CMSUno 1.6.2 – ‘lang/user’ Remote Code Execution (Authenticated)

from Exploit-DB.com RSS Feed https://ift.tt/3qZ9LiV
via IFTTT

EgavilanMedia PHPCRUD 1.0 – ‘Full Name’ Stored Cross Site Scripting

from Exploit-DB.com RSS Feed https://ift.tt/36jtp1k
via IFTTT

Openlitespeed Web Server 1.7.8 – Command Injection (Authenticated)

from Exploit-DB.com RSS Feed https://ift.tt/3onSTAL
via IFTTT

STVS ProVision 5.9.10 – Cross-Site Request Forgery (Add Admin)

from Exploit-DB.com RSS Feed https://ift.tt/3a9yDO2
via IFTTT

STVS ProVision 5.9.10 – File Disclosure (Authenticated)

from Exploit-DB.com RSS Feed https://ift.tt/3t3l8rN
via IFTTT

Oracle WebLogic Server 12.2.1.0 – RCE (Unauthenticated)

from Exploit-DB.com RSS Feed https://ift.tt/3pnB7if
via IFTTT

Tenda AC5 AC1200 Wireless – ‘WiFi Name & Password’ Stored Cross Site Scripting

from Exploit-DB.com RSS Feed https://ift.tt/2NFIcgl
via IFTTT

Simple College Website 1.0 – ‘full’ Stored Cross Site Scripting

from Exploit-DB.com RSS Feed https://ift.tt/2LVhv6P
via IFTTT

Simple College Website 1.0 – ‘name’ Sql Injection (Authentication Bypass)

from Exploit-DB.com RSS Feed https://ift.tt/2YbVfIi
via IFTTT

Cemetry Mapping and Information System 1.0 – ‘user_email’ Sql Injection (Authentication Bypass)

from Exploit-DB.com RSS Feed https://ift.tt/3c6k7cC
via IFTTT