School ERP Pro version 1.0 suffers from a remote code execution vulnerability.

School ERP Pro version 1.0 suffers from an arbitrary file read vulnerability.

Open-AudIT version 3.2.2 suffers from OS command injection, arbitrary file upload, and remote SQL injection vulnerabilities.

Open-AudIT Professional version 3.3.1 suffers from a remote code execution vulnerability.

NVIDIA Update Service Daemon version 1.0.21 suffers from a nvUpdatusService unquoted service path vulnerability.

Gigamon GigaVUE version 5.5.01.11 suffers from directory traversal and file upload with command execution vulnerabilities. Gigamon has chosen to sunset this product and not offer a patch.

EmEditor version 19.8 suffers from an insecure file permission vulnerability.

hits script version 1.0 suffers from a remote SQL injection vulnerability.

Druva inSync Windows Client version 6.5.2 suffers from a local privilege escalation vulnerability.

This Metasploit module exploits a vulnerability that allows remote attackers to execute arbitrary code on vulnerable installations of Apache Shiro version 1.2.4.