Vodafone H-500-s version 3.5.10 suffers from a wifi password disclosure vulnerability.
141bb2c0b6895ca188f6be64c7802d296621286ca56799588453acf04705218e
SEO Panel version 4.6.0 suffers from a remote code execution vulnerability.
b7fdbfc990d758f4c465bfe8ee4722f434a0df23c71e4e01dbc978e0b84b8305
This Metasploit module exploits a command injection vulnerability in ZenTao Pro 8.8.2 and earlier versions in order to execute arbitrary commands with SYSTEM privileges. Valid credentials for a ZenTao admin account are required. This module has been successfully tested against ZenTao 8.8.1 and 8.8.2 running on Windows 10 (XAMPP server).
191b945627084957824fcc0caf7eb0edfafb74b14433e38de0cb21c995667b52
ZenTao Pro version 8.8.2 suffers from a remote command injection vulnerability.
88047021ac7e39af78404eaf3bc03d029ca987e039a286560260a125bbf65e1f
OpenEDX platform Ironwood version 2.5 suffers from a remote code execution vulnerability.
7a54e38627d6ca731048e6e1fe6e6741c718fa2f3cd5f6374e5ad4c2c7cf6dd0
Online Healthcare Patient Record Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
0639d828a1081e369c71ca99163da888fc17e3c66874a56c8ed1b6b3f6ff0932
Online Course Registration 2.0 suffers from authentication bypass and remote SQL injection vulnerabilities.
26afb62846a4c92f004b9a7cac3b03d936d7e88b0188192473b7c8520d10e860
WordPress Media Library Assistant plugin version 2.81 suffers from a local file inclusion vulnerability.
635cc70ebb74ad6e562d7979b7e15e3290d1009789ac02bb3abfb9943b4d1e6b
WordPress Appointment Booking Calendar plugin version 1.3.34 suffers from a CSV injection vulnerability.
8901cadcbcfe9a8feae646bdae78309de9f0a6e07e4f3616b6d12c1fe85412ba
WordPress Search Meter plugin version 2.13.2 suffers from a CSV injection vulnerability.
d5c8d2dbc0b8ad68faf4f1c3a3dbe3e473831cdd46723d2d4e24989b12f689ea
Lotus Core CMS version 1.0.1 suffers from a local file inclusion vulnerability.
64a93093c3144c62847025d1a0a0a0a219c1538c1ff7ebd71cf3f9e630e664b0