>> AUTHOR: deepcore
WordPress WP Fanzone theme version 3.1 suffers from a remote SQL injection vulnerability.
Neowise CarbonFTP version 1.4 suffers from an insecure proprietary password encryption implementation.
Citrix XenMobile Server 10.8 – XML External Entity Injection
KeePass 2.44 – Denial of Service (PoC)
Hospital Management System version 4.0 suffers from a persistent cross site scripting vulnerability in add-patient.php. This version is already known to have persistent cross site scripting issues.
Easy XML Editor version 1.7.8 suffers from an XML external entity injection vulnerability.
Adive Framework version 2.0.8 suffers from a persistent cross site scripting vulnerability.
Sysax Multi Server version 5.50 suffers from a denial of service vulnerability.
This Metasploit module exploits an authenticated remote code execution vulnerability in Centreon version 19.04.