WordPress WP User Frontend 3.5.25 SQL Injection

Exploit Title: WordPress Plugin WP User Frontend 3.5.25 - SQLi Authenticated Date 20.02.2022 Exploit Author: Ron Jost Hacker5preme Vendor Homepage: https://wedevs.com/ Software Link: https://downloads.wordpress.org/plugin/wp-user-frontend.3.5.25.zip Version: 3.5.25 Tested on: Ubuntu 20.04 CVE:...

CVE-2020-35441

FDCMS aka Fangfa Content Management System 4.0 contains a front-end SQL injection via Admin/Lib/Action/FloginAction.class.php...

PHPOK Enterprise Building System v5.2.116 SQL Injection Vulnerability in Frontend

PHPOK is a set of enterprise station CMS system developed in PHP + MYSQL language. PHPOK Enterprise Station Building System v5.2.116 has a SQL injection vulnerability in the frontend. An attacker can exploit this vulnerability to obtain sensitive database information...