The Comtrend AR-5387un router suffers from a persistent cross site scripting vulnerability.
>> CATEGORY: exploit
Textpattern CMS version 4.6.2 suffers from a cross site request forgery vulnerability.
Loan Management System version 1.0 suffers from multiple persistent cross site scripting vulnerabilities.
Rite CMS version 2.2.1 authenticated remote code execution exploit. Original finding for remote code execution in this version of Rite CMS is attributed to Enes Ozeser.
WordPress SuperStoreFinder plugin version 6.1 suffers from cross site request forgery and remote shell upload vulnerabilities.
Apache Struts 2 DefaultActionMapper Prefixes OGNL remote code execution exploit.
Ultimate Project Manager CRM PRO versions 2.0.5 and below suffer from a remote SQL injection vulnerability.
WordPress HS Brand Logo Slider plugin version 2.1 suffers from a remote shell upload vulnerability.
User Registration and Login and User Management System with admin panel version 2.1 suffers from a persistent cross site scripting vulnerability.
Visitor Management System in PHP version 1.0 suffers from an authenticated remote SQL injection vulnerability.