Hospitals Patient Records Management System 1.0 – ‘room_list’ Stored Cross Site Scripting (XSS)
>> TAG: #0day
SalonERP 3.0.1 – ‘sql’ SQL Injection (Authenticated)
Online Diagnostic Lab Management System 1.0 – Account Takeover (Unauthenticated)
Online Diagnostic Lab Management System 1.0 – Stored Cross Site Scripting (XSS)
WordPress Core 5.8.2 – ‘WP_Query’ SQL Injection
Microsoft Windows .Reg File – Dialog Spoof / Mitigation Bypass
Microsoft Windows Defender – Detections Bypass
WordPress Plugin Frontend Uploader 1.3.2 – Stored Cross Site Scripting (XSS) (Unauthenticated)
Online Railway Reservation System 1.0 – ‘id’ SQL Injection (Unauthenticated)