Update Wed Mar 29 19:35:12 UTC 2023

trickest · Mar 29, 2023 · 202df3a · 202df3a
1 parent f53cdba
commit 202df3a
Show file tree

Hide file tree

Showing 22 changed files with 236 additions and 6 deletions.
diff --git a/2016/CVE-2016-9177.md b/2016/CVE-2016-9177.md
@@ -10,7 +10,7 @@ Directory traversal vulnerability in Spark 2.5 allows remote attackers to read a
 ### POC
 
 #### Reference
-No PoCs from references.
+- https://github.com/perwendel/spark/issues/700
 
 #### Github
 - https://github.com/ARPSyndicate/cvemon

diff --git a/2018/CVE-2018-11202.md b/2018/CVE-2018-11202.md
@@ -10,7 +10,7 @@ A NULL pointer dereference was discovered in H5S_hyper_make_spans in H5Shyper.c
 ### POC
 
 #### Reference
-No PoCs from references.
+- https://github.com/Twi1ight/fuzzing-pocs/tree/master/hdf5
 
 #### Github
 - https://github.com/andir/nixos-issue-db-example

diff --git a/2018/CVE-2018-11203.md b/2018/CVE-2018-11203.md
@@ -10,7 +10,7 @@ A division by zero was discovered in H5D__btree_decode_key in H5Dbtree.c in the
 ### POC
 
 #### Reference
-No PoCs from references.
+- https://github.com/Twi1ight/fuzzing-pocs/tree/master/hdf5
 
 #### Github
 - https://github.com/andir/nixos-issue-db-example

diff --git a/2018/CVE-2018-11204.md b/2018/CVE-2018-11204.md
@@ -10,7 +10,7 @@ A NULL pointer dereference was discovered in H5O__chunk_deserialize in H5Ocache.
 ### POC
 
 #### Reference
-No PoCs from references.
+- https://github.com/Twi1ight/fuzzing-pocs/tree/master/hdf5
 
 #### Github
 - https://github.com/andir/nixos-issue-db-example

diff --git a/2018/CVE-2018-11205.md b/2018/CVE-2018-11205.md
@@ -10,7 +10,7 @@ A out of bounds read was discovered in H5VM_memcpyvv in H5VM.c in the HDF HDF5 1
 ### POC
 
 #### Reference
-No PoCs from references.
+- https://github.com/Twi1ight/fuzzing-pocs/tree/master/hdf5
 
 #### Github
 - https://github.com/andir/nixos-issue-db-example

diff --git a/2018/CVE-2018-11206.md b/2018/CVE-2018-11206.md
@@ -10,7 +10,7 @@ An out of bounds read was discovered in H5O_fill_new_decode and H5O_fill_old_dec
 ### POC
 
 #### Reference
-No PoCs from references.
+- https://github.com/Twi1ight/fuzzing-pocs/tree/master/hdf5
 
 #### Github
 - https://github.com/andir/nixos-issue-db-example

diff --git a/2018/CVE-2018-11207.md b/2018/CVE-2018-11207.md
@@ -11,6 +11,7 @@ A division by zero was discovered in H5D__chunk_init in H5Dchunk.c in the HDF HD
 
 #### Reference
 - https://github.com/SegfaultMasters/covering360/tree/master/HDF5#divided-by-zero---divbyzero__h5d_chunk_poc
+- https://github.com/Twi1ight/fuzzing-pocs/tree/master/hdf5
 
 #### Github
 - https://github.com/andir/nixos-issue-db-example

diff --git a/2021/CVE-2021-34125.md b/2021/CVE-2021-34125.md
@@ -10,6 +10,8 @@ An issue discovered in Yuneec Mantis Q and PX4-Autopilot v 1.11.3 and below allo
 ### POC
 
 #### Reference
+- https://gist.github.com/swkim101/f473b9a60e6d4635268402a2cd2025ac
+- https://github.com/PX4/PX4-Autopilot/issues/17062
 - https://www.st.com/resource/en/application_note/dm00493651-introduction-to-stm32-microcontrollers-security-stmicroelectronics.pdf
 
