>> CATEGORY: exploit

Employee Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

aaPanel version 6.6.6 suffers from an authenticated privilege escalation vulnerability.

Alumni Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

Details for achieving remote code execution on CS-Cart version 1.3.3, a really old version.

Details for performing a local file inclusion attack on CS-Cart version 1.3.3, a really old version.

Hotel Management System version 1.0 authenticated remote code execution exploit.

Company Visitor Management System (CVMS) version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

Simple Grocery Store Sales and Inventory System 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

Zoo Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

This Metasploit module exploits CVE-2019-1458, an arbitrary pointer dereference vulnerability within win32k which occurs due to an uninitialized variable, which allows user mode attackers to write a limited amount of…