Judging Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Judging Management System version 1.0 a remote shell upload vulnerability.
https://palm.dit.go.th/net.html notified by Desktop77N3T
http://nongbua.nfe.go.th/ok.htm notified by Mr. BDKR28
Delta Electronics DX-2100-L1-CN version 1.5.0.10 suffers from command injection and cross site scripting vulnerabilities.
Delta Electronics DVW-W02W2-E2 version 2.42 suffers from an authenticated command injection vulnerability.
Planet eStream versions prior to 6.72.10.07 suffer from shell upload, account takeover, broken access control, SQL injection, both persistent and reflective cross site scripting, path traversal, and information disclosure vulnerabilities.
Qualys discovered a race condition (CVE-2022-3328) in snap-confine, a SUID-root program installed by default on Ubuntu. In this advisory,they tell the story of this vulnerability (which was introduced in February…
Zhuhai Suny Technology ESL Tag suffers from replay attacks and a forgery attack allowing for the displaying of arbitrary contents.
The latest version (5.1) and all prior versions of Intel’s Data Center Manager are vulnerable to a local privileges escalation vulnerability using the application user “dcm” used to run the…