yuyudhn

2 exploits Active since Jul 2022
CVE-2023-36348 EXPLOITDB HIGH text WORKING POC
POS Codekop v2.0 - Authenticated RCE
POS Codekop v2.0 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the filename parameter.
CVSS 8.8
CVE-2022-34140 EXPLOITDB MEDIUM text WORKING POC
Feehi CMS 2.1.1 - Stored Cross-Site Scripting via Username Field
A stored cross-site scripting (XSS) vulnerability in /index.php?r=site%2Fsignup of Feehi CMS v2.1.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the username field.
CVSS 5.4