Dolibarr version 12.0.3 remote SQL injection exploit that achieves remote code execution.
>> AUTHOR: deepcore
Rukovoditel version 2.6.1 remote code execution exploit that leverages shell upload and local file inclusion vulnerabilities.
Aerospike Database versions before 5.1.0.3 permitted user-defined functions (UDF) to call the os.execute Lua function. This Metasploit module creates a UDF utilizing this function to execute arbitrary operating system commands…
Library Management System version 2.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
PDF Complete version 3.5.310.2002 suffers from an unquoted service path vulnerability.
Openfire version 4.6.0 suffers from a persistent cross site scripting vulnerability.
Barcodes Generator version 1.0 suffers from a persistent cross site scripting vulnerability.
WordPress Popup Builder plugin versions 3.69.6 and below suffer from multiple cross site scripting vulnerabilities.
OpenCart version 3.0.3.6 suffers from a cross site request forgery vulnerability.
BigtreeCMS version 4.4.11 suffers from a cross site scripting vulnerability.