# Exploit Title: cgi-bin/webscr?cmd=_cart in the WooCommerce PayPal Checkout Payment Gateway plugin 1.6.17 for WordPress allows Parameter Tampering in an amount parameter (such as amount_1), as demonstrated by purchasing an….
# Exploit Title: /payu/icpcheckout/ in the WooCommerce PayU India Payment Gateway Plugin 2.1.1 for WordPress allows Parameter Tampering in purchase Quantity=1 parameter , as demonstrated by purchasing an item for….
# Exploit Title: card/pay/…/amount in the WooCommerce Instamojo Payment Gateway plugin 1.0.7 for WordPress allows Parameter Tampering in the sign parameter, as demonstrated by purchasing an item for lower than….
# Exploit Title: cgi-bin/webscr?cmd=_cart in the WooCommerce PayPal Checkout Payment Gateway plugin 1.6.8 for WordPress allows Parameter Tampering in an amount parameter (such as amount_1), as demonstrated by purchasing an….
# Exploit Title: JioFi 4G M2S 1.0.2 devices have CSRF via the SSID name and Security Key field under Edit Wi-Fi Settings (aka a SetWiFi_Setting request to cgi-bin/qcmap_web_cgi) # Exploit….
# Exploit Title: cgi-bin/qcmap_web_cgi on JioFi 4G M2S 1.0.2 devices allows a DoS (Hang) via the mask POST parameter # Exploit Author: Vikas Chaudhary # Date: 21-01-2019 # Vendor Homepage:….
# Exploit Title: cgi-bin/qcmap_web_cgi on JioFi 4G M2S 1.0.2 devices has XSS Injection via the mask POST parameter. # Exploit Author: Vikas Chaudhary # Date: 21-01-2019 # Vendor Homepage: https://www.jio.com/….
# Exploit Title: cgi-bin/qcmap_web_cgi on JioFi 4G M2S 1.0.2 devices has HTML injection via the mask POST parameter. # Exploit Author: Vikas Chaudhary # Date: 21-01-2019 # Vendor Homepage: https://www.jio.com/….
******************************************************************************************* # Exploit Title: PHP Scripts Mall Opensource Classified Ads Script 3.2.2 has reflected Cross-Site Scripting (XSS) via the Search field # Date: 30.12.2018 # Site Title : Opensource Classified….
******************************************************************************************* # Exploit Title: PHP Scripts Mall Opensource Classified Ads Script 3.2.2 has directory traversal via a direct request for a listing of an uploads directory # Date: 30.12.2018 #….
******************************************************************************************* # Exploit Title: PHP Scripts Mall Opensource Classified Ads Script 3.2.2 has reflected HTML injection via the Search Form # Site Title : Opensource Classified Ads Script # Vendor….
******************************************************************************************* # Exploit Title:PHP Scripts Mall Rental Bike Script 2.0.3 has directory traversal via a direct request for a listing of an uploads directory. # Date: 30.12.2018 # Site Title….
