n+otes version 1.6.2 suffers from a denial of service vulnerability.

Sticky Notes Widget version 3.0.6 suffers from a denial of service vulnerability.

EasyFTP Server version 1.7.0.11 XRMD denial of service proof of concept exploit.

memono Notepad 4.2 denial of service proof of concept exploit.

TextPattern CMS version 4.8.7 suffers from a persistent cross site scripting vulnerability.

Student Result Management System version 1.0 remote SQL injection exploit. This is a variant of the original discovery of SQL injection in this version by Ritesh Gohil.

GravCMS version 1.10.7 unauthenticated arbitrary YAML write/update exploit. This is a variant exploit of the original discovery made by Mehmet Ince in April of 2021.

This Metasploit module allows an attacker with knowledge of the admin password of NSClient++ to start a privileged shell. For this module to work, both web interface of NSClient++ and…