Ghuliev

5 exploits Active since Mar 2022
CVE-2022-26332 EXPLOITDB MEDIUM text WORKING POC
Cipi 3.1.15 - Stored Cross-Site Scripting via Server Name Field
Cipi 3.1.15 allows Add Server stored XSS via the /api/servers name field.
CVSS 5.4
CVE-2022-26252 EXPLOITDB MEDIUM text WORKING POC
aaPanel 6.8.21 - Path Traversal
aaPanel v6.8.21 was discovered to be vulnerable to directory traversal. This vulnerability allows attackers to obtain the root user private SSH key(id_rsa).
CVSS 6.5
EIP-2026-113046 EXPLOITDB python WORKING POC
Vehicle Service Management System 1.0 - Remote Code Execution (RCE) (Unauthenticated)
EIP-2026-112223 EXPLOITDB text WORKING POC
Small CRM 3.0 - 'description' Stored Cross-Site Scripting (XSS)
EIP-2026-112441 EXPLOITDB python WORKING POC
Storage Unit Rental Management System 1.0 - Remote Code Execution (RCE) (Unauthenticated)