Hospital Management System version 4.0 suffers from a persistent cross site scripting vulnerability in add-patient.php. This version is already known to have persistent cross site scripting issues.
>> ARCHIVE: 2020-01
Easy XML Editor version 1.7.8 suffers from an XML external entity injection vulnerability.
Adive Framework version 2.0.8 suffers from a persistent cross site scripting vulnerability.
Sysax Multi Server version 5.50 suffers from a denial of service vulnerability.
This Metasploit module exploits an authenticated remote code execution vulnerability in Centreon version 19.04.
NEOWISE CARBONFTP 1.4 – Weak Password Encryption
ManageEngine Network Configuration Manager 12.2 – ‘apiKey’ SQL Injection
Centreon 19.04 – Authenticated Remote Code Execution (Metasploit)
Sysax Multi Server 5.50 – Denial of Service (PoC)
Adive Framework 2.0.8 – Persistent Cross-Site Scripting