WordPress Plugin TaxoPress 3.0.7.1 – Stored Cross-Site Scripting (XSS) (Authenticated)
>> AUTHOR: deepcore
WordPress Plugin TaxoPress 3.0.7.1 – Stored Cross-Site Scripting (XSS) (Authenticated)
Gestionale Open 11.00.00 – Local Privilege Escalation
Hikvision Web Server Build 210702 – Command Injection
Engineers Online Portal 1.0 – File Upload Remote Code Execution (RCE)
Netgear Genie 2.4.64 – Unquoted Service Path
Build Smart ERP 21.0817 – ‘eidValue’ SQL Injection (Unauthenticated)
Apache HTTP Server 2.4.50 – Remote Code Execution (RCE) (2)
Balbooa Joomla Forms Builder 2.0.6 – SQL Injection (Unauthenticated)
OpenClinic GA 5.194.18 – Local Privilege Escalation
Jetty version 9.4.37.v20210219 suffers from an information disclosure vulnerability.