CodeSecLab

28 exploits Active since Mar 2017
CVE-2022-3766 EXPLOITDB MEDIUM text WORKING POC
phpmyfaq < 3.1.8 - Reflected Cross-Site Scripting
Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.1.8.
CVSS 6.1
CVE-2023-30258 EXPLOITDB CRITICAL text WORKING POC
magnusbilling 6.0.0-7.2.9 - Unauthenticated OS Command Injection
Command Injection vulnerability in MagnusSolution magnusbilling 6.x and 7.x allows remote attackers to run arbitrary commands via unauthenticated HTTP request.
CVSS 9.8
CVE-2017-6478 EXPLOITDB MEDIUM text WORKING POC
mangoswebv4 < 4.0.8 - Reflected Cross-Site Scripting via Install Step Parameter
paintballrefjosh/MaNGOSWebV4 before 4.0.8 is vulnerable to a reflected XSS in install/index.php (step parameter).
CVSS 6.1