Anote 1.0 – XSS to RCE
>> CATEGORY: Security
Anote 1.0 – XSS to RCE
Internship Portal Management System 1.0 – Remote Code Execution Via File Upload (Unauthenticated)
Voting System 1.0 – Time based SQLI (Unauthenticated SQL injection)
GetSimple CMS Custom JS 0.1 – CSRF to XSS to RCE
Piwigo 11.3.0 – ‘language’ SQL
GitLab Community Edition (CE) 13.10.3 – ‘Sign_Up’ User Enumeration
Moodle 3.6.1 – Persistent Cross-Site Scripting (XSS)
Cacti 1.2.12 – ‘filter’ SQL Injection / Remote Code Execution
FOGProject 1.5.9 – File Upload RCE (Authenticated)
Kirby CMS 3.5.3.1 – ‘file’ Cross-Site Scripting (XSS)