>> CATEGORY: exploit

Resource Hacker version 3.6.0.92 suffers from a buffer overflow vulnerability.

Frhed version 1.6.0 suffers from a buffer overflow vulnerability.

Explorer32++ version 1.3.5.531 suffers from a buffer overflow vulnerability.

Desktop Central version 9.1.0 suffers from crlf injection, and server-side request forgery vulnerabilities.

Aero CMS version 0.0.1 suffers from multiple remote SQL injection vulnerabilities. Original discovery of this issue in this version is attributed to nu11secur1ty in August of 2022.

Aero CMS version 0.l0.1 remote shell upload exploit. Original discovery of this issue in this version is attributed to D4rkP0w4r in April of 2022.

Atom CMS version 2.0 suffers from a remote SQL injection vulnerability. Original discovery of this issue in this version is attributed to Luca Cuzzolin in February of 2022.

Fortinet FortiOS, FortiProxy, and FortiSwitchManager version 7.2.1 suffers from a authentication bypass vulnerability.

WPN-XM Serverstack for Windows version 0.8.6 suffers from cross site scripting, local file inclusion, and path traversal vulnerabilities.

Rental House Management System version 1.0 suffers from a cross site scripting vulnerability.