High |
MaxSite CMS <= 109.1 unauthenticated RCE via run_php pluginDork: NO |
02.03.2026 |
|
Low |
OpenClaw tools.exec.safeBins <= 2026.2.22 Remote Code ExecutionDork: NO |
02.03.2026 |
|
Low |
Statamic CMS < 5.73.11 & < 6.4.0 Stored XSS via SVG Upload Leading to Privilege EscalationDork: NO |
02.03.2026 |
|
High |
OpenStack Vitrage < 12.0.1 / 13.0.1 Eval Injection Remote Code ExecutionDork: NO |
02.03.2026 |
|
High |
Brickcom Camera - Remote command executionDork: In Shodan search engine, the filter is --> realm="Brickcom" |
26.02.2026 |
|
Med. |
LangGraph SQLite Checkpoint - SQL Injection via Metadata Filter KeyDork: NO |
23.02.2026 |
|
Low |
Roundcube Webmail DOM-based XSS Exploit via SVG href AttributeDork: no |
15.02.2026 |
|
Med. |
WordPress Commentator Plugin - Arbitrary File Upload Dork: https://fofa.info/result?qbase64=d3AtY29udGVudC9wbHVnaW5zL2NvbW1lbnRhdG9yLw%3D%3D |
14.02.2026 |
|
High |
Siklu EtherHaul Series EH-8010 Remote Command ExecutionDork: "EH-8010" or "EH-1200" |
14.02.2026 |
|
Low |
Nginx 1.25.x Server Version Information DisclosureDork: server: nginx |
29.01.2026 |
|
Low |
LayerSlider 7.9.5 – Unauthenticated SQL InjectionDork: inurl:"wp-content/plugins/LayerSlider" |
26.01.2026 |
|
Med. |
promchimexport - SQL InjectionDork: inurl:"news.php?id=" |
24.12.2025 |
|
Med. |
cmkoo - SQL InjectionDork: inurl:"news.php?id=" |
21.12.2025 |
|
Med. |
Summar Employee Portal 3.98.0 Authenticated SQL InjectionDork: inurl:"/MemberPages/quienesquien.aspx" |
17.12.2025 |
|
Med. |
R.s.W - Sql InjectionDork: "Developed by Red Spider Web" |
14.12.2025 |
|
Med. |
cr-led - SQL InjectionDork: inurl:"news.php?id=" |
01.12.2025 |
|
Med. |
My Admin (Powered By Learning Impact) - SQL Injection Authentication BypassDork: intitle:"My Admin" "Powered By Learning Impact" |
01.12.2025 |
|
Med. |
3kits template via imgGallery.php SQL Injection id parameterDork: "Designed & Developed by 3kits" |
07.11.2025 |
|
Med. |
3kits template SQL Injection via imgGallery.php id parameter Dork: "Designed & Developed by 3kits" |
04.11.2025 |
|
Low |
FVGFL - Cross Site Scripting Vulnerability (XSS)Dork: "Powered by Web FVGFL" |
27.09.2025 |
|
Polish
English