OpenPLC 3 – Remote Code Execution (Authenticated)
>> TAG: #remote exploit
OpenPLC 3 – Remote Code Execution (Authenticated)
SEO Panel 4.8.0 – ‘order_col’ Blind SQL Injection (2)
Moodle 3.10.3 – ‘url’ Persistent Cross Site Scripting
GetSimple CMS My SMTP Contact Plugin 1.1.2 – CSRF to Stored XSS to RCE
DzzOffice 2.02.1 – ‘Multiple’ Cross-Site Scripting (XSS)
Sipwise C5 NGCP CSC – ‘Multiple’ Stored/Reflected Cross-Site Scripting (XSS)
OTRS 6.0.1 – Remote Command Execution (2)
CMS Made Simple 2.2.15 – ‘title’ Cross-Site Scripting (XSS)
RemoteClinic 2 – ‘Multiple’ Cross-Site Scripting (XSS)
Fast PHP Chat 1.3 – ‘my_item_search’ SQL Injection