>> CATEGORY: Security

CuteNews 2.1.2 – Arbitrary File Deletion

Sentrifugo CMS 3.2 – Persistent Cross-Site Scripting

SolarWinds MSP PME Cache Service 1.1.14 – Insecure File Permissions

OpenZ ERP 3.6.60 – Persistent Cross-Site Scripting

Victor CMS 1.0 – ‘post’ SQL Injection

Online AgroCulture Farm Management System 1.0 – ‘uname’ SQL Injection

Complaint Management System 1.0 – Authentication Bypass

LibreNMS 1.46 – ‘search’ SQL Injection

Pi-hole < 4.4 – Remote Code Execution

Pi-hole < 4.4 – Remote Code Execution / Privileges Escalation