Tag: 0day

[webapps] WordPress Plugin JS Jobs Manager 1.1.7 – Unauthenticated Plugin Install/Activation

[webapps] Cyber Cafe Management System Project (CCMS) 1.0 – SQL Injection Authentication Bypass

[webapps] Cmsimple 5.4 – Remote Code Execution (RCE) (Authenticated)

[webapps] Pharmacy Point of Sale System 1.0 – 'Multiple' SQL Injection (SQLi)

[webapps] Storage Unit Rental Management System 1.0 – Remote Code Execution (RCE) (Unauthenticated)

[webapps] OpenSIS 8.0 – 'cp_id_miss_attn' Reflected Cross-Site Scripting (XSS)

[webapps] WordPress Plugin Select All Categories and Taxonomies 1.3.1 – Reflected Cross-Site Scripting (XSS)

[webapps] WordPress Plugin Redirect 404 to Parent 1.3.0 – Reflected Cross-Site Scripting (XSS)

[remote] Mitrastar GPT-2541GNAC-N1 – Privilege escalation

[webapps] Pet Shop Management System 1.0 – Remote Code Execution (RCE) (Unauthenticated)