JOIN TELEGRAM CHANNEL
Archives
DATABASE
Translatepress Multilinugal WordPress plugin < 2.3.3 - Authenticated SQL Injection
Translatepress Multilinugal WordPress plugin < 2.3.3 - Authenticated SQL Injection
25.03.2023
File
NEX-Forms WordPress plugin < 7.9.7 - Authenticated SQLi
NEX-Forms WordPress plugin < 7.9.7 - Authenticated SQLi
25.03.2023
File
Prestashop blockwishlist module 2.1.0 – SQLi
Prestashop blockwishlist module 2.1.0 – SQLi
09.08.2022
File
OpenCart v3.x Newsletter Module – Blind SQLi
OpenCart v3.x Newsletter Module – Blind SQLi
23.05.2022
File
Joomla Plugin SexyPolling 2.1.7 – SQLi
Joomla Plugin SexyPolling 2.1.7 – SQLi
11.05.2022
File
Drupal avatar_uploader v7.x-1.0-beta8 – Cross Site Scripting (XSS)
Drupal avatar_uploader v7.x-1.0-beta8 – Cross Site Scripting (XSS)
30.03.2022
File
opencart 3.0.3.8 – Sessjion Injection
opencart 3.0.3.8 – Sessjion Injection
29.11.2021
File
Opencart 3 Extension TMD Vendor System – Blind SQL Injection
Opencart 3 Extension TMD Vendor System – Blind SQL Injection
04.11.2021
File
Balbooa Joomla Forms Builder 2.0.6 – SQL Injection (Unauthenticated)
Balbooa Joomla Forms Builder 2.0.6 – SQL Injection (Unauthenticated)
25.10.2021
File
Drupal Module MiniorangeSAML 8.x-2.22 – Privilege escalation
Drupal Module MiniorangeSAML 8.x-2.22 – Privilege escalation
01.10.2021
File
OpenCart 3.0.3.7 – ‘Change Password’ Cross-Site Request Forgery (CSRF)
OpenCart 3.0.3.7 – ‘Change Password’ Cross-Site Request Forgery (CSRF)
09.06.2021
File
PrestaShop 1.7.6.7 – ‘location’ Blind Sql Injection
PrestaShop 1.7.6.7 – ‘location’ Blind Sql Injection
09.04.2021
File
Joomla JCK Editor 6.4.4 – ‘parent’ SQL Injection (2)
Joomla JCK Editor 6.4.4 – ‘parent’ SQL Injection (2)
08.03.2021
File
Prestashop 1.7.7.0 – ‘id_product’ Time Based Blind SQL Injection
Prestashop 1.7.7.0 – ‘id_product’ Time Based Blind SQL Injection
11.01.2021
File
OpenCart 3.0.36 – ATO via Cross Site Request Forgery
OpenCart 3.0.36 – ATO via Cross Site Request Forgery
11.01.2021
File
PrestaShop ProductComments 4.2.0 – ‘id_products’ Time Based Blind SQL Injection
PrestaShop ProductComments 4.2.0 – ‘id_products’ Time Based Blind SQL Injection
16.12.2020
File
OpenCart 3.0.3.6 – Cross Site Request Forgery
OpenCart 3.0.3.6 – Cross Site Request Forgery
10.12.2020
File
Joomla! Component GMapFP 3.5 – Unauthenticated Arbitrary File Upload
Joomla! Component GMapFP 3.5 – Unauthenticated Arbitrary File Upload
01.12.2020
File
OpenCart 3.0.3.6 – ‘subject’ Stored Cross-Site Scripting
OpenCart 3.0.3.6 – ‘subject’ Stored Cross-Site Scripting
24.11.2020
File
OpenCart 3.0.3.6 – ‘Profile Image’ Stored Cross-Site Scripting (Authenticated)
OpenCart 3.0.3.6 – ‘Profile Image’ Stored Cross-Site Scripting (Authenticated)
24.11.2020
File
Joomla Plugin Simple Image Gallery Extended (SIGE) 3.5.3 – Multiple Vulnerabilities
Joomla Plugin Simple Image Gallery Extended (SIGE) 3.5.3 – Multiple Vulnerabilities
17.11.2020
File
OpenCart Theme Journal 3.1.0 – Sensitive Data Exposure
OpenCart Theme Journal 3.1.0 – Sensitive Data Exposure
13.11.2020
File
Joomla! paGO Commerce 2.5.9.0 – SQL Injection (Authenticated)
Joomla! paGO Commerce 2.5.9.0 – SQL Injection (Authenticated)
14.09.2020
File
Joomla! J2 JOBS 1.3.0 – ‘sortby’ Authenticated SQL Injection
Joomla! J2 JOBS 1.3.0 – ‘sortby’ Authenticated SQL Injection
15.07.2020
File
Joomla! J2 Store 3.3.11 – ‘filter_order_Dir’ Authenticated SQL Injection
Joomla! J2 Store 3.3.11 – ‘filter_order_Dir’ Authenticated SQL Injection
10.06.2020
File
OpenCart 3.0.3.2 – Stored Cross Site Scripting (Authenticated)
OpenCart 3.0.3.2 – Stored Cross Site Scripting (Authenticated)
02.06.2020
