Moodle 3.11.5 – SQLi (Authenticated)
>> AUTHOR: deepcore
Moodle 3.11.5 – SQLi (Authenticated)
Pluck CMS 4.7.16 – Remote Code Execution (RCE) (Authenticated)
Hikvision IP Camera – Backdoor
Tiny File Manager 2.4.6 – Remote Code Execution (RCE)
Apache APISIX 2.12.1 – Remote Code Execution (RCE)
Baixar GLPI Project 9.4.6 suffers from a remote SQL injection vulnerability.
Insurance Management System version 1.0 suffers from a remote SQL injection vulnerability.
Student Grading System version 1.0 suffers from a remote SQL injection vulnerability.
Automatic Question Paper Generator System version 1.0 suffers from an insecure direct object reference that allows an attacker to reset the password of other users.
VIVE Runtime Service version 1.0.0.4 suffers from an unquoted service path vulnerability.