WebIncorp ERP suffers from a remote SQL injection vulnerability. All versions as of 08/01/2019 are supposedly affected.
>> AUTHOR: deepcore
Cisco Catalyst 3850 Series Device Manager version 3.6.10E suffers from a cross site request forgery vulnerability.
Ultimate Loan Manager version 2.0 suffers from a persistent cross site scripting vulnerability.
This archive contains all of the 146 exploits added to Packet Storm in July, 2019.
Sar2HTML 3.2.1 – Remote Command Execution
Rest – Cafe and Restaurant Website CMS – ‘slug’ SQL Injection
1CRM On-Premise Software 8.5.7 – Persistent Cross-Site Scripting
D-Link 6600-AP suffers from cross site scripting, key extraction, shell escape, config file disclosure, and denial of service vulnerabilities.
Oracle Hyperion Planning version 11.1.2.3 suffer from an XML external entity injection vulnerability.
Ultimate Loan Manager 2.0 – Cross-Site Scripting