Flexmonster Pivot Table & Charts 2.7.17 – ‘To remote CSV’ Reflected XSS
>> ARCHIVE: 2020-12
Flexmonster Pivot Table & Charts 2.7.17 – ‘To remote CSV’ Reflected XSS
Flexmonster Pivot Table & Charts 2.7.17 – ‘Remote Report’ Reflected XSS
Flexmonster Pivot Table & Charts 2.7.17 – ‘To OLAP’ Reflected XSS
Spiceworks 7.5 – HTTP Header Injection
Academy-LMS 4.3 – Stored XSS
Spotweb 1.4.9 – ‘search’ SQL Injection
Queue Management System 4.0.0 – “Add User” Stored XSS
WordPress Plugin Contact Form 7 5.3.1 – Unrestricted File Upload
Alumni Management System version 1.0 suffers from a remote shell upload vulnerability. Original discovery for this vulnerability in this version is attributed to Valerio Alessandroni.
Point of Sale System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.