Bruno de Barros Bulle - Security Researcher - Exploit Intelligence Platform

CVE-2020-12764 WRITEUP MEDIUM WRITEUP

Gnuteca 3.8 - Path Traversal

Gnuteca 3.8 allows file.php?folder=/&file= Directory Traversal.

CVSS 5.3

View Code

CVE-2020-12765 WRITEUP MEDIUM WRITEUP

Solis Miolo 2.0 - Path Traversal

Solis Miolo 2.0 allows index.php?module=install&action=view&item= Directory Traversal.

CVSS 5.3

View Code

CVE-2020-12766 WRITEUP CRITICAL WRITEUP

Gnuteca 3.8 - SQL Injection

Gnuteca 3.8 allows action=main:search:simpleSearch SQL Injection via the exemplaryStatusId parameter.

CVSS 9.8

View Code

CVE-2019-19740 EXPLOITDB CRITICAL text WORKING POC

Octeth Oempro - SQL Injection

Octeth Oempro 4.7 and 4.8 allow SQL injection. The parameter CampaignID in Campaign.Get is vulnerable.

CVSS 9.8

View Code