>> CATEGORY: exploit

Emerson PAC Machine Edition version 9.80 Build 8695 suffers from an unquoted service path vulnerability.

ServiceNow Orlando suffers from a username enumeration vulnerability.

Medical Store Management System version 1.0 suffers from a remote SQL injection vulnerability.

Google Play Protect version 22.4.25 suffers from a detection bypass vulnerability.

Simple Student Quarterly Result / Grade System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

Multi-Vendor Online Groceries Management System version 1.0 suffers from a remote blind SQL injection vulnerability.

Ignition versions prior to 2.5.2, as used in Laravel and other products, allows unauthenticated remote attackers to execute arbitrary code because of insecure usage of file_get_contents() and file_put_contents(). This is…

TeamSpeak version 3.5.6 suffers from an insecure file permissions vulnerability.

Network Video Recorder version NVR304-16EP suffers from a cross site scripting vulnerability.

Tiny File Manager versions 2.4.3 and below authenticated remote shell upload exploit.