[webapps] Engineers Online Portal 1.0 - 'multiple' Authentication Bypass
Engineers Online Portal 1.0 - 'multiple' Authentication Bypass
hxxps://www.exploit-db.com/exploits/50452

[webapps] Engineers Online Portal 1.0 - 'multiple' Stored Cross-Site Scripting (XSS)
Engineers Online Portal 1.0 - 'multiple' Stored Cross-Site Scripting (XSS)
hxxps://www.exploit-db.com/exploits/50451

[webapps] Online Event Booking and Reservation System 1.0 - 'reason' Stored Cross-Site Scripting (XSS)
Online Event Booking and Reservation System 1.0 - 'reason' Stored Cross-Site Scripting (XSS)
hxxps://www.exploit-db.com/exploits/50450

[local] Gestionale Open 11.00.00 - Local Privilege Escalation
Gestionale Open 11.00.00 - Local Privilege Escalation
hxxps://www.exploit-db.com/exploits/50449

[local] OpenClinic GA 5.194.18 - Local Privilege Escalation
OpenClinic GA 5.194.18 - Local Privilege Escalation
hxxps://www.exploit-db.com/exploits/50448

[webapps] Balbooa Joomla Forms Builder 2.0.6 - SQL Injection (Unauthenticated)
Balbooa Joomla Forms Builder 2.0.6 - SQL Injection (Unauthenticated)
hxxps://www.exploit-db.com/exploits/50447

[webapps] Apache HTTP Server 2.4.50 - Remote Code Execution (RCE) (2)
Apache HTTP Server 2.4.50 - Remote Code Execution (RCE) (2)
hxxps://www.exploit-db.com/exploits/50446

[webapps] Build Smart ERP 21.0817 - 'eidValue' SQL Injection (Unauthenticated)
Build Smart ERP 21.0817 - 'eidValue' SQL Injection (Unauthenticated)
hxxps://www.exploit-db.com/exploits/50445

[webapps] Engineers Online Portal 1.0 - File Upload Remote Code Execution (RCE)
Engineers Online Portal 1.0 - File Upload Remote Code Execution (RCE)
hxxps://www.exploit-db.com/exploits/50444

[local] Netgear Genie 2.4.64 - Unquoted Service Path
Netgear Genie 2.4.64 - Unquoted Service Path
hxxps://www.exploit-db.com/exploits/50443

[webapps] WordPress Plugin TaxoPress 3.0.7.1 - Stored Cross-Site Scripting (XSS) (Authenticated)
WordPress Plugin TaxoPress 3.0.7.1 - Stored Cross-Site Scripting (XSS) (Authenticated)
hxxps://www.exploit-db.com/exploits/50442

[webapps] Hikvision Web Server Build 210702 - Command Injection
Hikvision Web Server Build 210702 - Command Injection
hxxps://www.exploit-db.com/exploits/50441

[webapps] Online Course Registration 1.0 - Blind Boolean-Based SQL Injection (Authenticated)
Online Course Registration 1.0 - Blind Boolean-Based SQL Injection (Authenticated)
hxxps://www.exploit-db.com/exploits/50440

[webapps] Clinic Management System 1.0 - SQL injection to Remote Code Execution
Clinic Management System 1.0 - SQL injection to Remote Code Execution
hxxps://www.exploit-db.com/exploits/50439

[webapps] Jetty 9.4.37.v20210219 - Information Disclosure
Jetty 9.4.37.v20210219 - Information Disclosure
hxxps://www.exploit-db.com/exploits/50438

[webapps] Easy Chat Server 3.1 - Directory Traversal and Arbitrary File Read
Easy Chat Server 3.1 - Directory Traversal and Arbitrary File Read
hxxps://www.exploit-db.com/exploits/50437

[webapps] Small CRM 3.0 - 'description' Stored Cross-Site Scripting (XSS)
Small CRM 3.0 - 'description' Stored Cross-Site Scripting (XSS)
hxxps://www.exploit-db.com/exploits/50435

[dos] NIMax 5.3.1f0 - 'VISA Alias' Denial of Service (PoC)
NIMax 5.3.1f0 - 'VISA Alias' Denial of Service (PoC)
hxxps://www.exploit-db.com/exploits/50434

[dos] NIMax 5.3.1 - 'Remote VISA System' Denial of Service (PoC)
NIMax 5.3.1 - 'Remote VISA System' Denial of Service (PoC)
hxxps://www.exploit-db.com/exploits/50433

[webapps] Dolibarr ERP-CRM 14.0.2 - Stored Cross-Site Scripting (XSS) / Privilege Escalation
Dolibarr ERP-CRM 14.0.2 - Stored Cross-Site Scripting (XSS) / Privilege Escalation
hxxps://www.exploit-db.com/exploits/50432