WordPress Plugin MStore API 2.0.6 – Arbitrary File Upload
>> AUTHOR: deepcore
WordPress Plugin MStore API 2.0.6 – Arbitrary File Upload
Payara Micro Community 5.2021.6 – Directory Traversal
Lodging Reservation Management System 1.0 – SQL Injection / Authentication Bypass
Open Game Panel – Remote Code Execution (RCE) (Authenticated)
Young Entrepreneur E-Negosyo System 1.0 – SQL Injection Authentication Bypass
http://www.sidalocal.go.th/nad.htm notified by Unknown Al
CMSimple_XH version 1.7.4 remote command execution exploit.
Vehicle Service Management System version 1.0 suffers from a remote shell upload vulnerability.
Exam Form Submission System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Drupal MiniorangeSAML module version 8.x-2.22 suffers from a privilege escalation vulnerability via XML Signature Wrapping.