Dental Clinic Appointment Reservation System 1.0 – Cross Site Request Forgery (Add Admin)
Dental Clinic Appointment Reservation System 1.0 – ‘Firstname’ Persistent Cross Site Scripting (Authenticated)
IPFire 2.25 – Remote Code Execution (Authenticated)
Customer Relationship Management (CRM) System 1.0 – ‘Category’ Persistent Cross site Scripting
Chamilo LMS version 1.11.14 authenticated remote code execution exploit.
Podcast Generator version 3.1 suffers from a persistent cross site scripting vulnerability.
Student Management System version 1.0 suffers from a persistent cross site scripting vulnerability.
The fix for CVE-2021-21148 has added a check in |ValueSerializer::WriteJSArrayBuffer| to make sure non-detachable array buffers cannot be transferred. The check can be bypassed with the help of asm.js and…
ZeroShell version 3.9.0 remote command execution exploit.
Dental Clinic Appointment Reservation System version 1.0 suffers from multiple remote SQL injection vulnerabilities with one of them allowing for authentication bypass.