Cotonti Siena version 0.9.19 suffers from a persistent cross site scripting vulnerability.
2da227b9fe91fdeaf8447222e92c421dc0b0e7ade68c49a78222c280aa2a905e
This whitepaper illustrates exploitation of an insufficient data validation vulnerability in the Chromium framework.
b518b651332d5b50eee9efb4b357a5e396fada0eba42899f6a54932aabdff483
Red Hat Security Advisory 2021-2445-01 - Red Hat Ceph Storage is a scalable, open, software-defined storage platform that combines the most stable version of the Ceph storage system with a Ceph management platform, deployment utilities, and support services. The ceph-ansible package provides Ansible playbooks for installing, maintaining, and upgrading Red Hat Ceph Storage. The tcmu-runner packages provide a service that handles the complexity of the LIO kernel target's userspace passthrough interface. It presents a C plugin API for extension modules that handle SCSI requests in ways not possible or suitable to be handled by LIO's in-kernel backstores. Issues addressed include cross site scripting and remote shell upload vulnerabilities.
b944d21677adab4a42bb29e5030fec2a583b08572330e722f28865b9d40580c2
Linux/x86 custom shellcode ASCII And-Sub encoder.
e94e7d4fd85ab353e369c5db6283be701e1beb64be40051eb7290608b3d9b335
CKEditor 3 suffers from a server-side request forgery vulnerability.
48077e130498766c86faf120e560130f68989b3b7b63158fbbbd45732462de45
Teachers Record Management System version 1.0 suffers from multiple remote SQL injection vulnerabilities. This report has additional payloads although the original discovery of SQL injection in this version is attributed to gh1mau in July of 2020.
329261ffb7e3f56e96d9ab636facf5477a4526e3b64aa09818235c9e5dba7175
Teachers Record Management System version 1.0 suffers from a persistent cross site scripting vulnerability.
05fa528b05ad75b9ea84db5fb3ec371d6e0c80bf77b1c85e355ca6a851a5bca4
Disk Sorter Server version 13.6.12 suffers from an unquoted service path vulnerability.
9548c982b69ebd3448e5fc4ba7c11aab17aaa8696a219c3af8b510524727485e
DiskPulse version 13.6.14 suffers from an unquoted service path vulnerability.
88323ba36b0706eb27a3e1e97ff8c04eb26e770cd2580591200e7f8fe4e22267