Saket Saurav

4 exploits Active since May 2022
CVE-2022-30014 WRITEUP HIGH WORKING POC
Simple Food Website - CSRF
Lumidek Associates Simple Food Website 1.0 is vulnerable to Cross Site Request Forgery (CSRF) which allows anyone to takeover admin/moderater account.
CVSS 8.8
CVE-2022-30015 WRITEUP MEDIUM WRITEUP
Simple Food Website - XSS
In Simple Food Website 1.0, a moderation can put the Cross Site Scripting Payload in any of the fields on http://127.0.0.1:1234/food/admin/all_users.php like Full Username, etc .This causes stored xss.
CVSS 5.4
CVE-2022-30016 WRITEUP HIGH WRITEUP
Rescue Dispatch Management System - Incorrect Authorization
Rescue Dispatch Management System 1.0 is vulnerable to Incorrect Access Control via http://localhost/rdms/admin/?page=system_info.
CVSS 8.8
CVE-2022-30017 WRITEUP MEDIUM WRITEUP
Rescue Dispatch Management System - XSS
Rescue Dispatch Management System 1.0 suffers from Stored XSS, leading to admin account takeover via cookie stealing.
CVSS 5.4