Chiaki2333 - Security Researcher - Exploit Intelligence Platform

CVE-2023-43381 WRITEUP HIGH WRITEUP

Tianchoy Blog <1.8.8 - Info Disclosure

SQL Injection vulnerability in Tianchoy Blog v.1.8.8 allows a remote attacker to obtain sensitive information via the id parameter in the login.php

CVSS 7.5

View Code

CVE-2023-49028 WRITEUP MEDIUM WRITEUP

absis < 2017-10-19 - Cross-Site Scripting via lock.php User Parameter

Cross Site Scripting vulnerability in smpn1smg absis v.2017-10-19 and before allows a remote attacker to execute arbitrary code via the user parameter in the lock/lock.php file.

CVSS 5.4

View Code

CVE-2023-49029 WRITEUP MEDIUM WRITEUP

smpn1smg absis < 2017-10-19 - Cross-Site Scripting via lock.php nama Parameter

Cross Site Scripting vulnerability in smpn1smg absis v.2017-10-19 and before allows a remote attacker to execute arbitrary code via the nama parameter in the lock/lock.php file.

CVSS 6.1

View Code

CVE-2023-49030 WRITEUP HIGH WRITEUP

32ns KLive <2019-1-19 - Info Disclosure

SQL Injection vulnerability in32ns KLive v.2019-1-19 and before allows a remote attacker to obtain sensitive information via a crafted script to the web/user.php component.

CVSS 7.5

View Code