Firefly CMS version 1.0 suffers from a remote command execution vulnerability.
>> AUTHOR: deepcore
Firefly CMS version 1.0 suffers from a remote command execution vulnerability.
XOOPS CMS version 2.5.9 suffers from a remote SQL injection vulnerability.
SalesERP version 8.1 suffers from a remote SQL injection vulnerability.
SOCA Access Control System version 180612 suffers from insecure direct object reference vulnerabilities that leak information like password hashes.
SOCA Access Control System version 180612 suffers from a cross site scripting vulnerability.
SOCA Access Control System version 180612 suffers from remote SQL injection vulnerabilities that allow for authentication bypass.
During a short security test, SEC Consult found a severe security vulnerability in the clearsign package of supplementary Go cryptography libraries.
SOCA Access Control System version 180612 suffers from a cross site request forgery vulnerability.
This is the systemd-journald exploit produced by Qualys that demonstrates the vulnerabilities as highlighted in CVE-2018-16865 and CVE-2018-16866.
Selfie Studio 2.17 – ‘Resize Image’ Denial of Service (PoC)