BKpatron

16 exploits Active since Dec 2020
CVE-2020-37076 EXPLOITDB HIGH text WORKING POC
Victor CMS 1.0 - SQL Injection
Victor CMS version 1.0 contains a SQL injection vulnerability in the 'post' parameter on post.php that allows remote attackers to manipulate database queries. Attackers can exploit this vulnerability by sending crafted UNION SELECT payloads to extract database information through boolean-based, error-based, and time-based injection techniques.
CVSS 8.2
CVE-2020-36999 EXPLOITDB HIGH text WORKING POC
Elaniin CMS 1.0 - Auth Bypass
Elaniin CMS 1.0 contains an authentication bypass vulnerability that allows attackers to access the dashboard by manipulating the login page with SQL injection. Attackers can bypass authentication by sending crafted email and password parameters with '=''or' payload to login.php, granting unauthorized access to the system.
CVSS 8.2
CVE-2020-29282 EXPLOITDB CRITICAL text WORKING POC
BloodX 1.0 - SQL Injection
SQL injection vulnerability in BloodX 1.0 allows attackers to bypass authentication.
CVSS 9.8
EIP-2026-113044 EXPLOITDB text WORKING POC
Vehicle Parking Management System 1.0 - Authentication Bypass
EIP-2026-110097 EXPLOITDB text WORKING POC
Online Examination System 1.0 - 'eid' SQL Injection
EIP-2026-110053 EXPLOITDB text WORKING POC
Online AgroCulture Farm Management System 1.0 - 'pid' SQL Injection
EIP-2026-110067 EXPLOITDB text WORKING POC
online Chatting System 1.0 - 'id' SQL Injection
EIP-2026-110076 EXPLOITDB text WORKING POC
Online Course Registration 1.0 - Authentication Bypass
EIP-2026-110110 EXPLOITDB text WORKING POC
Online Healthcare management system 1.0 - Authentication Bypass
EIP-2026-110185 EXPLOITDB text WORKING POC
Online Student Enrollment System 1.0 - Cross-Site Request Forgery (Add Student)
EIP-2026-110186 EXPLOITDB text WORKING POC
Online Student Enrollment System 1.0 - Unauthenticated Arbitrary File Upload
EIP-2026-105919 EXPLOITDB text WORKING POC
Clinic Management System 1.0 - Authenticated Arbitrary File Upload
EIP-2026-106105 EXPLOITDB text WORKING POC
Complaint Management System 1.0 - Authentication Bypass
EIP-2026-105922 EXPLOITDB text WORKING POC
Clinic Management System 1.0 - Unauthenticated Remote Code Execution
EIP-2026-105920 EXPLOITDB text WORKING POC
Clinic Management System 1.0 - Authentication Bypass
EIP-2026-105391 EXPLOITDB text WORKING POC
Barangay Management System 1.0 - Authentication Bypass