College Management System 1.0 Arbitrary File Upload
College Management System version 1.0 suffers from an arbitrary file upload vulnerability.
View ArticlePet Shop Management System 1.0 Privilege Escalation / Shell Upload
Pet Shop Management System version 1.0 suffers from privilege escalation and remote shell upload vulnerabilities.
View ArticleOpen Game Panel Remote Code Execution
Open Game Panel suffers from an authenticated remote code execution vulnerability.
View ArticleVehicle Service Management System 1.0 SQL Injection
Vehicle Service Management System version 1.0 suffers from multiple remote SQL injection vulnerabilities one of which allows for authentication bypass.
View ArticleVehicle Service Managment System 1.0 Shell Upload
Vehicle Service Management System version 1.0 unauthenticated remote shell upload exploit that uses authentication bypass with SQL injection.
View ArticleYoung Entrepreneur E-Negosyo System 1.0 SQL Injection
Young Entrepreneur E-Negosyo System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
View ArticleYoung Entrepreneur E-Negosyo System 1.0 Cross Site Scripting
Young Entrepreneur E-Negosyo System version 1.0 suffers from a persistent cross site scripting vulnerability.
View ArticleLifestyle Store 1.0 Cross Site Scripting
Lifestyle Store version 1.0 suffers from a cross site scripting vulnerability.
View ArticleGatekeeper Bypass Proof Of Concept
This script will create a zip file exploiting CVE-2021-1810 by creating a directory hierarchy deep enough for Archive Utility to fail setting quarantine attributes on certain files while also making...
View ArticleMedSec Network Utility Tool
MedSec is a network utility tool developed to perform some network, security administrator, and pentesting tasks. Basic functionality includes port scans, host discovery, banner grabbing, dns checks,...
View ArticleSeth RDP Man-In-The-Middle Tool
Seth is a tool written in Python and Bash to MitM RDP connections by attempting to downgrade the connection in order to extract clear text credentials. It was developed to raise awareness and educate...
View ArticlePyRDP RDP Man-In-The-Middle Tool
PyRDP is a Python Remote Desktop Protocol (RDP) Monster-in-the-Middle (MITM) tool and library.
View ArticleCollege Management System 1.0 SQL Injection
College Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
View ArticleTestSSL 3.0.6
testssl.sh is a free command line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as recent cryptographic flaws, and much more. It is written in...
View ArticleBing.com Hostname / IP Enumerator 1.0.5
This tool enumerates hostnames from Bing.com for an IP address. Bing.com is Microsoft's search engine which has an IP: search parameter. Written in Bash for Linux. Requires wget.
View ArticleCollege Management System 1.0 Cross Site Scripting
College Management System version 1.0 suffers from a persistent cross site scripting vulnerability.
View ArticleUbuntu Security Notice USN-4973-2
Ubuntu Security Notice 4973-2 - USN-4973-1 fixed this vulnerability previously, but it was re-introduced in python3.8 in focal because of the SRU in LP: #1928057. This update fixes the problem. It was...
View ArticleCollege Management System 1.0 Insecure Direct Object Reference
College Management System 1.0 suffers from an insecure direct object reference that allows a user to add an administrator without any authentication.
View ArticleLocal Offices Contact Directory Site SQL Injection
Local Offices Contact Directory Site using PHP and SQLite Free Source Code suffers from a remote SQL injection vulnerability.
View ArticleCompany's Recruitment Management System SQL Injection
Company's Recruitment Management System in PHP and SQLite Free Source Code suffers from a remote SQL injection vulnerability.
View Article
