Church Management System 1.0 – ‘Multiple’ Stored Cross-Site Scripting (XSS)
>> AUTHOR: deepcore
Church Management System 1.0 – ‘Multiple’ Stored Cross-Site Scripting (XSS)
AKCP sensorProbe SPX476 suffers from multiple cross site scripting vulnerabilities.
b2evolution version 7.2.2 suffers from a cross site request forgery vulnerability.
WordPress Modern Events Calendar plugin version 5.16.2 suffers from an issue where unauthenticated parties can export all event data.
WordPress Modern Events Calendar plugin version 5.16.2 suffers from a remote shell upload vulnerability.
Scratch Desktop version 3.17 suffers from code execution and cross site scripting vulnerabilities.
Garbage Collection Management System version 1.0 suffers from a remote SQL injection vulnerability.
This is the Impacket implementation of the PrintNightmare proof of concept originally created by Zhiniang Peng and Xuefeng Li that leverages a privilege escalation vulnerability in the Windows Print Spooler.
PrintNightmare remote code execution proof of concept exploit for the Windows Spooler Service.
Vianeos OctoPUS version 5 suffers from a remote time-based SQL injection vulnerability.