Security Vulnerabilities & Exploits

OX App Suite 7.10.6 Cross Site Scripting / Deserialization Issue

Trimble TM4Web 22.2.0 Privilege Escalation / Access Code Disclosure

Concrete CMS 9.2.7 Cross Site Scripting / Open Redirect

GUnet OpenEclass E-learning 3.15 File Upload / Command Execution

Trojan.Win32.Razy.abc / Insecure Permissions In memory IPC

HTMLy 2.9.6 Cross Site Scripting

DerbyNet 9.0 render-document.php Cross Site Scripting

Backdoor.Win32.Agent.ju PSYRAT / Authentication Bypass RCE

Savane v.3.12 Bad Seed Vulnerability and CSRF Bypass

UP-RESULT 0.1 2024 SQL Injection

Daily Expense Manager 1.0 SQL Injection

Wordpress Plugin Membership For WooCommerce < v2.1.7 Arbitrary File Upload to Shell Unauthentic

AnyDesk 7.0.15 Unquoted Service Path

Open Source Medicine Ordering System v1.0 - SQLi

Daily Expense Manager 1.0 - 'term' SQLi

Best Student Result Management System v1.0 - Multiple SQLi

Human Resource Management System v1.0 - Multiple SQLi

Positron Broadcast Signal Processor TRA7005 v1.20 - Authentication Bypass

Wordpress Theme Travelscape v1.0.3 - Arbitrary File Upload

AnyDesk 7.0.15 - Unquoted Service Path