Ivan Spiridonov Smart Manager 8.27.0 - Post-Authenticated SQL Injection
webapps php CVE-2024-0566

Rahad Chowdhury KodExplorer 4.52 - Open Redirect
webapps php

ub3rsick Car Rental Project 1.0 - Remote Code Execution
webapps php CVE-2020-5509

Geo phpMyFAQ 3.2.10 - Unintended File Download Triggered by Embedded Frames
webapps php CVE-2024-55889

LiquidWorm ABB Cylon Aspect 3.08.03 (webServerDeviceLabelUpdate.php) - File Write DoS
hardware php

LiquidWorm ABB Cylon Aspect 4.00.00 (factorySaved.php) - Unauthenticated XSS
hardware php

LiquidWorm ABB Cylon Aspect 4.00.00 (factorySetSerialNum.php) - Remote Code Execution
hardware php

m4nb4 Zabbix 7.0.0 - SQL Injection
webapps php CVE-2024-42327

xerosec NagVis 1.9.33 - Arbitrary File Read
webapps php CVE-2022-46945

CodeSecLab phpMyFAQ 3.1.7 - Reflected Cross-Site Scripting (XSS)
webapps php CVE-2022-4407

D3Ext Cacti 1.2.26 - Remote Code Execution (RCE) (Authenticated)
webapps php CVE-2024-25641

LiquidWorm ABB Cylon Aspect 3.08.02 (webServerUpdate.php) - Input Validation Config Poisoning
hardware php

LiquidWorm ABB Cylon Aspect 3.08.02 (escDevicesUpdate.php) - Denial of Service (DOS)
hardware php CVE-2024-48844

Siddhartha Naik OpenCMS 17.0 - Stored Cross Site Scripting (XSS)
webapps php CVE-2024-41947

Antonio Francesco Sardella Really Simple Security 9.1.1.1 - Authentication Bypass
webapps php CVE-2024-10924

CodeSecLab phpIPAM 1.6 - Reflected Cross Site Scripting (XSS)
webapps php CVE-2023-24657