qdPM 9.2 – Cross-site Request Forgery (CSRF)
qdPM 9.2 – Cross-site Request Forgery (CSRF)
Sherpa Connector Service v2020.2.20328.2050 – Unquoted Service Path
minewebcms 1.15.2 – Cross-site Scripting (XSS)
SAP Information System version 1.0 suffers from a remote shell upload vulnerability.
Online Sports Complex Booking System version 1.0 suffers from a remote blind SQL injection vulnerability in Users.php. This is a similar issue as the one discovered by Saud Alenazi in…
cmark-gfm, Github’s markdown parsing library, is vulnerable to an out-of-bounds write when parsing markdown tables with a high number of columns due to an overflow of the 16bit columns count.
Bakery Shop Management System version 1.0 suffers from a remote blind SQL injection vulnerability that can lead to code execution and authentication bypass.
Bakery Shop Management System version 1.0 suffers from a local file inclusion vulnerability.
https://www.kkpho.go.th/planyut/ notified by HAMMAML1F
Gadget Store Management System version 1.0 suffers from a remote shell upload vulnerability.