Day: April 16, 2025

ProConf 6.0 – Insecure Direct Object Reference (IDOR)

Car Rental Project 1.0 – Remote Code Execution

Ruckus IoT Controller 1.7.1.0 – Undocumented Backdoor Account

Ethercreative Logs 3.0.3 – Path Traversal

Fortinet FortiOS, FortiProxy, and FortiSwitchManager 7.2.0 – Authentication bypass

FLIR AX8 1.46.16 – Remote Command Injection

WebMethods Integration Server 10.15.0.0000-0092 – Improper Access on Login Page

Garage Management System 1.0 (categoriesName) – Stored XSS

phpMyFAQ 3.2.10 – Unintended File Download Triggered by Embedded Frames

ABB Cylon Aspect 4.00.00 (factorySaved.php) – Unauthenticated XSS