Hardik Solanki

6 exploits Active since Dec 2020
CVE-2020-35752 EXPLOITDB MEDIUM text WORKING POC
Baby Care System 1.0 - Stored Cross-Site Scripting via Post Title Parameter
Baby Care System 1.0 is affected by a cross-site scripting (XSS) vulnerability in the Edit Page tab through the Post title parameter.
CVSS 5.4
CVE-2020-35275 EXPLOITDB MEDIUM text WRITEUP
Coastercms v5.8.18 - Cross-Site Scripting
Coastercms v5.8.18 is affected by cross-site Scripting (XSS). A user can steal a cookie and make the user redirect to any malicious website because it is trigged on the main home page of the product/application.
CVSS 5.4
CVE-2020-35274 EXPLOITDB MEDIUM text WORKING POC
dotcms 20.11 - Stored Cross-Site Scripting in Admin Panel Template Addition
DotCMS Add Template with admin panel 20.11 is affected by cross-site Scripting (XSS) to gain remote privileges. An attacker could compromise the security of a website or web application through a stored XSS attack and stealing cookies using XSS.
CVSS 4.8
CVE-2020-35273 EXPLOITDB HIGH text WORKING POC
EgavilanMedia User Registration & Login System with Admin Panel 1.0 - Cross-Site Request Forgery in User Profile Panel
EgavilanMedia User Registration & Login System with Admin Panel 1.0 is affected by Cross Site Request Forgery (CSRF) to remotely gain privileges in the User Profile panel. An attacker can update any user's account.
CVSS 8.0
EIP-2026-114069 EXPLOITDB text WRITEUP
WordPress Plugin Smart Slider-3 3.5.0.8 - 'name' Stored Cross-Site Scripting (XSS)
EIP-2026-111994 EXPLOITDB text WRITEUP
Seotoaster 3.2.0 - Stored XSS on Edit page properties