23May
[webapps] GetSimple CMS v3.3.16 – Remote Code Execution (RCE)
GetSimple CMS v3.3.16 – Remote Code Execution (RCE)
GetSimple CMS v3.3.16 – Remote Code Execution (RCE)
Bludit CMS v3.14.1 – Stored Cross-Site Scripting (XSS) (Authenticated)
ChurchCRM v4.5.4 – Reflected XSS via Image (Authenticated)
CiviCRM 5.59.alpha1 – Stored XSS (Cross-Site Scripting)
MobileTrans 4.0.11 – Weak Service Privilege Escalation
Best POS Management System v1.0 – Unauthenticated Remote Code Execution
Cameleon CMS 2.7.4 – Persistent Stored XSS in Post Title
PnPSCADA v2.x – Unauthenticated PostgreSQL Injection
WordPress Plugin Backup Migration 1.2.8 – Unauthenticated Database Backup