>> AUTHOR: deepcore

TextPattern CMS 4.9.0-dev – Remote Command Execution (RCE) (Authenticated)

Online Voting System 1.0 – SQLi (Authentication Bypass) + Remote Code Execution (RCE)

Online Birth Certificate System 1.1 – ‘Multiple’ Stored Cross-Site Scripting (XSS)

Simple Client Management System 1.0 – Remote Code Execution (RCE)

WordPress Plugin Backup Guard 1.5.8 – Remote Code Execution (Authenticated)

Church Management System 1.0 – ‘password’ SQL Injection (Authentication Bypass)

Church Management System 1.0 – Unrestricted File Upload to Remote Code Execution (Authenticated)

WordPress Plugin WP Learn Manager 1.1.2 – Stored Cross-Site Scripting (XSS)

OpenEMR 5.0.1.7 – ‘fileName’ Path Traversal (Authenticated) (2)

Ricon Industrial Cellular Router S9922XL – Remote Command Execution (RCE)