This Metasploit module provides remote code execution against GitLab Community Edition (CE) and Enterprise Edition (EE). It combines an arbitrary file read to extract the Rails secret_key_base, and gains remote…
>> AUTHOR: deepcore
Openfire 4.6.0 – ‘sql’ Stored XSS
Jenkins 2.235.3 – ‘tooltip’ Stored Cross-Site Scripting
Openfire 4.6.0 – ‘groupchatJID’ Stored XSS
Openfire 4.6.0 – ‘users’ Stored XSS
Medical Center Portal Management System 1.0 – Multiple Stored XSS
http://dds.bangkok.go.th/owned.html notified by 0x666cx
http://huaithapthan.sisaket.doae.go.th notified by 0x1998
http://phusing.sisaket.doae.go.th notified by 0x1998
http://sirattana.sisaket.doae.go.th notified by 0x1998