cakes

29 exploits Active since Nov 2025
CVE-2019-25471 EXPLOITDB CRITICAL text WORKING POC
FileThingie 2.5.7 - Arbitrary File Upload
FileThingie 2.5.7 contains an arbitrary file upload vulnerability that allows attackers to upload malicious files by sending ZIP archives through the ft2.php endpoint. Attackers can upload ZIP files containing PHP shells, use the unzip functionality to extract them into accessible directories, and execute arbitrary commands through the extracted PHP files.
CVSS 9.8
CVE-2019-25431 EXPLOITDB HIGH text WORKING POC
Blue-Smiley-Organizer 1.32 - SQL Injection
delpino73 Blue-Smiley-Organizer 1.32 contains an SQL injection vulnerability in the datetime parameter that allows unauthenticated attackers to manipulate database queries. Attackers can inject SQL code through POST requests to extract sensitive data using boolean-based blind and time-based blind techniques, or write files to the server using INTO OUTFILE statements.
CVSS 8.2
CVE-2019-25316 EXPLOITDB MEDIUM text WORKING POC
GOautodial 4.0 - XSS
GOautodial 4.0 contains a persistent cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts through the event title parameter. Attackers can exploit the CreateEvent.php endpoint by sending crafted POST requests with XSS payloads to execute arbitrary JavaScript in victim browsers.
CVSS 6.4
CVE-2019-25310 EXPLOITDB HIGH text WRITEUP
ActiveFax Server <6.92 Build 0316 - Code Injection
ActiveFax Server 6.92 Build 0316 contains an unquoted service path vulnerability in the ActiveFaxServiceNT service that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted binary path to inject malicious executables that will be launched with elevated administrative privileges.
CVSS 7.8
CVE-2019-25309 EXPLOITDB HIGH text WRITEUP
Zilab Remote Console Server 3.2.9 - Privilege Escalation
Zilab Remote Console Server 3.2.9 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted binary path in the service configuration to inject malicious executables that will be run with LocalSystem permissions.
CVSS 7.8
CVE-2019-25308 EXPLOITDB HIGH text WRITEUP
Mikogo <5.2.2.150317 - Code Injection
Mikogo 5.2.2.150317 contains an unquoted service path vulnerability in the Mikogo-Service Windows service configuration. Attackers can exploit the unquoted path to inject and execute malicious code with LocalSystem privileges by placing executable files in specific path locations.
CVSS 7.8
CVE-2019-25307 EXPLOITDB HIGH text WRITEUP
WorkgroupMail 7.5.1 - Code Injection
WorkgroupMail 7.5.1 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted binary path to inject malicious executables that will be run with LocalSystem privileges during service startup.
CVSS 7.8
CVE-2019-25303 EXPLOITDB HIGH text WORKING POC
TheJshen ContentManagementSystem 1.04 - SQL Injection
TheJshen ContentManagementSystem 1.04 contains a SQL injection vulnerability that allows attackers to manipulate database queries through the 'id' GET parameter. Attackers can exploit boolean-based, time-based, and UNION-based SQL injection techniques to extract or manipulate database information by crafting malicious query payloads.
CVSS 7.1
CVE-2019-25301 EXPLOITDB MEDIUM text WORKING POC
Millhouse-Project 1.414 - XSS
Millhouse-Project 1.414 contains a persistent cross-site scripting vulnerability in the comment submission functionality that allows attackers to inject malicious scripts. Attackers can post comments with embedded JavaScript through the 'content' parameter in add_comment_sql.php to execute arbitrary scripts in victim browsers.
CVSS 6.4
CVE-2019-25300 EXPLOITDB HIGH text WORKING POC
Globitek CMS 1.4 - SQL Injection
thejshen Globitek CMS 1.4 contains a SQL injection vulnerability that allows attackers to manipulate database queries through the 'id' GET parameter. Attackers can exploit boolean-based, time-based, and UNION-based SQL injection techniques to potentially extract or modify database information.
CVSS 7.1
CVE-2019-25299 EXPLOITDB HIGH text WORKING POC
RimbaLinux AhadPOS 1.11 - SQL Injection
RimbaLinux AhadPOS 1.11 contains a SQL injection vulnerability in the 'alamatCustomer' parameter that allows attackers to manipulate database queries through crafted POST requests. Attackers can exploit time-based and boolean-based blind SQL injection techniques to extract information or potentially interact with the underlying database.
CVSS 7.1
CVE-2019-25298 EXPLOITDB CRITICAL text WORKING POC
html5_snmp 1.11 - SQL Injection
html5_snmp 1.11 contains multiple SQL injection vulnerabilities that allow attackers to manipulate database queries through Router_ID and Router_IP parameters. Attackers can exploit error-based, time-based, and union-based injection techniques to potentially extract or modify database information by sending crafted payloads.
CVSS 9.1
CVE-2019-25294 EXPLOITDB MEDIUM text WORKING POC
html5_snmp 1.11 - XSS
html5_snmp 1.11 contains a persistent cross-site scripting vulnerability that allows attackers to inject malicious scripts through the 'Remark' parameter in add_router_operation.php. Attackers can craft a POST request with a script payload in the Remark field to execute arbitrary JavaScript in victim browsers when the page is loaded.
CVSS 6.1
CVE-2018-25125 EXPLOITDB HIGH python WORKING POC
Netis ADSL Router DL4322D RTK 2.1.1 - DoS
Netis ADSL Router DL4322D firmware RTK 2.1.1 contains a buffer overflow vulnerability in the embedded FTP service that allows an authenticated remote user to trigger a denial of service. After logging in to the FTP service, sending an FTP command such as ABOR with an excessively long argument causes the service, and in practice the router, to crash or become unresponsive, resulting in a loss of availability for the device and connected users.
EIP-2026-117419 EXPLOITDB text WRITEUP
LiteManager 4.5.0 - 'romservice' Unquoted Serive Path
EIP-2026-113175 EXPLOITDB text WORKING POC
waldronmatt FullCalendar-BS4-PHP-MySQL-JSON 1.21 - 'description' Cross-Site Scripting
EIP-2026-113176 EXPLOITDB text WORKING POC
waldronmatt FullCalendar-BS4-PHP-MySQL-JSON 1.21 - 'start' SQL Injection
EIP-2026-112670 EXPLOITDB text WORKING POC
Ticket-Booking 1.4 - Authentication Bypass
EIP-2026-107623 EXPLOITDB text WORKING POC
Hospital-Management 1.26 - 'fname' SQL Injection
EIP-2026-105855 EXPLOITDB text WORKING POC
citecodecrashers Pic-A-Point 1.1 - 'Consignment' SQL Injection
EIP-2026-106064 EXPLOITDB text WORKING POC
CollegeManagementSystem-CMS 1.3 - 'batch' SQL Injection
EIP-2026-106062 EXPLOITDB text WORKING POC
College-Management-System 1.2 - Authentication Bypass
EIP-2026-105808 EXPLOITDB text WORKING POC
Chamilo LMS 1.11.8 - Cross-Site Scripting
EIP-2026-105807 EXPLOITDB text WORKING POC
Chamilo LMS 1.11.8 - 'firstname' Cross-Site Scripting
EIP-2026-102108 EXPLOITDB text WORKING POC
Vox TG790 ADSL Router - Cross-Site Scripting