Research
Research, Publications
Exploit-DB
| Date | Title | Type | Platform |
|---|---|---|---|
| 30/12/2021 | Hospitals Patient Records Management System 1.0 - Account TakeOver | Webapps | PHP |
| 30/12/2021 | Hospitals Patient Records Management System 1.0 - ‘id’ SQL Injection (Authenticated) | Webapps | PHP |
| 05/01/2022 | Online Veterinary Appointment System 1.0 - ‘Multiple’ SQL Injection | Webapps | PHP |
| 07/01/2022 | Online Railway Reservation System 1.0 - ‘id’ SQL Injection (Unauthenticated) | Webapps | PHP |
| 12/06/2022 | Old Age Home Management System 1.0 - SQLi Authentication Bypass | Webapps | PHP |
Common Vulnerabilities and Exposures (CVE)
| CVE | Title |
|---|---|
| CVE-2021-24614 | Book appointment Online < 1.39 - Authenticated Stored Cross-Site Scripting (XSS) |
| CVE-2021-24621 | WP Courses LMS < 2.0.44 - Authenticated Stored XSS via Video Embed Code |
| CVE-2021-24622 | WP Ticket < 5.10.4 - Admin+ Stored Cross-Site Scripting |
| CVE-2021-24623 | WordPress Advanced Ticket System < 1.0.64 - Authenticated Stored Cross-Site Scripting (XSS) |
| CVE-2022-2395 | weForms < 1.6.14 - Admin+ Stored Cross-Site Scripting |