Multiple D-Link router models suffer from code execution, plain-text password storage, and directory traversal vulnerabilities.
>> CATEGORY: exploit
WordPress Wordfence plugin version 7.1.12 suffers from bypass, cross site scripting, and path disclosure vulnerabilities.
User Management version 1.1 suffers from a cross site scripting vulnerability.
Zenar Content Management System version 8.3 suffers from a cross site request forgery vulnerability.
Time and Expense Management System version 3.0 suffers from a remote SQL injection vulnerability.
Academic Timetable Final Build versions 7.0a through 7.0b suffer from an information leakage vulnerability.
KORA version 2.7.0 suffers from a remote SQL injection vulnerability.
HotelDruid version 2.2.4 suffers from a remote SQL injection vulnerability.
Navigate CMS version 2.8.5 suffers from an arbitrary file download vulnerability.
Kados R10 GreenBee suffers from a remote SQL injection vulnerability.