Stash version 1.0.3 user credential disclosure exploit that leverages a SQL injection vulnerability in admin/login.php.
be55b82a3c8073cbf6d59f024d860dd61658e35b51fd4344d4fa2270fb8b6588
PHPX version 3.5.16 suffers from a cookie poisoning and login bypass vulnerability.
4446468690e6eb807b546f26f3063774d760766617d43f7ecb0e41eb42716c04