Tag: 0day

[webapps] Online Railway Reservation System 1.0 – Remote Code Execution (RCE) (Unauthenticated)

[webapps] HTTP Commander 3.1.9 – Stored Cross Site Scripting (XSS)

[webapps] Online Railway Reservation System 1.0 – Admin Account Creation (Unauthenticated)

[webapps] Online Railway Reservation System 1.0 – 'Multiple' Stored Cross Site Scripting (XSS) (Unauthenticated)

[local] VUPlayer 2.49 – '.wax' Local Buffer Overflow (DEP Bypass)

[webapps] Online Veterinary Appointment System 1.0 – 'Multiple' SQL Injection

[dos] Siemens S7 Layer 2 – Denial of Service (DoS)

[webapps] WordPress Plugin Contact Form Entries 1.1.6 – Cross Site Scripting (XSS) (Unauthenticated)

[webapps] CMSimple 5.4 – Cross Site Scripting (XSS)

[webapps] RiteCMS 3.1.0 – Arbitrary File Overwrite (Authenticated)