This is a short article on how to escalate privileges from man/man to root/root via the “catman” cron job.
>> ARCHIVE: 2015-12
WordPress Symposium plugin version 14.05.02 suffers from a cross site request forgery vulnerability.
WordPress Symposium plugin version 14.05.02 suffers from a cross site scripting vulnerability.
WordPress NextGEN Gallery plugin version 2.0.66.16 suffers from multiple cross site scripting vulnerabilities.
WordPress Contact Form plugin version 3.81 suffers from a cross site scripting vulnerability.
WordPress Simple Booking Calendar plugin version 1.3 suffers from a cross site request forgery vulnerability.
WordPress Captcha plugin version 4.0.2 suffers from a cross site scripting vulnerability.
WordPress Gallery plugin version 4.2.1 suffers from a cross site scripting vulnerability.
WordPress Google Captcha plugin version 1.05 suffers from a cross site scripting vulnerability.
WordPress BestWebSoft Google Maps plugin version 1.2.1 suffers from a cross site scripting vulnerability.