 #### Github

diff --git a/2022/CVE-2022-38329.md b/2022/CVE-2022-38329.md
@@ -10,6 +10,7 @@ An issue was discovered in Shopxian CMS 3.0.0. There is a CSRF vulnerability tha
 ### POC
 
 #### Reference
+- https://albert5888.github.io/posts/CVE-2022-38329/
 - https://github.com/albert5888/CVE-Issues/blob/main/CVE-2022-38329/file.md
 - https://github.com/zhangqiquan/shopxian_cms/issues/4
 

diff --git a/2023/CVE-2023-24364.md b/2023/CVE-2023-24364.md
@@ -0,0 +1,17 @@
+### [CVE-2023-24364](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24364)
+![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
+![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
+![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)
+
+### Description
+
+Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the username parameter under the Admin Panel.
+
+### POC
+
+#### Reference
+- https://www.sourcecodester.com/sites/default/files/download/oretnom23/php-scrm.zip
+
+#### Github
+No PoCs found on GitHub currently.
+
diff --git a/2023/CVE-2023-24651.md b/2023/CVE-2023-24651.md
@@ -0,0 +1,17 @@
+### [CVE-2023-24651](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24651)
+![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
+![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
+![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)
+
+### Description
+
+Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter on the registration page.
+
+### POC
+
+#### Reference
+- https://www.sourcecodester.com/sites/default/files/download/oretnom23/php-scrm.zip
+
+#### Github
+No PoCs found on GitHub currently.
+
diff --git a/2023/CVE-2023-24652.md b/2023/CVE-2023-24652.md
@@ -0,0 +1,17 @@
+### [CVE-2023-24652](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24652)
+![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
+![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
+![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)
+
+### Description
+
+Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the Description parameter under the Create ticket function.
+
+### POC
+
+#### Reference
+- https://www.sourcecodester.com/sites/default/files/download/oretnom23/php-scrm.zip
+
+#### Github
+No PoCs found on GitHub currently.
+
diff --git a/2023/CVE-2023-24653.md b/2023/CVE-2023-24653.md
@@ -0,0 +1,17 @@
+### [CVE-2023-24653](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24653)
+![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
+![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
+![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)
+
+### Description
+
+Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the oldpass parameter under the Change Password function.
+
+### POC
+
+#### Reference
+- https://www.sourcecodester.com/sites/default/files/download/oretnom23/php-scrm.zip
+
+#### Github
+No PoCs found on GitHub currently.
+
diff --git a/2023/CVE-2023-24654.md b/2023/CVE-2023-24654.md
@@ -0,0 +1,17 @@
+### [CVE-2023-24654](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24654)
+![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
+![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
+![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)
+
+### Description
+
+Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter under the Request a Quote function.
+
+### POC
+
+#### Reference
+- https://www.sourcecodester.com/sites/default/files/download/oretnom23/php-scrm.zip
+
+#### Github
+No PoCs found on GitHub currently.
+
diff --git a/2023/CVE-2023-24656.md b/2023/CVE-2023-24656.md
@@ -0,0 +1,17 @@
+### [CVE-2023-24656](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24656)
+![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
+![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
+![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)
