Grim The Ripper Team by SOSECURE Thailand

8 exploits Active since Jul 2022
CVE-2022-42094 NOMISEC MEDIUM WRITEUP
Backdrop CMS 1.23.0 - Stored Cross-Site Scripting via Card Content
Backdrop CMS version 1.23.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the 'Card' content.
1 stars
CVSS 4.8
CVE-2022-42096 NOMISEC MEDIUM WRITEUP
Backdrop CMS 1.23.0 - Stored Cross-Site Scripting via Post Content
Backdrop CMS version 1.23.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via Post content.
1 stars
CVSS 4.8
CVE-2022-42097 NOMISEC MEDIUM WRITEUP
Backdrop CMS 1.23.0 - Stored Cross-Site Scripting via Comment
Backdrop CMS version 1.23.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via 'Comment.' .
1 stars
CVSS 4.8
CVE-2022-42098 NOMISEC HIGH WRITEUP
KLiK SocialMediaWebsite v1.0.1 - SQL Injection via profile.php
KLiK SocialMediaWebsite version v1.0.1 is vulnerable to SQL Injection via the profile.php.
1 stars
CVSS 8.8
CVE-2022-42095 NOMISEC MEDIUM WRITEUP
Backdrop CMS 1.23.0 - Stored Cross-Site Scripting via Page Content
Backdrop CMS version 1.23.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Page content.
CVSS 4.8
CVE-2022-34962 NOMISEC MEDIUM WRITEUP
Open Source Social Network 6.3 - Stored Cross-Site Scripting in Group Timeline Module
OpenTeknik LLC OSSN OPEN SOURCE SOCIAL NETWORK v6.3 LTS was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Group Timeline module.
CVSS 5.4
CVE-2022-34963 NOMISEC MEDIUM WRITEUP
Open Source Social Network 6.3 LTS - Stored Cross-Site Scripting via News Feed Module
OpenTeknik LLC OSSN OPEN SOURCE SOCIAL NETWORK v6.3 LTS was discovered to contain a stored cross-site scripting (XSS) vulnerability via the News Feed module.
CVSS 5.4
CVE-2022-34961 NOMISEC MEDIUM WRITEUP
Open Source Social Network 6.3 - Stored Cross-Site Scripting via Users Timeline Module
OpenTeknik LLC OSSN OPEN SOURCE SOCIAL NETWORK v6.3 LTS was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Users Timeline module.
CVSS 5.4