This document aims at explaining some recent vulnerabilities in Apache HTTP Server that leads to attacks like path traversal and remote code execution.
Opencart version 3.0.3.8 suffers from a session injection vulnerability.
Orangescrum version 1.8.0 suffers from reflective and persistent cross site scripting vulnerabilities.
Orangescrum version 1.8.0 suffers from multiple remote SQL injection vulnerabilities.
Orangescrum version 1.8.0 suffers from a privilege escalation vulnerability.
Laundry Booking Management System 1.0 – Remote Code Execution (RCE)
opencart 3.0.3.8 – Sessjion Injection
orangescrum 1.8.0 – ‘Multiple’ SQL Injection (Authenticated)
orangescrum 1.8.0 – ‘Multiple’ Cross-Site Scripting (XSS) (Authenticated)
orangescrum 1.8.0 – Privilege escalation (Authenticated)