|
Budget Management System 1.0 - 'Budget title' Stored XSS
|
|
2021-03-29
|
|
Equipment Inventory System 1.0 - 'multiple' Stored XSS
|
|
2021-03-29
|
|
Concrete5 8.5.4 - 'name' Stored XSS
|
|
2021-03-29
|
|
TP-Link Devices - 'setDefaultHostname' Stored Cross-site Scripting (Unauthenticated)
|
|
2021-03-29
|
|
vsftpd 3.0.3 - Remote Denial of Service
|
|
2021-03-29
|
|
WordPress Plugin WP Super Cache 1.7.1 - Remote Code Execution (Authenticated)
|
|
2021-03-29
|
|
Exploiting XXE to SSRF - Paper
|
|
2021-03-29
|
|
Apache Ghostcat CVE 2020-1938 - Paper
|
|
2021-03-29
|
|
Moodle 3.10.3 - 'label' Persistent Cross Site Scripting
|
|
2021-03-29
|
|
Regis Inventory And Monitoring System 1.0 - 'Item List' Stored XSS
|
|
2021-03-29
|
|
GetSimple CMS Custom JS Plugin 0.1 - CSRF to Persistent XSS
|
|
2021-03-29
|
|
Dolibarr ERP/CRM 11.0.4 - File Upload Restrictions Bypass (Authenticated RCE)
|
|
2021-03-29
|
|
Genexis Platinum-4410 P4410-V2-1.31A - 'start_addr' Persistent Cross-Site Scripting
|
|
2021-03-29
|
|
Linksys EA7500 2.0.8.194281 - Cross-Site Scripting
|
|
2021-03-29
|
|
Ovidentia 6 - 'id' SQL injection (Authenticated)
|
|
2021-03-29
|