Zyxel Armor X1 WAP6806 suffers from a directory traversal vulnerability.
Zyxel Armor X1 WAP6806 suffers from a directory traversal vulnerability.
Oracle Solaris 11 Device Driver Utility version 1.3.1 suffers from an insecure use of /tmp that can allow for a race condition which leads to privilege escalation. Included exploit provides…
Wing FTP Server 6.3.8 – Remote Code Execution (Authenticated)
RiteCMS 2.2.1 – Remote Code Execution
Zyxel Armor X1 WAP6806 – Directory Traversal
SuperMicro IPMI WebInterface 03.40 – Cross-Site Request Forgery (Add Admin)
Park Ticketing Management System version 1.0 suffers from multiple remote SQL injection vulnerabilities. These can be used to bypass login and execute code.
Online Polling System from sourcecodester.com suffers from a remote SQL injection vulnerability that allows for authentication bypass.
User Registration and Login and User Management System with admin panel version 2.1 suffers from multiple remote SQL injection vulnerabilities. One allows for authentication bypass.
Small CRM version 2.0 suffers from a remote SQL injection vulnerability. This version was first discovered to have a different SQL injection vulnerability in January of 2020 by FULLSHADE.