[webapps] Online Admission System 1.0 - Remote Code Execution (RCE) (Unauthenticated) 2022-1-5 08:0:0 | 阅读: 16 | 收藏 | www.exploit-db.com localport php octet admission payload

[webapps] Movie Rating System 1.0 - SQLi to RCE (Unauthenticated) # Exploit Title: Movie Rating System 1.0 - SQLi t... 2022-1-5 08:0:0 | 阅读: 18 | 收藏 | www.exploit-db.com findpath sqlpage sqltorce php selectpage

[webapps] Movie Rating System 1.0 - Broken Access Control (Admin Account Creation) (Unauthenticated) # Exploit Title: Movie Rating System 1.0 - Broken... 2022-1-5 08:0:0 | 阅读: 8 | 收藏 | www.exploit-db.com username reqdata requrl reqheaders

[remote] Accu-Time Systems MAXIMUS 1.0 - Telnet Remote Buffer Overflow (DoS) # Exploit Title: Accu-Time Systems MAXIMUS 1.0 -... 2022-1-5 08:0:0 | 阅读: 10 | 收藏 | www.exploit-db.com accu remote maximus overflow crashed

[remote] AWebServer GhostBuilding 18 - Denial of Service (DoS) # Exploit Title: AWebServer GhostBuilding 18 - De... 2022-1-5 08:0:0 | 阅读: 16 | 收藏 | www.exploit-db.com 1m awebserver yellow turquoise

[webapps] Hostel Management System 2.1 - Cross Site Scripting (XSS) # Exploit Title: Hostel Management System 2.1 - C... 2022-1-5 08:0:0 | 阅读: 14 | 收藏 | www.exploit-db.com hostel payload phpgurukul chinmay php

[webapps] Nettmp NNT 5.1 - SQLi Authentication Bypass # Exploit Title: Nettmp NNT 5.1 - SQLi Authentica... 2022-1-5 08:0:0 | 阅读: 11 | 收藏 | www.exploit-db.com nettmp username vuln tk nettemp

[webapps] WordPress Plugin WP Visitor Statistics 4.7 - SQL Injection # Exploit Title: WordPress Plugin WP Visitor Stat... 2022-1-5 08:0:0 | 阅读: 7 | 收藏 | www.exploit-db.com wp wordpress username injection visitor

[remote] Dixell XWEB 500 - Arbitrary File Write # Exploit Title: Dixell XWEB-500 - Arbitrary File... 2022-1-5 08:0:0 | 阅读: 8 | 收藏 | www.exploit-db.com chrome kis xweb dixell octet

[remote] TermTalk Server 3.24.0.2 - Arbitrary File Read (Unauthenticated) # Exploit Title: TermTalk Server 3.24.0.2 - Arbit... 2022-1-5 08:0:0 | 阅读: 7 | 收藏 | www.exploit-db.com solari swascan udine valore termtalk

[webapps] openSIS Student Information System 8.0 - 'multiple' SQL Injection # Exploit Title: openSIS Student Information Syst... 2022-1-5 08:0:0 | 阅读: 8 | 收藏 | www.exploit-db.com security grade php

[webapps] Vodafone H-500-s 3.5.10 - WiFi Password Disclosure # Exploit Title: Vodafone H-500-s 3.5.10 - WiFi P... 2022-1-5 08:0:0 | 阅读: 16 | 收藏 | www.exploit-db.com vodafone activation vfh500 disclose python3

[webapps] Terramaster TOS 4.2.15 - Remote Code Execution (RCE) (Unauthenticated) 2022-1-5 08:0:0 | 阅读: 15 | 收藏 | www.exploit-db.com tos php download pwd username

[webapps] Virtual Airlines Manager 2.6.2 - 'multiple' SQL Injection # Exploit Title: Virtual Airlines Manager 2.6.2 -... 2022-1-5 08:0:0 | 阅读: 13 | 收藏 | www.exploit-db.com vam php plane tour notam

[local] TRIGONE Remote System Monitor 3.61 - Unquoted Service Path # Exploit Title: TRIGONE Remote System Monitor 3.... 2022-1-5 08:0:0 | 阅读: 9 | 收藏 | www.exploit-db.com remote trigone windows unquoted

[webapps] WordPress Plugin AAWP 3.16 - 'tab' Reflected Cross Site Scripting (XSS) (Authenticated) # Exploit Title: WordPress Plugin AAWP 3.16 - 'ta... 2022-1-5 08:0:0 | 阅读: 9 | 收藏 | www.exploit-db.com aawp 288 3dprompt 22onclick getaawp

[local] Automox Agent 32 - Local Privilege Escalation # Exploit Title: Automox Agent 32 - Local Privile... 2022-1-5 08:0:0 | 阅读: 9 | 收藏 | www.exploit-db.com automox amagent execdir powershell 43326

[webapps] Projeqtor v9.3.1 - Stored Cross Site Scripting (XSS) # Exploit Title: Projeqtor v9.3.1 - Stored Cross... 2022-1-5 08:0:0 | 阅读: 10 | 收藏 | www.exploit-db.com projeqtor xlink rgb stroke attacker

[remote] Gerapy 0.9.7 - Remote Code Execution (RCE) (Authenticated) # Exploit Title: Gerapy 0.9.7 - Remote Code Execu... 2022-1-5 08:0:0 | 阅读: 7 | 收藏 | www.exploit-db.com localport dict3 gerapy payload dict2

[webapps] BeyondTrust Remote Support 6.0 - Reflected Cross-Site Scripting (XSS) (Unauthenticated) # Exploit Title: BeyondTrust Remote Support 6.0 -... 2022-1-5 08:0:0 | 阅读: 7 | 收藏 | www.exploit-db.com beyondtrust appliance remote nsbase attackers