WordPress AAWP plugin version 3.16 suffers from a cross site scripting vulnerability.

Hospitals Patient Records Management System version 1.0 suffers from an account takeover vulnerability.

Online Admission System version 1.0 suffers from an unauthenticated remote code execution vulnerability.

openSIS Student Information System version 8.0 suffers from a remote SQL injection vulnerability.

Rocket LMS version 1.1 suffers from a persistent cross site scripting vulnerability.

TermTalk Server version 3.24.0.2 suffers from an arbitrary file read vulnerability.

Hostel Management System version 2.1 suffers from a cross site scripting vulnerability.

Affiliate Pro version 1.7 suffers from multiple cross site scripting vulnerabilities.

Gerapy version 0.9.7 suffers from a remote code execution vulnerability.

Dixell XWEB 500 suffers from an arbitrary file write vulnerability.