+
+### Description
+
+Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the subject parameter under the Create Ticket function.
+
+### POC
+
+#### Reference
+- https://www.sourcecodester.com/sites/default/files/download/oretnom23/php-scrm.zip
+
+#### Github
+No PoCs found on GitHub currently.
+
diff --git a/2023/CVE-2023-24728.md b/2023/CVE-2023-24728.md
@@ -0,0 +1,17 @@
+### [CVE-2023-24728](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24728)
+![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
+![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
+![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)
+
+### Description
+
+Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the contact parameter in the user profile update function.
+
+### POC
+
+#### Reference
+- https://www.sourcecodester.com/sites/default/files/download/oretnom23/php-scrm.zip
+
+#### Github
+No PoCs found on GitHub currently.
+
diff --git a/2023/CVE-2023-24729.md b/2023/CVE-2023-24729.md
@@ -0,0 +1,17 @@
+### [CVE-2023-24729](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24729)
+![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
+![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
+![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)
+
+### Description
+
+Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the address parameter in the user profile update function.
+
+### POC
+
+#### Reference
+- https://www.sourcecodester.com/sites/default/files/download/oretnom23/php-scrm.zip
+
+#### Github
+No PoCs found on GitHub currently.
+
diff --git a/2023/CVE-2023-24730.md b/2023/CVE-2023-24730.md
@@ -0,0 +1,17 @@
+### [CVE-2023-24730](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24730)
+![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
+![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
+![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)
+
+### Description
+
+Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the company parameter in the user profile update function.
+
+### POC
+
+#### Reference
+- https://www.sourcecodester.com/sites/default/files/download/oretnom23/php-scrm.zip
+
+#### Github
+No PoCs found on GitHub currently.
+
diff --git a/2023/CVE-2023-24731.md b/2023/CVE-2023-24731.md
@@ -0,0 +1,17 @@
+### [CVE-2023-24731](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24731)
+![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
+![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
+![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)
+
+### Description
+
+Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the query parameter in the user profile update function.
+
+### POC
+
+#### Reference
+- https://www.sourcecodester.com/sites/default/files/download/oretnom23/php-scrm.zip
+
+#### Github
+No PoCs found on GitHub currently.
+
diff --git a/2023/CVE-2023-24732.md b/2023/CVE-2023-24732.md
@@ -0,0 +1,17 @@
+### [CVE-2023-24732](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24732)
+![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
+![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
+![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)
+
+### Description
+
+Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the gender parameter in the user profile update function.
+
+### POC
+
+#### Reference
+- https://www.sourcecodester.com/sites/default/files/download/oretnom23/php-scrm.zip
+
+#### Github
+No PoCs found on GitHub currently.
+
diff --git a/2023/CVE-2023-26071.md b/2023/CVE-2023-26071.md
@@ -0,0 +1,17 @@
+### [CVE-2023-26071](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26071)
+![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
+![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
+![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)
+
+### Description
