what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 10 of 10

Files from Pablo Santiago

Beehive Forum 1.5.2 Account Takeover

Posted May 11, 2022

Authored by Pablo Santiago

Beehive Forum version 1.5.2 suffers from an account takeover vulnerability.

tags | exploit

SHA-256 | ee8a348f30a9006de5efcb2011c534386feedfcca95415ab720cb4803a33000d

Download | Favorite | View

Laundry Booking Management System 1.0 Remote Code Execution

Posted Nov 30, 2021

Authored by Pablo Santiago

Laundry Booking Management System version 1.0 suffers from a remote code execution vulnerability.

tags | exploit, remote, code execution

SHA-256 | 4fa611a63914027d2b69ac12ecd58007b1fccc9848be217cea672bc6d12cfc21

Download | Favorite | View

Clinic Management System 1.0 Code Execution / SQL Injection

Posted Oct 22, 2021

Authored by Pablo Santiago

Clinic Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for a shell upload.

tags | exploit, remote, shell, sql injection

SHA-256 | f5c56bd725c4d429d8538d02faa6b5e7639510b64d58be8816511e188df9be9a

Download | Favorite | View

TemaTres 3.0 Cross Site Scripting

Posted Nov 18, 2019

Authored by Pablo Santiago

TemaTres version 3.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss

advisories | CVE-2019-14343

SHA-256 | 6fbb522bb40fad54315b77a39321a9a24dc52f1e80ef3670bcb8e03f2e2baaa7

Download | Favorite | View

TemaTres 3.0 Cross Site Request Forgery

Posted Nov 18, 2019

Authored by Pablo Santiago

TemaTres version 3.0 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf

SHA-256 | 408ad091dca69f3df8a0708da1fd8237ab74307022117bec085217d142968b7d

Download | Favorite | View

oXygen XML Editor 21.1.1 XML Injection

Posted Nov 14, 2019

Authored by Pablo Santiago

oXygen XML Editor version 21.1.1 suffers from an XML external entity injection vulnerability.

tags | exploit

SHA-256 | ecf168f5280157ada4955304be9f8936cd276ddb9b875238d2065784e1a87a20

Download | Favorite | View

Joomla 3.9.13 Host Header Injection

Posted Nov 12, 2019

Authored by Pablo Santiago

Joomla version 3.9.13 suffers from a host header injection vulnerability.

tags | exploit

SHA-256 | e437e7ea0d0596e20e1229f1a9c19e0baf049e958091692b328f582fb61cabc0

Download | Favorite | View

Adive Framework 2.0.7 Privilege Escalation

Posted Nov 8, 2019

Authored by Pablo Santiago

Adive Framework version 2.0.7 suffers from a privilege escalation vulnerability.

tags | exploit

advisories | CVE-2019-14347

SHA-256 | 0b20e4720adf1f6ea10e606db63013c37e4d431350c204169cb32136beb923e0

Download | Favorite | View

Adive Framework 2.0.7 Cross Site Request Forgery

Posted Aug 8, 2019

Authored by Pablo Santiago

Adive Framework version 2.0.7 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf

advisories | CVE-2019-14346

SHA-256 | ddc4cc5b81da5ab22c821b819b218a7750a78a12d3c5395da7ade2f52d4554d2

Download | Favorite | View

WordPress JoomSport 3.3 SQL Injection

Posted Aug 7, 2019

Authored by Pablo Santiago

WordPress JoomSport plugin version 3.3 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

advisories | CVE-2019-14348

SHA-256 | 8086b0c85c73e5f8bf6d357e49fd9f003ace61f16398d977655fe43de8072198

Download | Favorite | View