Fabian Mosch

3 exploits Active since Jan 2018
CVE-2019-25359 EXPLOITDB HIGH text WORKING POC
SD.NET RIM < 4.7.3c - SQL Injection via POST Parameters 'idtyp' and 'idgremium'
SD.NET RIM versions before 4.7.3c contain a SQL injection vulnerability that allows attackers to inject malicious SQL statements through POST parameters 'idtyp' and 'idgremium'. Attackers can exploit this vulnerability by crafting specially formed POST requests to the /vorlagen/ endpoint, enabling unauthorized database manipulation and potential information disclosure.
CVSS 8.2
CVE-2019-14430 EXPLOITDB MEDIUM text WRITEUP
YouPHPTube < 7.2 - SQL Injection in AuditTable.php
plugin/Audit/Objects/AuditTable.php in YouPHPTube through 7.2 allows SQL Injection.
CVSS 5.3
CVE-2018-1042 EXPLOITDB MEDIUM text WORKING POC
Moodle < 3.1.9 and 3.4-3.4.1 - Server-Side Request Forgery via Filepicker
Moodle 3.x has Server Side Request Forgery in the filepicker.
CVSS 6.5