eClass LMS version 2.6 suffers from a remote shell upload vulnerability.
>> ARCHIVE: 2020-12
eClass LMS version 2.6 suffers from a remote shell upload vulnerability.
This archive contains all of the 185 exploits added to Packet Storm in November, 2020.
Artworks Gallery 1.0 – Arbitrary File Upload RCE (Authenticated)
Expense Management System – ‘description’ Stored Cross Site Scripting
Artworks Gallery 1.0 – Arbitrary File Upload RCE (Authenticated) via Edit Profile
aSc TimeTables 2021.6.2 – Denial of Service (PoC)
Pharmacy Store Management System 1.0 – ‘id’ SQL Injection
IDT PC Audio 1.0.6433.0 – ‘STacSV’ Unquoted Service Path
Under Construction Page with CPanel 1.0 – SQL injection
WonderCMS 3.1.3 – ‘Menu’ Persistent Cross-Site Scripting