Felipe "Renzi" Gabriel - Security Researcher - Exploit Intelligence Platform

CVE-2018-17832 EXPLOITDB MEDIUM text WORKING POC

WUZHI CMS 2.0 - Cross-Site Scripting via index.php v or f Parameter

XSS exists in WUZHI CMS 2.0 via the index.php v or f parameter.

CVSS 6.1

View Code

CVE-2018-12095 EXPLOITDB MEDIUM text WORKING POC

OEcms v3.1 - Reflected Cross-Site Scripting via info.php mod Parameter

A Reflected Cross-Site Scripting web vulnerability has been discovered in the OEcms v3.1 web-application. The vulnerability is located in the mod parameter of info.php.

CVSS 5.4

View Code

CVE-2018-17255 EXPLOITDB text WORKING POC

Rejected

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2020-14014. Reason: This candidate is a reservation duplicate of CVE-2020-14014. Notes: All CVE users should reference CVE-2020-14014 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage

View Code

CVE-2018-12094 EXPLOITDB MEDIUM text WORKING POC

Dimofinf CMS 3.0.0 - Cross-Site Scripting via News.php ID Parameter

Cross-site scripting (XSS) vulnerability in news.php in Dimofinf CMS Version 3.0.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter.

CVSS 5.4

View Code