PoC Search Engine

Unrestricted File Upload leading to RCE in PHPPageBuilder

SSH Brute-Force due to Lack of Rate-Limiting

WordPress WPCode Plugin Remote Code Execution

EspoCRM Authenticated Server-Side Request Forgery (SSRF)

Unauthenticated OS Command Injection

Arbitrary PHP Code Execution in Documentation Generation

Casdoor Arbitrary File Write via Path Traversal

Missing Access Control in Wi-Fi kernel driver

Sherlock GitHub Actions Command Injection

FacturaScripts Authenticated Unrestricted File Upload RCE

Command Injection and Arbitrary Code Execution in Raynet rvia

Raynet rvia Command Injection

CSRF in Jason2605 AdminPanel delete.php

Missing Authorization in Craft CMS migrate endpoint

Host Header Validation Bypass in Starlette

Double Free leading to RCE in Apache HTTP Server with HTTP/2

Authenticated RCE in Grav Direct Install

WordPress Temporary Login Plugin Authentication Bypass

Code Injection in PbootCMS site configuration functionality

Unauthenticated XAR import in XWiki Platform