Nagios XI 5.7.5 – Multiple Persistent Cross-Site Scripting
>> CATEGORY: Security
Nagios XI 5.7.5 – Multiple Persistent Cross-Site Scripting
WordPress Plugin Simple Job Board 2.9.3 – Authenticated File Read (Metasploit)
ChurchRota 2.6.4 – RCE (Authenticated)
Oracle Business Intelligence Enterprise Edition 11.1.1.7.140715 – Stored XSS
Voting System 1.0 – File Upload RCE (Authenticated Remote Code Execution)
osTicket 1.14.2 – SSRF
Life Insurance Management System 1.0 – ‘client_id’ SQL Injection
Cisco UCS Manager 2.2(1d) – Remote Command Execution
Xwiki CMS 12.10.2 – Cross Site Scripting (XSS)
Inteno IOPSYS 3.16.4 – root filesystem access via sambashare (Authenticated)