Writeup Exploits

63,671 exploits tracked across all sources.

Sort: Activity Stars
CVE-2021-47838 WRITEUP HIGH
Markright 1.0 - Stored Cross-Site Scripting via Crafted Markdown Files
Markright 1.0 contains a persistent cross-site scripting vulnerability that allows attackers to embed malicious payloads in markdown files. Attackers can upload specially crafted markdown files that execute arbitrary JavaScript when opened, potentially enabling remote code execution on the victim's system.
CVSS 7.2
CVE-2021-47839 WRITEUP HIGH
Marky 0.0.1 - Stored Cross-Site Scripting via Crafted Markdown File Upload
Marky 0.0.1 contains a persistent cross-site scripting vulnerability that allows attackers to inject malicious scripts into markdown files. Attackers can upload crafted markdown files with embedded JavaScript payloads that execute when the file is opened, potentially enabling remote code execution.
CVSS 7.2
CVE-2021-47841 WRITEUP MEDIUM
SnipCommand 0.1.0 - Stored Cross-Site Scripting via File or Title Input
SnipCommand 0.1.0 contains a cross-site scripting vulnerability that allows attackers to inject malicious payloads into command snippets. Attackers can execute arbitrary code by embedding malicious JavaScript that triggers remote command execution through file or title inputs.
CVSS 6.1
CVE-2021-47842 WRITEUP HIGH
StudyMD 0.3.2 - Stored Cross-Site Scripting via Markdown File Upload
StudyMD 0.3.2 contains a persistent cross-site scripting vulnerability that allows attackers to inject malicious scripts into markdown files. Attackers can upload crafted markdown files with embedded JavaScript payloads that execute when the file is opened, potentially enabling remote code execution.
CVSS 7.2
CVE-2021-47848 WRITEUP HIGH
Blitar Tourism 1.0 - Auth Bypass
Blitar Tourism 1.0 contains an authentication bypass vulnerability that allows attackers to bypass login by injecting SQL code through the username parameter. Attackers can manipulate the login request by sending a crafted username with SQL injection techniques to gain unauthorized administrative access.
CVSS 8.2
CVE-2021-47860 WRITEUP MEDIUM
GetSimple CMS Custom JS Plugin 0.1 - CSRF leading to XSS and RCE
GetSimple CMS Custom JS 0.1 plugin contains a cross-site request forgery vulnerability that allows unauthenticated attackers to inject arbitrary client-side code into administrator browsers. Attackers can craft a malicious website that triggers a cross-site scripting payload to execute remote code on the hosting server when an authenticated administrator visits the page.
CVSS 5.3
CVE-2023-6188 WRITEUP MEDIUM
GetSimpleCMS <3.4.0a - Code Injection
A vulnerability was found in GetSimpleCMS 3.3.16/3.4.0a. It has been rated as critical. This issue affects some unknown processing of the file /admin/theme-edit.php. The manipulation leads to code injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-245735.
CVSS 4.7
CVE-2023-6188 WRITEUP MEDIUM
GetSimpleCMS <3.4.0a - Code Injection
A vulnerability was found in GetSimpleCMS 3.3.16/3.4.0a. It has been rated as critical. This issue affects some unknown processing of the file /admin/theme-edit.php. The manipulation leads to code injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-245735.
CVSS 4.7
CVE-2022-41544 WRITEUP CRITICAL
GetSimple CMS 3.3.16 - Remote Code Execution via Edited File Parameter
GetSimple CMS v3.3.16 was discovered to contain a remote code execution (RCE) vulnerability via the edited_file parameter in admin/theme-edit.php.
CVSS 9.8
CVE-2021-47870 WRITEUP MEDIUM
GetSimple CMS My SMTP Contact Plugin 1.1.2 - XSS
GetSimple CMS My SMTP Contact Plugin 1.1.2 suffers from a Stored Cross-Site Scripting (XSS) vulnerability. The plugin attempts to sanitize user input using htmlspecialchars(), but this can be bypassed by passing dangerous characters as escaped hex bytes. This allows attackers to inject arbitrary client-side code that executes in the administrator's browser when visiting a malicious page.
CVSS 5.4
CVE-2021-47860 WRITEUP MEDIUM
GetSimple CMS Custom JS Plugin 0.1 - CSRF leading to XSS and RCE
GetSimple CMS Custom JS 0.1 plugin contains a cross-site request forgery vulnerability that allows unauthenticated attackers to inject arbitrary client-side code into administrator browsers. Attackers can craft a malicious website that triggers a cross-site scripting payload to execute remote code on the hosting server when an authenticated administrator visits the page.
