PHPIPAM 1.4.4 – SQLi (Authenticated)
PHPIPAM 1.4.4 – SQLi (Authenticated)
Online Project Time Management System 1.0 – Multiple Stored Cross Site Scripting (XSS) (Authenticated)
Online Project Time Management System 1.0 – SQLi (Authenticated)
Landa Driving School Management System 2.0.1 – Arbitrary File Upload
Online Project Time Management version 1.0 suffers from a remote SQL injection vulnerability.
Banco Guayaquil for iOS version 8.0.0 suffers from a script insertion vulnerability where a user can insert malicious code into their own name and could possibly be leveraged for attacks…
Backdoor.Win32.Wollf.16 malware suffers from an authentication bypass vulnerability.
Backdoor.Win32.Wollf.16 malware suffers from a hardcoded credential vulnerability.
VulturiBuilder malware suffers from an insecure permissions vulnerability.
The panel for Collector Stealer malware version 2.0.0 stores the login credentials in plaintext in its MySQL database. Third-party attackers who gain access to the system can read the database…