Aatif Shahdad

3 exploits Active since Jun 2026
CVE-2016-20083 EXPLOITDB MEDIUM text WORKING POC
WordPress More Fields Plugin 2.1 Cross-Site Request Forgery
WordPress More Fields Plugin 2.1 contains a cross-site request forgery vulnerability that allows attackers to perform unauthorized actions by disabling CSRF token validation. Attackers can craft malicious web pages that trick logged-in administrators into adding or deleting custom fields and boxes on the Write/Edit page via POST and GET requests to the options-general.php endpoint.
CVSS 5.3
EIP-2026-110565 EXPLOITDB html WORKING POC
pfSense Firewall 2.2.5 - Config File Cross-Site Request Forgery
EIP-2026-110566 EXPLOITDB text WORKING POC
pfSense Firewall 2.2.6 - Services Cross-Site Request Forgery