flatCore CMS versions 1.5.5 and below suffer from cross site scripting and arbitrary file upload vulnerabilities.
>> ARCHIVE: 2020-08
Orion Application Server version 1.5.2b suffers from a cross site scripting vulnerability.
BarcodeOCR version 19.3.6 suffers from an unquoted service path vulnerability.
House Rental version 1.0 SQL injection exploit that changes the administrative password. Written in python.
BarracudaDrive version 6.5 suffers from a privilege escalation vulnerability.
Tailor MS version 1.0 reflected cross site scripting key logger exploit.
Warehouse Inventory System version 1.0 suffers from a cross site request forgery vulnerability.
This exploit is an all-in-one tool that leverages vulnerabilities described in CVE-2020-16139, CVE-2020-16138, and CVE-2020-16137 against Cisco 7937G devices versions SIP-1-4-5-7 and below.
Cisco 7947G versions SIP-1-4-5-7 and below privilege escalation exploit.
Two denial of service exploits for Cisco 7937G versions SIP-1-4-5-7 and below.