qdPM 9.1 – Arbitrary File Upload
>> ARCHIVE: 2020-05
qdPM 9.1 – Arbitrary File Upload
Orchard Core RC1 – Persistent Cross-Site Scripting
LibreNMS 1.46 – ‘search’ SQL Injection
Complaint Management System 1.0 – Authentication Bypass
Online AgroCulture Farm Management System 1.0 – ‘uname’ SQL Injection
Victor CMS 1.0 – ‘post’ SQL Injection
OpenZ ERP 3.6.60 – Persistent Cross-Site Scripting
SolarWinds MSP PME Cache Service 1.1.14 – Insecure File Permissions
Sentrifugo CMS 3.2 – Persistent Cross-Site Scripting
CuteNews 2.1.2 – Arbitrary File Deletion