1.3.0 – ‘sortby’ Authenticated SQL Injection
Joomla! J2 Store 3.3.11 – ‘filter_order_Dir’ Authenticated SQL Injection
OpenCart 3.0.3.2 – Stored Cross Site Scripting (Authenticated)
Joomla! Plugin XCloner Backup 3.5.3 – Local File Inclusion (Authenticated)
Prestashop 1.7.6.4 – Cross-Site Request Forgery
Joomla! com_fabrik 3.9.11 – Directory Traversal
Joomla! Component GMapFP 3.30 – Arbitrary File Upload
Joomla! com_hdwplayer 4.2 – ‘search.php’ SQL Injection
Joomla! Component ACYMAILING 3.9.0 – Unauthenticated Arbitrary File Upload
Joomla! Component com_newsfeeds 1.0 – ‘feedid’ SQL Injection
Joomla! 3.9.0 < 3.9.7 - CSV Injection
Joomla! 3.4.6 – Remote Code Execution (Metasploit)
Joomla! 3.4.6 – Remote Code Execution
Joomla! 3.4.6 – ‘configuration.php’ Remote Code Execution
Opencart 3.x – Cross-Site Scripting
Joomla! component com_jsjobs 1.2.6 – Arbitrary File Deletion
Joomla! Component JS Jobs (com_jsjobs) 1.2.5 – ‘customfields.php’ SQL Injection
Joomla! Component JS Jobs (com_jsjobs) 1.2.5 – ‘cities.php’ SQL Injection
Joomla! Component JS Support Ticket (com_jssupportticket) 1.1.6 – ‘ticket.php’ Arbitrary File Deletion
Joomla! Component JS Support Ticket (com_jssupportticket) 1.1.6 – ‘ticketreply.php’ SQL Injection
Joomla! Component JS Support Ticket (component com_jssupportticket) 1.1.5 – Arbitrary File Download
Joomla! Component JS Support Ticket (component com_jssupportticket) 1.1.5 – SQL Injection
Opencart 3.0.3.2 – ‘extension/feed/google_base’ Denial of Service (PoC)
Joomla! Component ARI Quiz 3.7.4 – SQL Injection
Joomla! Component JiFile 2.3.1 – Arbitrary File Download
Joomla! Core 1.5.0 – 3.9.4 – Directory Traversal / Authenticated Arbitrary File Deletion
Drupal < 8.5.11 / < 8.6.10 - RESTful Web Services unserialize() Remote Command Execution (Metasploit)
Joomla! Component J2Store < 3.3.7 - SQL Injection
Drupal < 8.6.9 - REST Module Remote Code Execution
Drupal < 8.6.10 / < 8.5.11 - REST Module Remote Code Execution
Joomla! Component J-CruisePortal 6.0.4 – SQL Injection
Joomla! Component JHotelReservation 6.0.7 – SQL Injection
Joomla! Component J-BusinessDirectory 4.9.7 – ‘type’ SQL Injection
Joomla! Component J-ClassifiedsManager 3.0.5 – SQL Injection
Joomla! Component JMultipleHotelReservation 6.0.7 – SQL Injection
Joomla! Component vAccount 2.0.2 – ‘vid’ SQL Injection
Joomla! Component vBizz 1.0.7 – Remote Code Execution
Joomla! Component vBizz 1.0.7 – SQL Injection
Joomla! Component VMap 1.9.6 – SQL Injection
Joomla! Component vRestaurant 1.9.4 – SQL Injection
Joomla! Component vReview 1.9.11 – SQL Injection
Joomla! Component vWishlist 1.0.1 – SQL Injection
Joomla! Component Easy Shop 1.2.3 – Local File Inclusion
Joomla! Core 3.9.1 – Persistent Cross-Site Scripting in Global Configuration Textfilter Settings
Joomla! Component JoomCRM 1.1.1 – SQL Injection
Joomla! Component JoomProject 1.1.3.2 – Information Disclosure
PrestaShop 1.6.x/1.7.x – Remote Code Execution
Joomla! Component Jimtawl 2.2.7 – ‘id’ SQL Injection
Joomla! Component AlphaIndex Dictionaries 1.0 – SQL Injection
Joomla! Component Article Factory Manager 4.3.9 – SQL Injection
Joomla! Component Collection Factory 4.1.9 – SQL Injection
Joomla! Component Dutch Auction Factory 2.0.2 – ‘filter_order_Dir’ SQL Injection
Joomla! Component eXtroForms 2.1.5 – ‘filter_type_id’ SQL Injection
