Super Backup version 2.0.5 for iOS suffers from a directory traversal vulnerability.
c0e31c3ea1d16f43baa877403a277582dd25962a118dc0f4f94b5cfc6e309e47
CCt99 Chichen Tech CMS version 1.0 suffers from a remote SQL injection vulnerability.
5ac71860224746508c38cc4fe66850ab71b70aa4295c0c292fddd06a4661c6d1
Perfex CRM version 2.4.4 suffers from a persistent cross site scripting vulnerability.
8f0a4080d778d603ed274d8c59e1cef54395fec462cebdeaf55a7ae9f99437d2
A session token vulnerability has been discovered in VestaCP version 0.9.8-26. The vulnerability allows remote attackers to gain unauthenticated or unauthorized access by client-side token manipulation.
ae8c5b4a8baf982ebb05cc9040ccbf5c1f924332927510d492c559caddbab251
VestaCP version 0.9.8-26 suffers from an insufficient session validation vulnerability.
6159b79ee1c4557d55f413617ee3f2dcdd0659e7afec203a8cd037f6b89243be
VestaCP version 0.9.8-26 suffers from a cross site scripting vulnerability.
7e70fa744d9b07edcbfc4a161a26c921eb4218063ebaa6d7a2d8da58ea7d7db7
Huawei HedEx Lite (DM) suffers from a path traversal vulnerability.
92d8a7b71d563caa017b64ebf1440f3f2ff49b7fd6607d831e9146d3dfc9c038
Suricata is a network intrusion detection and prevention engine developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded and has native IPv6 support. It's capable of loading existing Snort rules and signatures and supports the Barnyard and Barnyard2 tools.
e7a1798fe59c1d213f752feefbf8bb54168f9fa56235cf3380347c696ecdb1ae
MiniCMS version 1.10 suffers from a persistent cross site scripting vulnerability.
580397233fb61a4bef10a59c12712f1a1c36d9f40ccb8106594b5836e6026920
Whitepaper called Encrypted Linux x86-64 Loadable Kernel Modules (ELKM). The aim is to protect kernel-based rootkits and implants against observation by EndpointDetection and Response (EDR) software and to neutralize the effects of recovery by disk forensics tooling.
8c1624c7c34043b6adcf6bf8d40dacba0d70f69ac41bf3bb91c707f4c800f332
Zabbix version 5.0.0 suffers from a persistent cross site scripting vulnerability.
8cbbd0ee6d1c5466ee0d2a22b6ce95d10e75cde127c24a38cda3d57746478eb6
CMS Made Simple version 2.2.15 suffers from a persistent cross site scripting vulnerability via an authenticated SVG file upload.
3a70bea3ff018f2a3e3bc5cb413b9c3da9210a7c1832fd27589baa34aaef8e17
Laravel Nova version 3.7.0 suffers from a denial of service vulnerability.
9eb495324041230df1778bdc6d24f4736918454a3a493572ff1e36fb62cb7360
Phpscript SGH version 0.1.0 suffers from a remote blind SQL injection vulnerability.
9552feef216e1c89c849008c2df8fe88e75923abfd09fd89fc5208c549d78bfc
WordPress Canto plugin version 1.3.0 suffers from an unauthenticated server-side request forgery vulnerability.
df36bda8f802a55dc16c72320588c7ff56d412c1a0df5bcede5830be8b9a99bb
Composr CMS version 10.0.34 suffers from a persistent cross site scripting vulnerability.
e7d2e8be323e31438d8c6135158686adcc8b25caf9961d6908189f3e587d1de2
Forma LMS version 2.3 suffers from a persistent cross site scripting vulnerability.
c3b32ba0ed652c87a51348c77103da0e6513fb3a39a22adafaa74c0def20e6cb
Savsoft Quiz version 5 suffers from a persistent cross site scripting vulnerability. This finding differs from the original discovery of persistent cross site scripting in this version found originally by th3d1gger.
37a4ba9345fee8f31b67fb0c4f6ca6b6aa2be75811fe815c6a724f4d964c77c1
Proof of concept code that demonstrates a full CSP bypass in Chromium 83.
f665b840e23447dd1db0bb7901be7ece20f08967d72f818e8e49bee711e616b2
Testa Online Test Management System version 3.4.7 suffers from a remote SQL injection vulnerability.
5d36d395ec6df5d4aeefadf263ea5607493679029513bbeeac6c0d602e5c6dfc
Whitepaper called Firmware Analysis and Simulation.
a6e26ecb9c1f523eef69a5364c1d8daca757b45fcd1216c25c2210a54fc4b2de
IDT PC Audio version 1.0.6499.0 suffers from an unquoted service path vulnerability.
7aeae44f16818c527d9c14de026bd5926cc5a403e2a052ebb00bcc06a54decfc