Hosein Vita

7 exploits Active since Mar 2021
CVE-2021-43617 NOMISEC CRITICAL STUB
Laravel Framework <8.70.2 - Code Injection
Laravel Framework through 8.70.2 does not sufficiently block the upload of executable PHP content because Illuminate/Validation/Concerns/ValidatesAttributes.php lacks a check for .phar files, which are handled as application/x-httpd-php on systems based on Debian. NOTE: this CVE Record is for Laravel Framework, and is unrelated to any reports concerning incorrectly written user applications for image upload.
CVSS 9.8
CVE-2021-47925 EXPLOITDB MEDIUM text WORKING POC
CMDBuild 3.3.2 Multiple Stored Cross-Site Scripting
CMDBuild 3.3.2 contains multiple stored cross-site scripting vulnerabilities that allow authenticated attackers to inject arbitrary web script or HTML via crafted input in card creation and file upload endpoints. Attackers can inject XSS payloads through Employee card parameters or SVG file attachments in the classes endpoint, which execute when other users view the affected records or preview attachments.
CVSS 6.4
CVE-2021-24245 EXPLOITDB MEDIUM text WORKING POC
Stop Spammers < 2021.9 - Reflected Cross-Site Scripting via Blocked Request Output
The Stop Spammers WordPress plugin before 2021.9 did not escape user input when blocking requests (such as matching a spam word), outputting it in an attribute after sanitising it to remove HTML tags, which is not sufficient and lead to a reflected Cross-Site Scripting issue.
CVSS 6.1
CVE-2021-43617 EXPLOITDB CRITICAL text WORKING POC
Laravel Framework <8.70.2 - Code Injection
Laravel Framework through 8.70.2 does not sufficiently block the upload of executable PHP content because Illuminate/Validation/Concerns/ValidatesAttributes.php lacks a check for .phar files, which are handled as application/x-httpd-php on systems based on Debian. NOTE: this CVE Record is for Laravel Framework, and is unrelated to any reports concerning incorrectly written user applications for image upload.
CVSS 9.8
CVE-2021-27695 EXPLOITDB MEDIUM text WORKING POC
openMAINT 2.1-3.3-b - Stored Cross-Site Scripting via Name and Code Parameters
Multiple stored cross-site scripting (XSS) vulnerabilities in openMAINT 2.1-3.3-b allow remote attackers to inject arbitrary web script or HTML via any "Add" sections, such as Add Card Building & Floor, or others in the Name and Code Parameters.
CVSS 6.1
CVE-2022-38580 EXPLOITDB CRITICAL text WORKING POC
Zalando Skipper < 0.13.237 - Server-Side Request Forgery
Zalando Skipper v0.13.236 is vulnerable to Server-Side Request Forgery (SSRF).
CVSS 9.8
EIP-2026-103262 EXPLOITDB python WORKING POC
Aurba 501 - Authenticated RCE