October CMS builds 465 and below suffer from arbitrary file read, arbitrary file deletion, file uploading to arbitrary locations, persistent and reflective cross site scripting, and CSV injection vulnerabilities.
Daily Expenses Management System 1.0 – ‘username’ SQL Injection
Tags:
0day,
remote exploit
RTSP for iOS 1.0 – ‘IP Address’ Denial of Service (PoC)
Tags:
0day,
remote exploit
Mocha Telnet Lite for iOS 4.2 – ‘User’ Denial of Service (PoC)
Tags:
0day,
remote exploit
Pi-hole 4.3.2 – Remote Code Execution (Authenticated)
Tags:
0day,
remote exploit
Setup UGEEK UPS3 HAT on Raspberry.
Tags:
QC3,
raspberry,
ugeek,
ups3
Daily Tracker System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Daily Tracker System version 1.0 suffers from a cross site scripting vulnerability.
Online Bike Rental version 1.0 suffers from a remote shell upload vulnerability.
Online Shopping Alphaware version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.