Tagoletta (Tağmaç)

6 exploits Active since Mar 2023
CVE-2023-38890 EXPLOITDB HIGH python WORKING POC
Online Shopping Portal Project 3.1 - SQL Injection
Online Shopping Portal Project 3.1 allows remote attackers to execute arbitrary SQL commands/queries via the login form, leading to unauthorized access and potential data manipulation. This vulnerability arises due to insufficient validation of user-supplied input in the username field, enabling SQL Injection attacks.
CVSS 8.8
CVE-2023-27040 EXPLOITDB CRITICAL python WORKING POC
Simple Image Gallery v1.0 - RCE
Simple Image Gallery v1.0 was discovered to contain a remote code execution (RCE) vulnerability via the username parameter.
CVSS 9.8
EIP-2026-112769 EXPLOITDB python WORKING POC
Traffic Offense Management System 1.0 - Remote Code Execution (RCE) (Unauthenticated)
EIP-2026-111753 EXPLOITDB python WORKING POC
Responsive Tourism Website 3.1 - Remote Code Execution (RCE) (Unauthenticated)
EIP-2026-109596 EXPLOITDB python WORKING POC
Movie Rating System 1.0 - Broken Access Control (Admin Account Creation) (Unauthenticated)
EIP-2026-109597 EXPLOITDB python WORKING POC
Movie Rating System 1.0 - SQLi to RCE (Unauthenticated)