HTDark | Underground Hacking Forum and Cybersecurity Community
  • Earn real money by being active: Hello Guest, earn real money by simply being active on the forum — post quality content, get reactions, and help the community. Once you reach the minimum credit amount, you’ll be able to withdraw your balance directly. Learn how it works.

Recent content by 1337day-Exploits

  1. 1

    Exploits ExploitsGaati Track 1.0-2023 Insecure Direct Object Reference

    Gaati Track version 1.0-2023 suffers from an insecure direct object reference vulnerability.View the full article
  2. 1

    Exploits ExploitsFarmacia Gama 1.0 File Inclusion

    Farmacia Gama version 1.0 suffers from a file inclusion vulnerability.View the full article
  3. 1

    Exploits ExploitsEmployee Management System 1.0 Cross Site Request Forgery

    Employee Management System version 1.0 suffers from a cross site request forgery vulnerability.View the full article
  4. 1

    Exploits ExploitsE-Commerce Site Using PHP PDO 1.0 Cross Site Scripting

    E-Commerce Site using PHP PDO version 1.0 suffers from a cross site scripting vulnerability.View the full article
  5. 1

    Exploits ExploitsBhojon Restaurant Management System 2.8 Insecure Direct Object Reference

    Bhojon Restaurant Management System version 2.9 suffers from an insecure direct object reference vulnerability.View the full article
  6. 1

    Exploits ExploitsXain-Hotel Management System 2.5 Insecure Settings

    Xain-Hotel Management System version 2.5 suffers from an ignored default credential vulnerability.View the full article
  7. 1

    Exploits ExploitsYoga Class Registration System 1.0 Cross Site Request Forgery

    Yoga Class Registration System version 1.0 suffers from a cross site request forgery vulnerability.View the full article
  8. 1

    Exploits ExploitsExam Form Submission 1.0 Arbitrary File Upload

    Exam Form Submission version 1.0 suffers from an arbitrary file upload vulnerability.View the full article
  9. 1

    Exploits ExploitsAccPack Khanepani 1.0 Arbitrary File Upload

    AccPack Khanepani version 1.0 suffers from an arbitrary file upload vulnerability.View the full article
  10. 1

    Exploits ExploitsAccPack Cop 1.0 Arbitrary File Upload

    AccPack Cop version 1.0 suffers from an arbitrary file upload vulnerability.View the full article
  11. 1

    Exploits ExploitsCalibre 7.15.0 Python Code Injection

    This Metasploit module exploits a Python code injection vulnerability in the Content Server component of Calibre version 6.9.0 through 7.15.0. Once enabled (disabled by default), it will listen in its default configuration on all network interfaces on TCP port 8080 for incoming traffic, and does...
  12. 1

    Exploits ExploitsJournyx 11.5.4 XML Injection

    Journyx version 11.5.4 has an issue where the soap_cgi.pyc API handler allows the XML body of SOAP requests to contain references to external entities. This allows an unauthenticated attacker to read local files, perform server-side request forgery, and overwhelm the web server resources.View...
  13. 1

    Exploits ExploitsJournyx 11.5.4 Cross Site Scripting

    Journyx version 11.5.4 suffers from a cross site scripting vulnerability due to mishandling of the error_description during an active directory login flow.View the full article
  14. 1

    Exploits ExploitsJournyx 11.5.4 Authenticated Remote Code Execution

    Journyx version 11.5.4 has an issue where attackers with a valid username and password can exploit a python code injection vulnerability during the natural login flow.View the full article
  15. 1

    Exploits ExploitsJournyx 11.5.4 Unauthenticated Password Reset Bruteforce

    Journyx version 11.5.4 suffers from an issue where password reset tokens are generated using an insecure source of randomness. Attackers who know the username of the Journyx installation user can bruteforce the password reset and change the administrator password.View the full article
Back
Top