what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 2 of 2

Files from Geraldo Alcantara

Customer Support System 1.0 Cross Site Scripting

Posted Jul 1, 2024

Authored by Geraldo Alcantara

Customer Support System version 1.0 suffers from a persistent cross site scripting vulnerability. Original discovery of cross site scripting in this version is attributed to Ahmed Abba in November of 2020.

tags | exploit, xss

advisories | CVE-2023-49976

SHA-256 | bd3b1262bfab66821d2e542deeae55703ce8c3dbcbfb3a2f3bb1adec4b3fdef0

Download | Favorite | View

Customer Support System 1.0 SQL Injection

Posted Mar 6, 2024

Authored by Geraldo Alcantara

Customer Support System version 1.0 suffers from a remote SQL injection vulnerability in /customer_support/ajax.php. Original discovery of SQL injection in this version is attributed to Ahmed Abbas in November of 2020.

tags | exploit, remote, php, sql injection

advisories | CVE-2023-50071

SHA-256 | 718d48eb7ca237f5f3ee83bb6118e210de87e3b83055bc4ece1ed2ad4b88e9d9

Download | Favorite | View