[] NeoSense
E X P L O I T S
title author type platform port cve id
iqzer0 Laravel Nova 3.7.0 - 'range' DoS
webapps php
Hemant Patidar Forma LMS 2.3 - 'First & Last Name' Stored Cross-Site Scripting
webapps php
Dhruv Patel Savsoft Quiz 5 - 'field_title' Stored Cross-Site Scripting
webapps php
Gal Weizman Chromium 83 - Full CSP Bypass
local multiple CVE-2020-6519
Ultra Security Team Testa Online Test Management System 3.4.7 - 'q' SQL Injection
webapps multiple
yudp MiniCMS 1.10 - 'content box' Stored XSS
webapps php
KeopssGroup0day_Inc Phpscript-sgh 0.1.0 - Time Based Blind SQL Injection
webapps multiple
Diego Cañada IDT PC Audio 1.0.6499.0 - 'STacSV' Unquoted Service Path
local windows
Parshwa Bhavsar Composr CMS 10.0.34 - 'banners' Persistent Cross Site Scripting
webapps php
Pankaj Verma Wordpress Plugin Canto 1.3.0 - Blind SSRF (Unauthenticated)
webapps multiple CVE-2020-28976;CVE-2020-28977;CVE-2020-28978
Hemant Patidar Invision Community 4.5.4 - 'Field Name' Stored Cross-Site Scripting
webapps multiple CVE-2020-29477
LiquidWorm Sony BRAVIA Digital Signage 1.7.8 - System API Information Disclosure
webapps hardware
LiquidWorm Sony BRAVIA Digital Signage 1.7.8 - Unauthenticated Remote File Inclusion
webapps hardware
Sagar Banwa mojoPortal forums 2.7.0.0 - 'Title' Persistent Cross-Site Scripting
webapps multiple
Valerio Alessandroni Online Matrimonial Project 1.0 - Authenticated Remote Code Execution
webapps php
Mayur Parmar EgavilanMedia Address Book 1.0 Exploit - SQLi Auth Bypass
webapps multiple
page: 199/3006 [exploits: 48090]
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.