Library Management System 2.0 – Auth Bypass SQL Injection
>> ARCHIVE: 2020-12
Library Management System 2.0 – Auth Bypass SQL Injection
PDF Complete 3.5.310.2002 – ‘pdfsvc.exe’ Unquoted Service Path
Online Bus Booking System Project using PHP MySQL version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Student Management System PHP version 1.0 suffers from a persistent cross site scripting vulnerability.
Online Bus Ticket Reservation version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Employee Performance Evaluation System version 1.0 suffers from a persistent cross site scripting vulnerability.
Druva inSync Windows Client version 6.6.3 suffers from a local privilege escalation vulnerability.
Dup Scout Enterprise version 10.0.18 suffers from a remote buffer overflow vulnerability.
This Metasploit module exploits an arbitrary file upload vulnerability in FlexDotnetCMS versions 1.5.8 and prior in order to execute arbitrary commands with elevated privileges.
Task Management System 1.0 – Unrestricted File Upload to Remote Code Execution