research | Okan KURTULUS

Food Ordering System v1.0 – Authenticated SQL Injection

#Exploit Title: Food Ordering System v1.0 – Authenticated SQL Injection #Date: 19 June 2023 #Exploit Author: Okan Kurtulus #Vendor Homepage: https://github.com/haxxorsid/food-ordering-system #Version: 1.0 #Tested on: Windows 11 #CVE: 2023-36968 #Affected Parameter: id #Proof of Concept: 1-) Install Food Ordering System […]

Okan Kurtuluş | Yayınlanan 21 June 202324 July 2023 by Okan Kurtuluş

ReQlogic v11.3 – Unauthenticated Reflected Cross-Site Scripting (XSS)

#Exploit Title: ReQlogic v11.3 – Unauthenticated Reflected Cross-Site Scripting (XSS)#Date: 9 October 2022#Exploit Author: Okan Kurtulus#Vendor Homepage: https://reqlogic.com#Version: 11.3#Tested on: Linux#CVE : 2022-41441 # Proof of Concept:1– Install ReQlogic v11.32– Go to https://localhost:81/ProcessWait.aspx?POBatch=test&WaitDuration=33– XSS is triggered when you send the […]

Okan Kurtuluş | Yayınlanan 17 January 20231 February 2023 by Okan Kurtuluş

İletişim