>> CATEGORY: Security

FS Crowdfunding Script – ‘id’ SQL Injection

FS Monster Clone – ‘id’ SQL Injection

FS Care Clone – ‘sitterService’ SQL Injection

FS Thumbtack Clone – ‘ser’ SQL Injection

Mura CMS < 6.2 – Server-Side Request Forgery / XML External Entity Injection

FS Realtor Clone – ‘id’ SQL Injection

Kaltura < 13.1.0 – Remote Code Execution

Unitrends UEB 9 – bpserverd Authentication Bypass Remote Command Execution (Metasploit)

Unitrends UEB 9 – http api/storage Remote Root (Metasploit)

Polycom – Command Shell Authorization Bypass (Metasploit)