>> ARCHIVE: 2019-11

Adrenalin Core HCM 5.4.0 – ‘prntDDLCntrlName’ Reflected Cross-Site Scripting

Adrenalin Core HCM 5.4.0 – ‘strAction’ Reflected Cross-Site Scripting

CBAS-Web 19.0.0 – ‘id’ Boolean-based Blind SQL Injection

Joomla 3.9.13 – ‘Host’ Header Injection

eMerge E3 1.00-06 – Privilege Escalation

eMerge E3 1.00-06 – Remote Code Execution

CBAS-Web 19.0.0 – Username Enumeration

CBAS-Web 19.0.0 – Information Disclosure

CBAS-Web 19.0.0 – Cross-Site Request Forgery (Add Super Admin)

eMerge E3 Access Controller 4.6.07 – Remote Code Execution (Metasploit)