Client Management System 1.0 – ‘searchdata’ SQL injection
>> CATEGORY: Security
Client Management System 1.0 – ‘searchdata’ SQL injection
Sphider Search Engine 1.3.6 – ‘word_upper_bound’ RCE (Authenticated)
CMS Made Simple 2.1.6 – ‘cntnt01detailtemplate’ Server-Side Template Injection
PDW File Browser 1.3 – ‘new_filename’ Cross-Site Scripting (XSS)
Online Health Care System 1.0 – Multiple Cross Site Scripting (Stored)
InoERP 0.7.2 – Remote Code Execution (Unauthenticated)
Genexis Platinum-4410 – ‘SSID’ Persistent XSS
Lot Reservation Management System 1.0 – Authentication Bypass
Gym Management System 1.0 – ‘id’ SQL Injection
Lot Reservation Management System 1.0 – Cross-Site Scripting (Stored)