Device Manager Express versions 7.8.20002.47752 and below suffer from code execution, command execution, cross site scripting, remote SQL injection, and traversal vulnerabilities.
>> ARCHIVE: 2023-02
pyLoad versions prior to 0.5.0b3.dev31 are vulnerable to Python code injection due to the pyimport functionality exposed through the js2py library. An unauthenticated attacker can issue a crafted POST request…
pyLoad versions prior to 0.5.0b3.dev31 are vulnerable to Python code injection due to the pyimport functionality exposed through the js2py library. An unauthenticated attacker can issue a crafted POST request…
Sales Tracker System version 1.0 suffers from an authenticated remote SQL injection vulnerability.
https://leeled.go.th notified by Ajoyy
https://samkratai.go.th notified by Ajoyy
https://palmpattanacity.go.th notified by Ajoyy
https://tanyongmat.go.th notified by Ajoyy
https://donsakcity.go.th notified by Ajoyy
Sales Tracker System version 1.0 suffers from an authenticated remote SQL injection vulnerability.