plsanu - SANU P.L

By SANU P.L December 28, 2021 No Comments

Vehicle Service Management System – ‘Multiple’ Cookie Stealing Leads to Full Account Takeover

CVE-2021-46067 Exploit Title: Vehicle Service Management System – ‘Multiple’ Cookie Stealing Leads to Full Account TakeoverExploit Author: P.L.SanuCVE: CVE-2021-46067CVSS: 9.8 CRITICALReferences:https://www.plsanu.com/vehicle-service-management-system-multiple-cookie-stealing-leads-to-full-account-takeoverhttps://nvd.nist.gov/vuln/detail/CVE-2021-46067https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46067 Description:In Vehicle Service Management System 1.0 an attacker can steal the cookies leading to Full Account Takeover. 1. Vehicle...

By SANU P.L December 20, 2021 No Comments

Bludit 3.13.1 – About Plugin Stored Cross Site Scripting (XSS)

CVE-2021-45745 Exploit Title: Bludit 3.13.1 – About Plugin Stored Cross Site Scripting (XSS)Exploit Author: P.L.SanuCVE: CVE-2021-45745CVSS: 5.4 MEDIUMReferences:https://www.plsanu.com/bludit-3-13-1-about-plugin-stored-cross-site-scripting-xsshttps://nvd.nist.gov/vuln/detail/CVE-2021-45745https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45745 Description:A Stored Cross Site Scripting (XSS) vulnerability exists in Bludit 3.13.1 via the About Plugin in login panel. Application stores attacker injected...

By SANU P.L December 20, 2021 No Comments

Bludit 3.13.1 – TAGS Field Stored Cross Site Scripting (XSS)

CVE-2021-45744 Exploit Title: Bludit 3.13.1 – TAGS Field Stored Cross Site Scripting (XSS)Exploit Author: P.L.SanuCVE: CVE-2021-45744CVSS: 5.4 MEDIUMReferences:https://www.plsanu.com/bludit-3-13-1-tags-field-stored-cross-site-scripting-xsshttps://nvd.nist.gov/vuln/detail/CVE-2021-45744https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45744 Description:A Stored Cross Site Scripting (XSS) vulnerability exists in bludit 3.13.1 via the TAGS section in login panel. Application stores attacker injected...

FREE COURSES

By SANU P.L August 20, 2020 No Comments

Adobe Animate CC 2020 Online Course

Adobe Animate CC 2020 Online Course Table of Contents Course Title: Adobe Animate CC 2020 Online Course [wpsm_ads1] Everything you need to know about Adobe Animate CC 2020 This course includes: 1.5 hours on-demand video Full lifetime access Access on...

Tag: plsanu

Vehicle Service Management System – ‘Multiple’ Cookie Stealing Leads to Full Account Takeover

Bludit 3.13.1 – About Plugin Stored Cross Site Scripting (XSS)

Bludit 3.13.1 – TAGS Field Stored Cross Site Scripting (XSS)

Adobe Animate CC 2020 Online Course