Laotun - Security Researcher - Exploit Intelligence Platform

CVE-2022-31382 WRITEUP CRITICAL WORKING POC

Directory Management System v1.0 - SQL Injection

Directory Management System v1.0 was discovered to contain a SQL injection vulnerability via the searchdata parameter in search-dirctory.php.

CVSS 9.8

View Code

CVE-2022-31383 WRITEUP CRITICAL WORKING POC

Directory Management System v1.0 - SQL Injection

Directory Management System v1.0 was discovered to contain a SQL injection vulnerability via the editid parameter in view-directory.php.

CVSS 9.8

View Code

CVE-2022-31384 WRITEUP CRITICAL WORKING POC

Directory Management System v1.0 - SQL Injection

Directory Management System v1.0 was discovered to contain a SQL injection vulnerability via the fullname parameter in add-directory.php.

CVSS 9.8

View Code

CVE-2022-32993 WRITEUP CRITICAL WORKING POC

TOTOLINK A7000R V4.1cu.4134 - Auth Bypass

TOTOLINK A7000R V4.1cu.4134 was discovered to contain an access control issue via /cgi-bin/ExportSettings.sh.

CVSS 9.8

View Code

CVE-2023-26925 WRITEUP HIGH WORKING POC

D-LINK DIR-882 1.30 - Info Disclosure

An information disclosure vulnerability exists in the Syslog functionality of D-LINK DIR-882 1.30. A specially crafted network request can lead to the disclosure of sensitive information.

CVSS 7.5

View Code