blockomat2100 - Security Researcher - Exploit Intelligence Platform

CVE-2021-47930 EXPLOITDB HIGH text WORKING POC

Balbooa Joomla Forms Builder 2.0.6 SQL Injection Unauthenticated

Balbooa Joomla Forms Builder 2.0.6 contains an unauthenticated SQL injection vulnerability in the form submission handler that allows remote attackers to execute arbitrary SQL queries. Attackers can send POST requests to the com_baforms component with malicious JSON payloads in the 'id' field parameter to extract sensitive database information.

CVSS 8.2

View Code

CVE-2021-41754 WRITEUP CRITICAL WRITEUP

dynamicMarkt <= 3.10 - SQL Injection via Parent Parameter

dynamicMarkt <= 3.10 is affected by SQL injection in the parent parameter of index.php.

CVSS 9.8

View Code

CVE-2021-41756 WRITEUP CRITICAL WRITEUP

dynamicmarkt <= 3.10 - SQL Injection via kat Parameter

dynamicMarkt <= 3.10 is affected by SQL injection in the kat parameter of index.php.

CVSS 9.8

View Code

CVE-2022-47740 WRITEUP CRITICAL WRITEUP

Seltmann GmbH Content Management System 6 - SQL Injection via index.php

Seltmann GmbH Content Management System 6 is vulnerable to SQL Injection via /index.php.

CVSS 9.8

View Code