[] NeoSense
E X P L O I T S
title author type platform port cve id
Joan Martinez Elasticsearch ECE 7.13.3 - Anonymous Database Dump
webapps multiple CVE-2021-22146
Podalirius Microsoft SharePoint Server 2019 - Remote Code Execution (2)
webapps aspx CVE-2020-1147
Vikas Srivastava WordPress Plugin Simple Post 1.1 - 'Text field' Stored Cross-Site Scripting (XSS)
webapps php
r0ny ElasticSearch 7.13.3 - Memory disclosure
webapps multiple CVE-2021-22145
faisalfs10x CSZ CMS 1.2.9 - 'Multiple' Arbitrary File Deletion
webapps php
LiquidWorm KevinLAB BEMS 1.0 - File Path Traversal Information Disclosure (Authenticated)
webapps hardware
LiquidWorm KevinLAB BEMS 1.0 - Authentication Bypass
webapps hardware
LiquidWorm KevinLAB BEMS 1.0 - Undocumented Backdoor Account
remote hardware
Mesh3l_911 Webmin 1.973 - 'run.cgi' Cross-Site Request Forgery (CSRF)
webapps linux CVE-2021-31761
Aakash Choudhary WordPress Plugin KN Fix Your Title 1.0.1 - 'Separator' Stored Cross-Site Scripting (XSS)
webapps php
faisalfs10x PEEL Shopping 9.3.0 - 'id' Time-based SQL Injection
webapps php CVE-2021-37593
d7x Linux/x86 - Egghunter Reverse TCP Shell dynamic IP and port Shellcode
linux_x86
Vikas Srivastava WordPress Plugin Mimetic Books 0.2.13 - 'Default Publisher ID field' Stored Cross-Site Scripting (XSS)
webapps php
nhattruong WordPress Plugin LearnPress 3.2.6.8 - Privilege Escalation
webapps php
nhattruong WordPress Plugin LearnPress 3.2.6.7 - 'current_items' SQL Injection (Authenticated)
webapps php CVE-2020-6010
Gr33nh4t Aruba Instant 8.7.1.0 - Arbitrary File Modification
remote hardware CVE-2021-25155
page: 140/3001 [exploits: 48015]
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.