web stuff

• CVE-2023-25828 RCE in Pluck CMS via web-shell smuggling in JPEG
• CVE-2023-2453 RCE in PHPFusion via LFI on arbitrary '.php' file
• CVE-2023-51448 Blind SQL injection in Cacti
• CVE-2024-54445 Blind SQL injection in LogicalDOC
• CVE-2024-54446 Blind SQL injection in LogicalDOC
• CVE-2024-54447 Blind SQL injection in LogicalDOC
• CVE-2024-54448 RCE in LogicalDOC via DSL scripting
• CVE-2024-54449 RCE via arbitrary file write path traversal in LogicalDOC
• CVE-2024-12019 Arbitrary file read path traversal in LogicalDOC
• CVE-2025-64495 Stored DOM XSS via prompts when 'Insert Prompt as Rich Text' is enabled resulting in ATO/RCE