Shahrukh Iqbal Mirza

3 exploits Active since Oct 2020
CVE-2020-25985 EXPLOITDB HIGH text WORKING POC
MonoCMS Blog 1.0 - Authenticated Arbitrary File Deletion
MonoCMS Blog 1.0 is affected by: Arbitrary File Deletion. Any authenticated user can delete files on and off the webserver (php files can be unlinked and not deleted).
CVSS 8.1
CVE-2020-28688 EXPLOITDB HIGH text WORKING POC
Artworks Gallery 1.0 - Unauthenticated Arbitrary File Upload via Add Artwork
The add artwork functionality in ARTWORKS GALLERY IN PHP, CSS, JAVASCRIPT, AND MYSQL 1.0 allows remote attackers to upload arbitrary files.
CVSS 8.8
CVE-2020-28687 EXPLOITDB HIGH text WORKING POC
Artworks Gallery 1.0 - Unauthenticated Arbitrary File Upload via Edit Profile
The edit profile functionality in ARTWORKS GALLERY IN PHP, CSS, JAVASCRIPT, AND MYSQL 1.0 allows remote attackers to upload arbitrary files.
CVSS 8.8