Raphael - "cmoncrook"

2 exploits Active since Jul 2025

CVE-2026-29969 WRITEUP MEDIUM WRITEUP

staffwiki 7.0.1.19219 - Cross-Site Scripting via wff_cols_pref.css.aspx Endpoint

A cross-site scripting (XSS) vulnerability in the wff_cols_pref.css.aspx endpoint of staffwiki v7.0.1.19219 allows attackers to execute arbitrary Javascript in the context of the user's browser via a crafted HTTP request.

CVSS 6.1

View Code

CVE-2025-29267 WRITEUP MEDIUM WRITEUP

Abis, Inc Adjutant Core Accounting ERP <v.PreBeta250F - Info Disclo...

SQL Injection vulnerability in Abis, Inc Adjutant Core Accounting ERP build v.PreBeta250F allows a remote attacker to obtain a sensitive information via the cid parameter in the GET request.

CVSS 6.5

View Code