what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 4 of 4

Files from nhattruong

WordPress LearnPress Privilege Escalation

Posted Jul 19, 2021

Authored by nhattruong

WordPress LearnPress plugin versions prior to 3.2.6.9 suffer from a privilege escalation vulnerability.

tags | exploit

advisories | CVE-2020-11511

SHA-256 | e1e7e88b4768ac757065d46e50a07b9b7795fdafa1dc0adb12d831d8acd245bc

Download | Favorite | View

WordPress LearnPress SQL Injection

Posted Jul 19, 2021

Authored by nhattruong

WordPress LearnPress plugin versions prior to 3.2.6.8 suffer from a remote time-based blind SQL injection vulnerability.

tags | exploit, remote, sql injection

advisories | CVE-2020-6010

SHA-256 | 88be60d61f30701f2bee2c0a962b09407d110ae63bc6093a890d9e7d0172ee97

Download | Favorite | View

Teachers Record Management System 1.0 SQL Injection

Posted Jun 16, 2021

Authored by nhattruong

Teachers Record Management System version 1.0 suffers from multiple remote SQL injection vulnerabilities. This report has additional payloads although the original discovery of SQL injection in this version is attributed to gh1mau in July of 2020.

tags | exploit, remote, vulnerability, sql injection

SHA-256 | 329261ffb7e3f56e96d9ab636facf5477a4526e3b64aa09818235c9e5dba7175

Download | Favorite | View

Teachers Record Management System 1.0 Cross Site Scripting

Posted Jun 16, 2021

Authored by nhattruong

Teachers Record Management System version 1.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | 05fa528b05ad75b9ea84db5fb3ec371d6e0c80bf77b1c85e355ca6a851a5bca4

Download | Favorite | View