Gestionale Open 11.00.00 – Local Privilege Escalation

Online Event Booking and Reservation System 1.0 – ‘reason’ Stored Cross-Site Scripting (XSS)

Balbooa Joomla Forms Builder 2.0.6 – SQL Injection (Unauthenticated)

OpenClinic GA 5.194.18 – Local Privilege Escalation

Build Smart ERP 21.0817 – ‘eidValue’ SQL Injection (Unauthenticated)

Apache HTTP Server 2.4.50 – Remote Code Execution (RCE) (2)

Engineers Online Portal 1.0 – File Upload Remote Code Execution (RCE)

Hikvision Web Server Build 210702 – Command Injection