Tisha Manandhar

2 exploits Active since Sep 2023

CVE-2023-43309 WRITEUP MEDIUM WRITEUP

Webmin < 2.002 - Stored Cross-Site Scripting via Cluster Cron Job Tab Input Field

There is a stored cross-site scripting (XSS) vulnerability in Webmin 2.002 and below via the Cluster Cron Job tab Input field, which allows attackers to run malicious scripts by injecting a specially crafted payload.

CVSS 4.8

View Code

CVE-2023-44044 WRITEUP HIGH WRITEUP

Super Store Finder <3.6 - SQL Injection

Super Store Finder v3.6 and below was discovered to contain a SQL injection vulnerability via the Search parameter at /admin/stores.php.

CVSS 7.2

View Code