School Event Attendance Monitoring System version 1.0 suffers from a persistent cross site scripting vulnerability.
SolarWinds Serv-U File Server versions through 15.2.1 do not correctly validate path information, allowing the disclosure of files and directories outside of the user’s home directory via a specially crafted…
SolarWinds Serv-U FTP Server versions through 15.2.1 do not correctly sanitize and validate the user-supplied directory names, allowing malicious users to create directories that when clicked on (in the breadcrumb…
http://www.srisamran-sm.go.th/me.html notified by Mr V
Apple Security Advisory 2021-02-09-1 – macOS Big Sur 11.2.1, macOS Catalina 10.15.7 Supplemental Update, and macOS Mojave 10.14.6 Security Update 2021-002 address code execution and out of bounds write vulnerabilities.
Huawei MBAMainService suffers from an unquoted service path vulnerability.
PEEL Shopping version 9.3.0 suffers from a persistent cross site scripting vulnerability.
Backdoor.Win32.Augudor.a malware suffers from a code execution vulnerability.
Openlitespeed WebServer version 1.7.8 remote command injection exploit. Original discovery of command injection in this version is attributed to cm0s from SunCSR in January of 2021.
Online Marriage Registration System (OMRS) version 1.0 remote code execution exploit. Original discovery of remote code execution in this version was discovered by Selim Enes Karaduman in June of 2020.