[remote] TSplus 16.0.2.14 - Remote Access Insecure Files and Folders Permissions

TSplus 16.0.2.14 - Remote Access Insecure Files and Folders Permissions

[webapps] Dolibarr Version 17.0.1 - Stored XSS

Dolibarr Version 17.0.1 - Stored XSS

[webapps] PHPJabbers Business Directory Script v3.2 - Multiple Vulnerabilities

PHPJabbers Business Directory Script v3.2 - Multiple Vulnerabilities

[webapps] Global - Multi School Management System Express v1.0- SQL Injection

Global - Multi School Management System Express v1.0- SQL Injection

[webapps] OVOO Movie Portal CMS v3.3.3 - SQL Injection

OVOO Movie Portal CMS v3.3.3 - SQL Injection

[remote] TSPlus 16.0.0.0 - Remote Work Insecure Credential storage

TSPlus 16.0.0.0 - Remote Work Insecure Credential storage

[remote] EuroTel ETL3100 - Transmitter Default Credentials

EuroTel ETL3100 - Transmitter Default Credentials

[webapps] Color Prediction Game v1.0 - SQL Injection

Color Prediction Game v1.0 - SQL Injection

[webapps] Taskhub CRM Tool 2.8.6 - SQL Injection

Taskhub CRM Tool 2.8.6 - SQL Injection

[remote] EuroTel ETL3100 - Transmitter Authorization Bypass (IDOR)

EuroTel ETL3100 - Transmitter Authorization Bypass (IDOR)

[webapps] Crypto Currency Tracker (CCT) 9.5 - Admin Account Creation (Unauthenticated)

Crypto Currency Tracker (CCT) 9.5 - Admin Account Creation (Unauthenticated)

[local] Inosoft VisiWin 7 2022-2.1 - Insecure Folders Permissions

Inosoft VisiWin 7 2022-2.1 - Insecure Folders Permissions

[remote] TSplus 16.0.0.0 - Remote Work Insecure Files and Folders

TSplus 16.0.0.0 - Remote Work Insecure Files and Folders

[remote] EuroTel ETL3100 - Transmitter Unauthenticated Config/Log Download

EuroTel ETL3100 - Transmitter Unauthenticated Config/Log Download

[webapps] Maltrail v0.53 - Unauthenticated Remote Code Execution (RCE)

Maltrail v0.53 - Unauthenticated Remote Code Execution (RCE)

[local] OutSystems Service Studio 11.53.30 - DLL Hijacking

OutSystems Service Studio 11.53.30 - DLL Hijacking

[remote] TP-Link Archer AX21 - Unauthenticated Command Injection

TP-Link Archer AX21 - Unauthenticated Command Injection

[webapps] Request-Baskets v1.2.1 - Server-side request forgery (SSRF)

Request-Baskets v1.2.1 - Server-side request forgery (SSRF)

[local] systemd 246 - Local Privilege Escalation

systemd 246 - Local Privilege Escalation

[webapps] PHPJabbers Vacation Rental Script 4.0 - CSRF

PHPJabbers Vacation Rental Script 4.0 - CSRF

[webapps] Social-Commerce 3.1.6 - Reflected XSS

Social-Commerce 3.1.6 - Reflected XSS

[webapps] Emagic Data Center Management Suite v6.0 - OS Command Injection

Emagic Data Center Management Suite v6.0 - OS Command Injection

[webapps] mooSocial 3.1.8 - Reflected XSS

mooSocial 3.1.8 - Reflected XSS

[webapps] Pyro CMS 3.9 - Server-Side Template Injection (SSTI) (Authenticated)

Pyro CMS 3.9 - Server-Side Template Injection (SSTI) (Authenticated)

[webapps] Adlisting Classified Ads 2.14.0 - WebPage Content Information Disclosure

Adlisting Classified Ads 2.14.0 - WebPage Content Information Disclosure

[webapps] Lucee 5.4.2.17 - Authenticated Reflected XSS

Lucee 5.4.2.17 - Authenticated Reflected XSS

[webapps] JLex GuestBook 1.6.4 - Reflected XSS

JLex GuestBook 1.6.4 - Reflected XSS

[webapps] Adiscon LogAnalyzer v.4.1.13 - Cross Site Scripting

Adiscon LogAnalyzer v.4.1.13 - Cross Site Scripting

[webapps] Webedition CMS v2.9.8.8 - Stored XSS

Webedition CMS v2.9.8.8 - Stored XSS

[webapps] Wordpress Plugin EventON Calendar 4.4 - Unauthenticated Event Access

Wordpress Plugin EventON Calendar 4.4 - Unauthenticated Event Access

[webapps] WordPress Plugin Ninja Forms 3.6.25 - Reflected XSS

WordPress Plugin Ninja Forms 3.6.25 - Reflected XSS

[dos] Xlight FTP Server 3.9.3.6 - 'Stack Buffer Overflow' (DOS)

