|
Online Motorcycle (Bike) Rental System 1.0 - Blind Time-Based SQL Injection (Unauthenticated)
|
|
2021-10-19
|
|
myfactory FMS 7.1-911 - 'Multiple' Reflected Cross-Site Scripting (XSS)
|
|
2021-10-19
|
|
WordPress Theme Enfold 4.8.3 - Reflected Cross-Site Scripting (XSS)
|
|
2021-10-19
|
|
Plastic SCM 10.0.16.5622 - WebAdmin Server Access
|
|
2021-10-18
|
|
Company's Recruitment Management System 1.0 - 'Add New user' Cross-Site Request Forgery (CSRF)
|
|
2021-10-18
|
|
Company's Recruitment Management System 1.0 - 'description' Stored Cross-Site Scripting (XSS)
|
|
2021-10-18
|
|
Mitsubishi Electric & INEA SmartRTU - Reflected Cross-Site Scripting (XSS)
|
|
2021-10-18
|
|
Mitsubishi Electric & INEA SmartRTU - Source Code Disclosure
|
|
2021-10-18
|
|
Company's Recruitment Management System 1.0. - 'title' Stored Cross-Site Scripting (XSS)
|
|
2021-10-18
|
|
Wordpress Plugin Duplicator 1.3.26 - Unauthenticated Arbitrary File Read
|
|
2021-10-18
|
|
Support Board 3.3.4 - 'Message' Stored Cross-Site Scripting (XSS)
|
|
2021-10-18
|
|
i-Panel Administration System 2.0 - Reflected Cross-site Scripting (XSS)
|
|
2021-10-15
|
|
SolarWinds Kiwi CatTools 3.11.8 - Unquoted Service Path
|
|
2021-10-15
|
|
TextPattern CMS 4.8.7 - Remote Command Execution (RCE) (Authenticated)
|
|
2021-10-15
|
|
Sonicwall SonicOS 7.0 - Host Header Injection
|
|
2021-10-15
|
|
Logitech Media Server 8.2.0 - 'Title' Cross-Site Scripting (XSS)
|
|
2021-10-15
|
|
Student Quarterly Grading System 1.0 - 'grade' Stored Cross-Site Scripting (XSS)
|
|
2021-10-15
|
|
Simple Issue Tracker System 1.0 - SQLi Authentication Bypass
|
|
2021-10-15
|
|
Online Learning System 2.0 - 'Multiple' SQLi Authentication Bypass
|
|
2021-10-15
|
|
Pharmacy Point of Sale System 1.0 - 'Add New User' Cross-Site Request Forgery (CSRF)
|
|
2021-10-15
|
|
Cypress Solutions CTM-200 2.7.1 - Root Remote OS Command Injection
|
|
2021-10-15
|
|
Cypress Solutions CTM-200/CTM-ONE - Hard-coded Credentials Remote Root (Telnet/SSH)
|
|
2021-10-15
|
|
Apache HTTP Server 2.4.50 - Path Traversal & Remote Code Execution (RCE)
|
|
2021-10-15
|
|
Keycloak 12.0.1 - 'request_uri ' Blind Server-Side Request Forgery (SSRF) (Unauthenticated)
|
|
2021-10-15
|
|
Company's Recruitment Management System 1.0 - 'Multiple' SQL Injection (Unauthenticated)
|
|
2021-10-15
|
|
Simple Payroll System 1.0 - SQLi Authentication Bypass
|
|
2021-10-15
|
|
Loan Management System 1.0 - SQLi Authentication Bypass
|
|
2021-10-08
|
|
Cmder Console Emulator 1.3.18 - 'Cmder.exe' Denial-of-Service (PoC)
|
|
2021-10-08
|
|
Online Employees Work From Home Attendance System 1.0 - SQLi Authentication Bypass
|
|
2021-10-08
|
|
Online Enrollment Management System 1.0 - Authentication Bypass
|
|
2021-10-08
|
|
Simple Online College Entrance Exam System 1.0 - 'Multiple' SQL injection
|
|
2021-10-08
|
|
Simple Online College Entrance Exam System 1.0 - Account Takeover
|
|
2021-10-08
|
|
Simple Online College Entrance Exam System 1.0 - Unauthenticated Admin Creation
|
|
2021-10-08
|
|
WordPress Plugin Pie Register 3.7.1.4 - Admin Privilege Escalation (Unauthenticated)
|
|
2021-10-08
|
|
Maian-Cart 3.8 - Remote Code Execution (RCE) (Unauthenticated)
|
|
2021-10-08
|
|
django-unicorn 0.35.3 - Stored Cross-Site Scripting (XSS)
|
|
2021-10-08
|
|
Online Traffic Offense Management System 1.0 - Privilage escalation (Unauthenticated)
|
|
2021-10-08
|
|
IFSC Code Finder Project 1.0 - SQL injection (Unauthenticated)
|
|
2021-10-08
|
|
Simple Online College Entrance Exam System 1.0 - SQLi Authentication Bypass
|
|
2021-10-07
|
|
Online Traffic Offense Management System 1.0 - Multiple RCE (Unauthenticated)
|
|
2021-10-07
|
|
Online Traffic Offense Management System 1.0 - Multiple XSS (Unauthenticated)
|
|
2021-10-07
|
|
Online Traffic Offense Management System 1.0 - Multiple SQL Injection (Unauthenticated)
|
|
2021-10-07
|
|
Online DJ Booking Management System 1.0 - 'Multiple' Blind Cross-Site Scripting
|
|
2021-10-07
|
|
Google SLO-Generator 2.0.0 - Code Execution
|
|
2021-10-07
|
|
Windows/x86 - Bind TCP shellcode / Dynamic PEB & EDT method null-free Shellcode (415 bytes)
|
|
2021-10-07
|
|
Apache HTTP Server 2.4.49 - Path Traversal
|
|
2021-10-06
|
|
Wordpress Plugin BulletProof Security 5.1 - Sensitive Information Disclosure
|
|
2021-10-06
|
|
Odine Solutions GateKeeper 1.0 - 'trafficCycle' SQL Injection
|
|
2021-10-06
|
|
Atlassian Jira Server/Data Center 8.16.0 - Arbitrary File Read
|
|
2021-10-06
|
|
Wordpress Plugin MStore API 2.0.6 - Arbitrary File Upload
|
|
2021-10-05
|