SySS GmbH

6 exploits Active since Aug 2015
CVE-2019-5722 EXPLOITDB CRITICAL text WRITEUP
portier 4.4.4.2-4.4.4.6 - SQL Injection via Login and Key Ring Search Parameters
An issue was discovered in portier vision 4.4.4.2 and 4.4.4.6. Due to a lack of user input validation in parameter handling, it has various SQL injections, including on the login form, and on the search form for a key ring number.
CVSS 9.8
CVE-2015-6516 EXPLOITDB text WRITEUP
sysPass < 1.0.9 - Authenticated SQL Injection via Search Parameter
SQL injection vulnerability in cygnux.org sysPass 1.0.9 and earlier allows remote authenticated users to execute arbitrary SQL commands via the search parameter to ajax/ajax_search.php.
EIP-2026-104152 EXPLOITDB html WORKING POC
agorum core Pro 7.8.1.4-251 - Cross-Site Request Forgery
EIP-2026-104153 EXPLOITDB html WRITEUP
agorum core Pro 7.8.1.4-251 - Persistent Cross-Site Scripting
EIP-2026-101855 EXPLOITDB text WORKING POC
NASdeluxe NDL-2400r 2.01.09 - OS Command Injection
EIP-2026-100589 EXPLOITDB text WRITEUP
Thru Managed File Transfer Portal 9.0.2 - SQL Injection