>> CATEGORY: exploit

Local Services Search Engine Management System (LSSMES) version 1.0 suffers from blind and error-based authenticated remote SQL injection vulnerabilities.

Backdoor.Win32.BO2K.ab malware suffers from a buffer overflow vulnerability.

Backdoor.Win32.BO2K.09.b malware suffers from a code execution vulnerability.

Doctor Appointment System version 1.0 suffers from remote SQL injection vulnerabilities in the username, comment, and lastname parameters.

Doctor Appointment System version 1.0 suffers from remote blind SQL injection vulnerabilities in the firstname and email parameters.

TinyTinyRSS remote code execution exploit. Versions prior to 2020-09-16 are affected.

Profiling System For Human Resource Management version 1.0 suffers from a persistent cross site scripting vulnerability.

Web Based Quiz System version 1.0 suffers from a persistent cross site scripting vulnerability in the name field.

This Metasploit module exploits a remote code execution vulnerability in Zen Cart version 1.5.7b.

CASAP Automated Enrollment System version 1.1 suffers from a remote SQL injection vulnerability that allows for authentication bypass.