Tag: 0day

[webapps] Mantis Bug Tracker 2.24.3 – 'access' SQL Injection

[webapps] 4images v1.7.11 – 'Profile Image' Stored Cross-Site Scripting

[webapps] Advanced Comment System 1.0 – 'ACS_path' Path Traversal

[local] Knockpy 4.1.1 – CSV Injection

[webapps] WordPress Plugin Adning Advertising 1.5.5 – Arbitrary File Upload

[webapps] Apartment Visitors Management System 1.0 – Authentication Bypass

[webapps] Class Scheduling System 1.0 – Multiple Stored XSS

[webapps] Online Learning Management System 1.0 – Authentication Bypass

[webapps] Online Learning Management System 1.0 – Multiple Stored XSS

[webapps] Online Learning Management System 1.0 – 'id' SQL Injection