File
Joomla! Plugin XCloner Backup 3.5.3 – Local File Inclusion (Authenticated)
Joomla! Plugin XCloner Backup 3.5.3 – Local File Inclusion (Authenticated)
26.05.2020
File
Prestashop 1.7.6.4 – Cross-Site Request Forgery
Prestashop 1.7.6.4 – Cross-Site Request Forgery
20.04.2020
File
Joomla! com_fabrik 3.9.11 – Directory Traversal
Joomla! com_fabrik 3.9.11 – Directory Traversal
30.03.2020
File
Joomla! Component GMapFP 3.30 – Arbitrary File Upload
Joomla! Component GMapFP 3.30 – Arbitrary File Upload
25.03.2020
File
Joomla! com_hdwplayer 4.2 – ‘search.php’ SQL Injection
Joomla! com_hdwplayer 4.2 – ‘search.php’ SQL Injection
23.03.2020
File
Joomla! Component ACYMAILING 3.9.0 – Unauthenticated Arbitrary File Upload
Joomla! Component ACYMAILING 3.9.0 – Unauthenticated Arbitrary File Upload
18.03.2020
File
Joomla! Component com_newsfeeds 1.0 – ‘feedid’ SQL Injection
Joomla! Component com_newsfeeds 1.0 – ‘feedid’ SQL Injection
12.03.2020
File
Joomla! 3.9.0 < 3.9.7 - CSV Injection
Joomla! 3.9.0 < 3.9.7 - CSV Injection
11.03.2020
File
Joomla! 3.4.6 – Remote Code Execution (Metasploit)
Joomla! 3.4.6 – Remote Code Execution (Metasploit)
23.10.2019
File
Joomla! 3.4.6 – Remote Code Execution
Joomla! 3.4.6 – Remote Code Execution
18.10.2019
File
Joomla! 3.4.6 – ‘configuration.php’ Remote Code Execution
Joomla! 3.4.6 – ‘configuration.php’ Remote Code Execution
07.10.2019
File
Opencart 3.x – Cross-Site Scripting
Opencart 3.x – Cross-Site Scripting
02.09.2019
File
Joomla! component com_jsjobs 1.2.6 – Arbitrary File Deletion
Joomla! component com_jsjobs 1.2.6 – Arbitrary File Deletion
16.08.2019
File
Joomla! Component JS Jobs (com_jsjobs) 1.2.5 – ‘customfields.php’ SQL Injection
Joomla! Component JS Jobs (com_jsjobs) 1.2.5 – ‘customfields.php’ SQL Injection
14.08.2019
File
Joomla! Component JS Support Ticket (com_jssupportticket) 1.1.6 – ‘ticketreply.php’ SQL Injection
Joomla! Component JS Support Ticket (com_jssupportticket) 1.1.6 – ‘ticketreply.php’ SQL Injection
12.08.2019
File
Joomla! Component JS Support Ticket (com_jssupportticket) 1.1.6 – ‘ticket.php’ Arbitrary File Deletion
Joomla! Component JS Support Ticket (com_jssupportticket) 1.1.6 – ‘ticket.php’ Arbitrary File Deletion
12.08.2019
File
Joomla! Component JS Jobs (com_jsjobs) 1.2.5 – ‘cities.php’ SQL Injection
Joomla! Component JS Jobs (com_jsjobs) 1.2.5 – ‘cities.php’ SQL Injection
12.08.2019
File
Joomla! Component JS Support Ticket (component com_jssupportticket) 1.1.5 – SQL Injection
Joomla! Component JS Support Ticket (component com_jssupportticket) 1.1.5 – SQL Injection
08.08.2019
File
Joomla! Component JS Support Ticket (component com_jssupportticket) 1.1.5 – Arbitrary File Download
Joomla! Component JS Support Ticket (component com_jssupportticket) 1.1.5 – Arbitrary File Download
08.08.2019
File
Opencart 3.0.3.2 – ‘extension/feed/google_base’ Denial of Service (PoC)
Opencart 3.0.3.2 – ‘extension/feed/google_base’ Denial of Service (PoC)
24.05.2019
File
Joomla! Component JiFile 2.3.1 – Arbitrary File Download
Joomla! Component JiFile 2.3.1 – Arbitrary File Download
30.04.2019
File
Joomla! Component ARI Quiz 3.7.4 – SQL Injection
Joomla! Component ARI Quiz 3.7.4 – SQL Injection
30.04.2019
File
Joomla! Core 1.5.0 – 3.9.4 – Directory Traversal / Authenticated Arbitrary File Deletion
Joomla! Core 1.5.0 – 3.9.4 – Directory Traversal / Authenticated Arbitrary File Deletion
16.04.2019
File
Drupal < 8.5.11 / < 8.6.10 - RESTful Web Services unserialize() Remote Command Execution (Metasploit)
Drupal < 8.5.11 / < 8.6.10 - RESTful Web Services unserialize() Remote Command Execution (Metasploit)
07.03.2019
File
12345