MorphyKutay

icon indicating a website link https://kutaysec.online/ icon indicating an email [email protected]

icon company @eyazyazilim icon location I ❤️ Open Source && Cyber Security Researcher

Results 3 issues of MorphyKutay

Create New user page XSS

1 comment

### Describe the bug **not filtering the xss payload written to the username** https://owasp.org/www-community/attacks/xss/ ### To Reproduce _Steps to reproduce the behavior:_ **1-) Click on accounts from Dashboard and create...

Aero CMS v0.0.1 - SQL Injection (search box)

POST /search.php HTTP/1.1 Host: 192.168.243.133 Content-Length: 19 Cache-Control: max-age=0 Upgrade-Insecure-Requests: 1 Origin: http://192.168.243.133/ Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.5414.120 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9...

Update main.c

The updated xbc_show_value function uses a recursive approach to print all the data in a boot configuration file. This function checks if a xbc_node is a value node. If it...