[webapps] Gym Management System 1.0 – Unauthenticated Remote Code Execution
Gym Management System 1.0 – Unauthenticated...
[remote] WebLogic Server – Deserialization RCE – BadAttributeValueExpException (Metasploit)
WebLogic Server – Deserialization RCE –...
[dos] AbsoluteTelnet 11.21 – 'Username' Denial of Service (PoC)
AbsoluteTelnet 11.21 – ‘Username’ Denial of...
[webapps] forma.lms 5.6.40 – Cross-Site Request Forgery (Change Admin Email)
forma.lms 5.6.40 – Cross-Site Request Forgery...
[webapps] CraftCMS 3 vCard Plugin 1.0.0 – Remote Code Execution
CraftCMS 3 vCard Plugin 1.0.0 –...
[webapps] qdPM 9.1 – 'cfg[app_app_name]' Persistent Cross-Site Scripting
qdPM 9.1 – ‘cfg[app_app_name]’ Persistent Cross-Site...
[webapps] php-fusion 9.03.50 – 'ctype' SQL Injection
php-fusion 9.03.50 – ‘ctype’ SQL Injection
[webapps] Submitty 20.04.01 – Persistent Cross-Site Scripting
Submitty 20.04.01 – Persistent Cross-Site Scripting
[webapps] NukeViet VMS 4.4.00 – Cross-Site Request Forgery (Change Admin Password)
NukeViet VMS 4.4.00 – Cross-Site Request...