Miguel Santareno

8 exploits Active since Mar 2022
CVE-2024-25812 WRITEUP MEDIUM WRITEUP
MyNET < 26.05 - Reflected Cross-Site Scripting via src Parameter
MyNET up to v26.05 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the src parameter.
CVSS 6.1
CVE-2024-25814 WRITEUP MEDIUM WRITEUP
MyNET < 26.05 - Reflected Cross-Site Scripting via msg Parameter
MyNET up to v26.05 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the msg parameter.
CVSS 6.1
CVE-2024-35321 WRITEUP MEDIUM WRITEUP
MyNET < 26.08 - Reflected Cross-Site Scripting via msgtipo Parameter
MyNET up to v26.08 was discovered to contain a Reflected cross-site scripting (XSS) vulnerability via the msgtipo parameter.
CVSS 4.3
CVE-2022-23865 EXPLOITDB CRITICAL text WORKING POC
Nyron 1.0 - SQL Injection via thes1 Parameter
Nyron 1.0 is affected by a SQL injection vulnerability through Nyron/Library/Catalog/winlibsrch.aspx. To exploit this vulnerability, an attacker must inject '"> on the thes1 parameter.
CVSS 9.8
CVE-2022-23377 EXPLOITDB HIGH text WRITEUP
Archeevo <5.0 - Local File Inclusion
Archeevo below 5.0 is affected by local file inclusion through file=~/web.config to allow an attacker to retrieve local files.
CVSS 7.5
CVE-2022-4953 EXPLOITDB MEDIUM text WORKING POC
Elementor Website Builder <3.5.5 - XSS
The Elementor Website Builder WordPress plugin before 3.5.5 does not filter out user-controlled URLs from being loaded into the DOM. This could be used to inject rogue iframes that point to malicious URLs.
CVSS 6.1
CVE-2023-3219 EXPLOITDB MEDIUM text WORKING POC
EventON WordPress Plugin < 2.1.2 - Unauthenticated Insecure Direct Object Reference via event_id Parameter
The EventON WordPress plugin before 2.1.2 does not validate that the event_id parameter in its eventon_ics_download ajax action is a valid Event, allowing unauthenticated visitors to access any Post (including unpublished or protected posts) content via the ics export functionality by providing the numeric id of the post.
CVSS 5.3
CVE-2023-2796 EXPLOITDB MEDIUM text WORKING POC
EventON < 2.1.2 - Unauthenticated Insecure Direct Object Reference via eventon_ics_download AJAX Action
The EventON WordPress plugin before 2.1.2 lacks authentication and authorization in its eventon_ics_download ajax action, allowing unauthenticated visitors to access private and password protected Events by guessing their numeric id.
CVSS 5.3