HelloWorld - Security Researcher - Exploit Intelligence Platform

CVE-2026-6356 GITHUB CRITICAL python WRITEUP

Augmentt 1.0 - Privilege Escalation

A vulnerability in the web application allows standard users to escalate their privileges to those of a super administrator through parameter manipulation, enabling them to access and modify sensitive information.

4 stars

CVSS 9.6

View Code

CVE-2026-6356 GITHUB CRITICAL WRITEUP

Augmentt 1.0 - Privilege Escalation

A vulnerability in the web application allows standard users to escalate their privileges to those of a super administrator through parameter manipulation, enabling them to access and modify sensitive information.

CVSS 9.6

View Code

CVE-2026-6355 NOMISEC MEDIUM WRITEUP

Augmentt < 1.0 - Insecure Direct Object Reference

A vulnerability in the web application allows unauthorized users to access and manipulate sensitive data across different tenants by exploiting insecure direct object references. This could lead to unauthorized access to sensitive information and unauthorized changes to the tenant's configuration.

CVSS 6.5

View Code

CVE-2026-6356 NOMISEC CRITICAL SUSPICIOUS

Augmentt 1.0 - Privilege Escalation

A vulnerability in the web application allows standard users to escalate their privileges to those of a super administrator through parameter manipulation, enabling them to access and modify sensitive information.

CVSS 9.6

View Code

CVE-2026-6355 WRITEUP MEDIUM WRITEUP

Augmentt < 1.0 - Insecure Direct Object Reference

A vulnerability in the web application allows unauthorized users to access and manipulate sensitive data across different tenants by exploiting insecure direct object references. This could lead to unauthorized access to sensitive information and unauthorized changes to the tenant's configuration.

CVSS 6.5

View Code

CVE-2026-6356 WRITEUP CRITICAL SUSPICIOUS

Augmentt 1.0 - Privilege Escalation

A vulnerability in the web application allows standard users to escalate their privileges to those of a super administrator through parameter manipulation, enabling them to access and modify sensitive information.

CVSS 9.6

View Code

CVE-2004-0249 EXPLOITDB php WORKING POC

PHPX 2.0-3.2.4 - Unauthenticated Account Access via Cookie Manipulation

PHPX 2.0 through 3.2.4 allows remote attackers to gain access to other accounts by modifying the cookie's PXL variable to reference another userID.

View Code