star7th

24 exploits Active since Nov 2018
CVE-2018-19620 WRITEUP MEDIUM WRITEUP
ShowDoc 2.4.1 - XSS
ShowDoc 2.4.1 allows remote attackers to edit other users' notes by navigating with a modified page_id.
CVSS 4.3
CVE-2021-3775 WRITEUP MEDIUM WRITEUP
showdoc - CSRF
showdoc is vulnerable to Cross-Site Request Forgery (CSRF)
CVSS 5.4
CVE-2021-3776 WRITEUP MEDIUM WRITEUP
showdoc - CSRF
showdoc is vulnerable to Cross-Site Request Forgery (CSRF)
CVSS 5.4
CVE-2021-3989 WRITEUP MEDIUM WRITEUP
Showdoc < 2.9.13 - Open Redirect
showdoc is vulnerable to URL Redirection to Untrusted Site
CVSS 6.1
CVE-2021-3990 WRITEUP MEDIUM WRITEUP
showdoc - Memory Corruption
showdoc is vulnerable to Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)
CVSS 6.5
CVE-2021-3993 WRITEUP MEDIUM WRITEUP
Showdoc < 2.9.13 - CSRF
showdoc is vulnerable to Cross-Site Request Forgery (CSRF)
CVSS 6.5
CVE-2021-4168 WRITEUP HIGH WRITEUP
Showdoc < 2.9.15 - CSRF
showdoc is vulnerable to Cross-Site Request Forgery (CSRF)
CVSS 8.8
CVE-2021-4172 WRITEUP MEDIUM WRITEUP
Showdoc < 2.10.2 - XSS
Cross-site Scripting (XSS) - Stored in GitHub repository star7th/showdoc prior to 2.10.2.
CVSS 5.4
CVE-2022-0362 WRITEUP CRITICAL WRITEUP
Packagist showdoc/showdoc <2.10.3 - SQL Injection
SQL Injection in Packagist showdoc/showdoc prior to 2.10.3.
CVSS 9.8
CVE-2022-0409 WRITEUP HIGH WRITEUP
Packagist showdoc/showdoc <2.10.2 - File Injection
Unrestricted Upload of File with Dangerous Type in Packagist showdoc/showdoc prior to 2.10.2.
CVSS 7.8
CVE-2022-0880 WRITEUP MEDIUM WRITEUP
Showdoc < 2.10.2 - XSS
Cross-site Scripting (XSS) - Stored in GitHub repository star7th/showdoc prior to 2.10.2.
CVSS 5.4
CVE-2022-0937 WRITEUP MEDIUM WRITEUP
Showdoc < 2.10.3 - XSS
Stored xss in showdoc through file upload in GitHub repository star7th/showdoc prior to 2.10.4.
CVSS 5.4
CVE-2022-0942 WRITEUP MEDIUM WRITEUP
Showdoc < 2.10.3 - XSS
Stored XSS due to Unrestricted File Upload in GitHub repository star7th/showdoc prior to 2.10.4.
CVSS 5.4
CVE-2022-0945 WRITEUP MEDIUM WRITEUP
Showdoc < 2.10.3 - XSS
Stored XSS viva axd and cshtml file upload in star7th/showdoc in GitHub repository star7th/showdoc prior to v2.10.4.
CVSS 5.4
CVE-2022-0946 WRITEUP MEDIUM WRITEUP
Showdoc < 2.10.3 - XSS
Stored XSS viva cshtm file upload in GitHub repository star7th/showdoc prior to v2.10.4.
CVSS 5.4
CVE-2022-0950 WRITEUP MEDIUM WRITEUP
Showdoc < 2.10.3 - Unrestricted File Upload
Unrestricted Upload of File with Dangerous Type in GitHub repository star7th/showdoc prior to 2.10.4.
CVSS 5.4
CVE-2022-0951 WRITEUP MEDIUM WRITEUP
Showdoc < 2.10.3 - XSS
File Upload Restriction Bypass leading to Stored XSS Vulnerability in GitHub repository star7th/showdoc prior to 2.10.4.
CVSS 6.1
CVE-2022-0956 WRITEUP MEDIUM WRITEUP
Showdoc < 2.10.3 - XSS
Stored XSS via File Upload in GitHub repository star7th/showdoc prior to v.2.10.4.
CVSS 5.4
CVE-2022-0960 WRITEUP MEDIUM WRITEUP
Showdoc < 2.10.4 - XSS
Stored XSS viva .properties file upload in GitHub repository star7th/showdoc prior to 2.10.4.
CVSS 5.4
CVE-2022-0962 WRITEUP MEDIUM WRITEUP
Showdoc < 2.10.4 - XSS
Stored XSS viva .webma file upload in GitHub repository star7th/showdoc prior to 2.10.4.
CVSS 5.4
CVE-2022-0964 WRITEUP MEDIUM WRITEUP
Showdoc < 2.10.4 - XSS
Stored XSS viva .webmv file upload in GitHub repository star7th/showdoc prior to 2.10.4.
CVSS 5.4
CVE-2022-0965 WRITEUP MEDIUM WRITEUP
Showdoc < 2.10.4 - XSS
Stored XSS viva .ofd file upload in GitHub repository star7th/showdoc prior to 2.10.4.
CVSS 5.4
CVE-2022-0966 WRITEUP MEDIUM WRITEUP
Showdoc < 2.4.10 - XSS
Stored XSS via File Upload in star7th/showdoc in GitHub repository star7th/showdoc prior to 2.4.10.
CVSS 5.4
CVE-2022-1034 WRITEUP HIGH WRITEUP
Showdoc < 2.10.4 - Unrestricted File Upload
There is a Unrestricted Upload of File vulnerability in ShowDoc v2.10.3 in GitHub repository star7th/showdoc prior to 2.10.4.
CVSS 7.2