Simple Public Chat Room version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
>> ARCHIVE: 2021-01
This Metasploit module exploits an unauthenticated command injection vulnerability in Klog Server versions 2.4.1 and below.
Cemetery Mapping and Information System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass. Original discovery of SQL injection in this version is attributed to…
Simple Public Chat Room version 1.0 suffers from an authenticated persistent cross site scripting vulnerability.
Oracle WebLogic Server 12.2.1.0 unauthenticated remote code execution exploit.
Openlitespeed Web Server 1.7.8 – Command Injection (Authenticated)
STVS ProVision 5.9.10 – Cross-Site Request Forgery (Add Admin)
STVS ProVision 5.9.10 – File Disclosure (Authenticated)
MyBB Timeline plugin version 1.0 suffers from cross site request forgery and cross site scripting vulnerabilities.