Mosaaed

9 exploits Active since Jan 2026
CVE-2020-36942 EXPLOITDB HIGH text WORKING POC
Victor CMS 1.0 - RCE
Victor CMS 1.0 contains a file upload vulnerability that allows authenticated users to upload malicious PHP files through the profile image upload feature. Attackers can upload a PHP shell to the /img directory and execute system commands by accessing the uploaded file via web browser.
CVSS 8.8
EIP-2026-113108 EXPLOITDB text WORKING POC
Virtual Airlines Manager 2.6.2 - 'id' SQL Injection
EIP-2026-112550 EXPLOITDB text WORKING POC
Tailor Management System - 'id' SQL Injection
EIP-2026-112139 EXPLOITDB text WORKING POC
Simple Real Estate Portal System 1.0 - 'id' SQLi
EIP-2026-112080 EXPLOITDB text WORKING POC
Simple College Website 1.0 - 'page' Local File Inclusion
EIP-2026-112448 EXPLOITDB python WORKING POC
Student Attendance Management System 1.0 - 'username' SQL Injection / Remote Code Execution
EIP-2026-111930 EXPLOITDB python WORKING POC
School Log Management System 1.0 - 'username' SQL Injection / Remote Code Execution
EIP-2026-106111 EXPLOITDB text WORKING POC
Complaints Report Management System 1.0 - 'username' SQL Injection / Remote Code Execution
EIP-2026-105718 EXPLOITDB text WORKING POC
Car Rental Management System 1.0 - SQL Injection / Local File include