Sn1p3r-H4ck3r Grokability Snipe-IT 8.0.4 - Insecure Direct Object Reference (IDOR)
webapps php CVE-2025-47226

Milad karimi WordPress Core 6.2 - Directory Traversal
webapps php CVE-2023-2745

Pruthu Raut code-projects Online Exam Mastering System 1.0 - Reflected Cross-Site Scripting (XSS)
remote php CVE-2025-28121

Milad karimi WonderCMS 3.4.2 - Remote Code Execution (RCE)
remote php CVE-2023-41425

Milad karimi Drupal 11.x-dev - Full Path Disclosure
webapps php CVE-2024-45440

samogod KiviCare Clinic & Patient Management System (EHR) 3.6.4 - Unauthenticated SQL Injection
webapps php CVE-2024-11728

pointedsec Inventio Lite 4 - SQL Injection
webapps php CVE-2024-44541

Milad karimi Tatsu 3.3.11 - Unauthenticated RCE
webapps php CVE-2021-25094

LiquidWorm ABB Cylon Aspect 3.08.02 (ethernetUpdate.php) - Authenticated Path Traversal
hardware php

LiquidWorm ABB Cylon Aspect 3.08.02 (deployStart.php) - Unauthenticated Command Execution
hardware php CVE-2024-48840

Ivan Spiridonov Smart Manager 8.27.0 - Post-Authenticated SQL Injection
webapps php CVE-2024-0566

Rahad Chowdhury KodExplorer 4.52 - Open Redirect
webapps php

ub3rsick Car Rental Project 1.0 - Remote Code Execution
webapps php CVE-2020-5509

Geo phpMyFAQ 3.2.10 - Unintended File Download Triggered by Embedded Frames
webapps php CVE-2024-55889

LiquidWorm ABB Cylon Aspect 3.08.03 (webServerDeviceLabelUpdate.php) - File Write DoS
hardware php

LiquidWorm ABB Cylon Aspect 4.00.00 (factorySaved.php) - Unauthenticated XSS
hardware php