Stock Management System 1.0 – ‘user_id’ Blind SQL injection (Authenticated)
Tags: 0day, remote exploitCOVID19 Testing Management System 1.0 – ‘State’ Stored Cross-Site-Scripting (XSS)
Tags: 0day, remote exploitSolar-Log 500 version 2.8.2 suffers from an incorrect access control vulnerability.
Solar-Log 500 version 2.8.2 suffers from password disclosure vulnerabilities.
Ability FTP server version 2.34 APPE denial of service exploit.
Microsoft SharePoint Server version 16.0.10372.20060 suffers from a GetXmlDataFromDataSource server-side request forgery vulnerability.
Cerberus FTP Web Service version 11 suffers from a persistent cross site scripting vulnerability.
Zenario CMS version 8.8.52729 suffers from authenticated blind and error-based remote SQL injection vulnerabilities.
WoWonder Social Network Platform version 3.1 suffers from an authentication bypass vulnerability.