[dos] SmartFTP Client 10.0.2909.0 - 'Multiple' Denial of Service
SmartFTP Client 10.0.2909.0 - 'Multiple' Denial of Service
https://www.exploit-db.com/exploits/50266

[webapps] Patient Appointment Scheduler System 1.0 - Persistent/Stored XSS
Patient Appointment Scheduler System 1.0 - Persistent/Stored XSS
https://www.exploit-db.com/exploits/50265

[webapps] Patient Appointment Scheduler System 1.0 - Unauthenticated File Upload & Remote Code Execution (RCE)
Patient Appointment Scheduler System 1.0 - Unauthenticated File Upload & Remote Code Execution (RCE)
https://www.exploit-db.com/exploits/50264

[webapps] Bus Pass Management System 1.0 - 'viewid' Insecure direct object references (IDOR)
Bus Pass Management System 1.0 - 'viewid' Insecure direct object references (IDOR)
https://www.exploit-db.com/exploits/50263

[webapps] FlatCore CMS 2.0.7 - Remote Code Execution (RCE) (Authenticated)
FlatCore CMS 2.0.7 - Remote Code Execution (RCE) (Authenticated)
https://www.exploit-db.com/exploits/50262

[local] Argus Surveillance DVR 4.0 - Unquoted Service Path
Argus Surveillance DVR 4.0 - Unquoted Service Path
https://www.exploit-db.com/exploits/50261

[webapps] OpenEMR 6.0.0 - 'noteid' Insecure Direct Object Reference (IDOR)
OpenEMR 6.0.0 - 'noteid' Insecure Direct Object Reference (IDOR)
https://www.exploit-db.com/exploits/50260

[webapps] OpenSIS 8.0 'modname' - Directory/Path Traversal
OpenSIS 8.0 'modname' - Directory/Path Traversal
https://www.exploit-db.com/exploits/50259

[local] Remote Mouse 4.002 - Unquoted Service Path
Remote Mouse 4.002 - Unquoted Service Path
https://www.exploit-db.com/exploits/50258

[webapps] WordPress Plugin Duplicate Page 4.4.1 - Stored Cross-Site Scripting (XSS)
WordPress Plugin Duplicate Page 4.4.1 - Stored Cross-Site Scripting (XSS)
https://www.exploit-db.com/exploits/50256

[webapps] WPanel 4.3.1 - Remote Code Execution (RCE) (Authenticated)
WPanel 4.3.1 - Remote Code Execution (RCE) (Authenticated)
https://www.exploit-db.com/exploits/50255

[webapps] Compro Technology IP Camera - ' mjpegStreamer.cgi' Screenshot Disclosure
Compro Technology IP Camera - ' mjpegStreamer.cgi' Screenshot Disclosure
https://www.exploit-db.com/exploits/50254

[dos] Yenkee Hornet Gaming Mouse - 'GM312Fltr.sys' Denial-Of-Service (PoC)
Yenkee Hornet Gaming Mouse - 'GM312Fltr.sys' Denial-Of-Service (PoC)
https://www.exploit-db.com/exploits/50311

[webapps] WebsiteBaker 2.13.0 - Remote Code Execution (RCE) (Authenticated)
WebsiteBaker 2.13.0 - Remote Code Execution (RCE) (Authenticated)
https://www.exploit-db.com/exploits/50310

[webapps] Simple Attendance System 1.0 - Unauthenticated Blind SQLi
Simple Attendance System 1.0 - Unauthenticated Blind SQLi
https://www.exploit-db.com/exploits/50312

[webapps] Filerun 2021.03.26 - Remote Code Execution (RCE) (Authenticated)
Filerun 2021.03.26 - Remote Code Execution (RCE) (Authenticated)
https://www.exploit-db.com/exploits/50313

[local] TotalAV 5.15.69 - Unquoted Service Path
TotalAV 5.15.69 - Unquoted Service Path
https://www.exploit-db.com/exploits/50314

[webapps] Cloudron 6.2 - 'returnTo ' Cross Site Scripting (Reflected)
Cloudron 6.2 - 'returnTo ' Cross Site Scripting (Reflected)
https://www.exploit-db.com/exploits/50317

[webapps] OpenCats 0.9.4-2 - 'docx ' XML External Entity Injection (XXE)
OpenCats 0.9.4-2 - 'docx ' XML External Entity Injection (XXE)
https://www.exploit-db.com/exploits/50316

[webapps] e107 CMS 2.3.0 - Remote Code Execution (RCE) (Authenticated)
e107 CMS 2.3.0 - Remote Code Execution (RCE) (Authenticated)
https://www.exploit-db.com/exploits/50315