Joomla! Component Jobs Factory 2.0.4 – SQL Injection
Joomla! Component Auction Factory 4.5.5 – ‘filter_order’ SQL Injection
Joomla! Component CW Article Attachments 1.0.6 – ‘id’ SQL Injection
Joomla! Component JCK Editor 6.4.4 – ‘parent’ SQL Injection
PrestaShop < 1.6.1.19 - 'AES CBC' Privilege Escalation
PrestaShop < 1.6.1.19 - 'BlowFish ECD' Privilege Escalation
Joomla! Component Jomres 9.11.2 – Cross-Site Request Forgery (Add User)
Joomla! Component Ek Rishta 2.10 – SQL Injection
Joomla! Component EkRishta 2.10 – ‘username’ SQL Injection
Joomla! Component EkRishta 2.10 – ‘cid’ SQL Injection
Joomla! Component jCart for OpenCart 2.3.0.2 – Cross-Site Request Forgery
Joomla! Component Full Social 1.1.0 – ‘search_query’ SQL Injection
Joomla! Component JoomOCShop 1.0 – Cross-Site Request Forgery
Joomla! Component EkRishta 2.10 – Cross-Site Scripting / SQL Injection
Drupal < 7.58 - 'Drupalgeddon3' (Authenticated) Remote Code (Metasploit)
Drupal < 7.58 - 'Drupalgeddon3' (Authenticated) Remote Code Execution (PoC)
Drupal avatar_uploader v7.x-1.0-beta8 – Arbitrary File Disclosure
Joomla! Component JS Jobs 1.2.0 – Cross-Site Request Forgery
Drupal < 8.3.9 / < 8.4.6 / < 8.5.1 - 'Drupalgeddon2' Remote Code Execution (Metasploit)
Joomla! Component jDownloads 3.2.58 – Cross Site Scripting
Drupal < 7.58 / < 8.3.9 / < 8.4.6 / < 8.5.1 - 'Drupalgeddon2' Remote Code Execution
Drupal < 8.3.9 / < 8.4.6 / < 8.5.1 - 'Drupalgeddon2' Remote Code Execution (PoC)
Joomla! Component Acymailing Starter 5.9.5 – CSV Macro Injection
Joomla! Component AcySMS 3.5.0 – CSV Macro Injection
Joomla! Component Fields – SQLi Remote Code Execution (Metasploit)
Joomla! Component Alexandria Book Library 3.1.2 – ‘letter’ SQL Injection
Joomla! Component CheckList 1.1.1 – SQL Injection
Joomla! Component CW Tags 2.0.6 – SQL Injection
Joomla! Component Ek Rishta 2.9 – SQL Injection
Joomla! Component Advertisement Board 3.1.0 – ‘catname’ SQL Injection
Joomla! Component Aist 2.0 – ‘id’ SQL Injection
Joomla! Component AllVideos Reloaded 1.2.x – ‘divid’ SQL Injection
Joomla! Component ccNewsletter 2.x.x ‘id’ – SQL Injection
Joomla! Component DT Register 3.2.7 – ‘id’ SQL Injection
Joomla! Component Fastball 2.5 – ‘season’ SQL Injection
Joomla! Component File Download Tracker 3.0 – SQL Injection
Joomla! Component Form Maker 3.6.12 – SQL Injection
Joomla! Component Gallery WD 1.3.6 – SQL Injection
Joomla! Component Google Map Landkarten 4.2.3 – SQL Injection
Joomla! Component InviteX 3.0.5 – ‘invite_type’ SQL Injection
Joomla! Component JB Bus 2.3 – ‘order_number’ SQL Injection
Joomla! Component jGive 2.0.9 – SQL Injection
Joomla! Component JomEstate PRO 3.7 – ‘id’ SQL Injection
Joomla! Component JquickContact 1.3.2.2.1 – SQL Injection
Joomla! Component JS Autoz 1.0.9 – SQL Injection
Joomla! Component JS Jobs 1.1.9 – SQL Injection
Joomla! Component jLike 1.0 – Information Leak
Joomla! Component JE PayperVideo 3.0.0 – ‘usr_plan’ SQL Injection
Joomla! Component JEXTN Classified 1.0.0 – ‘sid’ SQL Injection
Joomla! Component JEXTN Membership 3.1.0 – ‘usr_plan’ SQL Injection
Joomla! Component JEXTN Reverse Auction 3.1.0 – SQL Injection
Joomla! Component Jimtawl 2.1.6 – Arbitrary File Upload
Joomla! Component JMS Music 1.1.1 – SQL Injection
Joomla! Component CP Event Calendar 3.0.1 – ‘id’ SQL Injection
