Bludit 3.9.2 – Authentication Bruteforce Bypass (Metasploit)
>> ARCHIVE: 2020-11
Bludit 3.9.2 – Authentication Bruteforce Bypass (Metasploit)
Citrix ADC NetScaler – Local File Inclusion (Metasploit)
ASUS TM-AC1900 – Arbitrary Command Execution (Metasploit)
Joomla Simple Image Gallery Extended (SIGE) extension versions 3.4.1-FREE and 3.5.3-PRO suffer from cross site scripting and remote file inclusion vulnerabilities.
CMSUno version 1.6.2 user remote code execution exploit. This is a variant of the vulnerability discovered by the same researcher in November of 2020.
Customer Support System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Customer Support System version 1.0 suffers from a cross site request forgery vulnerability.
Customer Support System version 1.0 suffers from a persistent cross site scripting vulnerability.
Microsoft Windows suffers from a local spooler bypass vulnerability.
http://pharmacy.huahinhospital.go.th notified by Al Catraz