Spryker Commerce OS with spryker/http module versions prior to 1.7.0 suffer from a remote command execution vulnerability due to a predictable value in use.
https://www.medcannabis.go.th notified by Xwizx404
http://nongpluang.go.th/coremain/images/theme/hai.html notified by ./Niz4r
http://sawanpraya.go.th/coremain/images/border/ notified by ./Niz4r
Spryker Commerce OS with spryker/http module versions prior to 1.7.0 suffer from a remote command execution vulnerability due to a predictable value in use.
http://takook.go.th notified by Mrj Haxcore
Travel Tours Script version 1.0 suffers from a remote SQL injection vulnerability.
Property Listing Script version 3.1 suffers from a remote SQL injection vulnerability.
Orange Station version 1.0 suffers from a remote SQL injection vulnerability.
Backdoor.Win32.HoneyPot.a malware suffers from a weak hardcoded password vulnerability.