Campcodes Online Hospital Management System 1.0 - SQL Injection

WordPress Digits Plugin 8.4.6.1 - Authentication Bypass via OTP Bruteforcing

Java-springboot-codebase 1.1 - Arbitrary File Read

WordPress User Registration & Membership Plugin 4.1.2 - Authentication Bypass

WordPress Frontend Login and Registration Blocks Plugin 1.0.7 - Privilege Escalation

Kentico Xperience 13.0.178 - Cross Site Scripting (XSS)

SureTriggers OttoKit Plugin 1.0.82 - Privilege Escalation

WordPress Depicter Plugin 3.6.1 - SQL Injection

ERPNext 14.82.1 - Account Takeover via Cross-Site Request Forgery (CSRF)

Grokability Snipe-IT 8.0.4 - Insecure Direct Object Reference (IDOR)

Casdoor 1.901.0 - Cross-Site Request Forgery (CSRF)

WordPress Core 6.2 - Directory Traversal

FoxCMS 1.2.5 - Remote Code Execution (RCE)

Drupal 11.x-dev - Full Path Disclosure

KiviCare Clinic & Patient Management System (EHR) 3.6.4 - Unauthenticated SQL Injection

UJCMS 9.6.3 - User Enumeration via IDOR