L0RD

53 exploits Active since May 2018
CVE-2018-11096 EXPLOITDB MEDIUM text WORKING POC
Horse Market Sell & Rent Portal - CSRF
Horse Market Sell & Rent Portal Script 1.5.7 has a CSRF vulnerability through which an attacker can change all of the target's account information remotely.
CVSS 6.5
EIP-2026-119594 EXPLOITDB text WORKING POC
Microsoft People 10.1807.2131.0 - Denial of service (PoC)
EIP-2026-119597 EXPLOITDB python WORKING POC
NASA openVSP 3.16.1 - Denial of Service (PoC)
EIP-2026-119590 EXPLOITDB text WORKING POC
Firefox 55.0.3 - Denial of Service (PoC)
EIP-2026-119604 EXPLOITDB python WORKING POC
Nord VPN 6.14.31 - Denial of Service (PoC)
EIP-2026-114580 EXPLOITDB text WORKING POC
Zechat 1.5 - SQL Injection / Cross-Site Request Forgery
EIP-2026-113178 EXPLOITDB text WORKING POC
WampServer 3.0.6 - Cross-Site Request Forgery
EIP-2026-113195 EXPLOITDB text WORKING POC
Wchat PHP AJAX Chat Script 1.5 - Cross-Site Scripting
EIP-2026-112822 EXPLOITDB text WORKING POC
Twitter-Clone 1 - 'userid' SQL Injection
EIP-2026-112821 EXPLOITDB text WORKING POC
Twitter-Clone 1 - 'code' SQL Injection
EIP-2026-112686 EXPLOITDB html WORKING POC
Timber 1.1 - Cross-Site Request Forgery
EIP-2026-112817 EXPLOITDB text WORKING POC
TV - Video Subscription - Authentication Bypass SQL Injection
EIP-2026-112823 EXPLOITDB text WORKING POC
Twitter-Clone 1 - Cross-Site Request Forgery (Delete Post)
EIP-2026-112483 EXPLOITDB text WORKING POC
SuperCom Online Shopping Ecommerce Cart 1 - Persistent Cross-Site scripting / Cross site request forgery / Authentication bypass
EIP-2026-112484 EXPLOITDB text WORKING POC
SuperCom Online Shopping Ecommerce Cart 1 - Persistent Cross-Site scripting / Cross site request forgery / Authentication bypass
EIP-2026-112296 EXPLOITDB text WORKING POC
Social Oauth Login PHP - Authentication Bypass
EIP-2026-112486 EXPLOITDB text WORKING POC
Superfood 1.0 - Multiple Vulnerabilities
EIP-2026-112247 EXPLOITDB text WORKING POC
Smartshop 1 - 'id' SQL Injection
EIP-2026-112248 EXPLOITDB html WORKING POC
Smartshop 1 - Cross-Site Request Forgery
EIP-2026-112452 EXPLOITDB text WORKING POC
Student Profile Management System Script 2.0.6 - Authentication Bypass
EIP-2026-112280 EXPLOITDB text WORKING POC
SOA School Management - 'access_login' SQL Injection
CVE-2018-12519 EXPLOITDB HIGH text WORKING POC
ShopNx <2017-11-17 - RCE
An issue was discovered in ShopNx through 2017-11-17. The vulnerability allows a remote attacker to upload any malicious file to a Node.js application. An attacker can upload a malicious HTML file that contains a JavaScript payload to steal a user's credentials.
CVSS 8.8
EIP-2026-111564 EXPLOITDB text WORKING POC
PSNews Website 1.0.0 - 'Keywords' SQL Injection
EIP-2026-111508 EXPLOITDB text WORKING POC
Private Message PHP Script 2.0 - Cross-Site Scripting
EIP-2026-110503 EXPLOITDB text WORKING POC
Paypal Clone Script 1.0.9 - 'id' / 'acctype' SQL Injection