CVE-2022-44787 - Reflected XSS in Appalti & Contratti 9.12.2 (idPagina) — Analysis and Exploit Details
---
Published: June 2024
If you work with e-procurement systems, especially Appalti & Contratti, you should immediately pay attention to CVE-2022-44787. This post openly covers
CVE-2022-44786 - Local File Inclusion in Appalti & Contratti 9.12.2 – Full Exploit Guide
In late 2022, a critical security flaw was discovered in the Appalti & Contratti application, version 9.12.2. This vulnerability, tracked as CVE-2022-44786, is
CVE-2022-44784 - Remote Arbitrary Service Creation & Code Execution in Appalti & Contratti (LFS / DL229) via Exposed Axis AdminService
In 2022, a critical vulnerability was discovered in Appalti & Contratti version 9.12.2, within its widely used web applications LFS and DL229. The
CVE-2022-44830 - CSV Injection in Sourcecodester Event Registration App v1. — Exploit Details and Code Walkthrough
Recently, security researchers discovered several dangerous CSV injection (a.k.a. formula injection) vulnerabilities in the Sourcecodester Event Registration App v1., publicly identified as CVE-2022-44830.
CVE-2022-43117 - Multiple XSS Flaws in Sourcecodester Password Storage Application (PHP/OOP and MySQL 1.) – Simple Guide, Exploitation & Code Example
In late 2022, a set of cross-site scripting (XSS) vulnerabilities under the identifier CVE-2022-43117 were discovered in the popular open source Sourcecodester Password Storage Application
Episode
00:00:00
00:00:00