Karakuzu ERP Management Web 5.7.0 – ‘k_adi_duz’ SQL Injection
>> ARCHIVE: 2020-01
Karakuzu ERP Management Web 5.7.0 – ‘k_adi_duz’ SQL Injection
Online Course Registration 2.0 – Remote Code Execution
NextVPN version 4.10 suffers from an insecure file permissions vulnerability.
WordPress Ultimate Addons for Beaver Builder version 1.2.4.1 suffers from an authentication bypass vulnerability.
nostromo version 1.9.6 suffers from a remote code execution vulnerability.
Shopping Portal ProVersion version 3.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
IBM InfoPrint 4247-Z03 Impact Matrix Printer suffers from a directory traversal vulnerability.
Hospital Management System version 4.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Microsoft Windows suffers from a .group file code execution vulnerability that leverages the URL field.
This archive contains all of the 128 exploits added to Packet Storm in December, 2019.