Okta Access Gateway version 2020.5.5 suffers from multiple authenticated remote root command injection vulnerabilities.
>> AUTHOR: deepcore
Online Covid Vaccination Scheduler System 1.0 – Arbitrary File Upload to Remote Code Execution (Unauthenticated)
Employee Record Management System 1.2 – Stored Cross-Site Scripting (XSS)
Wyomind Help Desk 1.3.6 – Remote Code Execution (RCE)
WordPress Plugin SP Project & Document Manager 4.21 – Remote Code Execution (RCE) (Authenticated)
Exam Hall Management System 1.0 – Unrestricted File Upload + RCE (Unauthenticated)
Visual Tools DVR VX16 version 4.2.28 suffers from a local privilege escalation vulnerability.
Netgear DGN2200v1 unauthenticated remote command execution exploit.
Black Box Kvm Extender version 3.4.31307 suffers from a local file inclusion vulnerability.
Backdoor.Win32.NerTe.781 malware suffers from bypass and code execution vulnerabilities.