jra89/CVE-2019-20059 jra89/CVE-2019-20059

  • Stars
    star
    4
  • Rank 3,304,323 (Top 66 %)
  • Language
  • Created almost 5 years ago
  • Updated almost 2 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
jra89/CVE-2019-20059
github

jra89

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Yetishare SQL Injection in sSortDir_0 parameter - v3.5.2 - v4.5.4. Apart from an admin being able to exploit this, it could also be used in a CSRF attack to trick an admin user into running malicious queries.

More Repositories

1

CVE-2019-19634

This is a filter bypass exploit that results in arbitrary file upload and remote code execution in class.upload.php <= 2.0.4
PHP
36
star
2

CVE-2019-19576

This is a filter bypass exploit that results in arbitrary file upload and remote code execution in class.upload.php <= 2.0.3
PHP
12
star
3

hackad-english

English subtitles for the TV series "Hackad"
11
star
4

Jellypeg

Tool to inject code into JPEG that has been stuffed through imagecreatefromjpeg in PHP
PHP
8
star
5

CVE-2019-19733

YetiShare v3.5.2 - v4.5.3 Cross-site scripting in get_all_file_server_paths.ajax.php
2
star
6

CVE-2019-19651

Chevereto reflected XSS in Website Name - 1.0.0 - 1.1.4 Free, <= 3.13.5 Core
2
star
7

CVE-2019-19511

Chevereto - 1.0.0 Free - 1.1.4 Free, 3.13.4 Core, Remote Code Execution
Python
1
star