Online Admission System 1.0 Remote Code Execution
Posted by deepcore under exploit (No Respond)
Online Admission System version 1.0 suffers from an unauthenticated remote code execution vulnerability.
Archive for January, 2022
openSIS Student Information System 8.0 SQL Injection
Posted by deepcore under exploit (No Respond)
openSIS Student Information System version 8.0 suffers from a remote SQL injection vulnerability.
Rocket LMS 1.1 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Rocket LMS version 1.1 suffers from a persistent cross site scripting vulnerability.
TermTalk Server 3.24.0.2 Arbitrary File Read
Posted by deepcore under exploit (No Respond)
TermTalk Server version 3.24.0.2 suffers from an arbitrary file read vulnerability.
Hostel Management System 2.1 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Hostel Management System version 2.1 suffers from a cross site scripting vulnerability.
Affiliate Pro 1.7 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Affiliate Pro version 1.7 suffers from multiple cross site scripting vulnerabilities.
Gerapy 0.9.7 Remote Code Execution
Posted by deepcore under exploit (No Respond)
Gerapy version 0.9.7 suffers from a remote code execution vulnerability.
Dixell XWEB 500 Arbitrary File Write
Posted by deepcore under exploit (No Respond)
Dixell XWEB 500 suffers from an arbitrary file write vulnerability.
WordPress Catch Themes Demo Import Shell Upload
Posted by deepcore under exploit (No Respond)
WordPress Catch Themes Demo Import plugin versions prior to 1.8 suffer from a remote shell upload vulnerability.
Projeqtor 9.3.1 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Projeqtor version 9.3.1 suffers from a persistent cross site scripting vulnerability leveraging an svg file.