Joomla! Component Easydiscuss < 4.0.21 - Cross-Site Scripting
Joomla! Component jCart for OpenCart 2.0 – ‘product_id’ SQL Injection
Drupal 7.x Module Services – Remote Code Execution
Drupal Module CODER 2.5 – Remote Command Execution (Metasploit)
Drupal Module Coder < 7.x-1.3/7.x-2.6 - Remote Code Execution
Drupal Module RESTWS 7.x – PHP Remote Code Execution (Metasploit)
OpenCart 2.1.0.2 < 2.2.0.0 - json_decode Function Remote Code Execution
Drupal < 7.34 - Denial of Service
Drupal 7.0 < 7.31 - 'Drupalgeddon' SQL Injection (Admin Session)
Drupal 7.0 < 7.31 - 'Drupalgeddon' SQL Injection (Remote Code Execution)
Drupal 7.0 < 7.31 - 'Drupalgeddon' SQL Injection (Add Admin User)
Drupal 7.0 < 7.31 - 'Drupalgeddon' SQL Injection (PoC) (Reset Password) (2)
Drupal 7.0 < 7.31 - 'Drupalgeddon' SQL Injection (PoC) (Reset Password) (1)
Mpay24 PrestaShop Payment Module 1.5 – Multiple Vulnerabilities
PrestaShop – ‘getSimilarManufacturer.php?id_manufacturer’ SQL Injection
OpenCart 1.5.6.1 – ‘openbay’ Multiple SQL Injections
PrestaShop – Multiple Cross-Site Request Forgery Vulnerabilities
Drupal Module CKEditor < 4.1WYSIWYG (Drupal 6.x/7.x) - Persistent Cross-Site Scripting
OpenCart – Cross-Site Request Forgery (Change User Password)
OpenCart 1.5.5.1 – ‘FileManager.php’ Directory Traversal Arbitrary File Access
PrestaShop 1.5.1 – Persistent Cross-Site Scripting
PrestaShop 1.4.7 – Multiple Cross-Site Scripting Vulnerabilities
Drupal Module Drag & Drop Gallery 6.x-1.5 – ‘upload.php’ Arbitrary File Upload
opencart 1.5.2.1 – Multiple Vulnerabilities
Drupal 7.12 – Multiple Vulnerabilities
Drupal Module CKEditor 3.0 < 3.6.2 - Persistent EventHandler Cross-Site Scripting
PrestaShop 1.4.4.1 – ‘/admin/ajaxfilemanager/ajax_save_text.php’ Multiple Cross-Site Scripting Vulnerabilities
PrestaShop 1.4.4.1 – ‘/modules/mondialrelay/googlemap.php’ Multiple Cross-Site Scripting Vulnerabilities
PrestaShop 1.4.4.1 – ‘/modules/mondialrelay/kit_mondialrelay/SuiviExpedition_ajax.php?Expedition’ Cross-Site Scripting
Prestashop 1.4.4.1 – ‘displayImage.php’ HTTP Response Splitting
PrestaShop 1.4.4.1 mondialrelay (kit_mondialrelay) – Multiple Cross-Site Scripting Vulnerabilities
OpenCart 1.5.1.2 – Blind SQL Injection
PrestaShop 1.3.6 – ‘cms.php’ Remote File Inclusion
OpenCart 1.4.9 – Multiple Local File Inclusions
Drupal Module Cumulus 5.x-1.1/6.x-1.4 – ‘tagcloud’ Cross-Site Scripting
Drupal Module CAPTCHA – Security Bypass
Drupal Module Embedded Media Field/Media 6.x : Video Flotsam/Media: Audio Flotsam – Multiple Vulnerabilities
Opencart 1.4.9.1 – Arbitrary File Upload
OpenCart 1.3.2 – ‘page’ SQL Injection
Drupal < 5.22/6.16 - Multiple Vulnerabilities
Drupal 6.15 – Multiple Persistent Cross-Site Scripting Vulnerabilities
Drupal 5.21/6.16 – Denial of Service
Drupal Module Sections – Cross-Site Scripting
Drupal Module Sections 5.x-1.2/6.x-1.2 – HTML Injection
Opencart 1.1.8 – ‘route’ Local File Inclusion
PrestaShop 1.1 – ‘/admin/login.php?PATH_INFO’ Cross-Site Scripting
PrestaShop 1.1 – ‘order.php?PATH_INFO’ Cross-Site Scripting
Drupal Module Ajax Checklist 5.x-1.0 – Multiple SQL Injections
Drupal 5.2 – PHP Zend Hash ation Vector
Drupal 4.7 – ‘Attachment mod_mime’ Remote Command Execution
Drupal 4.x – URL-Encoded Input HTML Injection
Drupal 4.1/4.2 – Cross-Site Scripting
Drupal 4.0 – News Message HTML Injection