Pawan Jaiswal

How to Exploit File Upload in Mara CMS | CVE-2020-25042

Mara CMS 7.5 has a security vulnerability in which there is an arbitrary file upload issue. To exploit this vulnerability, an attacker needs to have a valid authenticated session as an admin or manager. The attacker can then make a request to 'codebase/dir.php?type=filenew'

How to Exploit SQLi in rConfig | CVE-2020-10220

An issue was discovered in rConfig through version 3.9.4, where the web interface is vulnerable to SQL injection through the "searchColumn" parameter in "commands.inc.php". This vulnerability could allow attackers to manipulate the database and access sensitive information. Disclaimer The content provided here