Saket Saurav

4 exploits Active since May 2022
CVE-2022-30014 WRITEUP HIGH WORKING POC
Simple Food Website 1.0 - Cross-Site Request Forgery
Lumidek Associates Simple Food Website 1.0 is vulnerable to Cross Site Request Forgery (CSRF) which allows anyone to takeover admin/moderater account.
CVSS 8.8
CVE-2022-30015 WRITEUP MEDIUM WRITEUP
Simple Food Website 1.0 - Stored Cross-Site Scripting in Admin User Fields
In Simple Food Website 1.0, a moderation can put the Cross Site Scripting Payload in any of the fields on http://127.0.0.1:1234/food/admin/all_users.php like Full Username, etc .This causes stored xss.
CVSS 5.4
CVE-2022-30016 WRITEUP HIGH WRITEUP
Rescue Dispatch Management System 1.0 - Incorrect Access Control via System Info Page
Rescue Dispatch Management System 1.0 is vulnerable to Incorrect Access Control via http://localhost/rdms/admin/?page=system_info.
CVSS 8.8
CVE-2022-30017 WRITEUP MEDIUM WRITEUP
Rescue Dispatch Management System 1.0 - Stored Cross-Site Scripting
Rescue Dispatch Management System 1.0 suffers from Stored XSS, leading to admin account takeover via cookie stealing.
CVSS 5.4