Hospital-Management 1.26 – ‘fname’ SQL Injection
>> AUTHOR: deepcore
Hospital-Management 1.26 – ‘fname’ SQL Injection
https://www.kpp2.go.th/index.php notified by TUAN B4DUT
http://immchonburi.go.th/main notified by TUAN B4DUT
http://kpi.ntwo.moph.go.th notified by Goodzilam
http://ntwo.moph.go.th notified by Goodzilam
http://pns.ntwo.moph.go.th notified by Goodzilam
http://healthws.ntwo.moph.go.th notified by Goodzilam
Ticket-Booking version 1.4 suffers from an authentication bypass vulnerability.
College-Management-System version 1.2 suffers from an authentication bypass vulnerability.
AppXSvc version 17763.1.amd64fre.rs5_release.180914-1434 suffers from an arbitrary file security descriptor overwrite privilege escalation vulnerability.