Xlight FTP Server 3.9.3.6 - 'Stack Buffer Overflow' (DOS)

[webapps] Webedition CMS v2.9.8.8 - Remote Code Execution (RCE)

Webedition CMS v2.9.8.8 - Remote Code Execution (RCE)

[webapps] WordPress adivaha Travel Plugin 2.3 - SQL Injection

WordPress adivaha Travel Plugin 2.3 - SQL Injection

[webapps] PHPJabbers Night Club Booking 1.0 - Reflected XSS

PHPJabbers Night Club Booking 1.0 - Reflected XSS

[webapps] Joomla JLex Review 6.0.1 - Reflected XSS

Joomla JLex Review 6.0.1 - Reflected XSS

[webapps] PHPJabbers Taxi Booking 2.0 - Reflected XSS

PHPJabbers Taxi Booking 2.0 - Reflected XSS

[webapps] PHPJabbers Service Booking Script 1.0 - Reflected XSS

PHPJabbers Service Booking Script 1.0 - Reflected XSS

[webapps] Wordpress Plugin EventON Calendar 4.4 - Unauthenticated Post Access via IDOR

Wordpress Plugin EventON Calendar 4.4 - Unauthenticated Post Access via IDOR

[webapps] Campcodes Online Matrimonial Website System v3.3 - Code Execution via malicious SVG file upload

Campcodes Online Matrimonial Website System v3.3 - Code Execution via malicious SVG file upload

[webapps] PHPJabbers Rental Property Booking 2.0 - Reflected XSS

PHPJabbers Rental Property Booking 2.0 - Reflected XSS

[webapps] PHPJabbers Shuttle Booking Software 1.0 - Reflected XSS

PHPJabbers Shuttle Booking Software 1.0 - Reflected XSS

[remote] ReyeeOS 1.204.1614 - MITM Remote Code Execution (RCE)

ReyeeOS 1.204.1614 - MITM Remote Code Execution (RCE)

[webapps] Academy LMS 6.0 - Reflected XSS

Academy LMS 6.0 - Reflected XSS

[webapps] Webutler v3.2 - Remote Code Execution (RCE)

Webutler v3.2 - Remote Code Execution (RCE)

[webapps] Ozeki SMS Gateway 10.3.208 - Arbitrary File Read (Unauthenticated)

Ozeki SMS Gateway 10.3.208 - Arbitrary File Read (Unauthenticated)

[webapps] PHPJabbers Cleaning Business 1.0 - Reflected XSS

PHPJabbers Cleaning Business 1.0 - Reflected XSS

[webapps] WordPress Plugin Forminator 1.24.6 - Unauthenticated Remote Command Execution

WordPress Plugin Forminator 1.24.6 - Unauthenticated Remote Command Execution

[webapps] WordPress adivaha Travel Plugin 2.3 - Reflected XSS

WordPress adivaha Travel Plugin 2.3 - Reflected XSS

[remote] Shelly PRO 4PM v0.11.0 - Authentication Bypass

Shelly PRO 4PM v0.11.0 - Authentication Bypass

[webapps] Uvdesk v1.1.3 - File Upload Remote Code Execution (RCE) (Authenticated)

Uvdesk v1.1.3 - File Upload Remote Code Execution (RCE) (Authenticated)

[webapps] Joomla iProperty Real Estate 4.1.1 - Reflected XSS

Joomla iProperty Real Estate 4.1.1 - Reflected XSS

[webapps] Joomla Solidres 2.13.3 - Reflected XSS

Joomla Solidres 2.13.3 - Reflected XSS

[local] General Device Manager 2.5.2.2 - Buffer Overflow (SEH)

General Device Manager 2.5.2.2 - Buffer Overflow (SEH)

[webapps] copyparty v1.8.6 - Reflected Cross Site Scripting (XSS)

copyparty v1.8.6 - Reflected Cross Site Scripting (XSS)

[webapps] Zomplog 3.9 - Cross-site scripting (XSS)

Zomplog 3.9 - Cross-site scripting (XSS)

[webapps] Joomla HikaShop 4.7.4 - Reflected XSS

Joomla HikaShop 4.7.4 - Reflected XSS

[webapps] copyparty 1.8.2 - Directory Traversal

copyparty 1.8.2 - Directory Traversal

[local] GreenShot 1.2.10 - Insecure Deserialization Arbitrary Code Execution

GreenShot 1.2.10 - Insecure Deserialization Arbitrary Code Execution

[webapps] Availability Booking Calendar v1.0 - Multiple Cross-site scripting (XSS)

Availability Booking Calendar v1.0 - Multiple Cross-site scripting (XSS)