GetSimple CMS version 3.3.4 suffers from an information disclosure vulnerability.
3809a30c1cb472a328c2d29db5c6f5604e64699f9c485680f097f292a0f1a822
Trixbox version 2.8.0.4 has an OS command injection vulnerability that can be leveraged via shell metacharacters in the lang parameter to /maint/modules/home/index.php.
aaabb057afb92bb25d1dc9037d5a6c0fb333f4768b0c90b7a44651f47b7bcfa7
Trixbox version 2.8.0.4 has path traversal via the xajaxargs array parameter to /maint/index.php?packages or the lang parameter to /maint/modules/home/index.php.
fb3bf69481578dad07624872eec1f5d1da61660965e5ddb444e9193956929ed2
Pluck CMS version 4.7.13 suffers from a remote shell upload vulnerability.
78d117f4d082a5e6574cd774ad6bd1b3df79b1d832bbe3e19d8f78cf1c8ab23f
Codiad version 2.8.4 suffers from a remote shell upload vulnerability.
4e15192d55f43a8997441229cb7fa2fc12f69a60ba596b19deb1e08bbd9cb408
Codiad version 2.8.4 suffers from a remote code execution vulnerability.
4b538410526a06035255e57015ef16fd091c575116f2fcf8b3b1dd8249289836