CVSS 5.3
CVE-2021-47830 WRITEUP MEDIUM
GetSimple CMS My SMTP Contact Plugin 1.1.1 - CSRF
GetSimple CMS My SMTP Contact Plugin 1.1.1 contains a cross-site request forgery (CSRF) vulnerability. Attackers can craft a malicious webpage that, when visited by an authenticated administrator, can change SMTP configuration settings in the plugin. This may allow unauthorized changes but does not directly enable remote code execution.
CVSS 6.5
CVE-2021-47778 WRITEUP HIGH
GetSimple CMS My SMTP Contact Plugin <1.1.2 - Code Injection
GetSimple CMS My SMTP Contact Plugin 1.1.2 contains a PHP code injection vulnerability. An authenticated administrator can inject arbitrary PHP code through plugin configuration parameters, leading to remote code execution on the server.
CVSS 7.2
CVE-2021-28977 WRITEUP MEDIUM
GetSimpleCMS 3.3.16 - Cross-Site Scripting via File Upload
Cross Site Scripting vulnerability in GetSimpleCMS 3.3.16 in admin/upload.php by adding comments or jpg and other file header information to the content of xla, pages, and gzip files,
CVSS 4.8
CVE-2021-28976 WRITEUP HIGH
GetSimpleCMS < 3.3.15 - Remote Code Execution via PHAR File Upload
Remote Code Execution vulnerability in GetSimpleCMS before 3.3.16 in admin/upload.php via phar filess.
CVSS 7.2
CVE-2020-23839 WRITEUP MEDIUM
GetSimple CMS 3.3.16 - Reflected Cross-Site Scripting in Login Portal
A Reflected Cross-Site Scripting (XSS) vulnerability in GetSimple CMS v3.3.16, in the admin/index.php login portal webpage, allows remote attackers to execute JavaScript code in the client's browser and harvest login credentials after a client clicks a link, enters credentials, and submits the login form.
CVSS 6.1
CVE-2020-21353 WRITEUP MEDIUM
GetSimple CMS 3.4.0a - Stored Cross-Site Scripting in Edit Snippets Module
A stored cross site scripting (XSS) vulnerability in /admin/snippets.php of GetSimple CMS 3.4.0a allows attackers to execute arbitrary web scripts or HTML via crafted payload in the Edit Snippets module.
CVSS 5.4
CVE-2020-20391 WRITEUP MEDIUM
GetSimpleCMS 3.4.0a - Cross-Site Scripting via Add Snippet and Save Snippets
Cross Site Scripting vulnerability in GetSimpleCMS 3.4.0a in admin/snippets.php via (1) Add Snippet and (2) Save snippets.
CVSS 5.4
CVE-2020-20389 WRITEUP MEDIUM
GetSimpleCMS 3.4.0a - Cross-Site Scripting in admin/edit.php
Cross Site Scripting (XSS) vulnerability in GetSimpleCMS 3.4.0a in admin/edit.php.
CVSS 4.8
CVE-2020-18660 WRITEUP MEDIUM
GetSimpleCMS <=3.3.15 - Open Redirect
GetSimpleCMS <=3.3.15 has an open redirect in admin/changedata.php via the redirect function to the url parameter.
CVSS 6.1
CVE-2020-18659 WRITEUP MEDIUM
GetSimpleCMS <= 3.3.15 - Cross-Site Scripting via Setup Parameters
Cross Site Scripting vulnerability in GetSimpleCMS <=3.3.15 via the (1) sitename, (2) username, and (3) email parameters to /admin/setup.php
CVSS 6.1
CVE-2020-18658 WRITEUP MEDIUM
GetSimpleCMS <= 3.3.15 - Cross-Site Scripting via Timezone Parameter
Cross Site Scriptiong (XSS) vulnerability in GetSimpleCMS <=3.3.15 via the timezone parameter to settings.php.
CVSS 6.1
CVE-2020-18657 WRITEUP MEDIUM
GetSimpleCMS <= 3.3.15 - Cross-Site Scripting via redirect_url Parameter
Cross Site Scripting (XSS) vulnerability in GetSimpleCMS <= 3.3.15 in admin/changedata.php via the redirect_url parameter and the headers_sent function.
CVSS 6.1
CVE-2020-18191 WRITEUP CRITICAL
GetSimpleCMS-3.3.15 - Path Traversal
GetSimpleCMS-3.3.15 is affected by directory traversal. Remote attackers are able to delete arbitrary files via /GetSimpleCMS-3.3.15/admin/log.php
CVSS 9.1
CVE-2019-9915 WRITEUP MEDIUM
GetSimpleCMS 3.3.13 - Open Redirect
GetSimpleCMS 3.3.13 has an Open Redirect via the admin/index.php redirect parameter.
CVSS 6.1