Listing of latest Exploits

This is live excerpt from our database.

Date Name Status Solution
2023-12-04Stock-Coupon-2.1 File Upload - RCEPublishedFix it
2023-12-04WordPress Theme phlox-pro 5.14.0 - 'searchform' Cross-Site Scripting XSSPublishedFix it
2023-12-03Quick-Quiz-2.4 File Upload - RCEPublishedFix it
2023-12-03Firstideabooks - SQL Injection vulnerabilityPublishedFix it
2023-12-03Artandaustralia - SQL Injection vulnerabilityPublishedFix it
2023-12-03Orpak Fueling Systems Exploit and Default PasswordPublishedFix it
2023-12-03Doksoft Uploader CSRF File UploadPublishedFix it
2023-11-29InTouch-1.0 File Upload - RCEPublishedFix it
2023-11-29Israel YCMS 4 - Remote File Upload - CSRF / Shell UploadPublishedFix it
2023-11-29Tenda D151 2 - Authentication BypassPublishedFix it
2023-11-27OsCommerce 4 - Reflected XSSPublishedFix it
2023-11-25Next-Hour-5.6 - File Upload - RCEPublishedFix it
2023-11-23Magento 2.4.6 XSLT Server Side Injection / Command ExecutionPublishedFix it
2023-11-22PHPJabbers Availability Booking Calendar 5.0 CSV InjectionPublishedFix it
2023-11-22Emart-Laravel-Multi-Vendor-eCommerce-Advanced-CMS-V 5.0 RELEASE 3.9.0 File Upload-RCEPublishedFix it
2023-11-22WordPress UserPro 5.1.x Password Reset / Authentication Bypass / EscalationPublishedFix it
2023-11-20EnBw SENEC Legacy Storage Box Log DisclosurePublishedFix it
2023-11-20Click Stocks-1.3 - File Upload - RCEPublishedFix it
2023-11-20GaatiTrack Courier Management System 1.0 Cross Site ScriptingPublishedFix it
2023-11-20Jorani Leave Management System 1.0.2 Host Header InjectionPublishedFix it
2023-11-20FireBear Improved Import And Export 3.8.6 XSLT Server Side InjectionPublishedFix it
2023-11-20Shuttle Booking Software 2.0 Cross Site ScriptingPublishedFix it
2023-11-16Chillipages Technologies - Blind Sql InjectionPublishedFix it
2023-11-12Plesk Obsidian 18.0.56 command injecrionPublishedFix it
2023-11-08Virtual Pages - Sql InjectionPublishedFix it
2023-11-08Webnink - sql injection VulnerabilityPublishedFix it
2023-11-05Turning Point - Sql InjectionPublishedFix it
2023-11-01VMWare Aria Operations For Networks SSH Private Key ExposurePublishedFix it
2023-11-01Designed by EMH - Blind Sql InjectionPublishedFix it
2023-11-01Designed by EMH - Cross site scriptingPublishedFix it
2023-11-01Aadija Technologies - Blind Sql InjectionPublishedFix it
2023-11-01Aadija Technologies - Xpath Injection VulnerabilityPublishedFix it
2023-10-31PixelPro Designs - Sql InjectionPublishedFix it
2023-10-29TEM Opera Plus FM Family Transmitter 35.45 Cross Site Request ForgeryPublishedFix it




Copyright © 2023 Exploitalert v1 BETA.
About us & Partners This information is provided for TESTING and LEGAL RESEARCH purposes only.
All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use and Privacy Policy