Vulnerabilities, exploits, attacks and threats

Well-known information security vulnerabilities database

Main

CVE

CVE-2023-0564

Weak Password Requirements in GitHub repository froxlor/froxlor prior to 2.0.10.Read More ...

Continue Reading

CVE

CVE-2022-48285

loadAsync in JSZip before 3.8.0 allows Directory Traversal via a crafted ZIP archive.Read More ...

Continue Reading

CVE

CVE-2023-0562

A vulnerability was found in PHPGurukul Bank Locker Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file index.php of the component Lo ...

Continue Reading

CVE

CVE-2023-0563

A vulnerability classified as problematic has been found in PHPGurukul Bank Locker Management System 1.0. This affects an unknown part of the file add-locker-form.php of the component Assign Locker. T ...

Continue Reading

CVE

CVE-2021-4315

A vulnerability has been found in NYUCCL psiTurk up to 3.2.0 and classified as critical. This vulnerability affects unknown code of the file psiturk/experiment.py. The manipulation of the argument mod ...

Continue Reading

Bugbounty

Dropdown Menu Manipulation leads to stored HTML Injection

Hello In the Cronjob we can change the Interval Time the Dropdown Menu "minutes" to a stored HTML Injection. The Vulnerabilities are 2: 1. First thing the Dropdown Menu should be fixed and nobody c ...

Continue Reading

Bugbounty

SQL Database Error could lead to SQL Injection with internal Path Disclosure

Hello, Through manipulating Parameter i get an SQL Error which can lead to SQL Injection. Plus that there is an internal Path Disclosure. Best regards Ahmed HassanRead More ...

Continue Reading

Bugbounty

Language Dropdown Menu Manipulation

Hello It is possible to manipulate the Language Dropdown Menu and change it to anything the attacker wants. Process of the Vulnerability: 1. Login 2. Go Miscellaneous -> Email & file template ...

Continue Reading
Generated by Feedzy