Mehmet Kelepçe

14 exploits Active since May 2020
CVE-2020-13424 NOMISEC MEDIUM WORKING POC
XCloner < 3.5.4 - Authenticated Local File Disclosure
The XCloner component before 3.5.4 for Joomla! allows Authenticated Local File Disclosure.
CVSS 6.5
CVE-2020-13996 NOMISEC HIGH WORKING POC
J2Store < 3.3.13 - Authenticated SQL Injection
The J2Store plugin before 3.3.13 for Joomla! allows a SQL injection attack by a trusted store manager.
CVSS 8.8
CVE-2021-47984 EXPLOITDB MEDIUM text WORKING POC
WordPress Plugin WP24 Domain Check 1.6.2 Stored XSS
WordPress Plugin WP24 Domain Check 1.6.2 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by submitting crafted input to the fieldnameDomain parameter. Attackers can inject JavaScript payloads through the plugin settings form at options.php that execute in the browsers of administrators viewing the settings page.
CVSS 6.4
CVE-2020-37226 EXPLOITDB HIGH text WORKING POC
Joomla J2 JOBS 1.3.0 Authenticated SQL Injection via sortby
Joomla J2 JOBS 1.3.0 contains an authenticated SQL injection vulnerability that allows authenticated attackers to manipulate database queries by injecting SQL code through the 'sortby' parameter. Attackers can send POST requests to the administrator index with malicious 'sortby' values to extract sensitive database information using automated tools.
CVSS 7.1
CVE-2020-37224 EXPLOITDB HIGH text WORKING POC
Joomla J2 JOBS 1.3.0 Authenticated SQL Injection via sortby
Joomla J2 JOBS 1.3.0 contains an authenticated SQL injection vulnerability that allows authenticated attackers to manipulate database queries by injecting SQL code through the 'sortby' parameter. Attackers can send POST requests to the administrator index with malicious 'sortby' values to extract sensitive database information.
CVSS 7.1
CVE-2023-4596 EXPLOITDB CRITICAL text WORKING POC
Forminator < 1.24.6 - Unauthenticated Arbitrary File Upload via upload_post_image()
The Forminator plugin for WordPress is vulnerable to arbitrary file uploads due to file type validation occurring after a file has been uploaded to the server in the upload_post_image() function in versions up to, and including, 1.24.6. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible.
CVSS 9.8
CVE-2020-36966 EXPLOITDB MEDIUM text WORKING POC
Dolibarr 11.0.3 - Stored Cross-Site Scripting via LDAP Synchronization Parameters
Dolibarr 11.0.3 contains a persistent cross-site scripting vulnerability in LDAP synchronization settings that allows attackers to inject malicious scripts through multiple parameters. Attackers can exploit the host, slave, and port parameters in /dolibarr/admin/ldap.php to execute arbitrary JavaScript and potentially steal user cookie information.
CVSS 6.4
CVE-2020-25751 EXPLOITDB HIGH text WORKING POC
pago_commerce 2.5.9.0 - Authenticated SQL Injection via filter_published Parameter
The paGO Commerce plugin 2.5.9.0 for Joomla! allows SQL Injection via the administrator/index.php?option=com_pago&view=comments filter_published parameter.
CVSS 8.8
CVE-2020-29287 EXPLOITDB CRITICAL text WORKING POC
Car Rental Management System <1.0 - SQL Injection
An SQL injection vulnerability was discovered in Car Rental Management System v1.0 can be exploited via the id parameter in view_car.php or the car_id parameter in booking.php.
CVSS 9.8
CVE-2020-12629 EXPLOITDB MEDIUM text WORKING POC
osTicket < 1.14.2 - Stored Cross-Site Scripting via SLA Name
include/class.sla.php in osTicket before 1.14.2 allows XSS via the SLA Name.
CVSS 5.4
EIP-2026-113182 EXPLOITDB text WORKING POC
Water Billing System 1.0 - 'id' SQL Injection (Authenticated)
EIP-2026-108918 EXPLOITDB text WORKING POC
Joomla! Plugin XCloner Backup 3.5.3 - Local File Inclusion (Authenticated)
EIP-2026-108911 EXPLOITDB text WORKING POC
Joomla! J2 Store 3.3.11 - 'filter_order_Dir' Authenticated SQL Injection
EIP-2026-105716 EXPLOITDB text WORKING POC
Car Rental Management System 1.0 - Remote Code Execution (Authenticated)