rumble773/sec-research

Releases0

My security research public reports

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-46583 ↗	Oct 25, 2023Wednesday, 25 October 2023, 22:15	6.1 MEDIUM	—
Cross-Site Scripting (XSS) vulnerability in PHPGurukul Nipah virus (NiV) " Testing Management System v.1.0 allows attackers to execute arbitrary code via a crafted payload injected into the State field.
CVE-2023-46584 ↗	Oct 25, 2023Wednesday, 25 October 2023, 22:15	9.8 CRITICAL	—
SQL Injection vulnerability in PHPGurukul Nipah virus (NiV) " Testing Management System v.1.0 allows a remote attacker to escalate privileges via a crafted request to the new-user-testing.php endpoint.