AMSS++ version 4.31 suffers from a remote SQL injection vulnerability.
>> ARCHIVE: 2020-02
AMSS++ version 4.31 suffers from a remote SQL injection vulnerability.
Online Birth Certificate System version 1.0 suffers from a persistent cross site scripting vulnerability.
D-Link DGS-1250 suffers from a header injection vulnerability that can be leveraged through cross site scripting.
Open-Xchange App Suite and Documents versions 7.10.2 and below suffer from multiple server-side request forgery vulnerabilities.
This Metasploit module exploits a command injection in OpenNetAdmin between versions 8.5.14 and 18.1.1.
http://sahathat.go.th/file_editor/db.txt notified by SeRaVo BlackHaT
WordPress Default-Featured-Image plugin version 1.6.1 suffers from a cross site scripting vulnerability.
WordPress Events-Manager plugin version 5.9.7.3 suffers from a cross site scripting vulnerability.
WordPress Forminator plugin version 1.11.2 suffers from a remote file upload vulnerability.
WordPress Forminator plugin version 1.11.2 suffers from a cross site scripting vulnerability.