wagnerdracha/ProofOfConcept

Releases0

Este repositório é destinado a publicação de POC encontradas.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-34093 ↗	Jul 14, 2022Thursday, 14 July 2022, 22:15	6.1 MEDIUM	4.3 MEDIUM
Portal do Software Publico Brasileiro i3geo v7.0.5 was discovered to contain a cross-site scripting (XSS) vulnerability via access_token.php.
CVE-2022-34094 ↗	Jul 14, 2022Thursday, 14 July 2022, 22:15	6.1 MEDIUM	4.3 MEDIUM
Portal do Software Publico Brasileiro i3geo v7.0.5 was discovered to contain a cross-site scripting (XSS) vulnerability via request_token.php.
CVE-2022-32409 ↗	Jul 14, 2022Thursday, 14 July 2022, 22:15	9.8 CRITICAL	—
A local file inclusion (LFI) vulnerability in the component codemirror.php of Portal do Software Publico Brasileiro i3geo v7.0.5 allows attackers to execute arbitrary PHP code via a crafted HTTP request.
CVE-2022-34092 ↗	Jul 14, 2022Thursday, 14 July 2022, 22:15	6.1 MEDIUM	4.3 MEDIUM
Portal do Software Publico Brasileiro i3geo v7.0.5 was discovered to contain a cross-site scripting (XSS) vulnerability via svg2img.php.