Seowon SlC 130 Router – Remote Code Execution
>> ARCHIVE: 2020-08
Seowon SlC 130 Router – Remote Code Execution
Complaint Management System 1.0 – ‘cid’ SQL Injection
Pharmacy Medical Store and Sale Point version 1.0 suffers from a remote SQL injection vulnerability.
PNPSCADA 2.200816204020 – ‘interf’ SQL Injection (Authenticated)
ElkarBackup 1.3.3 – Persistent Cross-Site Scripting
vBulletin version 5.6.2 suffers from a persistent cross site scripting vulnerability.
Tailor Management System version 1.0 suffers from a persistent cross site scripting vulnerability.
WordPress Change Login Logo plugin version 1.0.1 suffers from a persistent cross site scripting vulnerability.
WordPress Click To Top plugin version 1.2.7 suffers from a persistent cross site scripting vulnerability.
This Metasploit module exploits a PHP code injection vulnerability in D-Link Central WiFi Manager CWM(100) versions below v1.03R0100_BETA6. The vulnerability exists in the username cookie, which is passed to eval()…