# Exploit Title: SmartAgent v1.1.0 - Server-Side Request Forgery (SSRF) # Date: 01-10-2024 # Exploit Author: Alter Prime # Vendor Homepage: https://smarts-srlcom.com ...

XLibre project security advisory ----- As Xlibre Xnest is based on Xorg, it is affected by some security issues which recently became known in Xorg: CVE-2024-9632: can be triggered by providing a ...

# Exploit Title: SmartAgent v1.1.0 - Unauthenticated Remote Code Execution # Date: 01-10-2024 # Exploit Author: Alter Prime # Vendor Homepage: https://smarts-srlcom ...

# Exploit Title: SmartAgent v1.1.0 - Unauthenticated SQL Injection (SQLi) # Date: 01-10-2024 # Exploit Author: Alter Prime # Vendor Homepage: https://smarts-srlcom ...

# Exploit Title: Open Redirect / Reflected XSS - booked-schedulerv2.8.5 # Date: 10/2024 # Exploit Author: Andrey Stoykov # Version: 2.8.5 # Tested on: Ubuntu 22.04 ...

The WP Easy Post Types plugin for WordPress is vulnerable to Stored Cross-Site Scripting via post meta in versions up to, and including, 1.4.4 due to insufficient input sanitization and output ...

Cross-site request forgery (CSRF) vulnerability in the My Account widget in Liferay Portal 7.4.3.75 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.2, 2023.Q3.1 through 2023.Q3.5, 7.4 ...

A vulnerability, which was classified as critical, has been found in code-projects Pharmacy Management System 1.0. Affected by this issue is some unknown functionality of the file /manage_supplier.php ...

A vulnerability was found in Quay, which allows successful authentication even when a truncated password version is provided. This flaw affects the authentication mechanism, reducing the overall ...

https://www.cisa.gov/news-events/ics-advisories/icsa-24-291-01 ...