+
+An issue was discovered in MCUBO ICT through 10.12.4 (aka 6.0.2). An Observable Response Discrepancy can occur under the login web page. In particular, the web application provides different responses to incoming requests in a way that reveals internal state information to an unauthorized actor. That allow an unauthorized actor to perform User Enumeration attacks.
+
+### POC
+
+#### Reference
+- https://www.gruppotim.it/it/footer/red-team.html
+
+#### Github
+No PoCs found on GitHub currently.
+
diff --git a/references.txt b/references.txt
@@ -34936,6 +34936,7 @@ CVE-2016-9151 - https://www.exploit-db.com/exploits/40788/
 CVE-2016-9151 - https://www.exploit-db.com/exploits/40789/
 CVE-2016-9164 - http://packetstormsecurity.com/files/139661/CA-Unified-Infrastructure-Management-Bypass-Traversal-Disclosure.html
 CVE-2016-9176 - https://www.exploit-db.com/exploits/40648/
+CVE-2016-9177 - https://github.com/perwendel/spark/issues/700
 CVE-2016-9186 - https://packetstormsecurity.com/files/139466/Moodle-CMS-3.1.2-Cross-Site-Scripting-File-Upload.html
 CVE-2016-9187 - https://packetstormsecurity.com/files/139466/Moodle-CMS-3.1.2-Cross-Site-Scripting-File-Upload.html
 CVE-2016-9188 - https://packetstormsecurity.com/files/139466/Moodle-CMS-3.1.2-Cross-Site-Scripting-File-Upload.html
@@ -42350,7 +42351,13 @@ CVE-2018-11194 - https://www.coresecurity.com/advisories/quest-dr-series-disk-ba
 CVE-2018-11195 - https://bugs.launchpad.net/mahara/+bug/1770561
 CVE-2018-1120 - http://seclists.org/oss-sec/2018/q2/122
 CVE-2018-1120 - https://www.exploit-db.com/exploits/44806/
+CVE-2018-11202 - https://github.com/Twi1ight/fuzzing-pocs/tree/master/hdf5
+CVE-2018-11203 - https://github.com/Twi1ight/fuzzing-pocs/tree/master/hdf5
+CVE-2018-11204 - https://github.com/Twi1ight/fuzzing-pocs/tree/master/hdf5
+CVE-2018-11205 - https://github.com/Twi1ight/fuzzing-pocs/tree/master/hdf5
+CVE-2018-11206 - https://github.com/Twi1ight/fuzzing-pocs/tree/master/hdf5
 CVE-2018-11207 - https://github.com/SegfaultMasters/covering360/tree/master/HDF5#divided-by-zero---divbyzero__h5d_chunk_poc
+CVE-2018-11207 - https://github.com/Twi1ight/fuzzing-pocs/tree/master/hdf5
 CVE-2018-11208 - https://github.com/zblogcn/zblogphp/issues/187
 CVE-2018-11209 - https://github.com/zblogcn/zblogphp/issues/188
 CVE-2018-1121 - http://seclists.org/oss-sec/2018/q2/122
@@ -65035,6 +65042,8 @@ CVE-2021-3410 - https://bugzilla.redhat.com/show_bug.cgi?id=1928437
 CVE-2021-34110 - https://packetstormsecurity.com/files/163335/WinWaste.NET-1.0.6183.16475-Local-Privilege-Escalation.html
 CVE-2021-34110 - https://www.exploit-db.com/exploits/50083
 CVE-2021-34122 - https://github.com/rockcarry/ffjpeg/issues/36
+CVE-2021-34125 - https://gist.github.com/swkim101/f473b9a60e6d4635268402a2cd2025ac
+CVE-2021-34125 - https://github.com/PX4/PX4-Autopilot/issues/17062
 CVE-2021-34125 - https://www.st.com/resource/en/application_note/dm00493651-introduction-to-stm32-microcontrollers-security-stmicroelectronics.pdf
 CVE-2021-34128 - https://github.com/bettershop/LaikeTui/issues/8
 CVE-2021-34143 - https://dl.packetstormsecurity.net/papers/general/braktooth.pdf
@@ -72162,6 +72171,7 @@ CVE-2022-38313 - https://github.com/rickytriky/NWPU_Projct/tree/main/Tenda/AC18/
 CVE-2022-38314 - https://github.com/rickytriky/NWPU_Projct/tree/main/Tenda/AC18/1
 CVE-2022-38325 - https://github.com/1160300418/Vuls/blob/main/Tenda/AC/Vul_expandDlnaFile.md
 CVE-2022-38326 - https://github.com/1160300418/Vuls/blob/main/Tenda/AC/Vul_NatStaticSetting.md
+CVE-2022-38329 - https://albert5888.github.io/posts/CVE-2022-38329/
 CVE-2022-38329 - https://github.com/albert5888/CVE-Issues/blob/main/CVE-2022-38329/file.md
 CVE-2022-38329 - https://github.com/zhangqiquan/shopxian_cms/issues/4
 CVE-2022-38334 - https://forum.xpdfreader.com/viewtopic.php?f=3&t=42122
