Apartment Visitors Management System version 1.0 suffers from a remote SQL injection vulnerability.
Backdoor.Win32.WinShell.30 malware suffers from remote stack buffer overflow and missing authentication vulnerabilities.
Nagios XI version 5.7.5 suffers from multiple persistent cross site scripting vulnerabilities.
Backdoor.Win32.Verify.f malware has backdoors running on TCP ports 1906 and 1907 that do not require any authentication.
Anchor CMS version 0.12.7 suffers from a cross site request forgery vulnerability.
Backdoor.Win32.Xel malware suffers from a remote authentication-related buffer overflow vulnerability.
This Metasploit module exploits an authenticated directory traversal vulnerability in WordPress plugin Simple JobBoard versions prior to 2.9.3 to perform an arbitrary file read with the web server privileges.
ERPNext 12.14.0 – SQL Injection (Authenticated)
CASAP Automated Enrollment System 1.0 – Authentication Bypass
Selea CarPlateServer (CPS) 4.0.1.6 – Remote Program Execution