Writeup Exploits

59,805 exploits tracked across all sources.

Sort: Activity Stars
CVE-2022-43372 WRITEUP MEDIUM
Emlog Pro <1.7.1 - XSS
Emlog Pro v1.7.1 was discovered to contain a reflected cross-site scripting (XSS) vulnerability at /admin/store.php.
CVSS 4.8
CVE-2022-23872 WRITEUP MEDIUM
Emlog Pro v1.1.1 - XSS
Emlog pro v1.1.1 was discovered to contain a stored cross-site scripting (XSS) vulnerability in the component /admin/configure.php via the parameter footer_info.
CVSS 4.8
CVE-2022-23379 WRITEUP CRITICAL
Emlog - SQL Injection
Emlog v6.0 was discovered to contain a SQL injection vulnerability via the $TagID parameter of getblogidsfromtagid().
CVSS 9.8
CVE-2021-44584 WRITEUP MEDIUM
Emlog < 1.0.7 - XSS
Cross-site scripting (XSS) vulnerability in index.php in emlog version <= pro-1.0.7 allows remote attackers to inject arbitrary web script or HTML via the s parameter.
CVSS 6.1
CVE-2021-40883 WRITEUP CRITICAL
emlog 5.3.1 - RCE
A Remote Code Execution (RCE) vulnerability exists in emlog 5.3.1 via content/plugins.
CVSS 9.8
CVE-2021-3293 WRITEUP MEDIUM
emlog v5.3.1 - Info Disclosure
emlog v5.3.1 has full path disclosure vulnerability in t/index.php, which allows an attacker to see the path to the webroot/file.
CVSS 5.3
CVE-2021-31737 WRITEUP CRITICAL
Emlog - Unrestricted File Upload
emlog v5.3.1 and emlog v6.0.0 have a Remote Code Execution vulnerability due to upload of database backup file in admin/data.php.
CVSS 9.8
CVE-2021-30227 WRITEUP MEDIUM
emlog 6.0 - XSS
Cross Site Scripting (XSS) vulnerability in the article comments feature in emlog 6.0.
CVSS 6.1
CVE-2021-30081 WRITEUP HIGH
emlog 6.0.0stable - SQL Injection
An issue was discovered in emlog 6.0.0stable. There is a SQL Injection vulnerability that can execute any SQL statement and query server sensitive data via admin/navbar.php?action=add_page.
CVSS 8.8
CVE-2020-21654 WRITEUP HIGH
emlog v6.0 - RCE
emlog v6.0 contains a vulnerability in the component admin\template.php, which allows attackers to getshell via a crafted Zip file.
CVSS 7.2
CVE-2020-21585 WRITEUP CRITICAL
Emlog - Unrestricted File Upload
Vulnerability in emlog v6.0.0 allows user to upload webshells via zip plugin module.
CVSS 9.8
CVE-2020-21321 WRITEUP MEDIUM
Emlog - CSRF
emlog v6.0 contains a Cross-Site Request Forgery (CSRF) via /admin/link.php?action=addlink, which allows attackers to arbitrarily add articles.
CVSS 4.3
CVE-2020-21014 WRITEUP MEDIUM
emlog v6.0.0 - Info Disclosure
emlog v6.0.0 contains an arbitrary file deletion vulnerability in admin/plugin.php.
CVSS 6.5
CVE-2020-21013 WRITEUP HIGH
Emlog - SQL Injection
emlog v6.0.0 contains a SQL injection via /admin/comment.php.
CVSS 7.2
CVE-2019-17073 WRITEUP MEDIUM
Emlog < 5.3.1 - Path Traversal
emlog through 6.0.0beta allows remote authenticated users to delete arbitrary files via admin/template.php?action=del&tpl=../ directory traversal.
CVSS 6.5
CVE-2019-16868 WRITEUP CRITICAL
emlog <6.0.0beta - Path Traversal
emlog through 6.0.0beta has an arbitrary file deletion vulnerability via an admin/data.php?action=dell_all_bak request with directory traversal sequences in the bak[] parameter.
CVSS 9.8
CVE-2023-41623 WRITEUP HIGH
Emlog pro2.1.14 - SQL Injection
Emlog version pro2.1.14 was discovered to contain a SQL injection vulnerability via the uid parameter at /admin/media.php.
CVSS 7.2
CVE-2023-41635 WRITEUP MEDIUM
GruppoSCAI RealGimm <1.1.37p38 - XSS
A XML External Entity (XXE) vulnerability in the VerifichePeriodiche.aspx component of GruppoSCAI RealGimm v1.1.37p38 allows attackers to read any file in the filesystem via supplying a crafted XML file.
CVSS 6.5
CVE-2023-41636 WRITEUP CRITICAL
GruppoSCAI RealGimm 1.1.37p38 - SQL Injection
A SQL injection vulnerability in the Data Richiesta dal parameter of GruppoSCAI RealGimm v1.1.37p38 allows attackers to access the database and execute arbitrary commands via a crafted SQL query.
CVSS 9.8
CVE-2023-41637 WRITEUP CRITICAL
GruppoSCAI RealGimm <1.1.37p38 - RCE
An arbitrary file upload vulnerability in the Carica immagine function of GruppoSCAI RealGimm 1.1.37p38 allows attackers to execute arbitrary code via uploading a crafted HTML file.
CVSS 9.8
CVE-2023-41638 WRITEUP HIGH
GruppoSCAI RealGimm <1.1.37p38 - RCE
An arbitrary file upload vulnerability in the Gestione Documentale module of GruppoSCAI RealGimm 1.1.37p38 allows attackers to execute arbitrary code via uploading a crafted file.
CVSS 8.8
CVE-2023-41640 WRITEUP HIGH
GruppoSCAI RealGimm <1.1.37p38 - Info Disclosure
An improper error handling vulnerability in the component ErroreNonGestito.aspx of GruppoSCAI RealGimm 1.1.37p38 allows attackers to obtain sensitive technical information via a crafted SQL query.
CVSS 8.8
CVE-2023-41642 WRITEUP MEDIUM
GruppoSCAI RealGimm 1.1.37p38 - XSS
Multiple reflected cross-site scripting (XSS) vulnerabilities in the ErroreNonGestito.aspx component of GruppoSCAI RealGimm 1.1.37p38 allow attackers to execute arbitrary Javascript in the context of a victim user's browser via a crafted payload injected into the VIEWSTATE parameter.
CVSS 6.1
CVE-2023-41646 WRITEUP MEDIUM
Buttercup v2.20.3 - Info Disclosure
Buttercup v2.20.3 allows attackers to obtain the hash of the master password for the password manager via accessing the file /vaults.json/
CVSS 5.3
CVE-2023-41879 WRITEUP HIGH
Magento LTS - Info Disclosure
Magento LTS is the official OpenMage LTS codebase. Guest orders may be viewed without authentication using a "guest-view" cookie which contains the order's "protect_code". This code is 6 hexadecimal characters which is arguably not enough to prevent a brute-force attack. Exposing each order would require a separate brute force attack. This issue has been patched in versions 19.5.1 and 20.1.1.
CVSS 7.5
By Source
All 59,805 Writeup 59,805 Exploitdb 49,992 Nomisec 21,494 Metasploit 3,218 Github 2,537 Vulncheck_xdb 904 Inthewild 514 Gitlab 441 Gitee 415 Patchapalooza 312
By Language
text 31,332 python 5,922 ruby 5,907 c 3,563 perl 2,849 html 2,053 php 1,326 bash 459 java 362 c++ 250 javascript 215 shell 90 go 53 postscript 25 xml 24