@@ -74296,6 +74306,7 @@ CVE-2023-24348 - https://github.com/1160300418/Vuls/tree/main/D-Link/DIR-605L/cu
 CVE-2023-24349 - https://github.com/1160300418/Vuls/tree/main/D-Link/DIR-605L/curTime_Vuls/04
 CVE-2023-24350 - https://github.com/1160300418/Vuls/tree/main/D-Link/DIR-605L/03
 CVE-2023-24351 - https://github.com/1160300418/Vuls/tree/main/D-Link/DIR-605L/01
+CVE-2023-24364 - https://www.sourcecodester.com/sites/default/files/download/oretnom23/php-scrm.zip
 CVE-2023-24521 - https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html
 CVE-2023-24522 - https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html
 CVE-2023-24523 - https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html
@@ -74304,6 +74315,11 @@ CVE-2023-24525 - https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c
 CVE-2023-24528 - https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html
 CVE-2023-24529 - https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html
 CVE-2023-24530 - https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html
+CVE-2023-24651 - https://www.sourcecodester.com/sites/default/files/download/oretnom23/php-scrm.zip
+CVE-2023-24652 - https://www.sourcecodester.com/sites/default/files/download/oretnom23/php-scrm.zip
+CVE-2023-24653 - https://www.sourcecodester.com/sites/default/files/download/oretnom23/php-scrm.zip
+CVE-2023-24654 - https://www.sourcecodester.com/sites/default/files/download/oretnom23/php-scrm.zip
+CVE-2023-24656 - https://www.sourcecodester.com/sites/default/files/download/oretnom23/php-scrm.zip
 CVE-2023-24671 - https://packetstormsecurity.com/files/171300/VX-Search-13.8-Unquoted-Service-Path.html
 CVE-2023-24684 - https://github.com/blakduk/Advisories/blob/main/ChurchCRM/README.md
 CVE-2023-24685 - https://github.com/blakduk/Advisories/blob/main/ChurchCRM/README.md
@@ -74312,6 +74328,11 @@ CVE-2023-24687 - https://github.com/blakduk/Advisories/blob/main/Mojoportal/READ
 CVE-2023-24688 - https://github.com/blakduk/Advisories/blob/main/Mojoportal/README.md
 CVE-2023-24689 - https://github.com/blakduk/Advisories/blob/main/Mojoportal/README.md
 CVE-2023-24690 - https://github.com/blakduk/Advisories/blob/main/ChurchCRM/README.md
+CVE-2023-24728 - https://www.sourcecodester.com/sites/default/files/download/oretnom23/php-scrm.zip
+CVE-2023-24729 - https://www.sourcecodester.com/sites/default/files/download/oretnom23/php-scrm.zip
+CVE-2023-24730 - https://www.sourcecodester.com/sites/default/files/download/oretnom23/php-scrm.zip
+CVE-2023-24731 - https://www.sourcecodester.com/sites/default/files/download/oretnom23/php-scrm.zip
+CVE-2023-24732 - https://www.sourcecodester.com/sites/default/files/download/oretnom23/php-scrm.zip
 CVE-2023-24733 - https://github.com/AetherBlack/CVE/tree/main/PMB
 CVE-2023-24734 - https://github.com/AetherBlack/CVE/tree/main/PMB
 CVE-2023-24735 - https://github.com/AetherBlack/CVE/tree/main/PMB
@@ -74358,6 +74379,7 @@ CVE-2023-25719 - https://cybir.com/2022/cve/hijacking-connectwise-control-and-dd
 CVE-2023-25719 - https://www.huntress.com/blog/clearing-the-air-overblown-claims-of-vulnerabilities-exploits-severity
 CVE-2023-26033 - https://github.com/gentoo/soko/security/advisories/GHSA-gp8g-jfq9-5q2g
 CVE-2023-26043 - https://github.com/GeoNode/geonode/security/advisories/GHSA-mcmc-c59m-pqq8
+CVE-2023-26071 - https://www.gruppotim.it/it/footer/red-team.html
 CVE-2023-26072 - http://packetstormsecurity.com/files/171378/Shannon-Baseband-NrmmMsgCodec-Emergency-Number-List-Heap-Buffer-Overflow.html
 CVE-2023-26073 - http://packetstormsecurity.com/files/171380/Shannon-Baseband-NrmmMsgCodec-Extended-Emergency-Number-List-Heap-Buffer-Overflow.html
 CVE-2023-26074 - http://packetstormsecurity.com/files/171383/Shannon-Baseband-NrmmMsgCodec-Access-Category-Definitions-Heap-Buffer-Overflow.html