WibuKey Runtime 6.51 – ‘WkSvW32.exe’ Unquoted Service Path
WibuKey Runtime 6.51 – ‘WkSvW32.exe’ Unquoted Service Path
OpenEMR 5.0.1.3 – ‘manage_site_files’ Remote Code Execution (Authenticated)
TextPattern CMS 4.8.7 – Remote Command Execution (Authenticated)
Spy Emergency 25.0.650 – ‘Multiple’ Unquoted Service Path
Stock Management System 1.0 – ‘user_id’ Blind SQL injection (Authenticated)
Small CRM 3.0 – ‘Authentication Bypass’ SQL Injection
COVID19 Testing Management System 1.0 – ‘State’ Stored Cross-Site-Scripting (XSS)
Solar-Log 500 version 2.8.2 suffers from an incorrect access control vulnerability.
Solar-Log 500 version 2.8.2 suffers from password disclosure vulnerabilities.
Ability FTP server version 2.34 APPE denial of service exploit.