Social Networking Site versions released prior to November 17, 2020 have been found susceptible to a remote SQL injection vulnerability that allows for authentication bypass.
>> CATEGORY: exploit
Medical Center Portal Management System released prior to November 16, 2020 have been identified as being susceptible to a local file inclusion vulnerability.
Aerospike Database version 5.1.0.3 suffers from a remote command execution vulnerability.
EgavilanMedia User Registration and Login System with Admin Panel versions released prior to November 17, 2020 appear susceptible to a remote SQL injection vulnerability that allows for authentication bypass.
Grocy Household Management Solution version 2.7.1 suffers from a persistent cross site scripting vulnerability.
Apache Struts version 2.5.20 double OGNL evaluation exploit.
Advanced System Care Service version 13 suffers from an unquoted service path vulnerability.
Pandora FMS version 7.0 NG 749 suffers from a remote SQL injection vulnerability.
KiteService version 1.2020.1113.1 suffers from an unquoted service path vulnerability.
Taskcafe version 0.1.0 and 0.1.1 suffer from a cross-origin resource sharing vulnerability.